Foresight is designed to make it easier for administrators to
keep track of security vulnerabilities which exist within WordPress and
Wordpress plugins. It does this by loading a tabbed display of known
exploits into the WordPress administrative backend. (It’s available under
‘Tools’ -> ‘Foresight’ in the admin side-bar.)
Using the plugin is simple: when you log in to perform your various
administrative tasks, take a moment to browse through the known exploits.
If you see vulnerabilities in that plugins you use, take the appropriate
action. (What’s “appropriate” of course, will vary based off of several
factors, but may range from doing nothing to disabling the vulnerable
Know that the ‘1337Day’ tab behaves slightly differently than the other
tabs. Rather than loading WordPress exploits by automatically, it will
first require you to check a checkbox promising not to use the exploits
catalogued on the site for nefarious purposes. From there, you’ll have
to manually search for WordPress exploits by clicking on the ‘search’
- Why didn’t you include `$my_preferred exploit tracker`?
There are two possible reasons:
- I’m unaware of it.
- Your tracker is configured to disallow being loaded into an iframe.
(Packet Storm is among this category.)
If you’d like to see another tracker added to this plugin,
let me know. If I agree that it
should be added in, I’ll do so. If not, it should be pretty easy to hack
it in yourself. Open-source FTW!