WordPress XML-RPC Enabled Sites

Find WordPress sites with XML-RPC enabled, potentially vulnerable to brute force attacks

Beginner Friendly
Use with caution
vulnerability

Google Dork Query:

inurl:/xmlrpc.php site:*.com
0
Not verified

What It Does

This Google dork helps you find wordpress sites with xml-rpc enabled, potentially vulnerable to brute force attacks. It uses advanced search operators to filter results and find specific types of information that might not appear in regular searches.

Common Use Cases

  • Security Research: Identify potential vulnerabilities and misconfigurations in authorized systems
  • OSINT Investigations: Gather publicly available information for research and analysis
  • Bug Bounty Hunting: Discover exposed endpoints and sensitive data in scope targets
  • SEO & Research: Find indexed pages, backlinks, and competitive intelligence

How to Use Safely

  1. Click the "Copy Query" button above
  2. Navigate to google.com in a new tab
  3. Paste the query into Google's search box
  4. Review results carefully - Only interact with authorized systems
  5. Always obtain authorization before security testing

Responsible Use Required

This dork should only be used on systems you own or have explicit authorization to test. Unauthorized access to computer systems is illegal. Always follow ethical guidelines and obtain proper permission before testing.

TAGS

wordpress
xmlrpc
bruteforce

Related Dorks

Admin Login Panels

Discover administrative login pages for various CMS and web applications.

phpMyAdmin Panels

Locate exposed phpMyAdmin database administration interfaces.

WordPress User Enumeration

Find WordPress sites vulnerable to user enumeration attacks.