API tools faq
paste
Advertisement
Guest User

Nikto upeace.org

a guest
Apr 21st, 2018
408
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 33.46 KB | None | 0 0
raw download clone embed print report
  1. nikto -h www.upeace.org
  2. - Nikto v2.1.6
  3. ---------------------------------------------------------------------------
  4. + Target IP: 200.91.89.204
  5. + Target Hostname: www.upeace.org
  6. + Target Port: 80
  7. + Start Time: 2018-04-20 19:48:26 (GMT-4)
  8. ---------------------------------------------------------------------------
  9. + Server: Microsoft-IIS/7.5
  10. + Retrieved x-powered-by header: ASP.NET
  11. + The anti-clickjacking X-Frame-Options header is not present.
  12. + The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
  13. + The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
  14. + Cookie PHPSESSID created without the httponly flag
  15. + Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST
  16. + Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, POST
  17. + /lists/admin/: PHPList pre 2.6.4 contains a number of vulnerabilities including remote administrative access, harvesting user info and more. Default login to admin interface is admin/phplist
  18. + /forums//admin/config.php: PHP Config file may contain database IDs and passwords.
  19. + OSVDB-2411: /hola/admin/cms/htmltags.php?datei=./sec/data.php: hola-cms-1.2.9-10 may reveal the administrator ID and password.
  20. + OSVDB-8204: /gb/index.php?login=true: gBook may allow admin login by setting the value 'login' equal to 'true'.
  21. + OSVDB-17653: /SiteServer/Admin/commerce/foundation/domain.asp: Displays known domains of which that server is involved.
  22. + OSVDB-17654: /SiteServer/Admin/commerce/foundation/driver.asp: Displays a list of installed ODBC drivers.
  23. + OSVDB-17655: /SiteServer/Admin/commerce/foundation/DSN.asp: Displays all DSNs configured for selected ODBC drivers.
  24. + OSVDB-17652: /SiteServer/admin/findvserver.asp: Gives a list of installed Site Server components.
  25. + /SiteServer/Admin/knowledge/dsmgr/default.asp: Used to view current search catalog configurations
  26. + OSVDB-17656: /SiteServer/Admin/knowledge/dsmgr/users/GroupManager.asp: Used to create, modify, and potentially delete LDAP users and groups.
  27. + OSVDB-17657: /SiteServer/Admin/knowledge/dsmgr/users/UserManager.asp: Used to create, modify, and potentially delete LDAP users and groups.
  28. + /SiteServer/admin/: Site Server components admin. Default account may be 'LDAP_Anonymous', pass is 'LdapPassword_1'. see http://www.wiretrip.net/rfp/p/doc.asp/i1/d69.htm
  29. + OSVDB-2017: /cgi.cgi/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  30. + OSVDB-2017: /webcgi/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  31. + OSVDB-2017: /cgi-914/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  32. + OSVDB-2017: /cgi-915/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  33. + OSVDB-2017: /cgi/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  34. + OSVDB-2017: /mpcgi/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  35. + OSVDB-2017: /cgi-bin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  36. + OSVDB-2017: /ows-bin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  37. + OSVDB-2017: /cgi-sys/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  38. + OSVDB-2017: /cgi-local/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  39. + OSVDB-2017: /htbin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  40. + OSVDB-2017: /cgibin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  41. + OSVDB-2017: /cgis/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  42. + OSVDB-2017: /scripts/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  43. + OSVDB-2017: /cgi-win/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  44. + OSVDB-2017: /fcgi-bin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  45. + OSVDB-2017: /cgi-exe/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  46. + OSVDB-2017: /cgi-home/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  47. + OSVDB-2017: /cgi-perl/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  48. + OSVDB-2017: /scgi-bin/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  49. + OSVDB-2017: /cgi-bin-sdb/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  50. + OSVDB-2017: /cgi-mod/boozt/admin/index.cgi?section=5&input=1: Boozt CGI may have a buffer overflow. Upgrade to a version newer than 0.9.8alpha.
  51. + /admin/config.php: PHP Config file may contain database IDs and passwords.
  52. + OSVDB-44056: /sips/sipssys/users/a/admin/user: SIPS v0.2.2 allows user account info (including password) to be retrieved remotely.
  53. + OSVDB-17659: /SiteServer/Admin/knowledge/persmbr/vs.asp: Expose various LDAP service and backend configuration parameters
  54. + OSVDB-17661: /SiteServer/Admin/knowledge/persmbr/VsLsLpRd.asp: Expose various LDAP service and backend configuration parameters
  55. + OSVDB-17662: /SiteServer/Admin/knowledge/persmbr/VsPrAuoEd.asp: Expose various LDAP service and backend configuration parameters
  56. + OSVDB-17660: /SiteServer/Admin/knowledge/persmbr/VsTmPr.asp: Expose various LDAP service and backend configuration parameters
  57. + /cgi.cgi/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  58. + /webcgi/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  59. + /cgi-914/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  60. + /cgi-915/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  61. + /cgi/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  62. + /mpcgi/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  63. + /cgi-bin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  64. + /ows-bin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  65. + /cgi-sys/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  66. + /cgi-local/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  67. + /htbin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  68. + /cgibin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  69. + /cgis/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  70. + /scripts/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  71. + /cgi-win/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  72. + /fcgi-bin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  73. + /cgi-exe/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  74. + /cgi-home/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  75. + /cgi-perl/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  76. + /scgi-bin/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  77. + /cgi-bin-sdb/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  78. + /cgi-mod/admin/admin.cgi: May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio.
  79. + /cgi.cgi/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  80. + /webcgi/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  81. + /cgi-914/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  82. + /cgi-915/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  83. + /cgi/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  84. + /mpcgi/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  85. + /cgi-bin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  86. + /ows-bin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  87. + /cgi-sys/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  88. + /cgi-local/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  89. + /htbin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  90. + /cgibin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  91. + /cgis/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  92. + /scripts/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  93. + /cgi-win/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  94. + /fcgi-bin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  95. + /cgi-exe/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  96. + /cgi-home/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  97. + /cgi-perl/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  98. + /scgi-bin/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  99. + /cgi-bin-sdb/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  100. + /cgi-mod/admin/setup.cgi: May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio.
  101. + /admin/cplogfile.log: DevBB 1.0 final (http://www.mybboard.com) log file is readable remotely. Upgrade to the latest version.
  102. + /admin/system_footer.php: myphpnuke version 1.8.8_final_7 reveals detailed system information.
  103. + OSVDB-4571: /cgi.cgi/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  104. + OSVDB-4571: /webcgi/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  105. + OSVDB-4571: /cgi-914/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  106. + OSVDB-4571: /cgi-915/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  107. + OSVDB-4571: /cgi/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  108. + OSVDB-4571: /mpcgi/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  109. + OSVDB-4571: /cgi-bin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  110. + OSVDB-4571: /ows-bin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  111. + OSVDB-4571: /cgi-sys/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  112. + OSVDB-4571: /cgi-local/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  113. + OSVDB-4571: /htbin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  114. + OSVDB-4571: /cgibin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  115. + OSVDB-4571: /cgis/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  116. + OSVDB-4571: /scripts/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  117. + OSVDB-4571: /cgi-win/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  118. + OSVDB-4571: /fcgi-bin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  119. + OSVDB-4571: /cgi-exe/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  120. + OSVDB-4571: /cgi-home/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  121. + OSVDB-4571: /cgi-perl/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  122. + OSVDB-4571: /scgi-bin/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  123. + OSVDB-4571: /cgi-bin-sdb/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  124. + OSVDB-4571: /cgi-mod/ImageFolio/admin/admin.cgi: ImageFolio (default accout Admin/ImageFolio) may allow files to be deleted via URLs like: ?cgi=remove.pl&uid=111.111.111.111&rmstep=2&category=../../../../../../../../../../../etc/
  125. + OSVDB-3233: /admin/admin_phpinfo.php4: Mon Album from http://www.3dsrc.com version 0.6.2d allows remote admin access. This should be protected.
  126. + OSVDB-5034: /admin/login.php?action=insert&username=test&password=test: phpAuction may allow user admin accounts to be inserted without proper authentication. Attempt to log in with user 'test' password 'test' to verify.
  127. + OSVDB-376: /admin/contextAdmin/contextAdmin.html: Tomcat may be configured to let attackers read arbitrary files. Restrict access to /admin.
  128. + OSVDB-4804: //admin/admin.shtml: Axis network camera may allow admin bypass by using double-slashes before URLs.
  129. + OSVDB-2842: //admin/aindex.htm: FlexWATCH firmware 2.2 is vulnerable to authentication bypass by prepending an extra '/'. http://packetstorm.linuxsecurity.com/0310-exploits/FlexWATCH.txt
  130. + OSVDB-2922: /admin/wg_user-info.ml: WebGate Web Eye exposes user names and passwords.
  131. + OSVDB-3092: /admin/: This might be interesting...
  132. + OSVDB-3092: /cfdocs/exampleapp/publish/admin/addcontent.cfm: This might be interesting...
  133. + OSVDB-3092: /cfdocs/exampleapp/publish/admin/application.cfm: This might be interesting...
  134. + OSVDB-3092: /log.txt: This might be interesting...
  135. + OSVDB-3092: /news: This might be interesting...
  136. + OSVDB-3092: /public/: This might be interesting...
  137. + OSVDB-3092: /register/: This might be interesting...
  138. + OSVDB-3092: /w3perl/admin: This might be interesting...
  139. + OSVDB-3093: /admin/auth.php: This might be interesting... has been seen in web logs from an unknown scanner.
  140. + OSVDB-3093: /admin/cms/htmltags.php: This might be interesting... has been seen in web logs from an unknown scanner.
  141. + OSVDB-3093: /admin/credit_card_info.php: This might be interesting... has been seen in web logs from an unknown scanner.
  142. + OSVDB-3093: /admin/exec.php3: This might be interesting... has been seen in web logs from an unknown scanner.
  143. + OSVDB-3093: /admin/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  144. + OSVDB-3093: /admin/objects.inc.php4: This might be interesting... has been seen in web logs from an unknown scanner.
  145. + OSVDB-3093: /admin/script.php: This might be interesting... has been seen in web logs from an unknown scanner.
  146. + OSVDB-3093: /admin/templates/header.php: This might be interesting... has been seen in web logs from an unknown scanner.
  147. + OSVDB-3093: /admin/upload.php: This might be interesting... has been seen in web logs from an unknown scanner.
  148. + OSVDB-3093: /board/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  149. + OSVDB-3093: /caupo/admin/admin_workspace.php: This might be interesting... has been seen in web logs from an unknown scanner.
  150. + OSVDB-3093: /community/index.php?analized=anything: This might be interesting... has been seen in web logs from an unknown scanner.
  151. + OSVDB-3093: /doc/admin/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  152. + OSVDB-3093: /faqman/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  153. + OSVDB-3093: /iisprotect/admin/SiteAdmin.ASP?|-|0|404_Object_Not_Found: This might be interesting... has been seen in web logs from an unknown scanner.
  154. + OSVDB-3093: /livredor/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  155. + OSVDB-3093: /modules/Search/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  156. + OSVDB-3093: /myguestBk/admin/delEnt.asp?id=NEWSNUMBER|-|0|404_Object_Not_Found: This might be interesting... has been seen in web logs from an unknown scanner.
  157. + OSVDB-3093: /myguestBk/admin/index.asp?|-|0|404_Object_Not_Found: This might be interesting... has been seen in web logs from an unknown scanner.
  158. + OSVDB-3093: /php/gaestebuch/admin/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  159. + OSVDB-3093: /prometheus-all/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  160. + OSVDB-3093: /staticpages/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  161. + OSVDB-3093: /supporter/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  162. + OSVDB-3093: /ttforum/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  163. + OSVDB-3093: /zentrack/index.php: This might be interesting... has been seen in web logs from an unknown scanner.
  164. + OSVDB-3093: /cgi.cgi/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  165. + OSVDB-3093: /webcgi/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  166. + OSVDB-3093: /cgi-914/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  167. + OSVDB-3093: /cgi-915/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  168. + OSVDB-3093: /cgi/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  169. + OSVDB-3093: /mpcgi/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  170. + OSVDB-3093: /cgi-bin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  171. + OSVDB-3093: /ows-bin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  172. + OSVDB-3093: /cgi-sys/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  173. + OSVDB-3093: /cgi-local/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  174. + OSVDB-3093: /htbin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  175. + OSVDB-3093: /cgibin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  176. + OSVDB-3093: /cgis/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  177. + OSVDB-3093: /scripts/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  178. + OSVDB-3093: /cgi-win/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  179. + OSVDB-3093: /fcgi-bin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  180. + OSVDB-3093: /cgi-exe/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  181. + OSVDB-3093: /cgi-home/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  182. + OSVDB-3093: /cgi-perl/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  183. + OSVDB-3093: /scgi-bin/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  184. + OSVDB-3093: /cgi-bin-sdb/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  185. + OSVDB-3093: /cgi-mod/if/admin/nph-build.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  186. + OSVDB-3093: /cgi.cgi/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  187. + OSVDB-3093: /webcgi/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  188. + OSVDB-3093: /cgi-914/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  189. + OSVDB-3093: /cgi-915/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  190. + OSVDB-3093: /cgi/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  191. + OSVDB-3093: /mpcgi/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  192. + OSVDB-3093: /cgi-bin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  193. + OSVDB-3093: /ows-bin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  194. + OSVDB-3093: /cgi-sys/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  195. + OSVDB-3093: /cgi-local/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  196. + OSVDB-3093: /htbin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  197. + OSVDB-3093: /cgibin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  198. + OSVDB-3093: /cgis/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  199. + OSVDB-3093: /scripts/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  200. + OSVDB-3093: /cgi-win/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  201. + OSVDB-3093: /fcgi-bin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  202. + OSVDB-3093: /cgi-exe/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  203. + OSVDB-3093: /cgi-home/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  204. + OSVDB-3093: /cgi-perl/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  205. + OSVDB-3093: /scgi-bin/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  206. + OSVDB-3093: /cgi-bin-sdb/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  207. + OSVDB-3093: /cgi-mod/imagefolio/admin/admin.cgi: This might be interesting... has been seen in web logs from an unknown scanner.
  208. + OSVDB-3093: /cgi.cgi/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  209. + OSVDB-3093: /webcgi/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  210. + OSVDB-3093: /cgi-914/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  211. + OSVDB-3093: /cgi-915/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  212. + OSVDB-3093: /cgi/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  213. + OSVDB-3093: /mpcgi/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  214. + OSVDB-3093: /cgi-bin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  215. + OSVDB-3093: /ows-bin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  216. + OSVDB-3093: /cgi-sys/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  217. + OSVDB-3093: /cgi-local/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  218. + OSVDB-3093: /htbin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  219. + OSVDB-3093: /cgibin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  220. + OSVDB-3093: /cgis/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  221. + OSVDB-3093: /scripts/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  222. + OSVDB-3093: /cgi-win/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  223. + OSVDB-3093: /fcgi-bin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  224. + OSVDB-3093: /cgi-exe/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  225. + OSVDB-3093: /cgi-home/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  226. + OSVDB-3093: /cgi-perl/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  227. + OSVDB-3093: /scgi-bin/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  228. + OSVDB-3093: /cgi-bin-sdb/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  229. + OSVDB-3093: /cgi-mod/utm/admin: This might be interesting... has been seen in web logs from an unknown scanner.
  230. + OSVDB-3233: /php/index.php: Monkey Http Daemon default PHP file found.
  231. + OSVDB-3591: /project/index.php?m=projects&user_cookie=1: dotProject 0.2.1.5 may allow admin login bypass by adding the user_cookie=1 to the URL.
  232. + OSVDB-4238: /admin/adminproc.asp: Xpede administration page may be available. The /admin directory should be protected.
  233. + OSVDB-4239: /admin/datasource.asp: Xpede page reveals SQL account name. The /admin directory should be protected.
  234. + OSVDB-4361: /acart2_0/admin/category.asp: Alan Ward A-Cart 2.0 is vulnerable to an XSS attack which may cause the administrator to delete database information.
  235. + OSVDB-5093: /cgi.cgi/environ.pl: Sambar Server default script reveals environment information
  236. + OSVDB-5093: /webcgi/environ.pl: Sambar Server default script reveals environment information
  237. + OSVDB-5093: /cgi-914/environ.pl: Sambar Server default script reveals environment information
  238. + OSVDB-5093: /cgi-915/environ.pl: Sambar Server default script reveals environment information
  239. + OSVDB-5093: /cgi/environ.pl: Sambar Server default script reveals environment information
  240. + OSVDB-5093: /mpcgi/environ.pl: Sambar Server default script reveals environment information
  241. + OSVDB-5093: /cgi-bin/environ.pl: Sambar Server default script reveals environment information
  242. + OSVDB-5093: /ows-bin/environ.pl: Sambar Server default script reveals environment information
  243. + OSVDB-5093: /cgi-sys/environ.pl: Sambar Server default script reveals environment information
  244. + OSVDB-5093: /cgi-local/environ.pl: Sambar Server default script reveals environment information
  245. + OSVDB-5093: /htbin/environ.pl: Sambar Server default script reveals environment information
  246. + OSVDB-5093: /cgibin/environ.pl: Sambar Server default script reveals environment information
  247. + OSVDB-5093: /cgis/environ.pl: Sambar Server default script reveals environment information
  248. + OSVDB-5093: /scripts/environ.pl: Sambar Server default script reveals environment information
  249. + OSVDB-5093: /cgi-win/environ.pl: Sambar Server default script reveals environment information
  250. + OSVDB-5093: /fcgi-bin/environ.pl: Sambar Server default script reveals environment information
  251. + OSVDB-5093: /cgi-exe/environ.pl: Sambar Server default script reveals environment information
  252. + OSVDB-5093: /cgi-home/environ.pl: Sambar Server default script reveals environment information
  253. + OSVDB-5093: /cgi-perl/environ.pl: Sambar Server default script reveals environment information
  254. + OSVDB-5093: /scgi-bin/environ.pl: Sambar Server default script reveals environment information
  255. + OSVDB-5093: /cgi-bin-sdb/environ.pl: Sambar Server default script reveals environment information
  256. + OSVDB-5093: /cgi-mod/environ.pl: Sambar Server default script reveals environment information
  257. + OSVDB-5094: /cgi.cgi/testcgi.exe: Sambar Server default script reveals environment information
  258. + OSVDB-5094: /webcgi/testcgi.exe: Sambar Server default script reveals environment information
  259. + OSVDB-5094: /cgi-914/testcgi.exe: Sambar Server default script reveals environment information
  260. + OSVDB-5094: /cgi-915/testcgi.exe: Sambar Server default script reveals environment information
  261. + OSVDB-5094: /cgi/testcgi.exe: Sambar Server default script reveals environment information
  262. + OSVDB-5094: /mpcgi/testcgi.exe: Sambar Server default script reveals environment information
  263. + OSVDB-5094: /cgi-bin/testcgi.exe: Sambar Server default script reveals environment information
  264. + OSVDB-5094: /ows-bin/testcgi.exe: Sambar Server default script reveals environment information
  265. + OSVDB-5094: /cgi-sys/testcgi.exe: Sambar Server default script reveals environment information
  266. + OSVDB-5094: /cgi-local/testcgi.exe: Sambar Server default script reveals environment information
  267. + OSVDB-5094: /htbin/testcgi.exe: Sambar Server default script reveals environment information
  268. + OSVDB-5094: /cgibin/testcgi.exe: Sambar Server default script reveals environment information
  269. + OSVDB-5094: /cgis/testcgi.exe: Sambar Server default script reveals environment information
  270. + OSVDB-5094: /scripts/testcgi.exe: Sambar Server default script reveals environment information
  271. + OSVDB-5094: /cgi-win/testcgi.exe: Sambar Server default script reveals environment information
  272. + OSVDB-5094: /fcgi-bin/testcgi.exe: Sambar Server default script reveals environment information
  273. + OSVDB-5094: /cgi-exe/testcgi.exe: Sambar Server default script reveals environment information
  274. + OSVDB-5094: /cgi-home/testcgi.exe: Sambar Server default script reveals environment information
  275. + OSVDB-5094: /cgi-perl/testcgi.exe: Sambar Server default script reveals environment information
  276. + OSVDB-5094: /scgi-bin/testcgi.exe: Sambar Server default script reveals environment information
  277. + OSVDB-5094: /cgi-bin-sdb/testcgi.exe: Sambar Server default script reveals environment information
  278. + OSVDB-5094: /cgi-mod/testcgi.exe: Sambar Server default script reveals environment information
  279. + OSVDB-9624: /admin/admin.php?adminpy=1: PY-Membres 4.2 may allow administrator access.
  280. + OSVDB-3233: /webapp/admin/_pages/_bc4jadmin/: Oracle JSP files
  281. + OSVDB-3092: /Admin/: This might be interesting...
  282. + OSVDB-3092: /fr/: This might be interesting... potential country code (France)
  283. + OSVDB-3092: /es/: This might be interesting... potential country code (Spain)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!