In many WordPress blogs, it's possible to enumerate WordPress users using a well-known feature/bug related to author archives. This works if the following conditions are met:
WordPress permalinks are enabled. By default WordPress uses web URLs which have question marks and lots of numbers in them; however, WordPress offers the ability to create a custom URL structure for your permalinks and archives. Many blogs use this feature.
The user has to write at least one post in order to be listed.
How does it work?
more here..........http://www.acunetix.com/blog/web-security-zone/wordpress-username-enumeration-using-http-fuzzer/
WordPress permalinks are enabled. By default WordPress uses web URLs which have question marks and lots of numbers in them; however, WordPress offers the ability to create a custom URL structure for your permalinks and archives. Many blogs use this feature.
The user has to write at least one post in order to be listed.
How does it work?
more here..........http://www.acunetix.com/blog/web-security-zone/wordpress-username-enumeration-using-http-fuzzer/