Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us

What We Scan For

CGI abuses Vulnerabilities

Name Summary
'Les Visiteurs' script injection Les Visiteurs inc file upload
/cgi-bin directory browsable ? Is /cgi-bin browsable ?
/doc directory browsable ? Is /doc browsable ?
/doc/packages directory browsable ? Is /doc/packages browseable ?
/perl directory browsable ? Is /perl browsable ?
2BGal SQL Injection SQL Injection
3Com NBX VoIP NetSet Detection Tests for 3Com NBX VoIP NetSet Detection
3Com Network Supervisor Directory Traversal Vulnerability Checks for directory traversal vulnerability in 3Com Network Supervisor
4Images <= 1.7.1 Directory Traversal Vulnerability Check if 4Images is vulnerable to directory traversal flaws
@lex guestbook remote file include Checks for @lex guestbook
A1Stats Traversal Checks if A1Stats reads any file
Aardvark Topsites CONFIG[path] Parameter Remote File Inclusion Vulnerability Checks for a file include using CONFIG[path] in Aardvark Topsites
Aborior Command Execution Detects display.cgi
ACal path Parameter Remote File Include Vulnerability Tries to read /etc/passwd using ACal
Achievo code injection Checks for the presence of Achievo
ActiveAuction Multiple Vulnerabilities Checks the version of vBulletin
ActivePerl perlIS.dll Buffer Overflow Determines if arbitrary commands can be executed thanks to ActivePerl's perlIS.dll
ActiveState Perl directory traversal Determines if ActivePerl is vulnerable
ActualAnalyzer rf Parameter Remote File Include Vulnerability Tries to read /etc/passwd using ActualAnalyzer
ad.cgi Checks for the presence of /cgi-bin/ad.cgi
Adcycle Password Disclosure Checks for the presence of /cgi-bin/build.cgi
Admbook PHP Code Injection Flaw Checks for remote PHP code injection in Admbook
AdMentor Login Flaw AdMentor Login Flaw
admin.cgi overflow Overflows admin.cgi
Adobe Breeze Directory Traversal Vulnerability Checks version of Adobe Breeze
Adobe Document Server Default Credentials Checks for default credentials in Adobe Document Server
Adobe Document Server File URI Resource Access Vulnerability Tries to write to a file using Adobe Document Server
Adobe Document Server for Reader Extensions < 6.1 Multiple Vulnerabilities Tries to exploit an XSS flaw in Adobe Document Server for Reader Extensions
ADODB do Command Execution Vulnerability Checks for do parameter command execution vulnerability in ADODB
ADODB sql Parameter SQL Injection Vulnerability Checks for sql parameter SQL injection vulnerability in ADODB
Advanced Guestbook Index.PHP SQL Injection Vulnerability Checks for an SQL injection attack in Advanced Guestbook
Advanced Guestbook phpbb_root_path Parameter Remote File Include Vulnerability Tries to read /etc/passwd using Advanced Guestbook
Advanced Poll info.php Checks for the presence of info.php
Advanced Poll Variable Overwriting Vulnerability Checks if variables can be overwritten with Advanced Poll
aeNovo Database Content Disclosure Vulnerability Checks for the presence of DB file of aeNovo
album.pl Command Execution determines the version of album.pl
Alchemy Eye HTTP Command Execution Determines if arbitrary commands can be executed by Alchemy Eye
Alexandria-dev upload spoofing Checks for the presence of patch/index.php and docman/new.php
alibaba.pl Checks for the presence of /cgi-bin/alibaba.pl
AlienForm CGI script Checks if the AlienForm CGI script is vulnerable
Alkalay.Net Multiple Scripts Arbitrary Command Execution Vulnerabilities Checks for arbitrary command execution vulnerabilities in multiple scripts from Alkalay.Net
Allaire JRun directory browsing vulnerability Allaire JRun directory browsing vulnerability
Allaire JRun Directory Listing Make a request like http://www.example.com/./WEB-INF
Alt-N WebAdmin Multiple Remote Vulnerabilities Checks for the version of Alt-N WebAdmin
AltaVista Intranet Search Checks if query?mss=... reads arbitrary files
AMember config[root_dir] Parameter File Include Vulnerability Checks for config[root_dir] parameter file include vulnerability in AMember
AN HTTPd count.pl file truncation Creates a file on the remote server
AN-HTTPd tests CGIs Checks for the presence of several CGIs
anacondaclip CGI vulnerability Checks for the presence of anacondaclip.pl
AnalogX web server traversal %2E%2E/%2E%2E/file.txt
AngelineCMS installPath Remote File Include Vulnerability Tries to read /etc/passwd using AngelineCMS
Anti Nessus defenses Detects anti Nessus features
AnyForm Checks for the presence of AnyForm2
Apache for Windows CGI Source Code Disclosure Vulnerability Tries to read source of print-env.pl with Apache for Windows
Apache Tomcat Directory Listing and File disclosure Apache Tomcat Directory listing and File Disclosure Bugs
Apache Tomcat source.jsp malformed request information disclosure Checks for the Tomcat source.jsp malformed request vulnerability
AppServ appserv_root Parameter Remote File Include Vulnerability Checks for appserv_root parameter remote file include vulnerability in AppServ
aprox portal file disclosure Checks Aprox Portal
ArGoSoft Mail Server Directory Traversal Vulnerability Gets the version of the remote ArGoSoft server
ArGoSoft Mail Server multiple flaws Gets the version of the remote ArGoSoft server
ArGoSoft Mail Server multiple flaws(2) Gets the version of the remote ArGoSoft server
args.bat Checks for the presence of /cgi-dos/args.bat
Artmedic Kleinanzeigen File Inclusion Vulnerability Checks for Artmedic Kleinanzeigen's PHP inclusion vulnerability
artmedic_links5 File Inclusion Vulnerability Checks for artmedic_links5's PHP inclusion vulnerability
Ashnews Code Injection Checks for the presence of ashnews.php
ASP Inline Corporate Calendar SQL injection Checks for the presence of an SQL injection in defer.asp
ASP PortalApp SQL injection SQL Injection
ASP source using %20 trick downloads the source of ASP scripts
ASP source using %2e trick downloads the source of ASP scripts
ASP source using ::$DATA trick downloads the source of ASP scripts
ASP-Rider SQL Injection SQL Injection
ASP.NET path disclosure Tests for ASP.NET Path Disclosure Vulnerability
ASP/ASA source using Microsoft Translate f: bug downloads the source of IIS scripts such as ASA,ASP
ASP/ASA source using Microsoft Translate f: bug (IIS 5.1) downloads the source of IIS scripts such as ASA,ASP
ASPjar Guestbook SQL Injection Checks for the presence of an SQL injection in login.asp
AspUpload vulnerability Checks for the AspUpload software
aspWebAlbum SQL Injection SQL Injection
aspWebCalendar SQL Injection SQL Injection
Asterisk Recording Interface Configuration File Disclosure Vulnerability Tries to read ARI's configuration file
Asterisk Recording Interface recording Parameter Information Disclosure Vulnerability Requests a file using ARI's misc/audio.php
Athena Web Registration remote command execution flaw Checks for Athena Web Registration remote command execution flaw
Atomic Photo Album apa_module_basedir Variable File Include Vulnerability Checks for apa_module_basedir variable file include vulnerability in Atomic Photo Album
AtomicBoard file reading Checks for the presence of remotehtmlview.php
ATutor < 1.5.1-pl1 Multiple Flaws Checks for remote arbitrary command in ATutor
ATutor password reminder SQL injection Checks for SQL injection in password_reminder.php
auktion.cgi Checks for the presence of /cgi-bin/auktion.cgi
AutoLinks Pro alpath Parameter File Include Vulnerability Checks for alpath parameter file include vulnerability in AutoLinks Pro
AutomatedShops WebC.cgi buffer overflows Checks for the presence of webc.cgi
AutomatedShops WebC.cgi installed Checks for the presence of webc.cgi
AutoTheme PostNuke Module Multiple Unspecified Vulnerabilities Checks for multiple unspecified vulnerabilities in AutoTheme PostNuke module
Avenger's News System Command Execution Avenger's News System Command Execution
Awol code injection Checks for the presence of includes/awol-condensed.inc.php
AWStats configdir parameter arbitrary cmd exec Determines the presence of AWStats awstats.pl flaws
AWStats Debug Remote Information Disclosure And Code Execution Vulnerabilities Determines the presence of a debug output in AWStats
AWStats migrate Parameter Remote File Include Vulnerability Tries to run a command using AWStats
AWStats rawlog plugin logfile parameter input validation vulnerability Determines the presence of AWStats awstats.pl
AWStats Referrer Arbitrary Command Execution Vulnerability Checks for referrer arbitrary command execution vulnerability in AWStats
axis2400 webcams reads the remote /var/log/messages
b2 cafelog code injection Checks for the presence of gm-2-b2.php
b2Evolution title SQL Injection Checks for the presence of an SQL injection in title parameter
Backup CGIs download Attempts to download the remote CGIs
Barracuda Networks Spam Firewall Multiple Vulnerabilities Tries to authenticate to Barracuda Networks Spam Firewall
Barracuda Spam Firewall Firmware < 3.1.18 Multiple Vulnerabilities Checks for multiple vulnerabilities in Barracuda Spam Firewall firmware < 3.1.18
BASE base_maintenance Authentication Bypass Vulnerability Tries to bypass authentication in BASE
BASE BASE_path Parameter Remote File Include Vulnerability Tries to read a local file using BASE
BasiliX Arbitrary Command Execution Vulnerability Checks for arbitrary command execution vulnerability in BasiliX
BasiliX Arbitrary File Disclosure Vulnerability Checks for arbitrary file disclosure vulnerability in BasiliX
BasiliX Attachment Disclosure Vulnerability Checks for attachment disclosure vulnerability in BasiliX
BasiliX Detection Checks for the presence of BasiliX
Basilix includes download Checks for the presence of include files
BasiliX Message Content Script Injection Vulnerability Checks for message content script injection vulnerability in BasiliX
BasiliX SQL Injection Vulnerability Checks for SQL injection vulnerability in BasiliX
Basilix Webmail Dummy Request Vulnerability Checks for the presence of basilix.php3
bb-hist.sh Read arbitrary files using the CGI bb-hist.sh
bb-hostsvc.sh Read arbitrary files using the CGI bb-hostsvc.sh
bBlog <= 0.7.4 Multiple Vulnerabilities Checks for multiple vulnerabilities in bBlog <= 0.7.4
bBlog SQL injection flaw Check bBlog version
BBS E-Market File Disclosure Directory Traversal Attempt
BDPDT Arbitrary File Upload Vulnerabily Checks for BDPDT's uploadfilepopup.aspx
BEA WebLogic Operator/Admin Password Disclosure Vulnerability Checks the version of WebLogic
BEA WebLogic Scripts Server scripts Source Disclosure BEA WebLogic may be tricked into revealing the source code of JSP scripts.
BEA WebLogic Scripts Server scripts Source Disclosure (2) BEA WebLogic may be tricked into revealing the source code of JSP scripts.
BEA WebLogic Scripts Server scripts Source Disclosure (3) BEA WebLogic may be tricked into revealing the source code of JSP scripts.
bigconf Checks for the presence of /cgi-bin/bigconf.cgi
BiTBOARD IMG BBCode Tag JavaScript Injection Vulnerability Determines the version of BiTBOARD
bizdb1-search.cgi located Determines the presence of cgi-bin/bizdb1-search.cgi
Bizmail.cgi Mail From Unauthorized Mail Relay Vulnerability Checks the version of bizmail.cgi
biztalk server flaws Determines if BizTalk is installed
BlackBoard Internet Newsboard System remote file include flaw Checks BlackBoard Internet Newsboard System version
Blazix Web Server JSP source disclosure Attempts to read the source of a jsp page
BLnews code injection Checks for the presence of objects.inc.php4
Blog Torrent Remote Directory Traversal Looks for a directory traversal vulnerability in Blog Torrent.
BlueDragon 6.2.1 Multiple Vulnerabilities Checks for an XSS flaw in BlueDragon Server
BlueShoes APP Parameter Remote File Include Vulnerability Tries to read a local file with BlueShoes' Google API
boastMachine Remote Arbitrary File Upload Vulnerability Checks for remote arbitrary file upload vulnerability in boastMachine
Bonsai Mutiple Flaws Determine if bonsai is vulnerable to xss attack
Brio Unix Directory Traversal Brio Unix Directory Traversal
BroadBoard SQL Injection SQL Injection
BroadVision Physical Path Disclosure Vulnerability Tests for BroadVision Physical Path Disclosure Vulnerability
Brooky CubeCart < 2.0.5 Checks Brooky CubeCart language XSS
BRT CopperExport XP_Publish.PHP SQL Injection Vulnerability SQL Injection in CopperExport
bttlxeForum SQL injection Uses a SQL query as a password
Buffer overflow in WebSite Professional's webfind.exe Buffer overflow attempt
BugPort unspecified attachment handling flaw Checks for BugPort version
Bugzilla <= 2.18.1 / 2.19.3 Multiple Vulnerabilities Checks for multiple vulnerabilities in Bugzilla <= 2.18.1 / 2.19.3
Bugzilla Authentication Bypass and Information Disclosure Checks for the presence of Bugzilla
Bugzilla Detection Checks for the presence of bugzilla
Bugzilla Information Disclosure Vulnerabilities Checks for information disclosure vulnerabilities in Bugzilla
Bugzilla Multiple Flaws Checks for the presence of bugzilla
Bugzilla Multiple Flaws (2) Checks for the presence of bugzilla
Bugzilla remote arbitrary command execution Checks for the version of bugzilla
Bugzilla SQL flaws Checks for the presence of bugzilla
Bugzilla XSS and insecure temporary filenames Checks for the presence of bugzilla
BulletScript MailList bsml.pl Information Disclosure Determine if MiniBB can be used to execute arbitrary commands
Burning Board boardids Parameter SQL Injection Vulnerability Tries to generate a SQL error
Burning Board decode_cookie() SQL Injection Vulnerability Checks for SQL injection vulnerability in Burning Board Lite
Burning Board Detection Checks for presence of Burning Board
Burning Board modcp.php SQL Injection Vulnerabilities Checks for SQL injection vulnerabilities in Burning Board modcp.php script
Burning Board verify_email SQL Injection Vulnerability Checks for verify_email SQL injection vulnerability in Burning Board
Burning Board wbb_userid parameter SQL Injection Vulnerability Checks for SQL injection vulnerability in Burning Board Lite
Bypass Axis Storpoint CD authentication Requests /cd/../config/html/cnf_gi.htm
Cacti < 0.8.6e Multiple Vulnerabilities Checks for multiple vulnerabilities in Cacti < 0.8.6e
Cacti < 0.8.6f Multiple Vulnerabilities Checks for multiple vulnerabilities in Cacti < 0.8.6f
Cacti cmd.php Arbitrary Command Execution Vulnerability Checks if Cacti's cmd.php is remotely accessible
Cacti copy_cacti_user SQL Injection Vulnerability Checks if Cacti's copy_cacti_user.php is remotely accessible
CactuShop XSS and SQL injection flaws Checks CactuShop flaws
Cafe Wordpress SQL injection Checks for the presence of cafe wordpress
CakePHP file Parameter Directory Traversal Vulnerability Tries to read a local file with CakePHP
Calendar Express Multiple Flaws Checks Calendar Express XSS and SQL flaws
Calendarix id Parameter SQL Injection Vulnerabilities Checks for id parameter SQL injection in Calendarix
Calendarix SQL Injection Vulnerability Checks for multiple vulnerabilities in Calendarix
calendar_admin.pl Checks for the presence of /cgi-bin/calendar_admin.pl
Campas Checks for the presence of /cgi-bin/campas
Carello detection Checks for the presence of carello.dll
Cerberus Helpdesk GUI Agent < 2.7.1 Multiple Vulnerabilities Checks for multiple vulnerabilities in Cerberus Helpdesk GUI Agent < 2.7.1
Cerberus Helpdesk rpc.php Information Disclosure Vulnerability Gets requestors for a Cerberus ticket
Cerberus Support Center Multiple Vulnerabilities Checks for multiple vulnerabilities in Cerberus Support Center
cfWebStore SQL injection SQL Injection
cgi.rb Checks for the presence of cgi.rb
CGIEmail's CGICso (Send CSO via CGI) Command Execution Vulnerability Determine if a remote host is vulnerable to the cgicso vulnerability
cgiforum Checks for the presence of /cgi-bin/cgiforum.pl
CgiMail.exe vulnerability Checks for the cgimail.exe file
cgitest.exe buffer overrun Checks for the /cgi-bin/cgitest.exe buffer overrun
cgiWebupdate.exe vulnerability Checks for the cgiWebupdate.exe file
Checks for listrec.pl Checks for the listrec.pl CGI
CherryPy staticFilter Directory Traversal Vulnerability Checks for staticFilter directory traversal vulnerability in CherryPy
ChipMonk Forum SQL Injection Checks if ChipMonk forum is vulnerable to a SQL injection attack
ChipMunk CMScore SQL Injection Checks if ChipMunk CMScore is vulnerable to a SQL injection attack
Chora Remote Code Execution Vulnerability Checks for remote code execution vulnerability in Chora
CitrusDB Remote Authentication Bypass Vulnerability Determines the presence of CitrusDB
Claroline < 1.5.4 / 1.6.0 Multiple Input Validation Vulnerabilities Checks for multiple input validation vulnerabilities in Claroline < 1.5.4 / 1.6.0
Claroline Detection Checks for presence of Claroline
Claroline extAuthSource Parameter Array Remote File Include Vulnerability Tries to read a local file with Claroline
Claroline includePath Parameter Remote File Include Vulnerability Tries to read a local file using Claroline
Claroline Multiple Vulnerabilities (2) Tries to read /etc/passwd using Claroline
Claroline Multiple Vulnerabilities (3) Tries to read a local file using Claroline
Clever Copy connect.inc Information Disclosure Vulnerability Reads Clever Copy's admin/connect.inc file
CMS Made Simple nls Parameter File Include Vulnerability Checks for nls parameter file include vulnerability in CMS Made Simple
Cobalt RaQ2 cgiwrap Checks for the presence of /cgi-bin/cgiwrap
Cobalt siteUserMod cgi Checks for the presence of /.cobalt/siteUserMod/siteUserMod.cgi
CodeGrrl Applications Remote File Inclusion Vulnerabilities Checks for remote file inclusion vulnerabilities in CodeGrrl applications
CodeThatShoppingCart Input Validation Vulnerabilities Checks for an SQL injection in CodeThatShoppingCart
Cognos Powerplay WE Vulnerability Checks for the ppdscgi.exe CGI
Cold Fusion Administration Page Overflow Checks for the presence of /cfide/administrator/index.cfm
ColdFusion Debug Mode Get ColdFusion Debug Information
ColdFusion Double-Encoded Null Byte Information Disclosure Vulnerability Tries to retrieve script source code using ColdFusion
ColdFusion Path Disclosure Checks for a ColdFusion vulnerability
ColdFusion Vulnerability Checks for a ColdFusion vulnerability
Comersus BackOffice Administrator Authentication Bypass Vulnerability Checks for administrator authentication bypass vulnerability in Comersus BackOffice
Comersus BackOffice Lite Administrative Bypass Checks for the presence of a BackOffice Lite Administrative Bypass
Comersus Cart Customer Database Disclosure Vulnerability Checks for customer database vulnerability in Comersus Cart
Comersus Cart Multiple Vulnerabilities Checks for multiple vulnerabilities in Comersus Cart
Comersus Login SQL injection Checks for Comersus
Commerce Server 2002 Authentication Bypass Vulnerability Checks version of Commerce Server 2002
commerce.cgi Checks for the presence of /cgi-bin/commerce.cgi
Community Link Pro webeditor login.cgi remote command execution Checks for Community Link Pro webeditor login.cgi remote execution flaw
Contenido cfg Parameter Remote File Include Vulnerability Checks for cfg parameter remote file include vulnerability in Contenido
CoolForum SQL Injection flaw Checks for the presence of CoolForum
CoolForum XSS and SQL Injection Vulnerabilities Checks for cross-site scripting and SQL injection vulnerabilities in CoolForum
Coppermine Gallery Detection Checks for the presence of Coppermine Gallery
Coppermine Gallery Remote Command Execution Checks for the presence of db_input.php
Coppermine Gallery SQL injection Checks for the presence of db_input.php
Coppermine Gallery Voting Restriction Failure Checks for the presence of db_input.php
Coppermine Photo Gallery < 1.3.2 Multiple Vulnerabilities Checks for version of Coppermine Photo Gallery
Coppermine Photo Gallery f Parameter Remote File Include Vulnerability Checks for f parameter remote file include vulnerability in Coppermine Photo Gallery
Coppermine Photo Gallery file Parameter Local File Include Vulnerability Tries to read a local file using Coppermine Photo Gallery
Count.cgi Checks Count.cgi version
counter.exe vulnerability Checks for the counter.exe file
counter.php file overwrite Determine if counter.php is present
cPanel Backup File Disclosure Checks for the version of cpanel
cPanel FrontPage Extension Flaws Checks for the version of cpanel
cPanel Login Command Execution Command Injection
cpanel remote command execution Executes /bin/id
Credit Card Data Disclosure in CitrusDB Checks for the presence of IO directory of CitrusDB
Cross-Referencing Linux (lxr) file reading Checks for the presence of /cgi-bin/source
Crystal Report virtual directory traversal Crystal Report virtual directory traversal
CSNews.cgi vulnerability Checks for the csnews.cgi file
csSearch.cgi Checks for the presence of /cgi-bin/csSearch.cgi
ctss.idc check Checks for the presence of /scripts/tools/ctss.idc
CubeCart 2.0.6 and Earlier Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in CubeCart 2.0.6 and earlier
CubeCart < 3.0.12 Multiple Vulnerabilities Checks for a XSS flaw in CubeCart
CubeCart < 3.0.13 Multiple Vulnerabilities Tries to read a local file in CubeCart
CubeCart Detection Checks for the presence of CubeCart
CubeCart FCKeditor Arbitrary File Upload Vulnerability Tries to use CubeCart to upload a file with PHP code
CubeCart SQL injection SQL Injection in CubeCart
CuteNews <= 1.3.6 Multiple Vulnerabilities Checks for multiple vulnerabilities in CuteNews <= 1.3.6
CuteNews archive Parameter Information Disclosure Vulnerability Tries to read a file via archive parameter of CuteNews
CuteNews Client-IP Header Code Injection Vulnerability Checks for Client-IP header code injection vulnerability in CuteNews
CuteNews code injection Checks for the presence of search.php
CuteNews Debug Info Disclosure Checks for the presence of cutenews
CuteNews Detection Checks for presence of CuteNews
CuteNews directory traversal flaw Checks for CuteNews dir traversal
Cutenews search.php Cross Site Scripting Vulerability Tries to inject javascript code.
Cuyahoga FCKEditor Security Bypass Vulnerability Tries to call FCKEditor's upload.php script
CVS/Entries requests CVS/Entries
CVSTrac cgi.c multiple overflows Checks for CVSTrac version
CVSTrac chdir() chroot jail escape Checks for CVSTrac version
CVSTrac CVSROOT/passwd arbitrary account deletion Checks for CVSTrac version
CVSTrac database plaintext password storage Checks for CVSTrac version
CVSTrac Detection Detects the presence of CVSTrac
CVSTrac filediff vulnerability Checks for CVSTrac version
CVSTrac history.c history_update function overflow Checks for CVSTrac version
CVSTrac invalid ticket DoS Checks for CVSTrac version
CVSTrac malformed URI infinite loop DoS Checks for CVSTrac version
CVSTrac text output formatter DoS Checks CVSTrac version
CVSTrac ticket title arbitrary command execution Checks for CVSTrac version
CVSTrac timeline.c timeline_page function overflow Checks for CVSTrac version
CVSWeb 1.80 gives a shell to cvs committers Checks if CVSWeb is present and gets its version
CVSweb detection Determines whether cvsweb.cgi is installed on the remote host
CWmail.exe vulnerability Checks for the cwmail.exe file
Cyberstrong eShop SQL Injection Vulnerabilities Checks for an SQL injection in Cyberstrong eShop v4.2
DB4Web directory traversal Read any file through DB4Web
DB4Web TCP relay DB4Web debug page allow bounce scan
DBMan CGI server information leakage Checks if webplus reads local files
dcforum Checks for the presence of /cgi-bin/dcforum
DCP-Portal Multiple SQL Injection Vulnerabilities Determines the presence of DCP-Portal
DCP-Portal Path Disclosure Determine if DCP-Portal displays its physical path
ddicgi.exe vulnerability Checks for the ddicgi.exe file
DeluxeBB Multiple SQL injection flaws Checks DeluxeBB version
DeskNow Mail and Collaboration Server Directory Traversal Vulnerabilities Checks for the presence of an old version of DeskNow
Detects LDU version LDU detection
Detects Xaraya version Xaraya detection
DevTrack Web Service UserName SQL Injection Vulnerability Tries to generate a SQL error using DevTrack Web Service
Digital Scribe login.php SQL Injection flaw Checks for SQL injection flaw in Digital Scribe
Directory listing through Sambar's search.dll Checks the presence of search.dll
Directory Manager's edit_image.php Detects edit_image.php
directory pro web traversal Checks for the presence of /cgi-bin/directorypro.cgi
directory.php Checks for the presence of /directory.php
Docebo GLOBALS Variable Overwrite Vulnerability Checks for file inclusions errors in multiple Docebo applications
Dokeos < 1.6.4 / 2.0.3 Remote File Include Vulnerabilities Tries to read /etc/passwd using Dokeos
Dokeos extAuthSource Parameter Array Remote File Include Vulnerability Tries to read a local file with Dokeos
DokuWiki Detection Checks for presence of DokuWiki
DokuWiki dwpage.php Accessibility Vulnerability Checks whether DocuWiki dwpage.php is accessible via http
DokuWiki im_convert Arbitrary Code Execution Vulnerability Executes arbitrary command via DocuWiki im_convert Feature
DokuWiki spellcheck Arbitrary Code Execution Vulnerability Executes arbitrary PHP code via DocuWiki spellcheck
dotProject docs Directory Information Disclosure Vulnerabilities Checks for docs directory information disclosure vulnerabilities in dotProject
dotProject Remote File Include Vulnerabilities Checks for remote file include vulnerabilities in dotProject
Dragonfly CMS currentlang Parameter Local File Include Vulnerability Checks for currentlang parameter local file include vulnerability in Dragonfly CMS
Dream4 Koobi CMS Index.PHP SQL Injection Vulnerability Checks for an SQL injection in the Koobi CMS
Drupal Arbitrary PHP Code Execution Vulnerability Checks version of Drupal
Drupal Captcha Bypass Vulnerability Tries to bypass captcha when registering as a new user in Drupal
Drupal Comment Code Execution Vulnerability Tries to execute a command via Drupal
Drupal Comment Preview Code Execution Vulnerability (2) Tries to execute a command via Drupal
Drupal Detection Detects Drupal
Drupal Privilege Escalation Vulnerability Checks version of Drupal
Drupal XML-RPC for PHP Remote Code Injection Vulnerability Checks for XML-RPC for PHP remote code injection vulnerability in Drupal
DUamazon Pro Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in DUamazon Pro
DUclassmate Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in DUclassmate
DUforum Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in DUforum
Dumpenv Checks for the presence of /cgi-bin/dumpenv
Dune Web Server Overflow Checks for Dune Overflow
DUpaypal Pro Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in DUpaypal Pro
DUportal Pro Multiple SQL Injection Vulnerabilities Checks for multiple SQL injection vulnerabilities in DUportal Pro
DUPortal/DUPortal Pro Multiple SQL Injection Vulnerabilities Checks for SQL injection vulnerability in DUPortal
DUware iType Parameter SQL Injection Vulnerability Checks for iType parameter SQL injection vulnerability in DUware
DUware multiple vulnerabilities Determines if the remote ASP scripts are vulnerable to SQL injection
Dwarf HTTP Server < 1.3.3 Multiple Vulnerabilities Checks version of Dwarf HTTP Server
E-Shopping Cart Arbitrary Command Execution (WebDiscount) E-Shopping Cart Arbitrary Command Execution (WebDiscount)
E-Theni code injection Checks for the presence of aff_list_langue.php
e107 <= 0.617 Multiple Vulnerabilities Checks for multiple vulnerabilities in e107 <= 0.617
e107 cookie SQL Injection Vulnerability Tries to bypass authentication in e107 with a special cookie
e107 database dump e107 flaw
e107 Detection Checks for the presence of e107
e107 e107language_e107cookie Local File Include Vulnerability Tries to read a local file with e107
e107 Email Injection Vulnerability Tries to send arbitrary email with e107
e107 ePing Plugin Arbitrary Code Execution Vulnerability Checks for arbitrary code execution vulnerability in e107 ePing plugin
e107 eTrace Plugin Arbitrary Code Execution Vulnerability Checks for arbitrary code execution vulnerability in e107 eTrace plugin
e107 Remote Code Execution Vulnerability Tries to run a command in e107
e107 resetcore.php SQL Injection e107 SQL Injection
Easy Address Book Web Server Format String Vulnerability Tries to crash Easy Address Book Web Server
Easy File Sharing Web Server ACL Bypass Checks /disk_c
Easy File Sharing Web Server Information Disclosure Tries to read a local file via EFS
Easy Message Board Command Execution Checks for Easy Message Board
EasyDynamicPages edp_relative_path Parameter Remote File Include Vulnerability Checks for the presence of EasyDynamicPages
EasyPHPCalendar serverPath Remote File Include Vulnerabilities Checks for serverPath remote file include vulnerabilities in EasyPHPCalendar
EasyWeb FileManager Directory Traversal Determines if EasyWeb FileManager is present
Ecartis Username Spoofing Checks for the presence of lsg2.cgi
eCommerce Multiple Vulnerabilities Checks for multiple vulnerabilities in eCommerce
Edgewall Software Trac SQL injection flaw Checks for SQL injection flaw in Trac
EdiMax AP Hidden Password Check Edimax Hidden Password Check
eFiction < 2.0.2 Multiple Vulnerabilities Checks for multiple vulnerabilities in eFiction < 2.0.2
EGroupWare Detection Detects the presence of EGroupWare
EGroupWare Multiple Vulnerabilitie Checks for the version of EGroupWare
eLDAPo cleartext passwords Checks for eLDAPo
ELOG < 2.6.1 Multiple Vulnerabilities Checks for multiple vulnerabilities in ELOG < 2.6.1
ELOG Web LogBook global Denial of Service Tries to crash the remote service.
ELOG Web Logbook Multiple Remote Vulnerabilities Determines the presence of ELOG Web Logbook
empower cgi path Attempts to find the location of the remote web root
Emulive Server4 Authentication Bypass Requests the admin page of the remote EmuLive Server4
Emumail WebMail multiple vulnerabilities version test for Emumail
Episodex Guestbook Unauthorized Access and HTML Injection Vulnerability Checks for unathentication access to admin.asp
ePolicy Orchestrator Local Information Disclosure Vulnerability Checks for local information disclosure vulnerability in ePolicy Orchestrator
Etomite CMS id Paramater SQL Injection Tries to generate a SQL error with Etomite CMS
Excite for WebServers Checks for the presence of /cgi-bin/ews
Exhibit Engine list.php SQL Injection Vulnerabilities Checks for SQL injection vulnerability in Exhibit Engine's list.php
Exhibit Engine toroot Parameter Remote File Include Vulnerability Tries to read a local file with Exhibit Engine
Exo PHPDesk id Parameter SQL Injection Vulnerability Tries to generate a SQL error with Exo PHPDesk
Exponent CMS < 0.96.4 Multiple Vulnerabilities Checks for multiple vulnerabilities in Exponent CMS < 0.96.4
Exponent CMS Multiple Cross-Site Scripting Vulnerabilities Checks for the version of Exponent
Exponent CMS view Parameter Local File Include Vulnerability Tries to read a local file in Exponent CMS
Extent RBS ISP Checks for the presence of Extent RBS ISP 2.5
ezPublish config disclosure Determine if ezPublish config file can be retrieved
EZShopper 3.0 Checks for the presence of EZShopper's CGIs
EZsite Forum Discloses Passwords to Remote Users Checks for EZsiteForum.mdb password database
ezUpload <= 2.2 Multiple Vulnerabilities Checks for multiple vulnerabilities in ezUpload <= 2.2
e_Board arbitrary file reading Checks for e_Board
F-Secure Policy Manager Path Disclosure Checks for /fsms/fsmsh.dll
FAQManager Arbitrary File Reading Vulnerability Tests for FAQManager Arbitrary File Reading Vulnerability
Faxsurvey Checks if faxsurvey is vulnerable
FCKeditor Arbitrary File Upload Vulnerability Tries to use upload a file with PHP code using FCKeditor
FCKeditor for PHP-Nuke Arbitrary File Upload Vulnerability Detects arbitrary file upload vulnerability in FCKeditor for PHP-Nuke
Fedora DS Administration Server Information Disclosure Vulnerability Checks for an information disclosure vulnerability in Fedora Directory Server Administration Server
Feedsplitter <= 2006-01-21 Multiple Vulnerabilities Tries to read an invalid XML file with Feedsplitter
File Disclosure in OWL's Workshop Detect OWLS File Disclosure
File Disclosure in PHP Manpage Detect PHP Manpage File Disclosure
File Inclusion Vulnerability in Jaws Detect Jaws File Inclusion Vulnerability
File Inclusion Vulnerability in Pivot Detect Pivot File Inclusion Vulnerability
Finger cgi Checks for the presence of /cgi-bin/finger
Fingerprint web server with favicon.ico Attempt to fingerprint web server with favicon.ico
FishCart SQL injections Checks for the presence of an SQL injection in upstnt.asp
FlatNuke < 2.5.6 Multiple Vulnerabilities Checks for multiple vulnerabilities in FlatNuke < 2.5.6
FlatNuke Form Submission Input Validation Vulnerability Determines if FlatNuke is installed
FlatNuke id Parameter Directory Traversal Vulnerability Checks for id parameter directory traversal vulnerability in FlatNuke
FlexCast Server Terminal Authentication Vulnerability Checks for terminal authentication vulnerability in FlexCast Server
Flyspray adodbpath Parameter Remote File Include Vulnerability Checks for adodbpath parameter remote file include vulnerability in Flyspray
FormHandler.cgi Attempts to read /etc/passwd
formmail.pl Checks for the presence of /cgi-bin/formmail.pl
Forum51/Board51/News51 Users Disclosure Checks for the presence of user.idx
foxweb CGI Checks for the presence of foxweb.exe or foxweb.dll
Free Articles Directory Remote File Inclusion Vulnerability Checks for file includes in Free Articles Directory
ftp.pl shows the listing of any dir Checks for the presence of /cgi-bin/ftp/ftp.pl
FtpLocate fsite Parameter Command Execution Vulnerability Checks for fsite parameter command execution vulnerability in FtpLocate
FUDforum < 2.7.1 Avatar Upload Vulnerability Checks for avatar upload vulnerability in FUDforum < 2.7.1
Fuji Xerox Printing Systems Authentication Bypass Vulnerability Gets version of remote printer
Fusion News X-Forwarded-For Code Injection Vulnerability Checks for X-Forwarded-For code injection vulnerability in Fusion News
Fusion SBX Password Bypass and Command Execution Checks for the presence of a Fusion SBX Password Bypass
Gallery < 2.0.3 Multiple Vulnerabilities Checks for IP spoofing in Gallery
gallery authentication bypass Checks for a bug in gallery
gallery code injection Checks for the presence of includes/needinit.php
gallery code injection (2) Checks for the presence of setup/index.php
gallery code injection (3) Checks for the presence of init.php
Gallery g2_itemId Parameter Directory Traversal Vulnerability Checks for g2_itemId parameter Directory Traversal vulnerability in Gallery
Gallery Install Log Information Disclosure Vulnerability Checks for Gallery install log
Gallery Multiple Vulnerabilities Checks for the presence of login.php
Gallery PostNuke Integration Access Validation Vulnerability Checks for PostNuke integration access validation vulnerability in Gallery
Gallery Script Execution Checks for the version of Gallery
Gallery stepOrder Parameter Local File Include Vulnerabilities Tries to read a file using Gallery stepOrder parameter
Gallery Unspecified HTML Injection Vulnerability Checks for the version of Gallery
Gallery ZipCart File Retrieval Vulnerability Tries to retrieve a file using Gallery's ZipCar