# freewvs
A local web vulnerability scanner.
freewvs is a tool to search webroots for know vulnerable versions of web applications.
## install
Install
You can install [freewvs via pip](https://pypi.org/project/freewvs/):
```
pip install freewvs
```
Alternatively you can run freewvs directly from the git source.
If you install via pip you need to update the freewvs database first:
```
update-freewvsdb
```
## usage
Just run freewvs with a path, e.g.:
```
freewvs /var/www
```
The output will be something like this:
```
Joomla 3.9.11 (3.9.14) CVE-2019-19846 /var/www/example.org
nextcloud 14.0.1 (14.0.5) CVE-2019-5449 /var/www/cloud.example.org
MediaWiki 1.31.1 (1.31.6) CVE-2019-19709 /var/www/wiki.example.org
```
## faq
#### What does freewvs do?
It scans your webroot for known vulnerable versions of popular web applications.
#### What does the output tell me?
Output looks like this:
```
Joomla-3 3.9.11 (3.9.13) CVE-2019-18674 /home/joe/websites/joessite/
```
This says that in /home/joe/websites/joessite/, there's a Joomla installation of version 3.9.11. This version is
vulnerable to CVE-2019-18674 and you should update to version 3.9.13.
#### CVE-2019-XXXX seems to be very minor, at least it doesn't affect me. Am I safe?
No, as freewvs only checks for the latest vulnerabilities. There may be other vulnerabilities in your version not listed by freewvs. The only way to be sure is to check the upstream changelog.
#### There is no version inside the brackets, what does that mean?
It means your web application has not released a security update. Often this means the software is no longer developed.
## contributions
See [CONTRIBUTIONS.md](CONTRIBUTIONS.md).
## misc
freewvs was developed by [schokokeks.org hosting](https://schokokeks.org/).
It's licensed under the 0BSD license.
[https://freewvs.schokokeks.org](https://freewvs.schokokeks.org)
Raw data
{
"_id": null,
"home_page": "https://freewvs.schokokeks.org/",
"name": "freewvs",
"maintainer": "",
"docs_url": null,
"requires_python": ">=3",
"maintainer_email": "",
"keywords": "security,vulnerability,web",
"author": "",
"author_email": "",
"download_url": "https://files.pythonhosted.org/packages/c4/e0/13f9ff6ba9e6637c763ab5eab28b4d2be66d407dbfd29be2f65b3b0c25a8/freewvs-0.1.4.tar.gz",
"platform": null,
"description": "# freewvs\n\nA local web vulnerability scanner.\n\nfreewvs is a tool to search webroots for know vulnerable versions of web applications.\n\n## install\n\nInstall\n\nYou can install [freewvs via pip](https://pypi.org/project/freewvs/):\n\n```\npip install freewvs\n```\n\nAlternatively you can run freewvs directly from the git source.\n\nIf you install via pip you need to update the freewvs database first:\n\n```\nupdate-freewvsdb\n```\n\n## usage\n\nJust run freewvs with a path, e.g.:\n\n```\nfreewvs /var/www\n```\n\nThe output will be something like this:\n\n```\nJoomla 3.9.11 (3.9.14) CVE-2019-19846 /var/www/example.org\nnextcloud 14.0.1 (14.0.5) CVE-2019-5449 /var/www/cloud.example.org\nMediaWiki 1.31.1 (1.31.6) CVE-2019-19709 /var/www/wiki.example.org\n```\n\n## faq\n\n#### What does freewvs do?\n\nIt scans your webroot for known vulnerable versions of popular web applications.\n\n#### What does the output tell me?\n\nOutput looks like this:\n\n```\nJoomla-3 3.9.11 (3.9.13) CVE-2019-18674 /home/joe/websites/joessite/\n```\n\nThis says that in /home/joe/websites/joessite/, there's a Joomla installation of version 3.9.11. This version is\nvulnerable to CVE-2019-18674 and you should update to version 3.9.13.\n\n#### CVE-2019-XXXX seems to be very minor, at least it doesn't affect me. Am I safe?\n\nNo, as freewvs only checks for the latest vulnerabilities. There may be other vulnerabilities in your version not listed by freewvs. The only way to be sure is to check the upstream changelog.\n\n#### There is no version inside the brackets, what does that mean?\n\nIt means your web application has not released a security update. Often this means the software is no longer developed.\n\n## contributions\n\nSee [CONTRIBUTIONS.md](CONTRIBUTIONS.md).\n\n## misc\n\nfreewvs was developed by [schokokeks.org hosting](https://schokokeks.org/).\n\nIt's licensed under the 0BSD license.\n\n[https://freewvs.schokokeks.org](https://freewvs.schokokeks.org)\n",
"bugtrack_url": null,
"license": "0BSD",
"summary": "A free web vulnerability scanner",
"version": "0.1.4",
"project_urls": {
"Homepage": "https://freewvs.schokokeks.org/"
},
"split_keywords": [
"security",
"vulnerability",
"web"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "13605e72c4d8899916b845b788912278e6eef34f272bbfdd843eb9da6353c24f",
"md5": "faa9e43ec141635cd4bbc96e70074392",
"sha256": "7562465ba09ae86d2da99c7140b57e557b2043a9711a88bc968f7ddca00da53d"
},
"downloads": -1,
"filename": "freewvs-0.1.4-py3-none-any.whl",
"has_sig": false,
"md5_digest": "faa9e43ec141635cd4bbc96e70074392",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": ">=3",
"size": 5589,
"upload_time": "2024-03-10T12:01:05",
"upload_time_iso_8601": "2024-03-10T12:01:05.618350Z",
"url": "https://files.pythonhosted.org/packages/13/60/5e72c4d8899916b845b788912278e6eef34f272bbfdd843eb9da6353c24f/freewvs-0.1.4-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "c4e013f9ff6ba9e6637c763ab5eab28b4d2be66d407dbfd29be2f65b3b0c25a8",
"md5": "b073a374948767363aa8aa4fdc2c5835",
"sha256": "4d7381460bafd47b9c799d32797199a4f993f74ad015519436ed16b94e34bdc5"
},
"downloads": -1,
"filename": "freewvs-0.1.4.tar.gz",
"has_sig": false,
"md5_digest": "b073a374948767363aa8aa4fdc2c5835",
"packagetype": "sdist",
"python_version": "source",
"requires_python": ">=3",
"size": 18674,
"upload_time": "2024-03-10T12:01:06",
"upload_time_iso_8601": "2024-03-10T12:01:06.946770Z",
"url": "https://files.pythonhosted.org/packages/c4/e0/13f9ff6ba9e6637c763ab5eab28b4d2be66d407dbfd29be2f65b3b0c25a8/freewvs-0.1.4.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-03-10 12:01:06",
"github": false,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"lcname": "freewvs"
}
JSON