ABSTRACT
Web applications are among the main targets of malicious attacks. Attacks are increasing intensely on websites, especially on Web Content Management Systems (WCMS), as the currently used web applications include a number of different security vulnerabilities that have been identified and discovered in recent times. The main problem in CMSs is the exploitation of weaknesses. This work was done on web CMS, where the focus was on WordPress, Drupal and Joomal systems. The work was done by examining the some sites for each tool, and demonstrated the vulnerabilities in each website. The Zmap recorded an accuracy of 95% in detecting the vulnerabilities. Other parameters of detection were used; total number of weaknesses, total number of open ports found and average treatment time. The information obtained from this study provide the necessary need to implement and widely disseminate updates on CMS to help stop these vulnerabilities.
