Skip to content

aquasecurity/trivy-module-wordpress

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
wordpress.go
wordpress.go
 
 

Repository files navigation

Trivy WoredPress Module

This module provides a more in-depth investigation of Wordpress detection.

Set up

$ tinygo build -o wordpress.wasm -scheduler=none -target=wasi --no-debug wordpress.go 
$ mkdir -p ~/.trivy/modules
$ cp wordpress.wasm ~/.trivy/modules

It is also available in GHCR. You can install it via trivy module install.

$ trivy module install ghcr.io/aquasecurity/trivy-module-wordpress
2022-06-13T15:32:21.972+0300    INFO    Installing the module from ghcr.io/aquasecurity/trivy-module-wordpress...

Run Trivy

$ trivy image wordpress:5.7.1
2022-05-29T22:35:04.873+0300    INFO    Loading wordpress.wasm...
2022-05-29T22:35:05.348+0300    INFO    Registering WASM module: wordpress@v1

In the above example, CVE-2020-36326 and CVE-2018-19296 will be detected if the WordPress version is vulnerable.

About

Trivy example module for WordPress

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

5 stars

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages 1

 

Languages