We have an N-Central appliance which is some Linux distribution with the software engineered into it. This appliance is detected to host Wordpress:
Detection Result
The host carries the product: cpe:/a:wordpress:wordpress
It is vulnerable according to: CVE-2007-2627.
The product was found at: /.
We have contacted the vendor but their reply is that it does not contain Wordpress. How can we troubleshoot the detection, on what base does it thinks it hosts Wordpress?