Updating scan_database.db file.

andresriancho · Nov 28, 2017 · 47026de · 47026de
1 parent b5553a5
commit 47026de
Showing 1 changed file with 21 additions and 2 deletions.
diff --git a/w3af/plugins/crawl/pykto/scan_database.db b/w3af/plugins/crawl/pykto/scan_database.db
@@ -2726,7 +2726,7 @@
 "002888","3233","2","@CGIDIRScgi-test.exe","GET","200","","","","","Default CGI found","",""
 "002934","3233","2","/lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/misc/allfield.jse","GET","SERVER_SOFTWARE","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
 "002935","3233","2","/lcgi/sys:/novonyx/suitespot/docs/sewse/misc/test.jse","GET","SCRIPT_NAME","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
-"002936","3233","2","/netbasic/websinfo.bas","GET","Company","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
+"002936","3233","2","/netbasic/websinfo.bas","GET","Company:","","Revision:\sNetWare","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed. CVE-2002-1634","",""
 "002937","3233","2","/perl/env.pl","GET","HSERVER_SOFTWARE","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
 "002938","3233","2","/perl/samples/env.pl","GET","HSERVER_SOFTWARE","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
 "002939","3233","2","/perl/samples/lancgi.pl","GET","Lan Boards","","","","","Novell Netware 5.1 contains Novonyx default files which reveal system information. All default files should be removed.","",""
@@ -6698,7 +6698,7 @@
 "007000","0","d","@AXIS2services/listServices","GET","<title>List\sServices","","","","","Apache Axis2 WebServices identified.","",""
 "007001","0","b","@AXIS2axis2-web/index.jsp","GET","<title>Axis\s2\s-\sHome","","","","","Apache Axis2 Web Application identified.","",""
 "007004","68662","b8e","@AXIS2axis2-admin/login","POST","Welcome\sto\sAxis2\sWeb\sAdmin\sModule\s!!","","","","","Apache Axis2 administration console with default credentials admin:axis2 found (CVE-2010-2103), see also http://www.rapid7.com/security-center/advisories/R7-0037.jsp","userName=admin&password=axis2&submit=+Login+",""
-"007006","0","be","/adminer.php","GET","www.adminer.org","","","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007006","0","be","/adminer.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
 "007007","0","b","/404.php","GET","<input type=password name=pass>","","","","","The 404.php backdoor program seems to be present. https://github.com/tennc/webshell/blob/master/php/404.php.txt","",""
 "007009","0","be","@AXIS2Login.jsp","GET","Login\sto\sAxis2::","","","","","Apache Axis2 administration console found.","",""
 "007010","0","8","@MODIR@MOFILE","POST","uid=","","gid=","","","PHPMoAdmin is vulnerable to a remote code execution (CVE-2015-2208).","object=1;system('id');",""
@@ -6849,3 +6849,22 @@
 "007158","0","e","/g450.html","GET","Avaya G450/G350 - Avaya Device Management","","routerIp","","","Avaya web console found. Default SNMP community string is public","",""
 "007159","0","e","/local-login/","GET","Unified Communications Management","","Avaya","","","Avaya System Manager web console found. Default credential is admin:admin","",""
 "007160","0","3","@WORDPRESSwp-content/plugins/simply-static/debug.txt","GET","class-ss-archive","","","","","Wordpress Simply Static debug log may reveal site information","",""
+"007161","0","0","/Editor/assetmanager/assetmanager.asp","GET","Upload\sFile","","","","","InnovaStudio file uploader found","",""
+"007162","0","0","/Telerik.Web.UI.DialogHandler.aspx","GET","200","","Loading the dialog","","","Telerik UI for ASP.NET AJAX Dialog Handler: application may allow file uploads","",""
+"007163","0","0","/Telerik.Web.UI.DialogHandler.aspx?dp=////","GET","200","","Base-64","cannot be less than zero","","Telerik UI for ASP.NET AJAX CVE-2017-9248: poor crypto may lead to arbitrary file uploads","",""
+"007164","0","0","/DesktopModules/Admin/RadEditorProvider/DialogHandler.aspx","GET","200","","Loading the dialog","","","Telerik UI for ASP.NET AJAX Dialog Handler: application may allow file uploads","",""
+"007165","0","0","/DesktopModules/Admin/RadEditorProvider/DialogHandler.aspx?dp=////","GET","200","","Base-64","cannot be less than zero","","Telerik UI for ASP.NET AJAX CVE-2017-9248: poor crypto may lead to arbitrary file uploads","",""
+"007166","0","be","/_adminer.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/ad.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.2.5-en.phpp","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/addminer-4.2.5-mysqlphp","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.2.5.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.0-en.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.0-mysql-en.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.0-mysql.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.0.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.1.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.1-en.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.1-mysql-en.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/adminer-4.3.1-mysql.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""
+"007166","0","be","/Adminer.php","GET","<title>Select\sdatabase\s-","","www.adminer.org","","","The Adminer program is a database admin access tool which can allow full administrative access to databases.","",""