CVE Certified
GHDB

Google Hacking Database

Footholds

Examples of queries that can help a hacker gain a foothold into a web server

DATE Title Summary
2004-12-19 inurl:"phpOracleAdmin/php" -download -cv... phpOracleAdmin is intended to be a webbased Oracle Object Manager.In many points alike phpMyAdm...
2004-11-28 PHPKonsole PHPShell filetype:php -echo PHPKonsole is just a little telnet like shell wich allows you to run commands on the webserver....
2004-11-28 filetype:php HAXPLORER "Server Files Browser&... Haxplorer is a webbased filemanager which enables the user to browse files on the webserver. Yo...
2004-11-06 inurl:ConnectComputer/precheck.htm | inurl:Remote/... Windows Small Business Server 2003: The network configuration page is called "ConnectCompu...
2004-10-22 (inurl:81/cgi-bin/.cobalt/) | (intext:"Welco... The famous Sun linux appliance. The default page displays this text:"Congratulations on Ch...
2004-10-09 intitle:"Web Data Administrator - Login" The Web Data Administrator is a utility program implemented in ASP.NET that enables you to easi...
2004-07-20 "adding new user" inurl:addnewuser -&quo... Allows an attacker to create an account on a server running Argosoft mail server pro for window...
2004-07-12 PHP Shell (unprotected) PHP Shell is a shell wrapped in a PHP script. It's a tool you can use to execute arbiritary she...
2004-07-12 Public PHP FileManagers PHPFM is an open source file manager written in PHP. It is easy to set up for a beginner, but s...
2004-05-20 +htpasswd +WS_FTP.LOG filetype:log WS_FTP.LOG can be used in many ways to find more information about a server. This query is very...
2003-09-09 intitle:admin intitle:login Admin Login pages. Now, the existance of this page does not necessarily mean a server is vulner...