Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Advisories and Vulnerabilities

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.

DATE Title Summary
2010-11-15 "Powered by CMSimple" CMSimple 3.1 Local File Inclusion / Arbitrary File Upload - CVE: 2008-2650: http://www.exploit-...
2010-11-15 intext:"Powered by Max.Blog" Max.Blog 1.0.6 (offline_auth.php) Offline Authentication Bypass - CVE: 2009-0409: http://www.ex...
2010-11-15 "Powered by SazCart" SazCart 1.5.1 (prodid) Remote SQL Injection - CVE: 2008-2411: http://www.exploit-db.com/exploit...
2010-11-15 inurl:modules.php?op= "pollID" MD-Pro 1.083.x Survey Module (pollID) Blind SQL Injection Vulnerability - CVE: 2009-2618: http:...
2010-11-15 Powered By SalSa Creations ClipShare Pro 2006-2007 (chid) SQL Injection Vulnerability - CVE: 2008-5489: http://www.exploit...
2010-11-15 inurl:profile.php?mode= PHPBB MOD [2.0.19] Invitation Only (PassCode Bypass vulnerability): http://www.exploit-db.com/e...
2010-11-15 "and Powered By :Sansak" WebBoard 2.0 Arbitrary SQL Question/Anwser Delete Vulnerability: http://www.exploit-db.com/expl...
2010-11-15 inurl:"com_eventcal" Joomla eventcal Component 1.6.4 com_eventcal Blind SQL Injection Vulnerability: http://www.expl...
2010-11-15 "index.php?id_menu=" CMScontrol ... CMScontrol (Content Management Portal Solutions) Sql Injection - CVE: 2009-3326: http://www.exp...
2010-11-15 inurl:"com_a6mambocredits" Mambo a6mambocredits Component 1.0.0 File Include Vulnerability - CVE: 2006-4288: http://www.ex...
2010-11-15 "index.php?option=com_chronocontact" / &... Joomla Component ChronoForms (com_chronocontact): http://www.exploit-db.com/exploits/12843...
2010-11-15 inurl:/_blogadata/ Blogator-script 0.95 Change User Password Vulnerability - CVE: 2008-6473: http://www.exploit-db...
2010-11-15 "PHP Gallery © 2010 PHP Weby hostgator coupo... Free PHP photo gallery script Remote Command Execution Vulnerability: http://www.exploit-db.com...
2010-11-15 Powered By Pligg | Legal: License and Source Pligg CMS 9.9.0 (story.php id) Remote SQL Injection Vulnerability - CVE: 2008-3366: http://www....
2010-11-15 Powered by PHP Image Gallery SoftComplex PHP Image Gallery 1.0 (Auth Bypass) SQL Injection Vuln - CVE: 2008-6488: http://www...
2010-11-15 Copyright 2006 © Flax Article Manager v1.1 Flax Article Manager 1.1 (cat_id) SQL Injection Vulnerability - CVE: 2009-0284: http://www.expl...
2010-11-15 "Powered By diskos" Diskos CMS Manager (SQL/DB/Auth Bypass) Multiple Vulnerabilities - CVE: 2009-4798: http://www.e...
2010-11-15 Copyright 2010 My Hosting. All rights reserved Hosting-php-dynamic (Auth Bypass) Vulnerability: http://www.exploit-db.com/exploits/11968...
2010-11-15 infusions/recept/recept.php? PHP-Fusion Mod recept (kat_id) SQL Injection Vulnerability - CVE: 2008-4527: http://www.exploit...
2010-11-15 allinurl:"lyrics_menu/lyrics_song.php?l_id=&q... e107 Plugin lyrics_menu (lyrics_song.php l_id) SQL Injection Vulnerability - CVE: 2008-4906: ht...
2010-11-15 inurl:option=com_education_classes joomla component education SQL injection Vulnerability: http://www.exploit-db.com/exploits/1215...
2010-11-15 "Designed & Developed by Zeeways.com"... zeeproperty 1.0 (Upload/XSS) Multiple Remote Vulnerabilities - CVE: 2008-6915: http://www.explo...
2010-11-15 inurl:com_ezautos Joomla Component (com_ezautos) SQL Injection Vulnerability: http://www.exploit-db.com/exploits/...
2010-11-15 "PHPWebAdmin for hMailServer" intitle:PH... hMAilServer 4.4.2 (PHPWebAdmin) File Inclusion Vulnerabilities: http://www.exploit-db.com/explo...
2010-11-15 Powered MarketSaz MarketSaz remote file Upload Vulnerability: http://www.exploit-db.com/exploits/13927...
2010-11-15 inurl:com_gigcal Joomla Component com_gigcal (gigcal_gigs_id) SQL Injection Vuln - CVE: 2009-0726: http://www.ex...
2010-11-15 "Powered by web directory script" Web Directory Script 1.5.3 (site) SQL Injection Vulnerability - CVE: 2008-4091: http://www.expl...
2010-11-15 inurl:com_jomtube Joomla Component com_jomtube (user_id) Blind SQL Injection / SQL Injection: http://www.exploit-...
2010-11-15 inurl:index.php?ortupg= CMS Ortus 1.13 Remote SQL Injection Vulnerability - CVE: 2008-6282: http://www.exploit-db.com/e...
2010-11-15 "Powered By Zoopeer" Zoopeer 0.1 & 0.2 (fckeditor) Shell Upload Vulnerability: http://www.exploit-db.com/exploit...
2010-11-15 inurl:"com_category" Joomla Component com_category (catid) SQL Injection Vulnerability: http://www.exploit-db.com/ex...
2010-11-15 allinurl:"com_neogallery" Joomla Component NeoGallery 1.1 SQL Injection Vulnerability - CVE: 2008-0752: http://www.exploi...
2010-11-15 "Powered By AlstraSoft AskMe Pro" AlstraSoft AskMe Pro 2.1 Multiple SQL Injection Vulnerabilities - CVE: 2008-2902: http://www.ex...
2010-11-15 inurl:"lista_articulos.php?id_categoria="... SitioOnline SQL Injection Vulnerability: http://www.exploit-db.com/exploits/10453...
2010-11-15 intext:Powered by AWCM v2.1 AWCM 2.1 Local File Inclusion / Auth Bypass Vulnerabilities - CVE: 2009-3219: http://www.exploi...
2010-11-15 inurl:"/rbfminc/" RogioBiz_PHP_file_manager_V1.2 bypass admin: http://www.exploit-db.com/exploits/11731...
2010-11-15 "Vivid Ads Shopping Cart" Vivid Ads Shopping Cart (prodid) Remote SQL Injection: http://www.exploit-db.com/exploits/10297...
2010-11-15 Copyright © 2007 Agares Media. Powered by AMCMS... Arcadem Pro (articlecat) Remote SQL Injection Vulnerability: http://www.exploit-db.com/exploits...
2010-11-15 powered by vBulletin 4.0.4 VBbuletin 4.0.4 Multiple Vulnerabilities: http://www.exploit-db.com/exploits/14686...
2010-11-15 "PHP Gallery © 2010 PHP Weby hostgator coupo... ValidForm Builder script Remote Command Execution Vulnerability: http://www.exploit-db.com/expl...