Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Advisories and Vulnerabilities

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.

DATE Title Summary
2010-11-15 "Powered by MercuryBoard" MercuryBoard 1.1.5 (login.php) Remote Blind SQL Injection - CVE: 2008-6632: http://www.explo...
2010-11-15 intext:"2000-2001 The phpHeaven Team" -s... phpMyChat 0.15.0dev (SYS enter) Remote Code Execution: http://www.exploit-db.com/exploits/16...
2010-11-15 "Powered by PHP-Update" -site:www.php-up... PHP-Update 2.7 Multiple Remote Vulnerabilities - CVE: 2006-6879: http://www.exploit-db.com/e...
2010-11-15 "powered by Quick.Cart" Quick.Cart 2.0 (actions_client/gallery.php) Local File Include: http://www.exploit-db.com/ex...
2010-11-15 "LinPHA Version 1.3.x" or "The LinP... LinPHA 1.3.1 (new_images.php) Remote Blind SQL Injection - CVE: 2007-4053: http://www.exploit-d...
2010-11-15 "Powered by Shop-Script FREE" Shop-Script FREE 2.0 Remote Command Execution - CVE: 2007-4932: http://www.exploit-db.com/explo...
2010-11-15 "This web site was made with PostNuke" PostNuke 0.763 (PNSV lang) Remote Code Execution - CVE: 2006-5733: http://www.exploit-db.com/ex...
2010-11-15 "powered by discuz! Discuz! 4.x SQL Injection / Admin Credentials Disclosure: http://www.exploit-db.com/exploits/28...
2010-11-15 inurl:"printable_pedigree.php" ... Dog Pedigree Online Database 1.0.1b Blind SQL Injection: http://www.exploit-db.com/exploits/874...
2010-11-15 "Barbecued by sNews" sNews 1.5.30 Remote Reset Admin Pass / Command Exec Exploit - CVE: 2007-0261: http://www.exploi...
2010-11-15 inurl:"lists/?p=subscribe" | inurl:"... PHPList 2.10.2 GLOBALS[] Remote Code Execution: http://www.exploit-db.com/exploits/1659...
2010-11-15 "Basado en Spirate" Small Pirate v-2.1 (XSS/SQL) Multiple Remote Vulnerabilities - CVE: 2009-4936: http://www.explo...
2010-11-15 intext:"2000-2001 The phpHeaven Team" phpMyChat 0.14.5 (SYS enter) Remote Code Execution: http://www.exploit-db.com/exploits/1646...
2010-11-15 inurl:/modules/rmgallery/ XOOPS Module RM+Soft Gallery 1.0 BLIND SQL Injection - CVE: 2007-1806: http://www.exploit-db.co...
2010-11-15 "Powered by Quick.Cms" Quick.Cms.Lite 0.3 (Cookie sLanguage) Local File Include - CVE: 2006-5834: http://www.exploit-d...
2010-11-15 inurl:/modules/debaser/ XOOPS Module debaser 0.92 (genre.php) BLIND SQL Injection- CVE: 2007-1805: http://www.exploit-d...
2010-11-15 "Copyright Devellion Limited 2005. All rights... CubeCart 3.0.11 (oid) Remote Blind SQL Injection - CVE: 2006-4267: http://www.exploit-db.com/ex...
2010-11-15 intext:"This site is using phpGraphy" | ... PHPGraphy 0.9.12 Privilege Escalation / Commands Execution: http://www.exploit-db.com/exploits/...
2010-11-15 inurl:"phpwcms/index.php?id=" phpwcms 1.2.6 (Cookie: wcs_user_lang) Local File Include: http://www.exploit-db.com/exploits/27...
2010-11-15 inurl:/modules/xfsection/ XOOPS Module XFsection 1.07 (articleid) BLIND SQL Injection - CVE: 2005-0725: http://www.exploi...
2010-11-15 "This site is powered by e107"|inurl:e10... e107 0.75 (GLOBALS Overwrite) Remote Code Execution: http://www.exploit-db.com/exploits/2268...
2010-11-15 index.php?option=com_ezine Joomla Component D4JeZine 2.8 Remote BLIND SQL Injection - CVE: 2007-1776: http://www.exploit-d...
2010-11-15 "powered by guestbook script" GuestBook Script 1.7 (include_files) Remote Code Execution: http://www.exploit-db.com/exploits/...
2010-11-15 "Powered By X7 Chat" X7 Chat 2.0.4 (old_prefix) Remote Blind SQL Injection - CVE: 2006-3851: http://www.exploit-db.c...
2010-11-15 inurl:/modules/lykos_reviews/ XOOPS Module Lykos Reviews 1.00 (index.php) SQL Injection - CVE: 2007-1817: http://www.exploit-...
2010-11-15 "powered by php photo album" -demo2 -pit... PHP Album 0.3.2.3 Remote Command Execution: http://www.exploit-db.com/exploits/1678...
2010-11-15 "Site powered by GuppY" | "Site cr√... GuppY 4.5.16 Remote Commands Execution - CVE: 2007-0639: http://www.exploit-db.com/exploits/322...
2010-11-15 "Powered by ClanTiger" ClanTiger 1.1.1 Multiple Cookie Handling Vulnerabilities: http://www.exploit-db.com/exploits/84...
2010-11-15 "Powered by PHP Photo Album" phpAlbum ...
2010-11-15 "Powered by Online Grades" ... Online Grades & Attendance 3.2.6 Credentials Changer SQL injection: http://www.exploit-db.c...
2010-11-15 "propulsé par DotClear" "fil atom&... DotClear 1.2.4 (prepend.php) Arbitrary Remote Inclusion - CVE: 2006-2866: http://www.exploit-db...
2010-11-15 inurl:"index.php?name=PNphpBB2" PNphpBB2 1.2 (index.php c) Remote SQL Injection - CVE: 2007-3052: http://www.exploit-db.com/exp...
2010-11-15 "is a product of Lussumo" Vanilla 1.1.3 Remote Blind SQL Injection - CVE: 2007-5643: http://www.exploit-db.com/exploits/4...
2010-11-15 "SmodCMS" & "S.ownik" SmodCMS 2.10 (Slownik ssid) Remote SQL Injection - CVE: 2007-1931: http://www.exploit-db.com/ex...
2010-11-15 "SmodBIP" & "Aktualno.ci" SmodBIP 1.06 (aktualnosci zoom) Remote SQL Injection - CVE: 2007-1920: http://www.exploit-db.co...
2010-11-15 "Personal .NET Portal" Personal.Net Portal Multiple Vulnerabilities: http://www.exploit-db.com/exploits/15067...
2010-11-15 "Powered by Burning Board Lite 1.0.2 * 2001-2... Woltlab Burning Board Lite 1.0.2 decode_cookie() SQL Injection - CVE: 2006-6237: http://www.exp...
2010-11-15 "Powered by Claroline" -demo Claroline 1.7.4 (scormExport.inc.php) Remote Code Execution: http://www.exploit-db.com/exploits...
2010-11-15 "powered by blur6ex" blur6ex 0.3.462 (ID) Admin Disclosure / Blind SQL Injection - CVE: 2006-3065: http://www.exploi...
2010-11-15 "FlatNuke" "Valid HTML 4.01!" ... Flatnuke 2.5.8 (userlang) Local Inclusion / Delete All Users: http://www.exploit-db.com/exploit...