Get Chitika | Premium
Custom Search

Havij v1.13 Advanced SQL Injection Released

Havij v1.13 Advanced SQL Injection Released
Havij v1.13 Advanced SQL Injection
Download :
Code:
http://itsecteam.com/files/havij/Havij1.13Free.rar


Version 1.13 2010/11/03
-a bug in finding valid string column in mysql fixed.
-Getting tables and column when database name is not found added (mysql)
-Automatic keyword finder optimized and some bug fixed.
-'Key is not unique' bug fixed
-Getting data starts from row 2 when All in One fails - bug fixed
-Run time error when finding keyword fixed.
-False table finding in access fixed.
-keyword correction method made better
-a bug in getting current data base in mssql fixed.
-a secondary method added when input value doesn't return a normal page (usually 404 not found)
-data extraction bug in html-encoded pages fixed.
-string or integer type detection made better.
-a bug in https injection fixed.
-another method added for finding columns count and string column in PostgreSQL
-Oracle error based database added with ability to execute query.
»»  READMORE...
Read more »
0 komentar

Patch SQL Injection

SQL Injection adalah salah satu teknik penyerangan ke sebuah web dengan cara memasukkan perintah sql ke url target sehingga attacker bisa memperoleh informasi penting dari website tersebut. Seperti nama user, password, email, dan masih banyak lagi informasi yg bisa didapatkan tergantung kreativitas attacker. Langsung saja kita coba scan bug dengan memasukkan sigle quote di akhir url, misalkan :

http://site.com/index.php?list=berita&de=14

Kalau ada error, bisa dianggap positif vuln terhadap sqli. Lihat gambar 1

Seperti yang kita ketahui bugnya ada di http://site.com/index.php?list=berita&de=14 , lebih tepatnya yg menyebabkan ini semua terjadi adalah file berita.php dan string de, sekarang kita coba buka file ini dengan text editor, bisa notepad, wordpad, atau kalau ane sih sukanya pake editplus. Ini isi dari sebagian filenya : Lihat gambar 2

Bugnya ada di script bagian ini :
$iddetail = $_GET['de'];
Tidak adanya filter di $_GET[‘de’] menyebabkan web ini vulnerable. Oke script penyebab ini semua telah kita temukan, sekarang saatnya patching. Tambahkan script ini diatas script ini diatas script vulnerable diatas : Lihat gambar 3

Lalu ganti script $iddetail = $_GET['de']; menjadi $iddetail = $de; Untuk script lengkapnya bias di download disini. Sekarang coba buka lagi page vulnerable dan tambahkan single quote(‘) dan tarra.. proses patching telah berhasil. Lihat gambar 4


NGambar 1

Gambar 1
Gambar 2

Gambar 2
Gambar 3

Gambar 3
Gambar 4

Gambar 4


Sumber http://kill-nines.blogspot.com
»»  READMORE...
0 komentar

bug dork III

XML BUG DORK

!xml /xmlsrv/xmlrpc.php /b2evocore/_functions_xmlrpcs.php on line 1
!xml xmlrpc.php wp-includes/class-xmlrpcs.php on line 255
!xml serendipity_xmlrpc.php "Powered by Serendipity"
!xml serendipity_xmlrpc.php "Open login screen"
!xml /b2/xmlsrv/xmlrpc.php "powered by b2"
!xml /nucleus/xmlrpc/server.php "Nucleus"
!xml /nucleus/xmlrpc/server.php "index.php?blogid="
!xml /nucleus/xmlrpc/server.php "The Nucleus Group"
!xml /xmlsrv/xmlrpc.php 'index.php?blog='
!xml /nucleus/xmlrpc/server.php 'index.php?catid=' + blogid
!xml /nucleus/xmlrpc/server.php 'index.php?itemid='
!xml xmlrpc.php "This web site was made with PostNuke"
!xml xmlrpc.php "Web site powered by PostNuke"
!xml /faq/xmlrpc.php "powered by phpmyFAQ"
!xml xmlrpc.php "by the Tiki community"
!xml phpgroupware/xmlrpc.php "This Site is powered by phpWebSite"
!xml xmlrpc.php "This website is powered by eGroupWare's"
!xml xmlrpc.php "This website is powered by WordPress"
!xml adxmlrpc.php "phpAdsNew"
!xml xmlrpc.php "by each individual author, All Rights Reserved"
!xml /xmlrpc.php /amfx
!xml /amfx/xmlrpc.php "BlazeDS"
!xml /amfx/xmlrpc.php "anything"
!xml /xmlrpc.php dev-php/PEAR-XML_RPC
!xml xmlrpc.php "PEAR-XML_RPC"
!xml xmlrpc.php "phpxmlrpc"
!xml xmlrpc.php "/PEAR-XML_RPC"
!xml xmlrpc.php "/pear"
!xml xmlrpc.php "/SRPMS"
!xml xmlrpc.php "/php-pear"
!xml xmlrpc.php "phpMyFAQ"
!xml xmlrpc.php "PHPXMLRPC"
!xml xmlrpc.php "Trustix"
!xml xmlrpc.php "Strayhorn"
!xml /xmlrpc.php /modules.php?op=modload
!xml /xmlrpc.php Valid XHTML 1.0! Valid CSS! Valid RSS! Valid Atom!
!xml /xmlsrv/xmlrpc.php/xmlsrv/xmlrpc.php /wp-includes* WordPress ME *
!xml /xmlsrv/xmlrpc.php/xmlsrv/xmlrpc.php /wp-includes+wordpress
!xml /xmlsrv/xmlrpc.php "Valid XHTML 1.0! Valid CSS! Valid RSS! Valid Atom"
!xml /xmlsrv/xmlrpc.php "Original template design by François PLANQUE."
!xml /xmlsrv/xmlrpc.php "Original template design by Free CSS Templates"
!xml /xmlrpc.php "XML-RPC library"
!xml /pingserver.php /pMachine+pnSession+pmserver+pm
!xml /pingserver.php /pMachine+pm
!xml /pingserver.php /pMachine+index.php
!xml /pingserver.php /pMachine,pMachine
!xml /xmlrpc.php /include+phpMyFAQ
!xml /xmlrpc.php TikiWiki+utils.php
!xml /xmlrpc.php powered+by+postnuke
!xml /xmlrpc.php "BLOG:CMS"
!xml /xmlrpc.php "faultString XML error: no element found at line 1"
!xml /xmlrpc.php "PEAR XML_RPC"
!xml /xmlrpc.php "Xoops"
!xml /xmlsrv/xmlrpc.php "Original template design by François PLANQUE."
!xml /xmlrpc.php "postnuke"
!xml /xmlrpc.php "dailyblog"
!xml /xmlrpc.php phpgroupware
!xml /xmlphp.php "XML-RPC for PHP"
!xml /nucleus/xmlrpc.php Nucleus © 2002-2004 The Nucleus Group - Donate!
!xml /drupal/xmlrpc.php callback
!xml /nucleus/xmlrpc/server.php Nucleus © 2002-2004 The Nucleus Group - Donate!
!xml /xmlrpc.php "Squirrelcart"
!xml /xmlrpc.php "Powered By Wordpress"
!xml /xmlrpc.php RSS 2.0 * Comments RSS 2.0 * Valid XHTML * WP
!xml /xmlrpc.php "com_pollxt"
!xml /adxmlrpc.php /phpAdsNew/ site:.it
!xml /xmlrpc.php "action"+"poll_ident"
!xml /xmlrpc.php "webcalendar"
!xml /WordPress WordPress 1.2.1
!xml /b2/xmlsrv/xmlrpc.php /b2+site:.it
!xml /b2evo/xmlsrv/xmlrpc.php /b2evo+site:.it
»»  READMORE...
0 komentar

bug dork IV

SQL BUG DORK

inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurl:play_old.php?id=
inurl:declaration_more.php?decl_id=
inurl:pageid=
inurl:games.php?id=
inurl:page.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=
inurl:article.php?id=
inurl:show.php?id=
inurl:staff_id=
inurl:newsitem.php?num=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:historialeer.php?num=
inurl:reagir.php?num=
inurl:Stray-Questions-View.php?num=
inurl:forum_bds.php?num=
inurl:game.php?id=
inurl:view_product.php?id=
inurl:newsone.php?id=
inurl:sw_comment.php?id=
inurl:news.php?id=
inurl:avd_start.php?avd=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=
inurl:ogl_inet.php?ogl_id=
inurl:fiche_spectacle.php?id=
inurl:communique_detail.php?id=
inurl:sem.php3?id=
inurl:kategorie.php4?id=
inurl:news.php?id=
inurl:index.php?id=
inurl:faq2.php?id=
inurl:show_an.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:opinions.php?id=
inurl:spr.php?id=
inurl:pages.php?id=
inurl:announce.php?id=
inurl:clanek.php4?id=
inurl:participant.php?id=
inurl:download.php?id=
inurl:main.php?id=
inurl:review.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:prod_detail.php?id=
inurl:viewphoto.php?id=
inurl:article.php?id=
inurl:person.php?id=
inurl:productinfo.php?id=
inurl:showimg.php?id=
inurl:view.php?id=
inurl:website.php?id=
inurl:hosting_info.php?id=
inurl:gallery.php?id=
inurl:rub.php?idr=
inurl:view_faq.php?id=
inurl:artikelinfo.php?id=
inurl:detail.php?ID=
inurl:index.php?=
inurl:profile_view.php?id=
inurl:category.php?id=
inurl:publications.php?id=
inurl:fellows.php?id=
inurl:downloads_info.php?id=
inurl:prod_info.php?id=
inurl:shop.php?do=part&id=
inurl:productinfo.php?id=
inurl:collectionitem.php?id=
inurl:band_info.php?id=
inurl:product.php?id=
inurl:releases.php?id=
inurl:ray.php?id=
inurl:produit.php?id=
inurl:pop.php?id=
inurl:shopping.php?id=
inurl:productdetail.php?id=
inurl:post.php?id=
inurl:viewshowdetail.php?id=
inurl:clubpage.php?id=
inurl:memberInfo.php?id=
inurl:section.php?id=
inurl:theme.php?id=
inurl:page.php?id=
inurl:shredder-categories.php?id=
inurl:tradeCategory.php?id=
inurl:product_ranges_view.php?ID=
inurl:shop_category.php?id=
inurl:transcript.php?id=
inurl:channel_id=
inurl:item_id=
inurl:newsid=
inurl:trainers.php?id=
inurl:news-full.php?id=
inurl:news_display.php?getid=
inurl:index2.php?option=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:newsone.php?id=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:aboutbook.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:pages.php?id=
inurl:material.php?id=
inurl:clanek.php4?id=
inurl:announce.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:viewapp.php?id=
inurl:viewphoto.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:review.php?id=
inurl:iniziativa.php?in=
inurl:curriculum.php?id=
inurl:labels.php?id=
inurl:story.php?id=
inurl:look.php?ID=
inurl:newsone.php?id=
inurl:aboutbook.php?id=
inurl:material.php?id=
inurl:opinions.php?id=
inurl:announce.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:tekst.php?idt=
inurl:newscat.php?id=
inurl:newsticker_info.php?idn=
inurl:rubrika.php?idr=
inurl:rubp.php?idr=
inurl:offer.php?idf=
inurl:art.php?idm=
inurl:title.php?id=
inurl:".php?id=1"
inurl:".php?cat=1"
inurl:".php?catid=1"
inurl:".php?num=1"
inurl:".php?bid=1"
inurl:".php?pid=1"
inurl:".php?nid=1"
»»  READMORE...
0 komentar

bug dork II

BUG DORK LFI

!lfi /index.php?option=com_myblog&Itemid=12&task= "com_myblog"
!lfi /index.php?option=com_juliaportfolio&controller= "com_juliaportfolio"
!lfi /index.php?option=com_sbsfile&controller= "com_sbsfile"
!lfi /index.php?option=com_rokdownloads&controller= "com_rokdownloads"
!lfi /index.php?option=com_sectionex&controller= "com_sectionex"
!lfi /index.php?option=com_ganalytics&controller= "com_ganalytics"
!lfi /index.php?option=com_janews&controller= "com_janews"
!lfi /index.php?option=com_linkr&controller= "com_linkr"
!lfi /index.php?option=com_rpx&controller= "com_rpx"
!lfi /index.php?option=com_ninjarsssyndicator&controller= "com_ninjarsssyndicator"
!lfi /index.php?option=com_gcalendar&controller= "com_gcalendar"
!lfi /index.php?option=com_ckforms&controller= "com_ckforms"
!lfi /index.php?option=com_jeformcr&view= "com_jeformcr"
!lfi /index.php?option=com_jresearch&controller= "com_jresearch"
!lfi /index.php?option=com_smestorage&controller= "com_smestorage"
!lfi /index.php?option=com_properties&controller= "com_properties"
!lfi /index.php?option=com_dwgraphs&controller= "com_dwgraphs"
!lfi /index.php?option=com_weberpcustomer&controller= "com_weberpcustomer"
!lfi /index.php?option=com_userstatus&controller= "com_userstatus"
!lfi /index.php?option=com_econtent&controller= "com_econtent"
!lfi /index.php?option=com_jvehicles&controller= "com_jvehicles"
!lfi /index.php?option=com_joomlapicasa2&controller= "com_joomlapicasa2"
!lfi /index.php?option=com_svmap&controller= "com_svmap"
!lfi /index.php?option=com_shoutbox&controller= "com_shoutbox"
!lfi /index.php?option=com_loginbox&view= "com_loginbox"
!lfi /index.php?option=com_myblog&Itemid=12&task= "com_myblog"
!lfi /index.php?option=com_juliaportfolio&controller= "com_juliaportfolio"
!lfi /index.php?option=com_sbsfile&controller= "com_sbsfile"
!lfi /index.php?option=com_rokdownloads&controller= "com_rokdownloads"
!lfi /index.php?option=com_sectionex&controller= "com_sectionex"
!lfi /index.php?option=com_ganalytics&controller= "com_ganalytics"
!lfi /index.php?option=com_janews&controller= "com_janews"
!lfi /index.php?option=com_linkr&controller= "com_linkr"
!lfi /index.php?option=com_rpx&controller= "com_rpx"
!lfi /index.php?option=com_ninjarsssyndicator&controller= "com_ninjarsssyndicator"
!lfi /index.php?option=com_gcalendar&controller= "com_gcalendar"
!lfi /index.php?option=com_ckforms&controller= "com_ckforms"
!lfi /index.php?option=com_jeformcr&view= "com_jeformcr"
!lfi /index.php?option=com_jresearch&controller= "com_jresearch"
!lfi /index.php?option=com_smestorage&controller= "com_smestorage"
!lfi /index.php?option=com_properties&controller= "com_properties"
!lfi /index.php?option=com_dwgraphs&controller= "com_dwgraphs"
!lfi /index.php?option=com_weberpcustomer&controller= "com_weberpcustomer"
!lfi /index.php?option=com_userstatus&controller= "com_userstatus"
!lfi /index.php?option=com_econtent&controller= "com_econtent"
!lfi /index.php?option=com_jvehicles&controller= "com_jvehicles"
!lfi /index.php?option=com_joomlapicasa2&controller= "com_joomlapicasa2"
!lfi /index.php?option=com_svmap&controller= "com_svmap"
!lfi /index.php?option=com_shoutbox&controller= "com_shoutbox"
!lfi /index.php?option=com_loginbox&view= "com_loginbox"
!lfi /index.php?option=com_bca-rss-syndicator&controller= "com_bca-rss-syndicator"
!lfi /index.php?option=com_joomlaupdater&controller= "com_joomlaupdater"
!lfi /index.php?option=com_redshop&view= "com_redshop"
!lfi /index.php?option=com_redtwitter&view= "com_redtwitter"
!lfi /index.php?option=com_wisroyq&controller= "com_wisroyq"
!lfi /index.php?option=com_jinventory&controller= "com_jinventory"
!lfi /index.php?option=com_appointment&controller= "com_appointment"
!lfi /index.php?option=com_datafeeds&controller= "com_datafeeds"
!lfi /index.php?option=com_fabrik&controller= "com_fabrik"
!lfi /index.php?option=com_hsconfig&controller= "com_hsconfig"
!lfi /index.php?option=com_joomlaflickr&controller= "com_joomlaflickr"
!lfi /index.php?option=com_jukebox&controller= "com_jukebox"
!lfi /index.php?option=com_jwhmcs&controller= "com_jwhmcs"
!lfi /index.php?option=com_sebercart&view= "com_sebercart"
!lfi /index.php?option=com_awiki&controller= "com_awiki"
!lfi /index.php?option=com_vjdeo&controller= "com_vjdeo"
!lfi /index.php?option=com_awdwall&controller= "com_awdwall"
!lfi /index.php?option=com_realtyna&controller= "com_realtyna"
!lfi /index.php?option=com_webeecomment&controller= "com_webeecomment"
!lfi /index.php?option=com_javoice&view= "com_javoice"
»»  READMORE...
Read more »
0 komentar

bug dork

BUG DORK

!scan /ws/login.php?includedir= WebCalendar
!scan /ws/login.php?includedir= WebCalendar v0.9.45
!scan ocp-103/index.php?req_path= ocPortal
!scan images/evil.php?owned= e107
!scan index.php?module=PostWrap&page= PostNuke PostWrap
!scan mcNews/admin/header.php?skinfile= mcNews
!scan inc/download_center_lite.inc.php?script_root= "Download Center Lite"
!scan zboard/zboard.php?id= Zeroboard
!scan index.php?node=system&op=extop&ext=statman&eop=/visitor&ip= Nodez
!scan include/SQuery/gameSpy2.php?libpath= intitle:"Autonomous LAN party"
!scan event.php?myevent_path= MyEvent
!scan index.php?page= "Internet PhotoShow"
!scan mod/authent.php4?rootpath= RechnungsZentrale
!scan about.php?DFORUM_PATH= dForum
!scan post.php?DFORUM_PATH= dForum
!scan movie_cls.php?full_path= Built2Go
!scan /toplist.php?f=toplist_top10&phpbb_root_path= inurl:"toplist.php" "powered by phpbb"
!scan admin/addentry.php?phpbb_root_path= inurl:guestbook.php "Advanced GuestBook" "powered by phpbb"
!scan /master.php?root_path= inurl:/system/article/alltopics.php
!scan /master.php?root_path= inurl:/system/user/index.php
!scan includes/kb_constants.php?module_root_path= "Powered by Knowledge Base"
!scan /classes/adodbt/sql.php?classes_dir= inurl:"index2.php?option=rss"
!scan /classes/adodbt/sql.php?classes_dir= "powered By Limbo CMS"
!scan /sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]= "Powered By Aardvark Topsites PHP 4.2.2"
!scan agenda.php3?rootagenda= "Powered by phpMyAgenda"
!scan agenda2.php3?rootagenda= "Powered by phpMyAgenda"
!scan show.php?path= inurl:"fclick.php?"
!scan eshow.php?Config_rootdir= "powered by Albinator"
!scan auction/auction_common.php?phpbb_root_path= intext:"phpbb - auction"
!scan auction/auction_common.php?phpbb_root_path= inurl:auction
!scan visible_count_inc.php?statitpath= inurl:visible
!scan index.php?inc_dir= "Powered by TotalCalendar"
!scan /phpdig/includes/config.php?relative_script_path= "JetBox CMS"
!scan embed/day.php?path= intitle:"Login to Calendar"
!scan includes/dbal.php?eqdkp_root_path= "powered by EQdkp"
!scan claroline/auth/ldap/authldap.php?includePath= Dokeos
!scan /direct.php?rf= "ActualScripts, Company. All rights reserved."
!scan /config.php?returnpath= "PHPListPro ?2001-2006 SmartISoft"
!scan addsite.php?returnpath= "PHPListPro ?2001-2006 SmartISoft"
!scan auth/auth.php?phpbb_root_path= phpRaid
!scan auth/auth_phpbb/phpbb_root_path= phpRaid
!scan includes/pafiledb_constants.php?module_root_path= PafileDB
!scan index.php?phpbb_root_path= "Powered by foing"
!scan extras/poll/poll.php?file_newsportal= "TR Newsportal" brought by TRanx.
!scan cart_content.php?cart_isp_root= inurl:/squirrelcart/
!scan ezusermanager_pwd_forgott.php?ezUserManager_Path= "powered by ezUserManager"
!scan includes/class_template.php?quezza_root_path= "Quezza BB"
!scan sources/news.php?CONFIG[main_path]= "Powered By ScozNews"
!scan classified_right.php?language_dir= phpbazar
!scan cron.php?ROOT_PATH= "powered by phpmydirectory"
!scan cron.php?ROOT_PATH= intext:"2001-2006 phpMyDirectory.com"
!scan reconfig.php?GLOBALS[CLPath]= "CaLogic Calendars"
!scan srxclr.php?GLOBALS[CLPath]= "CaLogic Calendars"
!scan sources/post.php?fil_config= "Fusion News"
!scan addpost_newpoll.php?addpoll=preview&thispath= allinurl:/ubbthreads/
!scan BE_config.php?_PSL[classdir]= "Back-End CMS"
!scan /index.php?site_path= "Powered by SocketMail"
!scan vwebmail/includes/mailaccess/pop3/core.php?CONFIG[pear_dir]= V-Webmail
!scan includes/mailaccess/pop3.php?CONFIG[pear_dir]= V-Webmail
!scan DOCEBO205/modules/credits/help.php?lang= "Docebo LMS"
!scan cached.php3?GLOBALS[AA_INC_PATH]= "APC ActionApps"
!scan jsview.php3?GLOBALS[AA_INC_PATH]= "APC ActionApps"
!scan auth.php3?GLOBALS[AA_INC_PATH]= "APC ActionApps"
!scan manager/frontinc/prepend.php?_PX_config[manager_path]= "Plume CMS"
!scan admin/lib_action_step.php?GLOBALS[CLASS_PATH]= "Hot Open Tickets"
!scan p-popupgallery.php?l= "F@cile Interactive Web"
!scan ubbt.inc.php?GLOBALS[thispath]= UBBThreads
!scan ubbt.inc.php?thispath= UBBThreads
!scan language/lang_english/lang_activity.php?phpbb_root_path= Activity MOD Plus phpBB
!scan blend_data/blend_common.php?phpbb_root_path= "Blend Portal"
!scan suche/search.php?config[fsBase]= "Fastpublish CMS"
!scan drucken.php?config[fsBase]= "Fastpublish CMS"
!scan includes/common.php?root_path= gnopaste
!scan error.php?default_path= "Ottoman CMS"
!scan app/edocument/edocument_basic_view_menu.php?system_path= metajour
!scan app/eproject/eproject_basic_view_menu.php?system_path= metajour
!scan app/erek/erek_basic_view_menu.php?system_path= metajour
!scan extension/article/article.class.php?system_path= metajour
!scan extension/search/search.class.php?system_path= metajour
!scan admin/menu.php?root_path= "AssoCIateD CMS"
!scan includes/webdav/server.php?bhconfig[bhfilepath]= Bytehoard
!scan include/addons/image_resize/pages/index.inc.php?REX[INCLUDE_PATH]= "Redaxo CMS"
!scan class/Wiki/Wiki.php?c_node[class_path]= Igloo
!scan ashheadlines.php?pathtoashnews= "powered by ashnews"
!scan ashnews.php?pathtoashnews= "powered by ashnews"
!scan admin/common-menu.php?CONF[local_path]= Informium
!scan modules/Forums/admin/index.php?phpbb_root_path= PHP-Nuke
!scan modules/Forums/admin/admin_words.php?phpbb_root_path= PHP-Nuke
!scan modules/Forums/admin/admin_smilies.php?phpbb_root_path= PHP-Nuke
!scan modules/Forums/admin/admin_users.php?phpbb_root_path= "PHP-Nuke"
!scan applications/faq/Bs_Faq.class.php?APP[path][applications]= "BlueShoes Framework"
!scan applications/filemanager/file.php?APP[path][core]= "BlueShoes Framework"
!scan inc/logincheck.inc.php?path= Webspotblogging
!scan inc/global.php?path= Webspotblogging
!scan classes/phpmailer/class.cs_phpmailer.php?classes_dir= Powered by CS-Cart - Shopping Cart Software
!scan /index.php?file_path= "dotwidget Printer-friendly"
!scan /includes/common.inc?file_path= "dotwidget Printer-friendly"
!scan /auth.cookie.inc.php?da_path= "powered by DreamAccount"
!scan /auth.header.inc.php?da_path= "powered by DreamAccount"
!scan _wk/wk_lang.php?WK[wkPath]= Wikiwig
!scan contrib/forms/evaluation/C_FormEvaluation.class.php?GLOBALS[fileroot]= OpenEMR
!scan sources/post.php?fil_config= Xtreme/Ditto News
!scan class/jpcache/jpcache.php?_PSL[classdir]= "Back-end CMS"
!scan dialogs/td.php?spaw_root= cms-bandits
!scan dialogs/img.php?spaw_root= cms-bandits
!scan footer.php?absolutepath= "Enterprise Payroll Systems"
!scan admin/footer.php?absolutepath= "Enterprise Payroll Systems"
!scan phpcodecabinet_directory/include/Beautifier/Core.php?BEAUT_PATH= PHPCodeCabinet
!scan calendar.php?cfg_dir= "Visual Events Calendar" <-- good
!scan includes/usercp_register.php?phpbb_root_path= ZoneX 1.0.3 - Publishers Gold Edition <-- good
!scan lib/auth.inc.php?INIT_PATH= docpile:we
!scan article-raw.php?file_newsportal= phNNTP
!scan genpage-cgi.php?REP_INC= Hitweb
!scan CheckUpload.php?Language= "Cwfm-0.9.1"
!scan boitenews4/index.php?url_index= "Boite de News"
!scan common.inc.php?CFG[libdir]= "PgMarket"
!scan owimg.php3?path= "See-Commerce"
!scan tags.php?BBCodeFile= Tagger
!scan examples/image.php?image= "powered by twg"
!scan examples/examples/image.php2?image= "powered by twg"
!scan include/inc_ext/spaw/dialogs/table.php?spaw_root= inurl:"phpwcms/index.php?id="
!scan src/Login.php?page= "Spaminator"
!scan config.php?root_path= Thatware <--- bagus
!scan index.php?page= SaveWebPortal
!scan inc/header.inc.php?ficStyle= phpPrintAnalyzer
!scan Classes/Event_for_month.php?_BASE= Chaussette
!scan install/install3.php?database=none&cabsolute_path= "WEBInsta Mailing list manager"
!scan BaseLoader.php?glConf[path_libraries]= MVCnPHP
!scan includes/session.php?wb_class_dir= Wheatblog
!scan index.php?templates_dir= "WEBinsta CMS" <-- bagus
!scan common.php?rootdir= projectbutler
!scan inc/indexhead.php?fileloc= discloser
!scan modules/usersonline/users.php?module_dir= "WEBinsta CMS" <-- bagus
!scan lib/specialdays.php?path_pre= "PHProjekt"
!scan lib/dbman_filter.inc.php?lib_path= "PHProjekt"
!scan classes/query.class.php?baseDir= dotProject
!scan include/urights.php?CRM_inc= Outreach Project Tool
!scan system/includes/pageheaderdefault.inc.php?_sysSessionPath= IRSR - Invisionix Roaming System Remote
!scan s03.php?shopid= powergap
!scan administrator/components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_path= inurl:"/com_mtree/"
!scan administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site= inurl:"com_a6mambocredits"
!scan handlers/email/mod.listmail.php?_PM_[path][handler]= PHlyMail Lite
!scan app/common/lib/codeBeautifier/Beautifier/Core.php?BEAUT_PATH= phpCodeGenie
!scan administrator/components/com_kochsuite/config.kochsuite.php?mosConfig_absolute_path= inurl:"com_kochsuite"
!scan plugins/1_Adressbuch/delete.php?folder= Sonium Enterprise Adressbook
!scan administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir= com_cropimage
!scan admin/autoprompter.php?CONFIG[BASE_PATH]= Cce-interact
!scan includes/common.inc.php?CONFIG[BASE_PATH]= Cce-interact
!scan include/novalib/class.novaEdit.mysql.php?TNLIB_DIR= Tutti Nova
!scan news.php?CONFIG[script_path]= Fantastic News
!scan include/yapbb_session.php?GLOBALS[includeBit]=devilteam&cfgIncludeDirectory= YapBB
!scan local/lib/lcUser.php?LIBDIR= "Local Calendar"
!scan ?langage= EPNadmin
!scan themes/program/themesettings.inc.php?themesdir= "Segue CMS"
!scan lib/rs.php?rootpath= CASTOR
!scan phpcalendar/includes/setup.php?phpc_root_path= Virtual Law Office


»»  READMORE...
1 komentar
Subscribe to: Posts (Atom)