Google Hacking Database (GHDB)

Search the Google Hacking Database or browse GHDB categories

Advisories and Vulnerabilities

These searches locate vulnerable servers. These searches are often generated from various security advisory posts, and in many cases are product or version-specific.

DATE Title Summary
2010-11-15 intitle:phpinfo intext:"php version" +wi... PHP 5.x COM functions safe_mode and disable_function bypass - CVE: 2007-5653: http://www.exploi...
2010-11-15 "Powered by PHP Director 0.2" PHP Director 0.21 (sql into outfile) eval() Injection: http://www.exploit-db.com/exploits/8181...
2010-11-15 "powered by shutter v0.1.1" ... Shutter 0.1.1 Multiple Remote SQL Injection Vulnerabilities - CVE: 2009-1650: http://www.exploi...
2010-11-15 "copyright 2006 Broadband Mechanics" PeopleAggregator 1.2pre6-release-53 Multiple RFI Vulnerabilities - CVE: 2007-5631: http://www.e...
2010-11-15 intext:"Powered by Pc4Uploader v9.0" Pc4Uploader 9.0 Remote Blind SQL Injection Vulnerability - CVE: 2009-1742: http://www.exploit-d...
2010-11-15 "Driven by DokuWiki" DokuWiki 2006-03-09b (dwpage.php) System Disclosure: http://www.exploit-db.com/exploits/2322...
2010-11-15 "powered by jmdcms.com" JMD-CMS Multiple Remote Vulnerabilities: http://www.exploit-db.com/exploits/15044...
2010-11-15 intext:"Powered by Lore 1.5.6" re 1.5.6 (article.php) Blind SQL Injection: http://www.exploit-db.com/exploits/7896...
2010-11-15 inurl:"printable_pedigree.php" ... Dog Pedigree Online Database 1.0.1b Multiple SQL Injection: http://www.exploit-db.com/exploits/...
2010-11-15 "powered by JAMM" JAMM CMS (id) Remote Blind SQL Injection - CVE: 2008-2755: http://www.exploit-db.com/exploits/5...
2010-11-15 Copyright 2006-2009 Insane Visions AdaptCMS Lite 1.5 Remote File Inclusion Vulnerability: http://www.exploit-db.com/exploits/10249...
2010-11-15 intitle:"owl intranet * owl" 0.82 OWL Intranet Engine 0.82 (xrms_file_root) Code Execution - CVE: 2006-1149: http://www.exploit-d...
2010-11-15 "Powered by UPB" Ultimate PHP Board 2.0b1 (chat/login.php) Code Execution: http://www.exploit-db.com/exploits/29...
2010-11-15 "nukeai beta3" PHP-Nuke NukeAI Module 3b (util.php) Remote File Include - CVE: 2006-6255: http://www.exploit-d...
2010-11-15 "By Geeklog" "Created this page in&... Geeklog 1.6.0sr1 Remote Arbitrary File Upload Vulnerability: http://www.exploit-db.com/exploits...
2010-11-15 allinurl:"shop.htm?shopMGID=" CMS Ignition SQL Injection: http://www.exploit-db.com/exploits/14471...
2010-11-15 inurl:index.php?option=com_jombib Joomla Component BibTeX 1.3 Remote Blind SQL Injection - CVE: 2007-4502: http://www.exploit-db....
2010-11-15 Nwahy.com 2.1 , inurl:'add-site.html' Nwahy Dir 2.1 Arbitrary Change Admin Password: http://www.exploit-db.com/exploits/9087...
2010-11-15 Powered by Dodo, Bubo & Misty. Feed us! ... Dodo Upload Version 1.3 Upload Shell (By pass) Vulnerability: http://www.exploit-db.com/exploit...
2010-11-15 "download this free gallery at matteobinda.co... ASP Photo Gallery 1.0 Multiple SQL Injection Vulnerabilities - CVE: 2008-0256: http://www.explo...
2010-11-15 inurl:com_seyret Joomla Seyret Video Component (com_seyret) Blind SQL Injection: http://www.exploit-db.com/explo...
2010-11-15 "PHP Project Management 0.8.10" PHP Project Management 0.8.10 Multiple RFI / LFI Vulnerabilities - CVE: 2007-5641: http://www.e...
2010-11-15 inurl:roschedule.php phpScheduleIt 1.2.10 (reserve.php) Remote Code Execution - CVE: 2008-6132: http://www.exploit-d...
2010-11-15 Powered by UCenter 1.5.0 © 2001 - 2008 Comsenz In... Ucenter Projekt 2.0 Insecure crossdomain (XSS) Vulnerability: http://www.exploit-db.com/exploit...
2010-11-15 "Powered by Grayscale Blog" Grayscale Blog 0.8.0 (Security Bypass/SQL/XSS) Multiple Remote Vulns - CVE: 2007-1432: http://w...
2010-11-15 powered:powered by CMS TinyMCE WYSIWYG Editor Multiple Vulnerabilities: http://www.exploit-db.com/exploits/11358...
2010-11-15 "Power by:RichStrong CMS" RichStrong CMS (showproduct.asp cat) Remote SQL Injection - CVE: 2008-0291: http://www.exploit-...
2010-11-15 "Search Projects" intitle:"The ulti... Softbiz Freelancers Script v.1 Remote SQL Injection - CVE: 2007-6124: http://www.exploit-db.com...
2010-11-15 "Powered by ClanTiger" ClanTiger 1.1.1 (Auth Bypass) SQL Injection Vulnerability: http://www.exploit-db.com/exploits/8...
2010-11-15 inurl:"com_ezine" Joomla / Mambo Component com_ezine v2.1 Remote File Include Vulnerability - CVE: 2009-4094: htt...
2010-11-15 "Powered by wpQuiz" wpQuiz 2.7 Multiple Remote SQL Injection Vulnerabilities - CVE: 2007-6172: http://www.exploit-d...
2010-11-15 Powered By PHPFanBase PHPFanBase 2.x (protection.php) Remote File Include Vulnerability: http://www.exploit-db.com/ex...
2010-11-15 intitle:"Directory Listing For /" + inur... Apache Tomcat (webdav) Remote File Disclosure: http://www.exploit-db.com/exploits/4552...
2010-11-15 Powered by Elvin Bug Tracking Server. Elvin BTS 1.2.0 Multiple Remote Vulnerabilities - CVE: 2009-2123: http://www.exploit-db.com/exp...
2010-11-15 "Developed by rbk" InfiniX 1.2.003 Multiple SQL Injection Vulnerabilities - CVE: 2009-2451: http://www.exploit-db....
2010-11-15 "The Merchant Project" The Merchant ...
2010-11-15 "Powered by PunBB" PunBB Extension Attachment 1.0.2 SQL Injection: http://www.exploit-db.com/exploits/9849...
2010-11-15 "Powered by ProjectCMS" ProjectCMS 1.1b Multiple Remote Vulnerabilities: http://www.exploit-db.com/exploits/8608...
2010-11-15 "Powered by F3Site" F3Site 2.1 Remote Code Execution - CVE: 2007-0763: http://www.exploit-db.com/exploits/3255...
2010-11-15 allinurl:option=com_rsmonials Joomla Component rsmonials Remote Cross Site Scripting: http://www.exploit-db.com/exploits/8517...