Dorks


Topic
Date
Credit

High
Wordpress gallery-bank Plugin Upload Vulnerability
Dork: inurl:"/wp-content/plugins/gallery-bank/" "upload.php"

27.10.2014

Mohit Amn

High
WordPress HT-Poi Plugin Remote File Upload (RFU)
Dork: inurl:"/wp-plugins/ht-poi"

25.10.2014

Hugo Santiago do...

Med.
WordPress HTML5 and FLash PLayer Plugin SQL Injection
Dork: inurl: "Index of" +inurl:/wp-content/plugins/player/

25.10.2014

Hugo Santiago do...

High
WordPress / Joomla Creative Contact Form 0.9.7 Shell Upload
Dork: inurl:inurl:sexy-contact-form OR inurl:com_creativecontactform

24.10.2014

Gianni Angelozzi

Med.
Wonderful World-Wide CMS SQL Injection / Default Credentials
Dork: "Copyright © 2011 Wonderful World-wide All rights reserved." site:

24.10.2014

eX-Sh1Ne

High
DotNetNuke DNNspot Store (UploadifyHandler.ashx) 3.0.0 File Upload
Dork: inurl:/DesktopModules/DNNspot-Store/

23.10.2014

Glafkos Charalam...

Med.
RESTAURANT SCRIPT SQL Injection Vulnerabilty
Dork: RESTAURANT SCRIPT. ALL RIGHTS RESERVED

22.10.2014

jsass

Med.
AutoWeb v3.0 CMS SQL Injection
Dork: intitle:"AutoWeb v3.0" site:.br

21.10.2014

Hugo Santiago do...

Med.
YourMembers Blind SQL Injection
Dork: inurl:ym_download_id=

15.10.2014

Tien Tran Dinh

High
Rss aggregator 2.0 Upload Shell
Dork: inurl:"/feed-sources" & inurl:"/top-hits-items"

06.10.2014

M@rAz Ali

Low
ElfChat 5.2.0 Pro Cross Site Scripting
Dork: 2011 Elfet - ElfChat 5.2.0 Pro

05.10.2014

indoushka

Med.
Ultra Electronics SSL VPN 7.2.0.19 / 7.4.0.7 SQL Injection / Directory Creation
Dork: inurl:/preauth/login.cgi

05.10.2014

OSI

Med.
AllMyVisitors 0.5.0 SQL Injection
Dork: Copyright (c) 2004 by voice of web

03.10.2014

indoushka

Low
RBS Change Complet Open Source Cross Site Request Forgery
Dork: intext:"une réalisation rbs"

03.10.2014

KrustyHack

Med.
AllMyGuests 0.4.1 XSS / SQL Injection / Insecure Cookie Handling
Dork: powered by AllMyGuests © 2003, voice of web

30.09.2014

indoushka

Med.
Oscommerce 2.3.4 XSS / HPP / File Inclusion
Dork: Powered by osCommerce

28.09.2014

indoushka

Low
Get Simple CMS 3.3.3 Information Disclosure / XSS
Dork: 2009-2014 GetSimple CMS

28.09.2014

indoushka

Med.
CMS AutoWeb 3.0 SQL Injection
Dork: inurl:"mostrar.php?id_noticia="

25.09.2014

Felipe Andrian P...

Low
Pizza Inn Registration Stored XSS
Dork: inurl:register-exec.php

23.09.2014

Kenneth F. Belva

High
Joomla Mac Gallery <= 1.5 Arbitrary File Download
Dork: inurl:option=com_macgallery

23.09.2014

Claudio Viviani


Copyright 2015, cxsecurity.com