Changeset 630


Ignore:
Timestamp:
02/15/2011 08:19:41 PM (2 years ago)
Author:
sullo
Message:

Fix potential bug in version matching.
Test updates.
Don't ask to send blank updates to cirt.net

Location:
trunk
Files:
5 edited

Legend:

Unmodified
Added
Removed

  • trunk/docs/CHANGES.txt

    r624 r630  
    2828                reporting & testing. 
    2929        - Fix a potential div by zero error 
     30        - Fix a potential for false positives or negatives with version matches 
    3031        - Various cleanups in nikto_report_xml.plugin and nikto_report_html.plugin 
    3132        - Not all udb* files were loaded properly 

  • trunk/plugins/db_outdated

    r625 r630  
    607607"600593","OpenPKG/","2.5","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER)" 
    608608"600594","OpenSA/","1.0.4","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER)" 
    609 "600595","OpenSSL/","1.0.0","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER) (may depend on server version)" 
     609"600595","OpenSSL/","1.0.0d","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER). OpenSSL 0.9.8r is also current." 
    610610"600596","oplweb/","1.0","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER)" 
    611611"600597","Oracle HTTP Server Powered by Apache/","1.3.22","@RUNNING_VER appears to be outdated (current is at least @CURRENT_VER)" 

  • trunk/plugins/db_tests

    r629 r630  
    816816"000796","2669","4","/search.php?zoom_query=<script>alert(\"hello\")</script>","GET","<script>alert\(\"hello\"\)<\/script>","","","","","Wrensoft Zoom Search Engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    817817"000797","2322","4","/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","","" 
    818 "000798","50551","4","/search.php?searchfor=\"><script>alert('Vulnerable');</script>","GET","alert\('Vulnerable'\)","","","","","Siteframe 2.2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
     818"000798","50551","4","/search.php?searchfor=\"><script>alert(1776)</script>","GET","<script>alert\(1776\)<\/script>","","","","","Siteframe 2.2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    819819"000799","0","4","/search.asp?term=<%00script>alert('Vulnerable')</script>","GET","alert\('Vulnerable'\)<\/script>","","","","","ASP.Net 1.1 may allow Cross Site Scripting (XSS) in error pages (only some browsers will render this). CA-2000-02.","","" 
    820820"000800","0","4","/script>alert('Vulnerable')</script>.cfm","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Macromedia's ColdFusion MX server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Patch or upgrade to a newer version, or change the default 404 document. http://www.macromedia.com/v1/handlers/index.cfm?ID=23047","","" 
     
    836836"000816","32774","4","/phpinfo.php?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","","" 
    837837"000817","32774","4","/phpinfo.php3?VARIABLE=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","Contains PHP configuration information and is vulnerable to Cross Site Scripting (XSS).","","" 
    838 "000818","27071","4","/phpimageview.php?pic=javascript:alert('Vulnerable')","GET","alert\('Vulnerable'\)","","","","","PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS).  CA-2000-02."," ","" 
     838"000818","27071","4","/phpimageview.php?pic=javascript:alert(8754)","GET","alert\(8754\)","","","","","PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS).  CA-2000-02."," ","" 
    839839"000819","0","4","/phpclassifieds/latestwap.php?url=<script>alert('Vulnerable');</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","PHP Classifieds 6.05 from http://www.deltascripts.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    840840"000820","2193","4","/phpBB/viewtopic.php?topic_id=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","phpBB is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 
     
    870870"000850","0","4","/modules.php?op=modload&name=Members_List&file=index&letter=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This install of PHP-Nuke's modules.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    871871"000851","0","4","/modules.php?op=modload&name=Guestbook&file=index&entry=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The PHP-Nuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    872 "000852","0","4","/modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(document.cookie);%3E&parent_id=0","GET","javascript:alert\(document\.cookie\)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
     872"000852","0","4","/modules.php?op=modload&name=FAQ&file=index&myfaq=yes&id_cat=1&categories=%3Cimg%20src=javascript:alert(9456);%3E&parent_id=0","GET","javascript:alert\(9456\)","","","","","Post Nuke 0.7.2.3-Phoenix is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    873873"000853","20235","4","/modules.php?op=modload&name=DMOZGateway&file=index&topic=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","The DMOZGateway (PHP-Nuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    874874"000854","5506","4","/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script|","GET","<script>alert\(document\.cookie\)","","","","","PostNuke CMS is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
     
    905905"000886","2322","4","/gallery/search.php?searchstring=<script>alert(document.cookie)</script>","GET","<script>alert\(document\.cookie\)<\/script>","","","","","Gallery 1.3.4 and below is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. BID-8288.","","" 
    906906"000887","20234","4","/friend.php?op=SiteSent&fname=<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","This version of PHP-Nuke's friend.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02.","","" 
    907 "000888","2946","4","/forum_members.asp?find=%22;}alert('Vulnerable');function%20x(){v%20=%22","GET","alert\('Vulnerable'\)","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
     907"000888","2946","4","/forum_members.asp?find=%22;}alert(9823);function%20x(){v%20=%22","GET","alert\(9823\)","","","","","Web Wiz Forums ver. 7.01 and below is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    908908"000889","2739","4","/forums/index.php?top_message=&lt;script&gt;alert(document.cookie)&lt;/script&gt; ","GET","<script>alert\(document\.cookie\)<script>","","","","","Led-Forums allows any user to change the welcome message, and it is vulnerable to Cross Site Scripting (XSS). CA-2000-02.","","" 
    909909"000890","31694","4","/forums/index.php?board=;action=login2&user=USERNAME&cookielength=120&passwrd=PASSWORD<script>alert('Vulnerable')</script>","GET","<script>alert\('Vulnerable'\)<\/script>","","","","","YaBB is vulnerable to Cross Site Scripting (XSS) in the password field of the login page. CA-2000-02.","","" 

  • trunk/plugins/nikto_core.plugin

    r626 r630  
    23962396                elsif ($component eq "(Win32)")        { next; } 
    23972397                elsif ($component eq "Linux-Mandrake") { next; } 
     2398                elsif ($component eq "")               { next; } 
    23982399                $have_updates = 1; 
    2399                 $updated_version .= "$ver "; 
     2400                $updated_version .= "$component "; 
    24002401            } 
    24012402        } 

  • trunk/plugins/nikto_outdated.plugin

    r626 r630  
    145145           "d"); 
    146146 
    147     if (($CURRENT_ORIG !~ /[a-z]/) && ($RUNNING_ORIG !~ /[a-z]/)) { 
     147    if (($CURRENT !~ /[a-z]/) && ($RUNNING !~ /[a-z]/)) { 
    148148        @CUR = split(/\./, $CURRENT); 
    149149        @RUN = split(/\./, $RUNNING); 
Note: See TracChangeset for help on using the changeset viewer.