Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Advisories and Vulnerabilities

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.

DATE Title Summary
2010-11-15 FhImage, powered by Flash-here.com Fhimage 1.2.1 Remote Command Execution: http://www.exploit-db.com/exploits/7821...
2010-11-15 "Powered by Burning Board Lite 1.0.2 * 2001-2... Woltlab Burning Board Lite 1.0.2 Blind SQL Injection: http://www.exploit-db.com/exploits/2842...
2010-11-15 "is proudly powered by WordPress" Wordpress 2.0.6 wp-trackback.php Remote SQL Injection - CVE: 2007-0233: http://www.exploit-db.c...
2010-11-15 "This forum powered by Phorum." Phorum 5 (pm.php) Arbitrary Local Inclusion - CVE: 2006-3611: http://www.exploit-db.com/exploit...
2010-11-15 "2007 Rafal Kucharski" RTWebalbum 1.0.462 (AlbumID) Blind SQL Injection - CVE: 2009-1910: http://www.exploit-db.com/ex...
2010-11-15 "by eXtreme Crew" extreme-fusion 4.02 Remote Code Execution: http://www.exploit-db.com/exploits/2937...
2010-11-15 Copyright . Nucleus CMS v3.22 . Valid XHTML 1.0 St... Nucleus CMS 3.22 (DIR_LIBS) Arbitrary Remote Inclusion - CVE: 2006-2583: http://www.exploit-db....
2010-11-15 "Powered by BLOG:CMS"|"Powered by b... BLOG:CMS 4.0.0k Remote SQL Injection - CVE: 2006-3364: http://www.exploit-db.com/exploits/1960...
2010-11-15 "FlatNuke" "Valid HTML 4.01!" ... Flatnuke 2.5.8 file() Priv Escalation / Code Execution: http://www.exploit-db.com/exploits/2498...
2010-11-15 "This site is powered by CMS Made Simple"... CMS Made Simple 1.2.4 (FileManager module) File Upload - CVE: 2008-2267: http://www.exploit-db....
2010-11-15 "powered by ILIAS" ... ILIAS LMS 3.9.9/3.10.7 Arbitrary Edition/Info Disclosure Vulns: http://www.exploit-db.com/explo...
2010-11-15 Realizzato utilizzando Web Portal ... WebPortal CMS 0.6-beta Remote Password Change - CVE: 2008-0142: http://www.exploit-db.com/explo...
2010-11-15 "powered by jaws" | "powered by the... Jaws 0.6.2 (Search gadget) Remote SQL Injection - CVE: 2006-3292: http://www.exploit-db.com/exp...
2010-11-15 "powered by php update" PHP-Update 2.7 (admin/uploads.php) Remote Code Execution - CVE: 2006-6878: http://www.exploit-d...
2010-11-15 "Driven by DokuWiki" DokuWiki 2006-03-09b (dwpage.php) Remote Code Execution: http://www.exploit-db.com/exploits/232...
2010-11-15 "Powered by Drake CMS" inurl:index.php?o... Drake CMS 0.4.11 Remote Blind SQL Injection - CVE: 2008-6475: http://www.exploit-db.com/exploit...
2010-11-15 "Powered by MercuryBoard" MercuryBoard 1.1.4 (User-Agent) Remote SQL Injection: http://www.exploit-db.com/exploits/2247...
2010-11-15 inurl:php-stats.js.php Php-Stats 0.1.9.1b (php-stats-options.php) admin 2 exec() - CVE: 2006-7173: http://www.exploit-...
2010-11-15 "Powered by SMF" Simple Machines Forum 1.1 rc2 local inclusion: http://www.exploit-db.com/exploits/2231...
2010-11-15 intext:"Powered by simplog" Simplog 0.9.2 (s) Remote Commands Execution - CVE: 2006-0146: http://www.exploit-db.com/exploit...
2010-11-15 "Powered by Zomplog" Zomplog 3.8.1 upload_files.php Arbitrary File Upload - CVE: 2007-5230: http://www.exploit-db.co...
2010-11-15 "Powered by PHP-Update" -site:www.php-up... PHP-Update ...
2010-11-15 WEBalbum 2004-2006 duda WebAlbum 2.02pl COOKIE[skin2] Remote Code Execution - CVE: 2006-1480: http://www.exploit-db.com...
2010-11-15 "powered by TSEP - The Search Engine Project&... TSEP 0.942.02 Multiple Remote Vulnerabilities: http://www.exploit-db.com/exploits/9057...
2010-11-15 Welcome to your PHPOpenChat-Installation! ADODB 4.70 (PhpOpenChat 3.0.x) Server.php SQL Injection: http://www.exploit-db.com/exploits/165...
2010-11-15 intitle:"login to cacti" Cacti 0.8.6i cmd.php popen() Remote Injection: http://www.exploit-db.com/exploits/3029...
2010-11-15 "& Spider Friendly by Crack" phpBB Spider Friendly Module 1.3.10 File Include - CVE: 2006-5665: http://www.exploit-db.com/ex...
2010-11-15 "Copyright @2007 Iatek LLC" PortalApp 4.0 (SQL/XSS/Auth Bypasses) Multiple Remote Vulnerabilities - CVE: 2008-4612: http://...
2010-11-15 Portal By vbPortal Version 3.5.0 vbPortal 3.0.2 3.6.0 b1 (cookie) Remote Code Excution - CVE: 2006-4004: http://www.exploit-db.c...
2010-11-15 "100% | 50% | 25%" "Back to gallery... Easy Photo Gallery 2.1 XSS/FD/Bypass/SQL Injection - CVE: 2008-6988: http://www.exploit-db.com/...
2010-11-15 "powered by XHP CMS" XHP CMS 0.5 (upload) Remote Command Execution - CVE: 2006-1371: http://www.exploit-db.com/explo...
2010-11-15 "Powered by FreeWebshop.org 2.2.1" FreeWebshop 2.2.1 Remote Blind SQL Injection - CVE: 2007-6466: http://www.exploit-db.com/exploi...
2010-11-15 intext:"Powered by Plogger!" -plogger.or... Plogger Beta 2.1 Administrative Credentials Disclosure: http://www.exploit-db.com/exploits/1621...
2010-11-15 "Powered by IMGallery" IMGallery 2.5 Create Uploader Script - CVE: 2007-0082: http://www.exploit-db.com/exploits/3049...
2010-11-15 "Help * Contact * Imprint * Sitemap" | &... Papoo 3.02 (kontakt menuid) Remote SQL Injection - CVE: 2007-2320: http://www.exploit-db.com/ex...
2010-11-15 "Powered by webSPELL" webSPELL 4.2.0c Bypass BBCode XSS Cookie Stealing Vulnerability - CVE: 2009-1408: http://www.ex...
2010-11-15 Small Business Manager Plesk Small Business Manager 10.2.0 and Site Editor Multiple Vulnerabilities: http://www.exploi...
2010-11-15 "Powered by PHP Advanced Transfer Manager v1.... PHP Advanced Transfer Manager 1.30 Source Code Disclosure: http://www.exploit-db.com/exploits/2...
2010-11-15 "BioScripts" MiniTwitter 0.3-Beta (SQL/XSS) Multiple Remote Vulnerabilities: http://www.exploit-db.com/explo...
2010-11-15 intitle:"login to cacti" Cacti 0.8.6i (copy_cacti_user.php) SQL Injection: http://www.exploit-db.com/exploits/3045...