Dorks List Site 22 - CXSecurity.com

	Topic	Date	Credit
Med.	Solar-Log 500 2.8.2 Password Disclosure Dork: In Shodan search engine, the filter is ""Server: IPC@CHIP""	11.06.2021	Luca.Chiou
Low	Ekattor Student Assignment php script-Stored XSS Dork: " By Creativeitem"	09.06.2021	Mostafa Farzaneh
Med.	Wordpress Plugin wpDiscuz 7.0.4 - Arbitrary File Upload (Unauthenticated) Dork: inurl:/wp-content/plugins/wpdiscuz/	07.06.2021	UnD3sc0n0c1d0
Med.	Powered By SelongWeb.com - SQL INJECTION Dork: inurl:/statis- "SelongWeb.Com"	06.06.2021	KimiHmei7
Med.	Synotec Holdings Sql Injection Vulnerability Dork: "Website By : Synotec Holdings (Pvt.) Ltd."	02.06.2021	siamak meshkooty
Med.	Designed by 360degreeinfo Sql Injection Vulnerability Dork: "Designed by 360degreeinfo"	23.05.2021	behrouz mansoori
Low	SiteLab Belediye V6 No-Redirect Dork: inurl:/sayfa/baskanin-ozgecmisi.html	20.05.2021	Xale
Low	Listeo WordPress Theme <= 1.6.10 - Multiple Authenticated IDOR Vulnerabilities Dork: inurl:/wp-content/themes/listeo/	17.05.2021	m0ze
Low	GiveWP WordPress Plugin <= 2.10.3 - Authenticated Persistent XSS Dork: inurl:/wp-content/plugins/give/	17.05.2021	m0ze
Low	Bello WordPress Theme <= 1.5.9 - Authenticated XFS Dork: inurl:/wp-content/themes/bello/	17.05.2021	m0ze
Low	Bello WordPress Theme <= 1.5.9 - Unauthenticated Blind SQL Injection Dork: inurl:/wp-content/themes/bello/	17.05.2021	m0ze
Low	GA Google Analytics WordPress Plugin <= 20210211 - Multiple Authenticated Persistent XSS Dork: inurl:/wp-content/plugins/ga-google-analytics/	17.05.2021	m0ze
Low	Goto WordPress Theme 2.0 - Unauthenticated Blind SQL Injection Dork: inurl:/wp-content/themes/goto/	17.05.2021	m0ze
Low	Mediumish WordPress Theme <= 1.0.47 - Unauthenticated Reflected XSS & XFS Dork: inurl:/wp-content/themes/mediumish/	17.05.2021	m0ze
Low	Listeo WordPress Theme <= 1.6.10 - Multiple XSS & XFS vulnerabilities Dork: inurl:/wp-content/themes/listeo/	17.05.2021	m0ze
Low	Bello WordPress Theme <= 1.5.9 - Unauthenticated Reflected XSS & XFS Dork: inurl:/wp-content/themes/bello/	17.05.2021	m0ze
Low	WP-DB-Backup WordPress Plugin <= 2.3.3 - Authenticated Persistent XSS Dork: inurl:/wp-content/plugins/wp-db-backup/	17.05.2021	m0ze
Low	Chevereto 3.17.1 Cross Site Scripting Dork: "powered by chevereto"	13.05.2021	Akiner Kisa
Med.	ENERGY CORPORATION Sql Injection Vulnerability Dork: "Powered By ENERGY CORPORATION"	10.05.2021	behrouz mansoori
Med.	OpenNetAdmin 8.5.14 <= 18.1.1 - Remote Command Execution Dork: inurl:/ona/	07.05.2021	Alexandre Zanni

Med.

Solar-Log 500 2.8.2 Password Disclosure

Dork: In Shodan search engine, the filter is ""Server: IPC@CHIP""

11.06.2021

Low

Ekattor Student Assignment php script-Stored XSS

Dork: " By Creativeitem"

09.06.2021

Med.

Wordpress Plugin wpDiscuz 7.0.4 - Arbitrary File Upload (Unauthenticated)

Dork: inurl:/wp-content/plugins/wpdiscuz/

07.06.2021

Med.

Powered By SelongWeb.com - SQL INJECTION

Dork: inurl:/statis- "SelongWeb.Com"

06.06.2021

Med.

Synotec Holdings Sql Injection Vulnerability

Dork: "Website By : Synotec Holdings (Pvt.) Ltd."

02.06.2021

Med.

Designed by 360degreeinfo Sql Injection Vulnerability

Dork: "Designed by 360degreeinfo"

23.05.2021

Low

SiteLab Belediye V6 No-Redirect

Dork: inurl:/sayfa/baskanin-ozgecmisi.html

20.05.2021

Low

Listeo WordPress Theme <= 1.6.10 - Multiple Authenticated IDOR Vulnerabilities

Dork: inurl:/wp-content/themes/listeo/

17.05.2021

Low

GiveWP WordPress Plugin <= 2.10.3 - Authenticated Persistent XSS

Dork: inurl:/wp-content/plugins/give/

17.05.2021

Low

Bello WordPress Theme <= 1.5.9 - Authenticated XFS

Dork: inurl:/wp-content/themes/bello/

17.05.2021

Low

Bello WordPress Theme <= 1.5.9 - Unauthenticated Blind SQL Injection

Dork: inurl:/wp-content/themes/bello/

17.05.2021

Low

GA Google Analytics WordPress Plugin <= 20210211 - Multiple Authenticated Persistent XSS

Dork: inurl:/wp-content/plugins/ga-google-analytics/

17.05.2021

Low

Goto WordPress Theme 2.0 - Unauthenticated Blind SQL Injection

Dork: inurl:/wp-content/themes/goto/

17.05.2021

Low

Mediumish WordPress Theme <= 1.0.47 - Unauthenticated Reflected XSS & XFS

Dork: inurl:/wp-content/themes/mediumish/

17.05.2021

Low

Listeo WordPress Theme <= 1.6.10 - Multiple XSS & XFS vulnerabilities

Dork: inurl:/wp-content/themes/listeo/

17.05.2021

Low

Bello WordPress Theme <= 1.5.9 - Unauthenticated Reflected XSS & XFS

Dork: inurl:/wp-content/themes/bello/

17.05.2021

Low

WP-DB-Backup WordPress Plugin <= 2.3.3 - Authenticated Persistent XSS

Dork: inurl:/wp-content/plugins/wp-db-backup/

17.05.2021

Low

Chevereto 3.17.1 Cross Site Scripting

Dork: "powered by chevereto"

13.05.2021

Med.

ENERGY CORPORATION Sql Injection Vulnerability

Dork: "Powered By ENERGY CORPORATION"

10.05.2021

Med.

OpenNetAdmin 8.5.14 <= 18.1.1 - Remote Command Execution

Dork: inurl:/ona/

07.05.2021