Find WordPress > * > Login form Pages

This dork uses 'intitle:' to match the WordPress login page title pattern and 'inurl:wp-login.php' to target the standard WordPress authentication URL. It reveals WordPress installations where the login page is publicly indexed, which can be targeted for brute-force or credential stuffing attacks.

• WordPress Security Audit: Identify WordPress sites with publicly indexed login pages that should be protected with login URL changes or CAPTCHA.
• Brute-Force Target Assessment: During authorized pentests, locate WordPress login endpoints to test password policies and lockout mechanisms.
• CMS Inventory: Discover all WordPress installations across an organization's web properties for centralized security management.

1. Run the dork in Google to find indexed WordPress login pages.
2. Check if the login page has protections like CAPTCHA, rate limiting, or two-factor authentication.
3. Identify the WordPress version from the page source or meta tags.
4. Recommend hiding the login URL, adding fail2ban, and enabling two-factor authentication.

TAGS