Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Advisories and Vulnerabilities

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.

DATE Title Summary
2010-11-15 "powered by mcGalleryPRO" mcGalleryPRO 2006 (path_to_folder) Remote Include Vulnerability - CVE: 2006-4720: http://www.ex...
2010-11-15 intitle:"CCMS v3.1 Demo PW" CCMS 3.1 Demo Remote SQL Injection - CVE: 2007-6658: http://www.exploit-db.com/exploits/4809...
2010-11-15 "Powered by TinyPHPForum v3.61" TinyPHPForum 3.61 File Disclosure / Code Execution Vulnerabilities: http://www.exploit-db.com/e...
2010-11-15 inurl:index.php?option=com_joomlaconnect_be Joomla Component com_joomlaconnect_be Blind Injection Vulnerability: http://www.exploit-db.com/...
2010-11-15 inurl:es_offer.php?files_dir= Weblogicnet (files_dir) Multiple Remote File Inclusion Vulnerabilities - CVE: 2007-4715: http:/...
2010-11-15 "Powered by NovaBoard v1.0.0" NovaBoard 1.0.0 Multiple Remote Vulnerabilities: http://www.exploit-db.com/exploits/8063...
2010-11-15 inurl:"com_hestar" Mambo Component com_hestar Remote SQL Injection Vulnerability: http://www.exploit-db.com/exploi...
2010-11-15 "Webdesign Cosmos Solutions" Cosmos Solutions cms SQL Injection Vulnerability: http://www.exploit-db.com/exploits/12793...
2010-11-15 "Powered by PHP Director" PHPDirector ...
2010-11-15 Powered by One-News ... OneNews Beta 2 (XSS/HI/SQL) Multiple Remote Vulnerabilities: http://www.exploit-db.com/exploits...
2010-11-15 inurl:"coursepage.php?id=" intext:"... Aim Web Design Multiple Vulnerabilities: http://www.exploit-db.com/exploits/12791...
2010-11-15 "kims Q - Administrator Login Mode" KimsQ 040109 Multiple Remote File Include Vulnerability: http://www.exploit-db.com/exploits/119...
2010-11-15 Powered by osCommerce | Customized by EZ-Oscommerc... EZ-Oscommerce 3.1 Remote File Upload: http://www.exploit-db.com/exploits/14415...
2010-11-15 inurl:yvcomment ... Joomla Component yvcomment 1.16 Blind SQL Injection - CVE: 2008-2692: http://www.exploit-db.com...
2010-11-15 "index.php?option=com_expose" ... Joomla Component Expose RC35 Remote File Upload Vulnerability - CVE: 2007-3932: http://www.expl...
2010-11-15 "Powered by ClanAdmin Tools v1.4.2" ClanWeb 1.4.2 Remote Change Password / Add Admin: http://www.exploit-db.com/exploits/8717...
2010-11-15 Powered by iBoutique v4.0 iBoutique 4.0 (cat) Remote SQL Injection Vulnerability - CVE: 2008-4354: http://www.exploit-db....
2010-11-15 Powered by UGiA PHP UPLOADER V0.2 ... UGiA PHP UPLOADER V0.2 Shell Upload Vulnerability: http://www.exploit-db.com/exploits/11261...
2010-11-15 "/nuke/htmltonuke.php" - "htmltonuk... PHP-Nuke Module htmltonuke 2.0alpha (htmltonuke.php) RFI Vuln: http://www.exploit-db.com/exploi...
2010-11-15 inurl:/phpplanner/userinfo.php?userid= phpplanner XSS / SQL Vulnerability: http://www.exploit-db.com/exploits/13847...
2010-11-15 "powered by: profitCode" PayProCart 1146078425 Multiple Remote File Include Vulnerabilities - CVE: 2006-4672: http://www...
2010-11-15 inurl:"com_dms" Joomla Component com_dms SQL Injection Vulnerability - CVE: 2010-0800: http://www.exploit-db.co...
2010-11-15 inurl:com_jb2 Joomla Component JooBlog 0.1.1 Blind SQL Injection - CVE: 2008-2630: http://www.exploit-db.com/...
2010-11-15 inurl:"com_simplefaq" Joomla Component com_simplefaq (catid) Blind Sql Injection Vulnerability - CVE: 2010-0632CVE: 2...
2010-11-15 inurl:"com_dateconverter" Joomla Component com_dateconverter 0.1 SQL Injection Vulnerability: http://www.exploit-db.com/e...
2010-11-15 allinurl:links.php?t=search phpBB Links MOD 1.2.2 Remote SQL Injection - CVE: 2007-4653: http://www.exploit-db.com/exploits...
2010-11-15 inurl:"cont_form.php?cf_id=" WebDM CMS SQL Injection Vulnerability - CVE: 2010-2689: http://www.exploit-db.com/exploits/1412...
2010-11-15 "powered by gelato cms" Gelato (index.php post) Remote SQL Injectio - CVE: 2007-4918: http://www.exploit-db.com/exploit...
2010-11-15 inurl:index.php?option=com_races "raceId"... Joomla Component com_races Blind SQL Injection Vulnerability: http://www.exploit-db.com/exploit...
2010-11-15 inurl:com_n-forms Joomla Component n-forms 1.01 Blind SQL Injection: http://www.exploit-db.com/exploits/6055...
2010-11-15 Powered by eLitius Version 1.0 eLitius 1.0 (manage-admin.php) Add Admin/Change Password: http://www.exploit-db.com/exploits/84...
2010-11-15 inurl:inc_webblogmanager.asp DMXReady Blog Manager ...
2010-11-15 inurl:"com_jgen" Joomla Component (com_jgen) SQL Injection Vulnerability - CVE: 2010-3422: http://www.exploit-db...
2010-11-15 inurl:/jobsearchengine/ i-netsolution Job Search Engine SQL Injection Vulnerability - CVE: 2010-2611: http://www.exploi...
2010-11-15 "Powered by TS Special Edition" TS Special Edition v.7.0 Multiple Vulnerabilities: http://www.exploit-db.com/exploits/12645...
2010-11-15 "powered by jshop" ... JShop 1.x - 2.x (page.php xPage) Local File Inclusion Vulnerability - CVE: 2008-1624: http://ww...
2010-11-15 Powered by Guruscript.com Freelancers Marketplace Script Persistent XSS Vulnerability: http://www.exploit-db.com/exploits...
2010-11-15 Copyright ©2007-2009 by Kasseler CMS. All rights ... Kasseler CMS 2.0.5 => By Pass / Download Backup Vulnerability - CVE: 2009-4822: http://www.e...
2010-11-15 © 2010 Powered by Subrion CMS Subrion Auto Classifieds Persistent Xss Vulnerability: http://www.exploit-db.com/exploits/14391...
2010-11-15 inurl:/wp-content/plugins/fgallery/ Wordpress plugin fGallery 2.4.1 fimrss.php SQL Injection Vulnerability - CVE: 2008-0491: http:/...