Dorks List - CXSecurity.com

	Topic	Date	Credit
Low	HFS (HTTP File Server) 2.3.x Remote Code Execution Dork: intext:"httpfileserver 2.3"	24.02.2021	Pergyz
Med.	Myonlieexam Admin Panel Bypass Dork: inurl:myonlieexam/adminpanel/admin	24.02.2021	Team-Venom
Med.	WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code Dork: inurl:wp-content/plugins/super-forms	24.02.2021	Team-Venom
Low	Webkrea Cross Site Scripting (XSS) Dork: intext:"Powered by : Webkrea"	17.02.2021	Calvin Bruce
Med.	Developed By : Websoft Creation,Kota Vulnerability Bypass Admin Dork: intext:"Developed By : Websoft Creation,Kota"	17.02.2021	Baku Hantam Crew
Med.	CHEditor CMS CSRF Vulnerability Leading to Shell Upload ( RCE ) + Bypass Image Validation Dork: inurl:/cheditor/imageUpload/ "index of" intext:upload.php	14.02.2021	Bloos3rpent
High	SW3 Solutions CMS Shell Upload thru weak default admin credentials Dork: intext: "Website Design & Developed by SW3 Solutions"	12.02.2021	Bloos3rpent
Med.	DNNSmart_SuperContent Arbitrary File Upload (csrf) Dork: inurl:desktopmodules/DNNSmart_SuperContent/AjaxHandler/FileUploadHandler.ashx	12.02.2021	Team Venom
Med.	AXIS Camera View {CCTV} Exploit version 4.11 4.03 4.05 Dork: intitle:"Live View AXIS"	11.02.2021	Team-Venom
Med.	gemsbschoolcms - Admin Panel Bypass Dork: inurl: gemsbschoolcms	09.02.2021	Team-Venom
Med.	Designed & Developed by SNT Infotech Pvt Ltd - Sql Injection Dork: intext:"Designed & Developed by SNT Infotech Pvt Ltd"	09.02.2021	YangMangChun
Med.	Designed by sirigroup Vulnerability Bypass Admin Login Dork: intext:"Designed by sirigroup"	07.02.2021	Baku Hantam Crew
Med.	MANAGE BY TLJ TECHNOLAB - Admin Panel Bypass Dork: Google Dork:intext:"Designed By : TLJ Technolab"	07.02.2021	YangMangChun
Med.	Designed & Developed by ENS Sql Injection Vulnerability Dork: "Designed & Developed by ENS"	07.02.2021	behrouz mansoori
Med.	CMS E-Belajar Default Password Dork: "Copyright 2020 © e-belajar, All Rights Reserved."	07.02.2021	KimiHmei7
Med.	Powered By iWebsoul - SQL Injection Dork: intext:"Powered By: iWebsoul"	06.02.2021	YangMangChun
Med.	Custom CMS Jogjasite - SQL-Injection Vulnerability Dork: intext:"By jogjasite.com"	06.02.2021	Gh05t666nero
Med.	powered by iPOT Technologies sql Injection Dork: intext:"powered by iPOT Technologies " & inurl:/.php?id=	04.02.2021	Much
Med.	ADDEALINDIA Vulnerabelity Bypass Login Admin Dork: intext:"Developed by ADDEALINDIA" site:	04.02.2021	Div007 A.K.a Rad...
Med.	Ruang Edukasi - Admin Weak Password Dork: Intext:"Ruang Edukasi" site:	03.02.2021	Div007 A.K.a Rad...

Low

HFS (HTTP File Server) 2.3.x Remote Code Execution

Dork: intext:"httpfileserver 2.3"

24.02.2021

Med.

Myonlieexam Admin Panel Bypass

Dork: inurl:myonlieexam/adminpanel/admin

24.02.2021

Med.

WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code

Dork: inurl:wp-content/plugins/super-forms

24.02.2021

Low

Webkrea Cross Site Scripting (XSS)

Dork: intext:"Powered by : Webkrea"

17.02.2021

Med.

Developed By : Websoft Creation,Kota Vulnerability Bypass Admin

Dork: intext:"Developed By : Websoft Creation,Kota"

17.02.2021

Med.

CHEditor CMS CSRF Vulnerability Leading to Shell Upload ( RCE ) + Bypass Image Validation

Dork: inurl:/cheditor/imageUpload/ "index of" intext:upload.php

14.02.2021

High

SW3 Solutions CMS Shell Upload thru weak default admin credentials

Dork: intext: "Website Design & Developed by SW3 Solutions"

12.02.2021

Med.

DNNSmart_SuperContent Arbitrary File Upload (csrf)

Dork: inurl:desktopmodules/DNNSmart_SuperContent/AjaxHandler/FileUploadHandler.ashx

12.02.2021

Med.

AXIS Camera View {CCTV} Exploit version 4.11 4.03 4.05

Dork: intitle:"Live View AXIS"

11.02.2021

Med.

gemsbschoolcms - Admin Panel Bypass

Dork: inurl: gemsbschoolcms

09.02.2021

Med.

Designed & Developed by SNT Infotech Pvt Ltd - Sql Injection

Dork: intext:"Designed & Developed by SNT Infotech Pvt Ltd"

09.02.2021

Med.

Designed by sirigroup Vulnerability Bypass Admin Login

Dork: intext:"Designed by sirigroup"

07.02.2021

Med.

MANAGE BY TLJ TECHNOLAB - Admin Panel Bypass

Dork: Google Dork:intext:"Designed By : TLJ Technolab"

07.02.2021

Med.

Designed & Developed by ENS Sql Injection Vulnerability

Dork: "Designed & Developed by ENS"

07.02.2021

Med.

CMS E-Belajar Default Password

Dork: "Copyright 2020 © e-belajar, All Rights Reserved."

07.02.2021

Med.

Powered By iWebsoul - SQL Injection

Dork: intext:"Powered By: iWebsoul"

06.02.2021

Med.

Custom CMS Jogjasite - SQL-Injection Vulnerability

Dork: intext:"By jogjasite.com"

06.02.2021

Med.

powered by iPOT Technologies sql Injection

Dork: intext:"powered by iPOT Technologies " & inurl:/.php?id=

04.02.2021

Med.

ADDEALINDIA Vulnerabelity Bypass Login Admin

Dork: intext:"Developed by ADDEALINDIA" site:

04.02.2021

Med.

Ruang Edukasi - Admin Weak Password

Dork: Intext:"Ruang Edukasi" site:

03.02.2021