Dorks List Site 60 - CXSecurity.com

	Topic	Date	Credit
High	FortiOS 5.6.7 / 6.0.4 Credential Disclosure Dork: intext:"Please Login" inurl:"/remote/login"	20.08.2019	Carlos E. Vieira
High	MajorDoMo 1.2 Backup Disclosure Vulnerability Dork: "admin.php?pd=&md=panel&inst=&action=users"	20.08.2019	indoushka
Low	WordPress Add Mime Types Plugin 2.2.1 Cross-Site Request Forgery Dork: inurl:”/wp-content/plugins/wp-add-mime-types”	20.08.2019	Princy Edward
Med.	Zaheb.ir \| SQL Injection Dork: intext:طراح و پشتیبان : آسان همایش (نرم افزار مدیریت همایش و کنفرانس)	17.08.2019	D3tect0r
Med.	Asanhamayesh CMS \| SQL Injection Dork: intext:طراح و پشتیبان : آسان همایش (نرم افزار مدیریت همایش و کنفرانس)	15.08.2019	D3tect0r
Low	BSI Advance Hotel Booking System 2.0 Cross Site Scripting Dork: intext:Hotel Booking System v2.0 © 2008 - 2012 Copyright Best Soft Inc	13.08.2019	Angelo Ruwantha
Med.	Joomla JS Jobs 1.2.5 SQL Injection Dork: inurl:"index.php?option=com_jsjobs"	12.08.2019	qw3rTyTy
Med.	Joomla JS Support Ticket 1.1.5 Arbitrary File Download Dork: inurl:"index.php?option=com_jssupportticket"	09.08.2019	qw3rTyTy
Med.	Joomla JS Support Ticket 1.1.5 SQL Injection Dork: inurl:"index.php?option=com_jssupportticket"	09.08.2019	qw3rTyTy
Med.	Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 SQL Injection Dork: inurl:"index.php?option=com_jssupportticket"	08.08.2019	qw3rTyTy
Med.	WordPress JoomSport 3.3 SQL Injection Dork: intext:powered by JoomSport - sport WordPress plugin	08.08.2019	Pablo Santiago
Med.	ibrowser phpthumb Command Injection Dork: "/ibrowser/scripts/"	05.08.2019	ManToed
Med.	Powered by mediatoonz. Admin Panel Bypass Dork: intext:"Powered by mediatoonz."	02.08.2019	mm BeginnerGhost...
Low	ct web design by brown bear creative XSS Vulnerability Dork: "ct web design by brown bear creative" inurl:.php?id=	01.08.2019	indoushka
High	Amcrest Cameras 2.520.AC00.18.R Unauthenticated Audio Streaming Dork: html:"@WebVersion@"	30.07.2019	Jacob Baines
Med.	yazılımı jettweb Haber V3 Auth By Pass Vulnerability Dork: "yazılımı jettweb"	30.07.2019	indoushka
Med.	Smart campus bypass login admin Dork: smart campus login site:ac.id	28.07.2019	HT45TP
Med.	Alsovalue CMS Sql Injection Vulnerability Dork: intext:"Powered by Alsovalue" inurl:/.php?id=	26.07.2019	sir shahroukh
Med.	BookingWizz v5.5 sensitive information disclosure Vulnerability Dork: "BookingWizz v5.5"	26.07.2019	indoushka
Low	Création site internet Adveris XSS Vulnerability Dork: "Création site internet : Adveris" inurl:.php?id=	26.07.2019	indoushka

High

FortiOS 5.6.7 / 6.0.4 Credential Disclosure

Dork: intext:"Please Login" inurl:"/remote/login"

20.08.2019

High

MajorDoMo 1.2 Backup Disclosure Vulnerability

Dork: "admin.php?pd=&md=panel&inst=&action=users"

20.08.2019

Low

WordPress Add Mime Types Plugin 2.2.1 Cross-Site Request Forgery

Dork: inurl:”/wp-content/plugins/wp-add-mime-types”

20.08.2019

Med.

Zaheb.ir | SQL Injection

Dork: intext:طراح و پشتیبان : آسان همایش (نرم افزار مدیریت همایش و کنفرانس)

17.08.2019

Med.

Asanhamayesh CMS | SQL Injection

Dork: intext:طراح و پشتیبان : آسان همایش (نرم افزار مدیریت همایش و کنفرانس)

15.08.2019

Low

BSI Advance Hotel Booking System 2.0 Cross Site Scripting

Dork: intext:Hotel Booking System v2.0 © 2008 - 2012 Copyright Best Soft Inc

13.08.2019

Med.

Joomla JS Jobs 1.2.5 SQL Injection

Dork: inurl:"index.php?option=com_jsjobs"

12.08.2019

Med.

Joomla JS Support Ticket 1.1.5 Arbitrary File Download

Dork: inurl:"index.php?option=com_jssupportticket"

09.08.2019

Med.

Joomla JS Support Ticket 1.1.5 SQL Injection

Dork: inurl:"index.php?option=com_jssupportticket"

09.08.2019

Med.

Joomla! Component JS Support Ticket (component com_jssupportticket) 1.1.5 SQL Injection

Dork: inurl:"index.php?option=com_jssupportticket"

08.08.2019

Med.

WordPress JoomSport 3.3 SQL Injection

Dork: intext:powered by JoomSport - sport WordPress plugin

08.08.2019

Med.

ibrowser phpthumb Command Injection

Dork: "/ibrowser/scripts/"

05.08.2019

Med.

Powered by mediatoonz. Admin Panel Bypass

Dork: intext:"Powered by mediatoonz."

02.08.2019

Low

ct web design by brown bear creative XSS Vulnerability

Dork: "ct web design by brown bear creative" inurl:.php?id=

01.08.2019

High

Amcrest Cameras 2.520.AC00.18.R Unauthenticated Audio Streaming

Dork: html:"@WebVersion@"

30.07.2019

Med.

yazılımı jettweb Haber V3 Auth By Pass Vulnerability

Dork: "yazılımı jettweb"

30.07.2019

Med.

Smart campus bypass login admin

Dork: smart campus login site:ac.id

28.07.2019

Med.

Alsovalue CMS Sql Injection Vulnerability

Dork: intext:"Powered by Alsovalue" inurl:/.php?id=

26.07.2019

Med.

BookingWizz v5.5 sensitive information disclosure Vulnerability

Dork: "BookingWizz v5.5"

26.07.2019

Low

Création site internet Adveris XSS Vulnerability

Dork: "Création site internet : Adveris" inurl:.php?id=

26.07.2019