Dorks List Site 18 - CXSecurity.com

	Topic	Date	Credit
High	WordPress MStore API 2.0.6 Shell Upload Dork: inurl:/wp-content/plugins/mstore-api/	06.10.2021	spacehen
High	Tapatalk Plugins PHP Object Injection Dork: inurl: mobiquo/mobiquo.php	06.10.2021	dH team
High	Open Game Panel Remote Code Execution Dork: intext:"Open Game Panel 2021"	05.10.2021	prey
Med.	krishna Tech - Sql Injection Vulnerability Dork: "Powered by krishna Tech"	03.10.2021	behrouz mansoori
Med.	Shodh Technologies - Sql Injection Vulnerability Dork: "Powered by Shodh Technologies®"	03.10.2021	behrouz mansoori
Low	WordPress JS Jobs Manager 1.1.7 Authorization Bypass Dork: inurl:/wp-content/plugins/js-jobs/	02.10.2021	spacehen
Med.	Zircon Web Desig - Sql Injection Vulnerability Dork: "Website Design and Hosted by Zircon Web Design"	27.09.2021	behrouz mansoori
Med.	Zircon Web Desig - Blind Sql Injection Vulnerability Dork: "Website Design and Hosted by Zircon Web Design"	27.09.2021	behrouz mansoori
Med.	BitraNet Cms Sql injection Dork: Designed by BitraNet	23.09.2021	EbRaHiM-GHiaSi
High	WordPress 3DPrint Lite 1.9.1.4 Shell Upload Dork: inurl:/wp-content/plugins/3dprint-lite/	23.09.2021	spacehen
Med.	WP Google Maps Plugin < 8.1.13 - Authenticated Persistent XSS Dork: inurl:/wp-content/plugins/wp-google-maps/	20.09.2021	Visse
Med.	WP Google Maps PRO Add-on Plugin < 8.1.12 - Authenticated Persistent XSS Dork: inurl:/wp-content/plugins/wp-google-maps-pro/	20.09.2021	Visse
Med.	Digital Nomad Studi - Sql Injection Vulnerability Dork: "Designed & Powered by Digital Nomad Studio"	20.09.2021	behrouz mansoori
Med.	Developed By Next Come To Us - Sql Injection Vulnerability Dork: "Developed By Next Come To Us"	20.09.2021	behrouz mansoori
Med.	Merit Designs- Sql Injection Vulnerability Dork: "Desarrollado por Merit Designs"	19.09.2021	behrouz mansoori
Med.	Takmeel Global - Blind Sql Injection Vulnerability Dork: "by Takmeel Global"	19.09.2021	behrouz mansoori
Med.	DigiHost Web Services - Sql Injection Vulnerability Dork: "Powered By: DigiHost Web Services"	19.09.2021	behrouz mansoori
High	WordPress Download From Files 1.48 Shell Upload Dork: inurl:/wp-content/plugins/download-from-files	18.09.2021	spacehen
Low	WordPress Themes Haberadam IDOR and Full Path Disclosure via JSON API ( Unathenticated ) Dork: inurl:/wp-content/themes/haberadam	13.09.2021	KimiHmei7
Med.	Ficus Global - Sql Injection Vulnerability Dork: Designed & Maintained by Ficus Global"	11.09.2021	behrouz mansoori

High

WordPress MStore API 2.0.6 Shell Upload

Dork: inurl:/wp-content/plugins/mstore-api/

06.10.2021

High

Tapatalk Plugins PHP Object Injection

Dork: inurl: mobiquo/mobiquo.php

06.10.2021

High

Open Game Panel Remote Code Execution

Dork: intext:"Open Game Panel 2021"

05.10.2021

Med.

krishna Tech - Sql Injection Vulnerability

Dork: "Powered by krishna Tech"

03.10.2021

Med.

Shodh Technologies - Sql Injection Vulnerability

Dork: "Powered by Shodh Technologies®"

03.10.2021

Low

WordPress JS Jobs Manager 1.1.7 Authorization Bypass

Dork: inurl:/wp-content/plugins/js-jobs/

02.10.2021

Med.

Zircon Web Desig - Sql Injection Vulnerability

Dork: "Website Design and Hosted by Zircon Web Design"

27.09.2021

Med.

Zircon Web Desig - Blind Sql Injection Vulnerability

Dork: "Website Design and Hosted by Zircon Web Design"

27.09.2021

Med.

BitraNet Cms Sql injection

Dork: Designed by BitraNet

23.09.2021

High

WordPress 3DPrint Lite 1.9.1.4 Shell Upload

Dork: inurl:/wp-content/plugins/3dprint-lite/

23.09.2021

Med.

WP Google Maps Plugin < 8.1.13 - Authenticated Persistent XSS

Dork: inurl:/wp-content/plugins/wp-google-maps/

20.09.2021

Med.

WP Google Maps PRO Add-on Plugin < 8.1.12 - Authenticated Persistent XSS

Dork: inurl:/wp-content/plugins/wp-google-maps-pro/

20.09.2021

Med.

Digital Nomad Studi - Sql Injection Vulnerability

Dork: "Designed & Powered by Digital Nomad Studio"

20.09.2021

Med.

Developed By Next Come To Us - Sql Injection Vulnerability

Dork: "Developed By Next Come To Us"

20.09.2021

Med.

Merit Designs- Sql Injection Vulnerability

Dork: "Desarrollado por Merit Designs"

19.09.2021

Med.

Takmeel Global - Blind Sql Injection Vulnerability

Dork: "by Takmeel Global"

19.09.2021

Med.

DigiHost Web Services - Sql Injection Vulnerability

Dork: "Powered By: DigiHost Web Services"

19.09.2021

High

WordPress Download From Files 1.48 Shell Upload

Dork: inurl:/wp-content/plugins/download-from-files

18.09.2021

Low

WordPress Themes Haberadam IDOR and Full Path Disclosure via JSON API ( Unathenticated )

Dork: inurl:/wp-content/themes/haberadam

13.09.2021

Med.

Ficus Global - Sql Injection Vulnerability

Dork: Designed & Maintained by Ficus Global"

11.09.2021