# BRH.HT - WP REST API Data Dump Summary

**Site**: https://www.brh.ht (Banque de la Republique d'Haiti - Central Bank)
**Date**: 2026-03-04
**Description**: "Banque de la Republique D'Haiti"
**CMS**: WordPress with Yoast SEO, Jetpack, ACF (Advanced Custom Fields)
**CDN**: Jetpack Photon (i0.wp.com image proxy)

---

## API Exposure Status

| Endpoint | Status | Count |
|----------|--------|-------|
| Posts | OPEN | 502 (6 pages) |
| Pages | OPEN | 297 (3 pages) |
| Media | OPEN | 2,095 (21 pages) |
| Categories | OPEN | 15 |
| Tags | OPEN | 0 |
| Users | OPEN | 3 |
| Comments | OPEN | 0 |
| Types | OPEN | exposed |
| Taxonomies | OPEN | exposed |
| Statuses | OPEN | exposed |
| Jetpack Connection | OPEN | connection info exposed |
| Jetpack Modules | 401 (auth required) | N/A |

---

## Users Enumerated (3 total)

| ID | Name | Slug | Gravatar Hash |
|----|------|------|---------------|
| 3 | Ralph Joseph Noel | rnoel | d3017c12ec3a54ca1d061daf1b4af88a388bceec0f446aaa60b4ecb4807f42a5 |
| 6 | Amos Sejour | asejour | 8ba065897a93268269014243b7d5a96170b35749d11ae86d11a3eb1c12415ebd |
| 20 | James De Koven Pierre | de-koven | a8405a04f8712c0e72179415aebbd52909f03a1ce158f413e34e17275c697c84 |

**Note**: User records include ACF (Advanced Custom Fields) empty objects, Yoast SEO metadata with full schema.org JSON-LD, and Jetpack donation warning fields.

---

## Installed Plugins Identified (via API namespaces)

| Plugin | Namespace | Notes |
|--------|-----------|-------|
| **Yoast SEO** | yoast/v1 | v27.0, generates sitemap_index.xml |
| **Jetpack** | jetpack/v4, wpcom/v2, wpcom/v3 | Full suite active |
| **Jetpack Boost** | jetpack-boost/v1, jetpack-boost-ds | Performance optimization |
| **Jetpack Protect** | jetpack-protect/v1 | Security scanning |
| **Akismet** | akismet/v1 | Anti-spam |
| **Tweet Old Post** | tweet-old-post/v8 | Auto social sharing |
| **Smart Slider 3** | smart-slider-3/v1 | Slider plugin |
| **ACF** | (via user meta acf field) | Advanced Custom Fields |
| **My Jetpack** | my-jetpack/v1 | Jetpack management |

---

## Jetpack Connection Status (Publicly Exposed)

```json
{
  "isActive": true,
  "isStaging": false,
  "isRegistered": true,
  "isUserConnected": false,
  "hasConnectedOwner": true,
  "offlineMode": { "isActive": false },
  "isPublic": true
}
```

This confirms the site is a live production instance connected to WordPress.com via Jetpack.

---

## robots.txt Analysis

```
# Yoast BLOCK
Disallow: /wp-admin/
Allow: /wp-admin/admin-ajax.php
Sitemap: https://www.brh.ht/sitemap_index.xml

# HIDDEN PATHS LEAKED
Disallow: /utilities/xyz/1029384756/PressConference/
Disallow: /migration/
```

### Hidden Path Investigation

| Path | Status | Result |
|------|--------|--------|
| /utilities/xyz/1029384756/PressConference/ | 404 | Custom BRH-branded 404 page (content removed or never existed) |
| /migration/ | 403 | Forbidden - path EXISTS but access denied |
| /wp-content/ | 200 | Empty response (no directory listing) |
| /wp-content/uploads/ | 403 | Bluehost default 403 page (directory listing disabled) |

**The /migration/ path returning 403 indicates it exists on the server** -- likely contains migration tools or data from a previous CMS/hosting migration.

---

## Yoast Sitemap Structure (sitemap_index.xml)

| Sitemap | Last Modified |
|---------|---------------|
| post-sitemap.xml | 2026-02-17 |
| page-sitemap.xml | 2026-02-27 |
| category-sitemap.xml | 2026-02-17 |
| author-sitemap.xml | 2024-01-03 |

---

## Content Analysis

### Categories (15 total)
Collected in categories.json - 64 KB of category data with full Yoast SEO metadata.

### Posts (502 total)
6 pages of post data - contains central bank communications, policy updates, press releases.
Posts include full HTML content, Yoast metadata, and author information.

### Pages (297 total)
3 pages of page data - extensive institutional pages including financial reports, regulatory information.

### Media (2,095 items)
21 pages of media metadata - includes URLs to all uploaded files (PDFs, images, documents).
Media served through Jetpack Photon CDN (i0.wp.com).

---

## Hosting Details

- **Error pages**: Bluehost-branded 403 error pages detected (/wp-content/uploads/)
- **Server**: Bluehost shared hosting (same as Primature)
- **CDN**: Jetpack Photon for image optimization
- **Custom theme**: `brh` (referenced in 404 page assets: /wp-content/themes/brh/)
- **Custom 404**: Branded 404 page at /utilities/xyz/1029384756/PressConference/

---

## Files Collected

| File | Size | Description |
|------|------|-------------|
| api-root.json | 475 KB | Full API schema |
| posts-page[1-6].json | ~8.1 MB total | All 502 posts |
| pages-page[1-3].json | ~4.1 MB total | All 297 pages |
| media-page[1-21].json | ~5.7 MB total | All 2,095 media items |
| categories.json | 63 KB | 15 categories |
| tags.json | 2 B | Empty |
| users.json | 23 KB | 3 users with full Yoast metadata |
| comments.json | 2 B | Empty |
| types.json | 15 KB | Post types |
| taxonomies.json | 1.6 KB | Taxonomy definitions |
| statuses.json | 392 B | Post statuses |
| jetpack-connection.json | - | Jetpack connection status |
| jetpack-modules.json | - | 401 response (auth required) |
| robots.txt | 412 B | Reveals hidden paths |
| wp-sitemap.xml | 755 B | WP core sitemap (redirects) |
| sitemap_index.xml | - | Yoast sitemap index |
| post-sitemap.xml | 97 KB | All post URLs |
| page-sitemap.xml | 109 KB | All page URLs |
| author-sitemap.xml | - | Author archive URLs |
| press-conference.html | 3.3 KB | 404 page at hidden path |
| migration.html | 17 KB | 403 page at /migration/ |
| wp-content-listing.html | 0 B | Empty (no listing) |
| wp-content-uploads-listing.html | 17 KB | Bluehost 403 page |

**Total dump size**: ~19 MB, 50 files

---

## Key Security Findings

1. **Full WP REST API open** - all standard endpoints exposed without auth
2. **3 user accounts enumerated** with full names and slugs (brute-force target)
3. **robots.txt leaks hidden paths** - /migration/ (403, exists), /utilities/xyz/1029384756/PressConference/ (404)
4. **Jetpack connection status publicly exposed** - confirms live production
5. **2,095 media items** with full URLs to uploaded documents (potential sensitive financial docs)
6. **Bluehost shared hosting** - same vendor as Primature (potential shared-hosting attacks)
7. **Custom theme 'brh'** identified - potential for theme-specific vulnerabilities
8. **Yoast SEO v27.0** - check for known CVEs