WEB-CGI HyperSeek hsx.cgi directory traversal attempt /hsx.cgi ../../ %00 bugtraq,2314 cve,2001-0253 nessus,10602 WEB-CGI HyperSeek hsx.cgi access /hsx.cgi bugtraq,2314 cve,2001-0253 nessus,10602 WEB-CGI whois_raw.cgi arbitrary command execution attempt /whois_raw.cgi? |0A| arachnids,466 bugtraq,304 cve,1999-1063 nessus,10306 WEB-CGI whois_raw.cgi access /whois_raw.cgi arachnids,466 bugtraq,304 cve,1999-1063 nessus,10306 WEB-CGI websitepro path access /HTTP/1. arachnids,468 bugtraq,932 cve,2000-0066 nessus,10303 WEB-CGI dcforum.cgi directory traversal attempt /dcforum.cgi forum=../.. bugtraq,2611 cve,2001-0436 cve,2001-0437 nessus,10583 WEB-CGI dcforum.cgi access /dcforum.cgi bugtraq,2728 cve,2001-0527 nessus,10583 WEB-CGI dcboard.cgi invalid user addition attempt /dcboard.cgi command=register %7cadmin bugtraq,2728 cve,2001-0527 nessus,10583 WEB-CGI dcboard.cgi access /dcboard.cgi bugtraq,2728 cve,2001-0527 nessus,10583 WEB-CGI anaconda directory transversal attempt /apexec.pl template=../ bugtraq,2338 bugtraq,2388 cve,2000-0975 cve,2001-0308 nessus,10536 WEB-CGI wrap access /wrap arachnids,234 bugtraq,373 cve,1999-0149 nessus,10317 WEB-CGI calendar_admin.pl arbitrary command execution attempt /calendar_admin.pl?config=|7C| bugtraq,1215 cve,2000-0432 nessus,10506 WEB-CGI calendar_admin.pl access /calendar_admin.pl bugtraq,1215 cve,2000-0432 nessus,10506 WEB-CGI wayboard attempt /way-board/way-board.cgi db= ../.. bugtraq,2370 cve,2001-0214 nessus,10610 WEB-CGI commerce.cgi arbitrary file access attempt /commerce.cgi page= /../ bugtraq,2361 cve,2001-0210 nessus,10612 WEB-CGI zml.cgi attempt /zml.cgi file=../ bugtraq,3759 cve,2001-1209 nessus,10830 WEB-CGI zml.cgi access /zml.cgi bugtraq,3759 cve,2001-1209 nessus,10830 WEB-CGI directorypro.cgi attempt /directorypro.cgi show= ../.. bugtraq,2793 cve,2001-0780 nessus,10679 WEB-CGI cal_make.pl directory traversal attempt /cal_make.pl p0=../../ bugtraq,2663 cve,2001-0463 nessus,10664 WEB-CGI ttawebtop.cgi arbitrary file attempt /ttawebtop.cgi pg=../ bugtraq,2890 cve,2001-0805 nessus,10696 WEB-CGI ustorekeeper.pl directory traversal attempt /ustorekeeper.pl file=../../ bugtraq,2536 cve,2001-0466 nessus,10645 WEB-CGI icat access /icat cve,1999-1069 WEB-CGI Bugzilla doeditvotes.cgi access /doeditvotes.cgi bugtraq,3800 cve,2002-0011 WEB-CGI a1stats a1disp3.cgi directory traversal attempt /a1disp3.cgi?/../../ bugtraq,2705 cve,2001-0561 nessus,10669 WEB-CGI a1stats a1disp3.cgi access /a1disp3.cgi bugtraq,2705 cve,2001-0561 nessus,10669 WEB-CGI a1stats access /a1stats/ bugtraq,2705 cve,2001-0561 nessus,10669 WEB-CGI admentor admin.asp access /admentor/admin/admin.asp bugtraq,4152 cve,2002-0308 nessus,10880 url,www.securiteam.com/windowsntfocus/5DP0N1F6AW.html WEB-CGI alchemy http server PRN arbitrary command execution attempt /PRN/../../ bugtraq,3599 cve,2001-0871 nessus,10818 WEB-CGI alchemy http server NUL arbitrary command execution attempt /NUL/../../ bugtraq,3599 cve,2001-0871 nessus,10818 WEB-CGI alibaba.pl arbitrary command execution attempt /alibaba.pl|7C| bugtraq,770 cve,1999-0885 nessus,10013 WEB-CGI alibaba.pl access /alibaba.pl bugtraq,770 cve,1999-0885 nessus,10013 WEB-CGI AltaVista Intranet Search directory traversal attempt /query?mss=.. bugtraq,896 cve,2000-0039 nessus,10015 WEB-CGI test.bat arbitrary command execution attempt /test.bat|7C| bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI test.bat access /test.bat bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI input.bat arbitrary command execution attempt /input.bat|7C| bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI input.bat access /input.bat bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI input2.bat arbitrary command execution attempt /input2.bat|7C| bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI input2.bat access /input2.bat bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI envout.bat arbitrary command execution attempt /envout.bat|7C| bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI envout.bat access /envout.bat bugtraq,762 cve,1999-0947 nessus,10016 WEB-CGI echo.bat arbitrary command execution attempt /echo.bat & bugtraq,1002 cve,2000-0213 nessus,10246 WEB-CGI echo.bat access /echo.bat bugtraq,1002 cve,2000-0213 nessus,10246 WEB-CGI hello.bat arbitrary command execution attempt /hello.bat & bugtraq,1002 cve,2000-0213 nessus,10246 WEB-CGI hello.bat access /hello.bat bugtraq,1002 cve,2000-0213 nessus,10246 WEB-CGI tst.bat access /tst.bat bugtraq,770 cve,1999-0885 nessus,10014 WEB-CGI csSearch.cgi arbitrary command execution attempt /csSearch.cgi setup= ` ` bugtraq,4368 cve,2002-0495 nessus,10924 WEB-CGI csSearch.cgi access /csSearch.cgi bugtraq,4368 cve,2002-0495 nessus,10924 WEB-CGI dbman db.cgi access /dbman/db.cgi bugtraq,1178 cve,2000-0381 nessus,10403 WEB-CGI loadpage.cgi directory traversal attempt /loadpage.cgi file=../ bugtraq,2109 cve,2000-1092 nessus,10065 WEB-CGI faqmanager.cgi arbitrary file access attempt /faqmanager.cgi?toc= |00| bugtraq,3810 nessus,10837 WEB-CGI FormHandler.cgi directory traversal attempt attempt /FormHandler.cgi reply_message_attach= /../ bugtraq,798 bugtraq,799 cve,1999-1050 nessus,10075 WEB-CGI Home Free search.cgi directory traversal attempt /search.cgi letter=../ bugtraq,921 cve,2000-0054 nessus,10101 WEB-CGI pagelog.cgi directory traversal attempt /pagelog.cgi name=../ bugtraq,1864 cve,2000-0940 nessus,10591 WEB-CGI talkback.cgi directory traversal attempt /talkbalk.cgi article=../../ bugtraq,2547 cve,2001-0420 WEB-CGI emumail.cgi NULL attempt /emumail.cgi type= %00 bugtraq,5824 cve,2002-1526 WEB-CGI document.d2w access /document.d2w bugtraq,2017 cve,2000-1110 WEB-CGI db2www access /db2www cve,2000-0677 WEB-CGI /cgi-bin/ access /cgi-bin/ /cgi-bin/ HTTP WEB-CGI /cgi-dos/ access /cgi-dos/ /cgi-dos/ HTTP WEB-CGI eXtropia webstore directory traversal /web_store.cgi page=../ bugtraq,1774 cve,2000-1005 nessus,10532 WEB-CGI eXtropia webstore access /web_store.cgi bugtraq,1774 cve,2000-1005 nessus,10532 WEB-CGI shopping cart directory traversal /shop.cgi page=../ bugtraq,1777 cve,2000-0921 WEB-CGI Armada Style Master Index directory traversal /search.cgi?keys catigory=../ bugtraq,1772 cve,2000-0924 nessus,10562 url,www.synnergy.net/downloads/advisories/SLA-2000-16.masterindex.txt WEB-CGI cached_feed.cgi moreover shopping cart directory traversal /cached_feed.cgi ../ bugtraq,1762 cve,2000-0906 WEB-CGI cached_feed.cgi moreover shopping cart access /cached_feed.cgi bugtraq,1762 cve,2000-0906 WEB-CGI webdist.cgi arbitrary command attempt /webdist.cgi distloc=|3B| bugtraq,374 cve,1999-0039 nessus,10299 WEB-CGI webdist.cgi access /webdist.cgi bugtraq,374 cve,1999-0039 nessus,10299 WEB-CGI bigconf.cgi access /bigconf.cgi bugtraq,778 cve,1999-1550 nessus,10027 WEB-CGI /cgi-bin/jj access /cgi-bin/jj bugtraq,2002 cve,1999-0260 nessus,10131 WEB-CGI ax-admin.cgi access /ax-admin.cgi WEB-CGI axs.cgi access /axs.cgi WEB-CGI cachemgr.cgi access /cachemgr.cgi bugtraq,2059 cve,1999-0710 nessus,10034 WEB-CGI responder.cgi access /responder.cgi bugtraq,3155 WEB-CGI web-map.cgi access /web-map.cgi WEB-CGI txt2html.cgi directory traversal attempt /txt2html.cgi /../../../../ WEB-CGI store.cgi product directory traversal attempt /store.cgi product= ../.. bugtraq,2385 cve,2001-0305 WEB-CGI SIX webboard generate.cgi attempt /generate.cgi content=../ bugtraq,3175 cve,2001-1115 nessus,10725 WEB-CGI SIX webboard generate.cgi access /generate.cgi bugtraq,3175 cve,2001-1115 nessus,10725 WEB-CGI spin_client.cgi access /spin_client.cgi nessus,10393 WEB-CGI csPassword.cgi access /csPassword.cgi bugtraq,4885 bugtraq,4886 bugtraq,4887 bugtraq,4889 cve,2002-0917 cve,2002-0918 WEB-CGI csPassword password.cgi.tmp access /password.cgi.tmp bugtraq,4889 cve,2002-0920 WEB-CGI Nortel Contivity cgiproc DOS attempt /cgiproc?Nocfile= bugtraq,938 cve,2000-0063 cve,2000-0064 nessus,10160 WEB-CGI Nortel Contivity cgiproc DOS attempt /cgiproc?|24| bugtraq,938 cve,2000-0063 cve,2000-0064 nessus,10160 WEB-CGI Nortel Contivity cgiproc access /cgiproc bugtraq,938 cve,2000-0063 cve,2000-0064 nessus,10160 WEB-CGI Oracle reports CGI access /rwcgi60 setauth= bugtraq,4848 cve,2002-0947 WEB-CGI alienform.cgi directory traversal attempt /alienform.cgi .|7C|./.|7C|. bugtraq,4983 cve,2002-0934 nessus,11027 WEB-CGI AlienForm af.cgi directory traversal attempt /af.cgi .|7C|./.|7C|. bugtraq,4983 cve,2002-0934 nessus,11027 WEB-CGI alienform.cgi access /alienform.cgi bugtraq,4983 cve,2002-0934 nessus,11027 WEB-CGI AlienForm af.cgi access /af.cgi bugtraq,4983 cve,2002-0934 nessus,11027 WEB-CGI story.pl arbitrary file read attempt /story.pl next=../ bugtraq,3028 cve,2001-0804 nessus,10817 WEB-CGI story.pl access /story.pl bugtraq,3028 cve,2001-0804 nessus,10817 WEB-CGI siteUserMod.cgi access /.cobalt/siteUserMod/siteUserMod.cgi bugtraq,951 cve,2000-0117 nessus,10253 WEB-CGI cgicso access /cgicso bugtraq,6141 cve,2002-1652 nessus,10779 nessus,10780 WEB-CGI nph-publish.cgi access /nph-publish.cgi cve,1999-1177 nessus,10164 WEB-CGI printenv access /printenv bugtraq,1658 cve,2000-0868 nessus,10188 nessus,10503 WEB-CGI sdbsearch.cgi access /sdbsearch.cgi bugtraq,1658 cve,2000-0868 nessus,10503 WEB-CGI rpc-nlog.pl access /rpc-nlog.pl cve,1999-1278 url,marc.theaimsgroup.com/?l=bugtraq&m=91470326629357&w=2 url,marc.theaimsgroup.com/?l=bugtraq&m=91471400632145&w=2 WEB-CGI rpc-smb.pl access /rpc-smb.pl cve,1999-1278 WEB-CGI cart.cgi access /cart.cgi bugtraq,1115 cve,2000-0252 nessus,10368 WEB-CGI vpasswd.cgi access /vpasswd.cgi bugtraq,6038 nessus,11165 WEB-CGI alya.cgi access /alya.cgi nessus,11118 WEB-CGI viralator.cgi access /viralator.cgi bugtraq,3495 cve,2001-0849 nessus,11107 WEB-CGI smartsearch.cgi access /smartsearch.cgi bugtraq,7133 WEB-CGI mrtg.cgi directory traversal attempt /mrtg.cgi cfg=/../ bugtraq,4017 cve,2002-0232 nessus,11001 WEB-CGI overflow.cgi access /overflow.cgi bugtraq,6326 cve,2002-1361 nessus,11190 url,www.cert.org/advisories/CA-2002-35.html WEB-CGI streaming server parse_xml.cgi access /parse_xml.cgi bugtraq,6960 cve,2003-0054 nessus,11278 WEB-CGI album.pl access /album.pl bugtraq,7444 nessus,11581 WEB-CGI MDaemon form2raw.cgi overflow attempt /form2raw.cgi \Wfrom=[^\x3b&\n]{100} bugtraq,9317 cve,2003-1200 url,secunia.com/advisories/10512/ WEB-CGI MDaemon form2raw.cgi access /form2raw.cgi bugtraq,9317 cve,2003-1200 url,secunia.com/advisories/10512/ WEB-CGI pgpmail.pl access /pgpmail.pl bugtraq,3605 cve,2001-0937 nessus,11070 WEB-CGI NetScreen SA 5000 delhomepage.cgi access /delhomepage.cgi bugtraq,9791 cve,2004-0347 WEB-CGI mailman directory traversal attempt /mailman/ .../ cve,2005-0202 WEB-CGI math_sum.mscgi access /math_sum.mscgi bugtraq,10831 nessus,14182 WEB-CGI everythingform.cgi access /everythingform.cgi bugtraq,2101 bugtraq,4579 cve,2001-0023 nessus,11748 WEB-CGI chipcfg.cgi access /chipcfg.cgi bugtraq,2767 cve,2001-1341 url,archives.neohapsis.com/archives/bugtraq/2001-05/0233.html WEB-CGI tcsh access /tcsh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI wwwwais access /wwwwais cve,2001-0223 nessus,10597 WEB-CGI loadpage.cgi access /loadpage.cgi bugtraq,2109 cve,2000-1092 nessus,10065 WEB-CGI test-cgi attempt /test-cgi/*?* arachnids,218 bugtraq,2003 cve,1999-0070 nessus,10282 WEB-CGI pfdispaly.cgi arbitrary command execution attempt /pfdispaly.cgi?' cve,1999-0270 nessus,10174 WEB-CGI bizdbsearch access /bizdb1-search.cgi bugtraq,1104 cve,2000-0287 nessus,10383 WEB-CGI bbs_forum.cgi access /bbs_forum.cgi bugtraq,2177 cve,2001-0123 url,www.cgisecurity.com/advisory/3.1.txt WEB-CGI flexform access /flexform url,www.wiretrip.net/rfp/p/doc.asp/i2/d6.htm WEB-CGI imageFolio.cgi access /imageFolio.cgi bugtraq,4579 bugtraq,6265 cve,2002-1334 nessus,11748 WEB-CGI webspirs.cgi access /webspirs.cgi bugtraq,2362 cve,2001-0211 nessus,10616 WEB-CGI newsdesk.cgi access /newsdesk.cgi bugtraq,2172 cve,2001-0232 nessus,10586 WEB-CGI archie access /archie WEB-CGI webplus directory traversal /webplus?script ../ arachnids,471 bugtraq,1102 cve,2000-0282 nessus,10367 WEB-CGI awstats.pl command execution attempt /awstats.pl? update= update=[^\r\n\x26]+ logfile= awstats.pl\?[^\r\n]*logfile=\x7C bugtraq,12572 nessus,16456 WEB-CGI chetcpasswd access chetcpasswd.cgi bugtraq,21102 bugtraq,6472 cve,2002-2220 cve,2006-6679 WEB-CGI enter_bug.cgi access /enter_bug.cgi bugtraq,3272 cve,2002-0008 WEB-CGI gbook.cgi access /gbook.cgi bugtraq,1940 cve,2000-1131 WEB-CGI htsearch arbitrary configuration file attempt /htsearch?-c bugtraq,3410 cve,2001-0834 WEB-CGI wais.pl access /wais.pl WEB-CGI eshop.pl arbitrary command execution attempt /eshop.pl?seite=|3B| bugtraq,3340 cve,2001-1014 WEB-CGI sojourn.cgi File attempt /sojourn.cgi?cat= %00 bugtraq,1052 cve,2000-0180 nessus,10349 WEB-CGI csNews.cgi access /csNews.cgi bugtraq,4994 cve,2002-0923 nessus,11726 WEB-CGI Talentsoft Web+ exploit attempt /webplus.cgi?Script=/webplus/webping/webping.wml bugtraq,1725 WEB-CGI webgais access /webgais arachnids,472 bugtraq,2058 cve,1999-0176 nessus,10300 WEB-CGI way-board access /way-board bugtraq,2370 cve,2001-0214 nessus,10610 WEB-CGI swc access /swc nessus,10493 WEB-CGI commerce.cgi access /commerce.cgi bugtraq,2361 cve,2001-0210 nessus,10612 WEB-CGI ezboard.cgi access /ezboard.cgi bugtraq,4068 bugtraq,4579 cve,2002-0263 nessus,11748 WEB-CGI simplestmail.cgi access /simplestmail.cgi bugtraq,2106 bugtraq,4579 cve,2001-0022 nessus,11748 WEB-CGI faqmanager.cgi access /faqmanager.cgi bugtraq,3810 nessus,10837 WEB-CGI Web Shopper shopper.cgi access /shopper.cgi bugtraq,1776 cve,2000-0922 WEB-CGI global.cgi access /global.cgi bugtraq,4579 cve,2000-0952 nessus,11748 WEB-CGI yabb directory traversal attempt /YaBB ../ arachnids,462 bugtraq,1668 cve,2000-0853 nessus,10512 WEB-CGI Poll-it access /pollit/Poll_It_SSI_v2.0.cgi bugtraq,1431 cve,2000-0590 nessus,10459 WEB-CGI bb-hist.sh attempt /bb-hist.sh?HISTFILE=../.. bugtraq,142 cve,1999-1462 nessus,10025 WEB-CGI phf access /phf arachnids,128 bugtraq,629 cve,1999-0067 WEB-CGI mmstdod.cgi access /mmstdod.cgi bugtraq,2063 cve,2001-0021 nessus,10566 WEB-CGI calender_admin.pl access /calender_admin.pl cve,2000-0432 nessus,10506 WEB-CGI alert.cgi access /alert.cgi bugtraq,4211 bugtraq,4579 cve,2002-0346 nessus,11748 WEB-CGI environ.pl access /environ.pl WEB-CGI day5datanotifier.cgi access /day5datanotifier.cgi cve,1999-1232 WEB-CGI MachineInfo access /MachineInfo cve,1999-1067 WEB-CGI cgiforum.pl access /cgiforum.pl bugtraq,1963 cve,2000-1171 nessus,10552 WEB-CGI bb-hostscv.sh access /bb-hostsvc.sh bugtraq,1455 cve,2000-0638 nessus,10460 WEB-CGI cvsview2.cgi access /cvsview2.cgi bugtraq,4579 bugtraq,5517 cve,2003-0153 nessus,11748 WEB-CGI htmlscript access /htmlscript bugtraq,2001 cve,1999-0264 nessus,10106 WEB-CGI lastlines.cgi access /lastlines.cgi bugtraq,3754 bugtraq,3755 cve,2001-1205 cve,2001-1206 WEB-CGI htsearch access /htsearch bugtraq,1026 cve,2000-0208 nessus,10105 WEB-CGI dfire.cgi access /dfire.cgi bugtraq,564 cve,1999-0913 WEB-CGI swsrv.cgi access /swsrv.cgi bugtraq,7510 cve,2003-0217 nessus,11608 WEB-CGI SWSoft ASPSeek Overflow attempt /s.cgi tmpl= bugtraq,2492 cve,2001-0476 WEB-CGI quickstore.cgi access /quickstore.cgi bugtraq,9282 nessus,11975 WEB-CGI cgimail access /cgimail bugtraq,1623 cve,2000-0726 nessus,11721 WEB-CGI textcounter.pl access /textcounter.pl bugtraq,2265 cve,1999-1479 nessus,11451 WEB-CGI faxsurvey access /faxsurvey bugtraq,2056 cve,1999-0262 nessus,10067 WEB-CGI wguest.exe access /wguest.exe bugtraq,2024 cve,1999-0287 cve,1999-0467 WEB-CGI mailit.pl access /mailit.pl nessus,10417 WEB-CGI gozila.cgi access /gozila.cgi bugtraq,6086 cve,2002-1236 nessus,11773 WEB-CGI view-source directory traversal /view-source ../ bugtraq,2251 bugtraq,8883 cve,1999-0174 WEB-CGI upload.cgi access /upload.cgi nessus,10290 WEB-CGI auktion.cgi directory traversal attempt /auktion.cgi menue=../../ bugtraq,2367 cve,2001-0212 nessus,10638 WEB-CGI CSMailto.cgi access /CSMailto.cgi bugtraq,4579 bugtraq,6265 cve,2002-0749 nessus,11748 WEB-CGI user_update_passwd.pl access /user_update_passwd.pl bugtraq,1486 cve,2000-0627 WEB-CGI win-c-sample.exe access /win-c-sample.exe arachnids,231 bugtraq,2078 cve,1999-0178 nessus,10008 WEB-CGI /cgi-bin/ls access /cgi-bin/ls bugtraq,936 cve,2000-0079 nessus,10037 WEB-CGI service.cgi access /service.cgi bugtraq,4211 bugtraq,4579 cve,2002-0346 nessus,11748 WEB-CGI htsearch arbitrary file read attempt /htsearch?exclude=` bugtraq,1026 cve,2000-0208 nessus,10105 WEB-CGI dnewsweb.cgi access /dnewsweb.cgi bugtraq,1172 bugtraq,4579 cve,2000-0423 nessus,11748 WEB-CGI AnyForm2 access /AnyForm2 bugtraq,719 cve,1999-0066 nessus,10277 WEB-CGI technote print.cgi directory traversal attempt /technote/print.cgi board= ../../ %00 bugtraq,2156 cve,2001-0075 nessus,10584 WEB-CGI fileseek.cgi access /fileseek.cgi bugtraq,4579 bugtraq,6784 cve,2002-0611 nessus,11748 WEB-CGI bnbform.cgi access /bnbform.cgi bugtraq,2147 cve,1999-0937 WEB-CGI man.sh access /man.sh bugtraq,2276 cve,1999-1179 WEB-CGI csh access /csh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI php.cgi access /php.cgi arachnids,232 bugtraq,2250 bugtraq,712 cve,1999-0058 cve,1999-0238 nessus,10178 WEB-CGI files.pl access /files.pl cve,1999-1081 WEB-CGI processit access /processit.pl nessus,10649 WEB-CGI DCShop orders.txt access /orders/orders.txt bugtraq,2889 cve,2001-0821 WEB-CGI listrec.pl access /listrec.pl bugtraq,3328 cve,2001-0997 nessus,10769 WEB-CGI dumpenv.pl access /dumpenv.pl cve,1999-1178 nessus,10060 WEB-CGI way-board.cgi access /way-board.cgi nessus,10610 WEB-CGI pals-cgi arbitrary file access attempt /pals-cgi documentName= bugtraq,2372 cve,2001-0217 nessus,10611 WEB-CGI Web Shopper shopper.cgi attempt /shopper.cgi newpage=../ bugtraq,1776 cve,2000-0922 nessus,10533 WEB-CGI FormHandler.cgi external site redirection attempt /FormHandler.cgi redirect=http bugtraq,798 bugtraq,799 cve,1999-1050 nessus,10075 WEB-CGI talkback.cgi access /talkbalk.cgi bugtraq,2547 cve,2001-0420 WEB-CGI view_source access /view_source bugtraq,2251 cve,1999-0174 nessus,10294 WEB-CGI bash access /bash cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI nph-test-cgi access /nph-test-cgi arachnids,224 bugtraq,686 cve,1999-0045 nessus,10165 WEB-CGI bb-hostscv.sh attempt /bb-hostsvc.sh?HOSTSVC?../.. bugtraq,1455 cve,2000-0638 nessus,10460 WEB-CGI AHG search.cgi access /publisher/search.cgi template= bugtraq,3985 WEB-CGI CCBill whereami.cgi arbitrary command execution attempt /whereami.cgi?g= bugtraq,8095 url,secunia.com/advisories/9191/ WEB-CGI /wwwboard/passwd.txt access /wwwboard/passwd.txt arachnids,463 bugtraq,649 cve,1999-0953 cve,1999-0954 nessus,10321 WEB-CGI readmail.cgi access /readmail.cgi bugtraq,3427 bugtraq,4579 cve,2001-1283 nessus,11748 WEB-CGI Emumail init.emu access /init.emu bugtraq,9861 nessus,12095 WEB-CGI bizdbsearch attempt /bizdb1-search.cgi mail bugtraq,1104 cve,2000-0287 nessus,10383 WEB-CGI multidiff.cgi access /multidiff.cgi bugtraq,4579 bugtraq,5517 cve,2003-0153 nessus,11748 WEB-CGI test.cgi access /test.cgi WEB-CGI calendar-admin.pl access /calendar-admin.pl bugtraq,1215 cve,2000-0432 nessus,10506 WEB-CGI websendmail access /websendmail arachnids,469 bugtraq,2077 cve,1999-0196 nessus,10301 WEB-CGI rksh access /rksh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI emumail.cgi access /emumail.cgi bugtraq,5824 cve,2002-1526 WEB-CGI bb-hist.sh access /bb-hist.sh bugtraq,142 cve,1999-1462 nessus,10025 WEB-CGI getdoc.cgi access /getdoc.cgi bugtraq,4579 cve,2000-0288 nessus,11748 WEB-CGI SGI InfoSearch fname attempt /infosrch.cgi? fname= arachnids,290 bugtraq,1031 cve,2000-0207 nessus,10128 WEB-CGI mailview.cgi access /mailview.cgi bugtraq,1335 bugtraq,4579 cve,2000-0526 nessus,11748 WEB-CGI uselang code injection /wiki ?uselang= \x2fwiki[^\n]*\x3fuselang=[^\n\x26\x3f]*[a-zA-Z\x2d] bugtraq,15703 cve,2005-4031 WEB-CGI book.cgi access /book.cgi bugtraq,3178 cve,2001-1114 nessus,10721 WEB-CGI Allaire Pro Web Shell attempt /authenticate.cgi?PASSWORD config.ini WEB-CGI sendmessage.cgi access /sendmessage.cgi bugtraq,3673 cve,2001-1100 WEB-CGI ministats admin access /ministats/admin.cgi WEB-CGI rsh access /rsh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI streaming server view_broadcast.cgi access /view_broadcast.cgi bugtraq,8257 cve,2003-0422 WEB-CGI www-sql access /www-sql url,marc.theaimsgroup.com/?l=bugtraq&m=88704258804054&w=2 WEB-CGI view-source access /view-source bugtraq,2251 bugtraq,8883 cve,1999-0174 WEB-CGI LWGate access /LWGate url,www.netspace.org/~dwb/lwgate/lwgate-history.html url,www.wiretrip.net/rfp/p/doc.asp/i2/d6.htm WEB-CGI tstisapi.dll access tstisapi.dll bugtraq,2381 cve,2001-0302 WEB-CGI info2www access /info2www bugtraq,1995 cve,1999-0266 nessus,10127 WEB-CGI awstats access /awstats.pl bugtraq,12572 nessus,16456 WEB-CGI newdesk access /newdesk WEB-CGI process_bug.cgi access /process_bug.cgi bugtraq,3272 cve,2002-0008 WEB-CGI finger access /finger arachnids,221 cve,1999-0612 nessus,10071 WEB-CGI bb-rep.sh access /bb-rep.sh bugtraq,142 cve,1999-1462 WEB-CGI glimpse access /glimpse bugtraq,2026 cve,1999-0147 nessus,10095 WEB-CGI args.bat access /args.bat cve,1999-1180 nessus,11465 WEB-CGI SoftCart.exe CGI buffer overflow attempt /SoftCart.exe \/SoftCart.exe\?[^\s]{100} bugtraq,10926 cve,2004-2221 WEB-CGI pfdispaly.cgi access /pfdispaly.cgi bugtraq,64 cve,1999-0270 nessus,10174 WEB-CGI environ.cgi access /environ.cgi WEB-CGI DCShop auth_user_file.txt access /auth_data/auth_user_file.txt bugtraq,2889 cve,2001-0821 WEB-CGI statsconfig.pl access /statsconfig.pl bugtraq,2211 cve,2001-0113 WEB-CGI psunami.cgi access /psunami.cgi bugtraq,6607 nessus,11750 WEB-CGI uploader.exe access /uploader.exe bugtraq,1611 /wguest.exe bugtraq,2024 cve,1999-0287 cve,1999-0467 WEB-CGI mailit.pl access /mailit.pl nessus,10417 WEB-CGI gozila.cgi access /gozila.cgi bugtraq,6086 cve,2002-1236 nessus,11773 WEB-CGI view-source directory traversal /view-source ../ bugtraq,2251 bugtraq,8883 cve,1999-0174 WEB-CGI upload.cgi access /upload.cgi nessus,10290 WEB-CGI auktion.cgi directory traversal attempt /auktion.cgi menue=../../ bugtraq,2367 cve,2001-0212 nessus,10638 WEB-CGI CSMailto.cgi access /CSMailto.cgi bugtraq,4579 bugtraq,6265 cve,2002-0749 nessus,11748 WEB-CGI user_update_passwd.pl access /user_update_passwd.pl bugtraq,1486 cve,2000-0627 WEB-CGI win-c-sample.exe access /win-c-sample.exe arachnids,231 bugtraq,2078 cve,1999-0178 nessus,10008 WEB-CGI /cgi-bin/ls access /cgi-bin/ls bugtraq,936 cve,2000-0079 nessus,10037 WEB-CGI service.cgi access /service.cgi bugtraq,4211 bugtraq,4579 cve,2002-0346 nessus,11748 WEB-CGI htsearch arbitrary file read attempt /htsearch?exclude=` bugtraq,1026 cve,2000-0208 nessus,10105 WEB-CGI dnewsweb.cgi access /dnewsweb.cgi bugtraq,1172 bugtraq,4579 cve,2000-0423 nessus,11748 WEB-CGI AnyForm2 access /AnyForm2 bugtraq,719 cve,1999-0066 nessus,10277 WEB-CGI technote print.cgi directory traversal attempt /technote/print.cgi board= ../../ %00 bugtraq,2156 cve,2001-0075 nessus,10584 WEB-CGI fileseek.cgi access /fileseek.cgi bugtraq,4579 bugtraq,6784 cve,2002-0611 nessus,11748 WEB-CGI bnbform.cgi access /bnbform.cgi bugtraq,2147 cve,1999-0937 WEB-CGI man.sh access /man.sh bugtraq,2276 cve,1999-1179 WEB-CGI csh access /csh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI php.cgi access /php.cgi arachnids,232 bugtraq,2250 bugtraq,712 cve,1999-0058 cve,1999-0238 nessus,10178 WEB-CGI files.pl access /files.pl cve,1999-1081 WEB-CGI processit access /processit.pl nessus,10649 WEB-CGI DCShop orders.txt access /orders/orders.txt bugtraq,2889 cve,2001-0821 WEB-CGI listrec.pl access /listrec.pl bugtraq,3328 cve,2001-0997 nessus,10769 WEB-CGI dumpenv.pl access /dumpenv.pl cve,1999-1178 nessus,10060 WEB-CGI way-board.cgi access /way-board.cgi nessus,10610 WEB-CGI pals-cgi arbitrary file access attempt /pals-cgi documentName= bugtraq,2372 cve,2001-0217 nessus,10611 WEB-CGI Web Shopper shopper.cgi attempt /shopper.cgi newpage=../ bugtraq,1776 cve,2000-0922 nessus,10533 WEB-CGI FormHandler.cgi external site redirection attempt /FormHandler.cgi redirect=http bugtraq,798 bugtraq,799 cve,1999-1050 nessus,10075 WEB-CGI talkback.cgi access /talkbalk.cgi bugtraq,2547 cve,2001-0420 WEB-CGI view_source access /view_source bugtraq,2251 cve,1999-0174 nessus,10294 WEB-CGI bash access /bash cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI nph-test-cgi access /nph-test-cgi arachnids,224 bugtraq,686 cve,1999-0045 nessus,10165 WEB-CGI bb-hostscv.sh attempt /bb-hostsvc.sh?HOSTSVC?../.. bugtraq,1455 cve,2000-0638 nessus,10460 WEB-CGI AHG search.cgi access /publisher/search.cgi template= bugtraq,3985 WEB-CGI CCBill whereami.cgi arbitrary command execution attempt /whereami.cgi?g= bugtraq,8095 url,secunia.com/advisories/9191/ WEB-CGI /wwwboard/passwd.txt access /wwwboard/passwd.txt arachnids,463 bugtraq,649 cve,1999-0953 cve,1999-0954 nessus,10321 WEB-CGI readmail.cgi access /readmail.cgi bugtraq,3427 bugtraq,4579 cve,2001-1283 nessus,11748 WEB-CGI Emumail init.emu access /init.emu bugtraq,9861 nessus,12095 WEB-CGI bizdbsearch attempt /bizdb1-search.cgi mail bugtraq,1104 cve,2000-0287 nessus,10383 WEB-CGI multidiff.cgi access /multidiff.cgi bugtraq,4579 bugtraq,5517 cve,2003-0153 nessus,11748 WEB-CGI test.cgi access /test.cgi WEB-CGI calendar-admin.pl access /calendar-admin.pl bugtraq,1215 cve,2000-0432 nessus,10506 WEB-CGI websendmail access /websendmail arachnids,469 bugtraq,2077 cve,1999-0196 nessus,10301 WEB-CGI rksh access /rksh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI emumail.cgi access /emumail.cgi bugtraq,5824 cve,2002-1526 WEB-CGI bb-hist.sh access /bb-hist.sh bugtraq,142 cve,1999-1462 nessus,10025 WEB-CGI getdoc.cgi access /getdoc.cgi bugtraq,4579 cve,2000-0288 nessus,11748 WEB-CGI SGI InfoSearch fname attempt /infosrch.cgi? fname= arachnids,290 bugtraq,1031 cve,2000-0207 nessus,10128 WEB-CGI mailview.cgi access /mailview.cgi bugtraq,1335 bugtraq,4579 cve,2000-0526 nessus,11748 WEB-CGI uselang code injection /wiki ?uselang= \x2fwiki[^\n]*\x3fuselang=[^\n\x26\x3f]*[a-zA-Z\x2d] bugtraq,15703 cve,2005-4031 WEB-CGI book.cgi access /book.cgi bugtraq,3178 cve,2001-1114 nessus,10721 WEB-CGI Allaire Pro Web Shell attempt /authenticate.cgi?PASSWORD config.ini WEB-CGI sendmessage.cgi access /sendmessage.cgi bugtraq,3673 cve,2001-1100 WEB-CGI ministats admin access /ministats/admin.cgi WEB-CGI rsh access /rsh cve,1999-0509 url,www.cert.org/advisories/CA-1996-11.html WEB-CGI streaming server view_broadcast.cgi access /view_broadcast.cgi bugtraq,8257 cve,2003-0422 WEB-CGI www-sql access /www-sql url,marc.theaimsgroup.com/?l=bugtraq&m=88704258804054&w=2 WEB-CGI view-source access /view-source bugtraq,2251 bugtraq,8883 cve,1999-0174 WEB-CGI LWGate access /LWGate url,www.netspace.org/~dwb/lwgate/lwgate-history.html url,www.wiretrip.net/rfp/p/doc.asp/i2/d6.htm WEB-CGI tstisapi.dll access tstisapi.dll bugtraq,2381 cve,2001-0302 WEB-CGI info2www access /info2www bugtraq,1995 cve,1999-0266 nessus,10127 WEB-CGI awstats access /awstats.pl bugtraq,12572 nessus,16456 WEB-CGI newdesk access /newdesk WEB-CGI process_bug.cgi access /process_bug.cgi bugtraq,3272 cve,2002-0008 WEB-CGI finger access /finger arachnids,221 cve,1999-0612 nessus,10071 WEB-CGI bb-rep.sh access /bb-rep.sh bugtraq,142 cve,1999-1462 WEB-CGI glimpse access /glimpse bugtraq,2026 cve,1999-0147 nessus,10095 WEB-CGI args.bat access /args.bat cve,1999-1180 nessus,11465 WEB-CGI SoftCart.exe CGI buffer overflow attempt /SoftCart.exe \/SoftCart.exe\?[^\s]{100} bugtraq,10926 cve,2004-2221 WEB-CGI pfdispaly.cgi access /pfdispaly.cgi bugtraq,64 cve,1999-0270 nessus,10174 WEB-CGI environ.cgi access /environ.cgi WEB-CGI DCShop auth_user_file.txt access /auth_data/auth_user_file.txt bugtraq,2889 cve,2001-0821 WEB-CGI statsconfig.pl access /statsconfig.pl bugtraq,2211 cve,2001-0113 WEB-CGI psunami.cgi access /psunami.cgi bugtraq,6607 nessus,11750 WEB-CGI uploader.exe access /uploader.exe bugtraq,1611 WEB-MISC redirect.exe access /redirect.exe bugtraq,1256 cve,2000-0401 nessus,11723 WEB-MISC changepw.exe access /changepw.exe bugtraq,1256 cve,2000-0401 nessus,11723 WEB-MISC cwmail.exe access /cwmail.exe bugtraq,4093 cve,2002-0273 nessus,11727 WEB-MISC ddicgi.exe access /ddicgi.exe bugtraq,1657 cve,2000-0826 nessus,11728 WEB-MISC ndcgi.exe access /ndcgi.exe bugtraq,3583 cve,2001-0922 nessus,11730 WEB-MISC VsSetCookie.exe access /VsSetCookie.exe bugtraq,3784 cve,2002-0236 nessus,11731 WEB-MISC Webnews.exe access /Webnews.exe bugtraq,4124 cve,2002-0290 nessus,11732 WEB-MISC webadmin.dll access /webadmin.dll bugtraq,7438 bugtraq,7439 bugtraq,8024 cve,2003-0471 nessus,11771 WEB-MISC oracle portal demo access /pls/portal/PORTAL_DEMO nessus,11918 WEB-MISC PeopleSoft PeopleBooks psdoccgi access /psdoccgi bugtraq,9037 bugtraq,9038 cve,2003-0626 cve,2003-0627 WEB-MISC server negative Content-Length attempt Content-Length ^Content-Length\s*\x3a\s*-\d+ bugtraq,10508 cve,2004-0492 url,www.guninski.com/modproxy1.html WEB-MISC bsml.pl access /bsml.pl bugtraq,9311 nessus,11973 WEB-MISC ISAPISkeleton.dll access /ISAPISkeleton.dll bugtraq,9516 WEB-MISC BugPort config.conf file access /config.conf bugtraq,9542 WEB-MISC Sample_showcode.html access /Sample_showcode.html fname bugtraq,9555 WEB-MISC Checkpoint Firewall-1 HTTP parsing format string vulnerability attempt |3A|/ ^[^\x3a\x3f]{11,}\x3a\x2f bugtraq,9581 cve,2004-0039 nessus,12084 WEB-MISC Compaq web-based management agent denial of service attempt > bugtraq,8014 WEB-MISC InteractiveQuery.jsp access /InteractiveQuery.jsp bugtraq,8938 cve,2003-0624 WEB-MISC edittag.pl access /edittag.pl bugtraq,6675 WEB-MISC util.pl access /util.pl bugtraq,9748 WEB-MISC Invision Power Board search.pl access /search.pl st= bugtraq,9766 WEB-MISC Real Server DESCRIBE buffer overflow attempt DESCRIBE ../ ^DESCRIBE\s[^\n]{300} bugtraq,8476 cve,2003-0725 nessus,11642 url,www.service.real.com/help/faq/security/rootexploit091103.html WEB-MISC NetObserve authentication bypass attempt login=0 Cookie|3A| ^Cookie\x3a(\s*|\s*\r?\n\s+)[^\n]*?login=0 bugtraq,9319 WEB-MISC Quicktime User-Agent buffer overflow attempt User-Agent|3A| ^User-Agent\x3a[^\n]{244,255} bugtraq,9735 cve,2004-0169 WEB-MISC source.jsp access /source.jsp nessus,12119 WEB-MISC ServletManager access /servlet/ServletManager bugtraq,3697 cve,2001-1195 nessus,12122 WEB-MISC setinfo.hts access /setinfo.hts bugtraq,9973 cve,2004-1857 nessus,12120 WEB-MISC McAfee ePO file upload attempt /spipe/repl_file Command=BEGIN bugtraq,10200 cve,2004-0038 WEB-MISC cPanel resetpass access /resetpass bugtraq,9848 cve,2004-1769 WEB-MISC Invalid HTTP Version String HTTP/ ^\w+\s+[^\x0D\x0A\s]+\s+HTTP\x2F[^\x0A]{5} bugtraq,9809 nessus,11593 WEB-MISC Crystal Reports crystalimagehandler.aspx access /crystalimagehandler.aspx cve,2004-0204 url,www.microsoft.com/security/bulletins/200406_crystal.mspx WEB-MISC Crystal Reports crystalImageHandler.aspx directory traversal attempt /crystalimagehandler.aspx dynamicimage=../ bugtraq,10260 cve,2004-0204 nessus,12271 url,www.microsoft.com/technet/security/bulletin/ms04-017.mspx WEB-MISC Samba SWAT Authorization overflow attempt Authorization|3A| Basic ^Authorization\x3a(\s*|\s*\r?\n\s+)Basic\s+= bugtraq,10780 cve,2004-0600 WEB-MISC Samba SWAT Authorization port 901 overflow attempt Authorization|3A| Basic ^Authorization\x3a(\s*|\s*\r?\n\s+)Basic\s+= bugtraq,10780 cve,2004-0600 WEB-MISC sresult.exe access /sresult.exe bugtraq,10837 nessus,14186 WEB-MISC Oracle iSQLPlus sid overflow attempt /isqlplus sid=[^&\x3b\r\n]{255} bugtraq,10871 url,www.nextgenss.com/advisories/ora-isqlplus.txt WEB-MISC Oracle iSQLPlus username overflow attempt /isqlplus username=[^&\x3b\r\n]{255} bugtraq,10871 url,www.nextgenss.com/advisories/ora-isqlplus.txt WEB-MISC Oracle iSQLPlus login.uix username overflow attempt /login.uix username=[^&\x3b\r\n]{250} bugtraq,10871 url,www.nextgenss.com/advisories/ora-isqlplus.txt WEB-MISC Oracle 10g iSQLPlus login.unix connectID overflow attempt /login.uix connectID= connectID=[^&\x3b\r\n]{255} bugtraq,10871 url,www.nextgenss.com/advisories/ora-isqlplus.txt WEB-MISC 3Com 3CRADSL72 ADSL 11g Wireless Router app_sta.stm access attempt /app_sta.stm bugtraq,11408 WEB-MISC CISCO VoIP Portinformation access /PortInformation bugtraq,4798 cve,2002-0882 WEB-MISC Authorization Basic overflow attempt Authorization|3A| Basic ^Authorization\x3a(\s*|\s*\r?\n\s+)Basic\s[^\n]{250} bugtraq,8375 cve,2003-0727 WEB-MISC MySQL MaxDB WebSQL wppassword buffer overflow websql?logon wqPassword= wqPassword=[^\r\n\x26]{294} bugtraq,12265 cve,2005-0111 url,www.osvdb.org/displayvuln.php?osvdb_id=12919 WEB-MISC TrackerCam User-Agent buffer overflow attempt User-Agent|3A| ^User-Agent\x3a[^\n]{216} bugtraq,12592 cve,2005-0481 WEB-MISC TrackerCam ComGetLogFile.php3 directory traversal attempt /ComGetLogFile.php3 fn=\x2e\x2e(\x2f|\x5c) bugtraq,12592 cve,2005-0481 nessus,17160 WEB-MISC TrackerCam overly long php parameter overflow attempt php php.*\x3f[^\n]{256} bugtraq,12592 cve,2005-0481 WEB-MISC TrackerCam ComGetLogFile.php3 log information disclosure /ComGetLogFile.php3 fn=Eye\d{4}_\d{2}.log bugtraq,12592 cve,2005-0481 nessus,17160 WEB-MISC TrackerCam negative Content-Length attempt Content-Length|3A| ^Content-Length\x3a(\s*|\s*\r?\n\s+)-\d+ bugtraq,12592 cve,2005-0481 WEB-MISC sambar /search/results.stm access POST /search/results.stm bugtraq,7975 bugtraq,9607 cve,2004-2086 nessus,18650 WEB-MISC newsscript.pl admin attempt /newsscript.pl mode=admin bugtraq,12761 cve,2005-0735 nessus,17309 WEB-MISC Squid content length cache poisoning attempt Content-Length|3A| Content-Length|3A| Content-Length\x3a(?!\x0d\x0a\x0d\x0a).*?Content-Length\x3a bugtraq,12412 cve,2005-0174 WEB-MISC IBM WebSphere j_security_check overflow attempt POST /admin/j_security_check j_(username|password)=[^\n|^&]{256,} bugtraq,13853 cve,2005-1872 WEB-MISC BadBlue ext.dll buffer overflow attempt ext.dll mfcisapicommand= mfcisapicommand=[^&\r\n\x3b]{250} bugtraq,12673 cve,2005-0595 WEB-MISC cacti graph_image.php access /cacti/graph_image.php bugtraq,14042 WEB-MISC Symantec admin interface client negative Content-Length attempt Content-Length|3A| ^Content-Length\x3a(\s*|\s*\r?\n\s+)(-1|4294967295) bugtraq,15001 cve,2005-2758 WEB-MISC Twiki viewfile rev command injection attempt /viewfile/ viewfile/[^\n]*rev[1|2]*=[^d\x20]+ bugtraq,14834 cve,2005-2877 WEB-MISC Barracuda IMG.PL directory traversal attempt /img.pl img.pl\x3f[^\r\n]*f=[^\x26\r\n\x2e]*\x2e\x2e bugtraq,14712 cve,2005-2847 WEB-MISC Twiki rdiff rev command injection attempt /rdiff/ rdiff[^\n]*rev[1|2]*=[^d\x20]+ bugtraq,14834 cve,2005-2877 WEB-MISC Twiki view rev command injection attempt /view/ view/[^\n]*rev[1|2]*=[^d\x20]+ bugtraq,14834 cve,2005-2877 WEB-MISC malformed ipv6 uri overflow attempt |3A|/[ \x3a\x2f\x5b\s*([\x2F\x3F\x23]*)|([\x2F\x3F\x23]+.+)|(\x3a[^\x3a^\x5d]*)$ bugtraq,11187 cve,2004-0786 WEB-MISC WinProxy overly long host header buffer overflow attempt Host|3A| ^Host\x3A\s+[A-Z\d\x5F\x2E\x2E]*\x3A[^\r\n]{100,} bugtraq,16147 cve,2005-4085 url,www.bluecoat.com/support/knowledge/advisory_host_header_stack_overflow.html WEB-MISC Novell GroupWise Messenger Accept-Language header buffer overflow attempt Accept-Language ^Accept-Language\x3A[^\r\n]{17} bugtraq,17503 cve,2006-0992 WEB-MISC novell edirectory imonitor overflow attempt /nds \x2fnds[^\r\n]{1000} bugtraq,18026 cve,2006-2496 WEB-MISC ALT-N WebAdmin user param overflow attempt POST /WebAdmin.dll? View=Logon [^\r\n\x26]*User=[^\r\n\x26]{100} bugtraq,8024 WEB-MISC encoded cross site scripting HTML Image tag set to javascript attempt img src=javascript bugtraq,4858 cve,2002-0902 WEB-MISC encoded cross site scripting attempt cve,2009-1140 url,www.microsoft.com/technet/security/bulletin/MS09-019.mspx WEB-MISC HP Openview NNM freeIPaddrs.ovpl port 3443 Unix command execution attempt /freeIPaddrs.ovpl netid= freeIPaddrs.ovpl[^\r\n]*netid=[^\r\n]*%(\x2c|\x24|\x7c|\x3b|\x22|\x26|\x3c|\x3f) bugtraq,14662 cve,2005-2773 WEB-MISC HP Openview NNM cdpView.ovpl Unix command execution attempt /cdpView.ovpl cdpnode= cdpView.ovpl[^\r\n]*cdpnode=[^\r\n]*(\x2c|\x24|\x7c|\x3b|\x22|\x26|\x3c|\x3f) bugtraq,14662 cve,2005-2773 WEB-MISC HP Openview NNM connectedNodes.ovpl port 3443 Unix command execution attempt /connectedNodes.ovpl node= connectedNodes.ovpl[^\r\n]*node=[^\r\n]*(\x2c|\x24|\x7c|\x3b|\x22|\x26|\x3c|\x3f) bugtraq,14662 cve,2005-2773 WEB-MISC HP Openview NNM cdpView.ovpl port 3443 Unix command execution attempt /cdpView.ovpl cdpnode= cdpView.ovpl[^\r\n]*cdpnode=[^\r\n]*%(\x2c|\x24|\x7c|\x3b|\x22|\x26|\x3c|\x3f) bugtraq,14662 cve,2005-2773 WEB-MISC McAfee header buffer overflow attempt AgentGuid= ^[^\x3e\x3f\x26]{63} Source= ^[^\x3e\x3f\x26]{50} bugtraq,20288 cve,2006-5156 WEB-MISC Trend Micro atxconsole format string server response attempt -99 Cannot+find+ % bugtraq,20284 cve,2006-5157 WEB-MISC Novell eDirectory HTTP redirection buffer overflow attempt Host|3A| !"|0A| ^(GET|POST)\s+[^\s]*(\x2fnds|\x2fdhost)[^\n]*\nHost\x3a\s*[^\n]{63} bugtraq,20655 cve,2006-5478 WEB-MISC IceCast header buffer overflow attempt HTTP/1. HTTP\/1\.[01].*?\n([^\r\n]+?\r?\n){32} bugtraq,11271 cve,2004-1561 url,archives.neohapsis.com/archives/bugtraq/2004-09/0366.html WEB-MISC pajax call_dispatcher remote exec attempt pajax_call_dispatcher.php \x22method\x22\s*\x3a\s*\x22[^\x22]*\x3b\s*system\s*\x28 bugtraq,17519 cve,2006-1551 url,www.redteam-pentesting.de/advisories/rt-sa-2006-001.php WEB-MISC .cmd? access .cmd? bugtraq,4335 cve,2002-0061 WEB-MISC uTorrent announce buffer overflow attempt d8|3A|announce ^(\d{5,}|390[1-9]|39[1-9][0-9]|[4-9][0-9]{3})\x3A bugtraq,22530 cve,2007-0927 WEB-MISC Content-Length buffer overflow attempt Content-Length|3A| ^Content-Length\x3A\s*[^\r\n]{100} cve,2007-1260 url,djeyl.net/w.php WEB-MISC encoded cross site scripting HTML Image tag attempt ONERROR= bugtraq,5847 cve,2002-0840 WEB-MISC google proxystylesheet arbitrary command execution attempt proxystylesheet /search proxystylesheet=[-a-z0-9_\.]*[^-a-z0-9_\.&\s] bugtraq,15509 cve,2005-3757 url,metasploit.com/research/vulns/google_proxystylesheet/ WEB-MISC Oracle iSQL Plus cross site scripting attempt /isqlplus action= action(=|\x3f)[^(\n|&)]*\x3c[^(\n|&)]+\x3e bugtraq,9484 cve,2004-2115 WEB-MISC Oracle iSQL Plus cross site scripting attempt /isqlplus username= username(=|\x3f)[^(\n|&)]*\x3c[^(\n|&)]+\x3e bugtraq,9484 cve,2004-2115 WEB-MISC Apache newline exploit attempt |0D 0A 0D 0A| (\x0d\x0a){100} bugtraq,7254 cve,2003-0132 WEB-MISC Apache header parsing space saturation denial of service attempt HTTP/1. HTTP\/1.[01]\n.*[\x20\t]{200} cve,2004-0942 WEB-MISC Symantec Sygate Policy Manager SQL injection /servlet/Sygate.Servlet.login [^\x26\x20\x0a]*insert[^\x26\x20\x0a]*Login[^\x26\x20\x0a]*Admin bugtraq,16452 cve,2006-0522 WEB-MISC Oracle iSQL Plus cross site scripting attempt /isqlplus password= password(=|\x3f)[^(\n|&)]*\x3c[^(\n|&)]+\x3e bugtraq,9484 cve,2004-2115 WEB-MISC Apache SSI error page cross-site scripting host|3A| ^Host\x3a[a-z0-9\x20\-\.\x3A\t]*[^a-z0-9\x20\-\.\x3A\t\r\n] bugtraq,32476 bugtraq,5847 cve,2002-0840 WEB-MISC Apache mod_rewrite buffer overflow attempt GET ldap|3A| ldap\x3A\x2F\x2F[^\x0A]*(%3f|\x3F)[^\x0A]*(%3f|\x3F)[^\x0A]*(%3f|\x3F)[^\x0A]*(%3f|\x3F) cve,2006-3747 WEB-MISC Internet Explorer navcancl.htm url spoofing attempt ieframe.dll/navcancl.htm|23| bugtraq,22966 cve,2007-1499 url,www.microsoft.com/technet/security/bulletin/MS07-033.mspx WEB-MISC Win32 API res buffer overflow attempt res|3A|// \x2Edll[\x2F\x5C][^\x3E\x00\s\x2F\x5C]*[\x2F\x5C](\x23|%23)(\d{6}|[7-9]\d{4}|6[6-9]\d{3}|65[6-9]\d{2}|655[4-9]\d|6553[6-9]) cve,2007-2219 url,www.microsoft.com/technet/security/bulletin/MS07-035.mspx WEB-MISC Internet Explorer navcancl.htm url spoofing attempt about|3A|cancel|23| bugtraq,22966 cve,2007-1499 url,www.microsoft.com/technet/security/bulletin/MS07-033.mspx WEB-MISC sharepoint cross site scripting attempt /sharepoint/ sharepoint[^\n]*\x22\s*\x29\s*\x3b bugtraq,23832 cve,2007-2581 url,www.microsoft.com/technet/security/bulletin/ms07-059.mspx WEB-MISC Apache Tomcat WebDAV system tag remote file disclosure attempt bugtraq,26070 cve,2007-5461 url,issues.apache.org/jira/browse/GERONIMO-3549 WEB-MISC IBM Lotus Domino Web Server Accept-Language header buffer overflow attempt Accept-Language|3A| ^Accept-Language\x3A[^\n]{100} bugtraq,29310 cve,2008-2240 WEB-MISC BEA WebLogic Apache Oracle connector Transfer-Encoding buffer overflow POST Transfer-Encoding|3A| ^Transfer-Encoding\x3A\s*[^\r\n]{256} cve,2008-4008 url,support.bea.com/application_content/product_portlets/securityadvisories/2806.html WEB-MISC SSLv1 Client_Hello Challenge Length overflow attempt |01 00 01| bugtraq,11015 cve,2004-0826 WEB-MISC Trend Micro OfficeScan multiple CGI modules HTTP form processing buffer overflow attempt POST /officescan/cgi/cgi multipart/form-data |0A|-- !"|0A|-- cve,2008-3862 WEB-MISC Macromedia JRun 4.x server file disclosure attempt .jsp ^[^\x3b]*\x3b.*\x2ejsp bugtraq,11245 cve,2004-0928 WEB-MISC Macromedia JRun 4 mod_jrun buffer overflow attempt .jsp HOST ^HOST\s*\x3a\s*[^\x0a]{1000} bugtraq,11245 cve,2004-0646 WEB-MISC Apache mod_ssl hook functions format string attempt https ^[a-z]+\s+https\x3a\x2f\x2f[^\x2f\x3a\x25\s]*\x25[sn] bugtraq,10736 cve,2004-0700 WEB-MISC Ipswitch WhatsUp Gold DOS Device HTTP request denial of service attempt prn ^(GET|POST)\s+[^\x0a]*?\x2fprn\x2e(htm|html|asp|cgi) bugtraq,11110 cve,2004-0799 WEB-MISC Novell eDirectory HTTP request content-length heap buffer overflow attempt POST /SOAP ^Content-Length\s*\x3A\s*[1-9][0-9]{8} cve,2008-4478 WEB-MISC Novell eDirectory HTTP request content-length heap buffer overflow attempt POST /SOAP ^Content-Length\s*\x3A\s* - cve,2008-4478 WEB-MISC Borland StarTeam Multicast Service buffer overflow attempt GET AAAAAAAAAAAAAAAAAAAAA bugtraq,28602 cve,2008-0311 WEB-MISC Apache 413 error HTTP request method cross-site scripting attack bugtraq,26663 cve,2007-6203 WEB-PHP content-disposition memchr overflow Content-Disposition|3A| name=|22 CC CC CC CC CC| bugtraq,4183 cve,2002-0081 nessus,10867 WEB-PHP content-disposition file upload attempt Content-Disposition|3A| form-data|3B| bugtraq,4183 cve,2002-0081 nessus,10867 WEB-PHP squirrel mail theme arbitrary command attempt /left_main.php cmdd= bugtraq,4385 cve,2002-0516 WEB-PHP DNSTools administrator authentication bypass attempt /dnstools.php user_logged_in=true user_dnstools_administrator=true bugtraq,4617 cve,2002-0613 WEB-PHP directory.php arbitrary command attempt /directory.php dir= |3B| bugtraq,4278 cve,2002-0434 nessus,11017 WEB-PHP directory.php access /directory.php bugtraq,4278 cve,2002-0434 WEB-PHP phpbb quick-reply.php access /quick-reply.php bugtraq,6173 WEB-PHP read_body.php access attempt /read_body.php bugtraq,6302 cve,2002-1341 nessus,11415 WEB-PHP calendar.php access /calendar.php bugtraq,5820 bugtraq,9353 nessus,11179 WEB-PHP edit_image.php access /edit_image.php bugtraq,3288 cve,2001-1020 nessus,11104 WEB-PHP readmsg.php access /readmsg.php cve,2001-1408 nessus,11073 WEB-PHP remote include path .php path= path=(https?|ftps?|php) WEB-PHP piranha passwd.php3 access /passwd.php3 arachnids,272 bugtraq,1149 cve,2000-0322 WEB-PHP smssend.php access /smssend.php bugtraq,3982 cve,2002-0220 WEB-PHP Phorum /support/common.php attempt /support/common.php ForumLang=../ bugtraq,1997 WEB-PHP Phorum /support/common.php access /support/common.php bugtraq,1997 bugtraq,9361 WEB-PHP Phorum authentication access PHP_AUTH_USER=boogieman arachnids,206 bugtraq,2274 WEB-PHP strings overflow |BA|I|FE FF FF F7 D2 B9 BF FF FF FF F7 D1| arachnids,431 bugtraq,802 WEB-PHP PHPLIB remote command attempt _PHPLIB[libdir] bugtraq,3079 cve,2001-1370 nessus,14910 WEB-PHP PHPLIB remote command attempt /db_mysql.inc bugtraq,3079 cve,2001-1370 WEB-PHP Mambo uploadimage.php upload php file attempt /uploadimage.php userfile_name= .php bugtraq,6572 cve,2003-1204 nessus,16315 WEB-PHP Mambo upload.php upload php file attempt /upload.php userfile_name= .php bugtraq,6572 cve,2003-1204 nessus,16315 WEB-PHP Mambo uploadimage.php access /uploadimage.php bugtraq,6572 cve,2003-1204 nessus,16315 WEB-PHP Mambo upload.php access /upload.php bugtraq,6572 cve,2003-1204 nessus,16315 WEB-PHP phpBB privmsg.php access /privmsg.php bugtraq,6634 WEB-PHP p-news.php access /p-news.php nessus,11669 WEB-PHP shoutbox.php directory traversal attempt /shoutbox.php conf= ../ nessus,11668 WEB-PHP TextPortal admin.php default password admin attempt /admin.php op=admin_enter password=admin bugtraq,7673 nessus,11660 WEB-PHP TextPortal admin.php default password 12345 attempt /admin.php op=admin_enter password=12345 bugtraq,7673 nessus,11660 WEB-PHP BLNews objects.inc.php4 remote file include attempt /objects.inc.php4 Server[path]= Server\x5bpath\x5d=(https?|ftps?|php) bugtraq,7677 cve,2003-0394 nessus,11647 WEB-PHP BLNews objects.inc.php4 access /objects.inc.php4 bugtraq,7677 cve,2003-0394 nessus,11647 WEB-PHP ttCMS header.php access /admin/templates/header.php bugtraq,7542 bugtraq,7543 bugtraq,7625 nessus,11636 WEB-PHP autohtml.php access /autohtml.php nessus,11630 WEB-PHP ttforum remote file include attempt forum/index.php template= template=(https?|ftps?|php) bugtraq,7542 bugtraq,7543 nessus,11615 WEB-PHP forum_details.php access forum_details.php bugtraq,7933 nessus,11760 WEB-PHP gallery remote file include attempt /setup/ GALLERY_BASEDIR= GALLERY_BASEDIR=(https?|ftps?|php) bugtraq,8814 nessus,11876 WEB-PHP PayPal Storefront remote file include attempt do=ext page= page=(https?|ftps?|php) bugtraq,8791 nessus,11873 WEB-PHP IdeaBox cord.php file include /index.php ideaDir= cord.php bugtraq,7488 WEB-PHP IdeaBox notification.php file include /index.php gorumDir= notification.php bugtraq,7488 WEB-PHP WebChat db_mysql.php file include /defines.php WEBCHATPATH= db_mysql.php bugtraq,7000 WEB-PHP WebChat english.php file include /defines.php WEBCHATPATH= english.php bugtraq,7000 WEB-PHP Invision Board ipchat.php file include /ipchat.php root_path= conf_global.php bugtraq,6976 WEB-PHP myphpPagetool pt_config.inc file include /doc/admin ptinclude= pt_config.inc bugtraq,6744 WEB-PHP PhpGedView PGV authentication_index.php base directory manipulation attempt /authentication_index.php PGV_BASE_DIRECTORY bugtraq,9368 cve,2004-0030 WEB-PHP PhpGedView PGV functions.php base directory manipulation attempt /functions.php PGV_BASE_DIRECTORY bugtraq,9368 cve,2004-0030 WEB-PHP PhpGedView PGV config_gedcom.php base directory manipulation attempt /config_gedcom.php PGV_BASE_DIRECTORY bugtraq,9368 cve,2004-0030 WEB-PHP PhpGedView PGV base directory manipulation _conf.php PGV_BASE_DIRECTORY bugtraq,9368 WEB-PHP WAnewsletter newsletter.php file include attempt newsletter.php waroot start.php bugtraq,6965 WEB-PHP PHPBB viewforum.php access /viewforum.php topic_id= bugtraq,9865 bugtraq,9866 nessus,12093 WEB-PHP Opt-X header.php remote file include attempt /header.php systempath= systempath=(https?|ftps?|php) bugtraq,9732 WEB-PHP TUTOS path disclosure attempt /note_overview.php id= bugtraq,10129 url,www.securiteam.com/unixfocus/5FP0J15CKE.html WEB-PHP PHPNuke Forum viewtopic SQL insertion attempt /modules.php name=Forums file=viewtopic forum=.*' bugtraq,7193 WEB-PHP Wordpress cache_lastpostdate code injection attempt wp_filter cache_lastpostdate\[[^\]]+\]=[^\x00\x3B\x3D]{30} bugtraq,14533 cve,2005-2612 WEB-PHP cacti graph_image SQL injection attempt graph_image.php rra_id=(?!(\d+|all|)([\x26\s]|$)) bugtraq,14128 bugtraq,14129 cve,2005-2148 WEB-PHP cacti graph_image SQL injection attempt graph.php local_graph_id=(?!(\d+|)([\x26\s]|$)) bugtraq,14128 bugtraq,14129 cve,2005-2148 WEB-PHP cacti graph_image arbitrary command execution attempt graph_image.php graph_(start|end|height|width)=(?!(\d+|)[\x26\s]) bugtraq,14042 bugtraq,14129 cve,2005-1524 WEB-PHP cacti graph_image SQL injection attempt graph.php rra_id=(?!(\d+|all|)([\x26\s]|$)) bugtraq,14128 bugtraq,14129 cve,2005-2148 WEB-PHP cacti graph_image SQL injection attempt graph_image.php local_graph_id=(?!(\d+|)([\x26\s]|$)) bugtraq,14128 bugtraq,14129 cve,2005-2148 WEB-PHP Pajax arbitrary command execution attempt method \x22method\x22\s*\x3a\s*\x22[A-Z]\w*[^\x22] bugtraq,17519 cve,2006-1551 cve,2006-1789 WEB-PHP phpbb quick-reply.php arbitrary command attempt /quick-reply.php phpbb_root_path= bugtraq,6173 WEB-PHP vbulletin php code injection misc.php template\s*=\s*\x7b\x24 cve,2005-0511 url,marc.info/?l=bugtraq&m=110910899415763&w=2 WEB-PHP file upload GLOBAL variable overwrite attempt Content-Type|3A| multipart/form-data name= GLOBALS bugtraq,15250 cve,2005-3390 WEB-PHP PHP function CRLF injection attempt .php |0A| bugtraq,5681 cve,2002-1783 WEB-PHP phpBB viewtopic double URL encoding attempt viewtopic.php highlight= %25 cve,2004-1315 WEB-PHP Advanced Poll poll_ssi.php access /poll_ssi.php bugtraq,8890 nessus,11487 WEB-PHP ttCMS header.php remote file include attempt /admin/templates/header.php admin_root= admin_root=(https?|ftps?|php) bugtraq,7542 bugtraq,7543 bugtraq,7625 nessus,11636 WEB-PHP Phorum violation access /violation.php3 arachnids,209 bugtraq,2272 WEB-PHP admin.php access /admin.php bugtraq,3361 bugtraq,7532 bugtraq,9270 cve,2001-1032 WEB-PHP Advanced Poll admin_embed.php access /admin_embed.php bugtraq,8890 nessus,11487 WEB-PHP sphpblog upload_img_cgi access attempt sphpblog upload_img_cgi.php bugtraq,14667 cve,2005-2733 WEB-PHP MatrikzGB privilege escalation attempt new_rights=admin bugtraq,8430 WEB-PHP /_admin access /_admin/ bugtraq,9537 nessus,12032 WEB-PHP DNSTools authentication bypass attempt /dnstools.php user_logged_in=true bugtraq,4617 cve,2002-0613 WEB-PHP Title.php access /Title.php bugtraq,9057 WEB-PHP Advanced Poll admin_logout.php access /admin_logout.php bugtraq,8890 nessus,11487 WEB-PHP Advanced Poll admin_help.php access /admin_help.php bugtraq,8890 nessus,11487 WEB-PHP authentication_index.php access /authentication_index.php cve,2004-0032 nessus,11982 WEB-PHP files.inc.php access /files.inc.php bugtraq,8910 WEB-PHP DCP-Portal remote file include editor script attempt /library/editor/editor.php root= bugtraq,6525 WEB-PHP xmlrpc.php post attempt /xmlrpc.php ^POST(\s|$) bugtraq,14088 cve,2005-1921 WEB-PHP wordpress cat parameter arbitrary file execution attempt /wordpress/ cat= ../ \x2Fwordpress\x2F\x3F[^\r\n]*cat\s*=\s*[^\r\n\x26]*\x2F\x2E\x2E bugtraq,28845 cve,2008-4769 WEB-PHP myPHPNuke chatheader.php access /chatheader.php bugtraq,6544 WEB-PHP news.php file include /news.php template= bugtraq,6674 WEB-PHP PHP-Nuke remote file include attempt /index.php file= file=(https?|ftps?|php) bugtraq,3889 cve,2002-0206 WEB-PHP WAnewsletter db_type.php access /sql/db_type.php bugtraq,6964 WEB-PHP rolis guestbook access /insert.inc.php bugtraq,9057 WEB-PHP Blahz-DNS dostuff.php access /dostuff.php bugtraq,4618 cve,2002-0599 WEB-PHP Advanced Poll admin_comment.php access /admin_comment.php bugtraq,8890 nessus,11487 WEB-PHP Advanced Poll admin_stats.php access /admin_stats.php bugtraq,8890 nessus,11487 WEB-PHP Cyboards default_header.php access /default_header.php bugtraq,6597 WEB-PHP PhpGedView search.php access /search.php action=soundex firstname= bugtraq,9369 cve,2004-0032 WEB-PHP DNSTools access /dnstools.php bugtraq,4617 cve,2002-0613 WEB-PHP DatabaseFunctions.php access /DatabaseFunctions.php bugtraq,9057 WEB-PHP sphpblog install03_cgi access attempt sphpblog install03_cgi.php bugtraq,14667 cve,2005-2733 WEB-PHP squirrel mail spell-check arbitrary command attempt /squirrelspell/modules/check_me.mod.php SQSPELL_APP[ bugtraq,3952 WEB-PHP Advanced Poll admin_tpl_new.php access /admin_tpl_new.php bugtraq,8890 nessus,11487 WEB-PHP phpMyAdmin db_details_importdocsql.php access db_details_importdocsql.php bugtraq,7962 bugtraq,7965 nessus,11761 WEB-PHP phpBB mod shoutbox sql injection attempt shoutbox_view.php mode= id= shoutbox_view.php\x3F[^\r\n]*mode\s*=\s*(delete|edit)[^\r\n]*id\s*=\s*[^\r\n\x26]*[^\d]+ bugtraq,32123 cve,2008-6301 WEB-PHP newsPHP Language file include attempt /nphpd.php LangFile bugtraq,8488 WEB-PHP b2 cafelog gm-2-b2.php remote file include attempt /gm-2-b2.php b2inc= b2inc=(https?|ftps?|php) nessus,11667 WEB-PHP Advanced Poll admin_preview.php access /admin_preview.php bugtraq,8890 nessus,11487 WEB-PHP Phorum read access /read.php3 arachnids,208 WEB-PHP sphpblog arbitrary file delete attempt sphpblog comment_delete_cgi.php comment=[^\x26\s]*[\x2f\x5c] bugtraq,14667 cve,2005-2733 WEB-PHP Setup.php access /Setup.php bugtraq,9057 WEB-PHP Advanced Poll admin_settings.php access /admin_settings.php bugtraq,8890 nessus,11487 WEB-PHP UpdateClasses.php access /UpdateClasses.php bugtraq,9057 WEB-PHP php.exe access /php.exe url,www.securitytracker.com/alerts/2002/Jan/1003104.html WEB-PHP Advanced Poll popup.php access /popup.php include_path= bugtraq,8890 nessus,11487 WEB-PHP file upload directory traversal POST upload.php ^Content-Type\x3A\s+multipart\/form-data Content-Disposition|3A| filename=\S*\x2e\x2e\x2f |0A| url,bugs.php.net/bug.php?id=28456 WEB-PHP Advanced Poll admin_password.php access /admin_password.php bugtraq,8890 nessus,11487 WEB-PHP Advanced Poll admin_edit.php access /admin_edit.php bugtraq,8890 nessus,11487 WEB-PHP IGeneric Free Shopping Cart page.php access /page.php bugtraq,9773 WEB-PHP myPHPNuke partner.php access /partner.php bugtraq,6544 WEB-PHP admin.php file upload attempt /admin.php file_name= bugtraq,3361 cve,2001-1032 WEB-PHP Turba status.php access /turba/status.php nessus,11646 WEB-PHP bb_smilies.php access /bb_smilies.php url,www.securiteam.com/securitynews/Serious_security_hole_in_PHP-Nuke__bb_smilies_.html WEB-PHP pmachine remote file include attempt lib.inc.php pm_path= pm_path=(https?|ftps?|php) bugtraq,7919 nessus,11739 WEB-PHP test.php access /test.php nessus,11617 WEB-PHP phptest.php access /phptest.php bugtraq,9737 WEB-PHP Advanced Poll admin_license.php access /admin_license.php bugtraq,8890 nessus,11487 WEB-PHP chatbox.php access /chatbox.php bugtraq,8930 WEB-PHP Advanced Poll admin_templates.php access /admin_templates.php bugtraq,8890 nessus,11487 WEB-PHP friends.php access /friends.php bugtraq,9088 WEB-PHP Messagerie supp_membre.php access /supp_membre.php bugtraq,4635 WEB-PHP Photopost PHP Pro showphoto.php access /showphoto.php bugtraq,9557 WEB-PHP Phorum admin access /admin.php3 arachnids,205 bugtraq,2271 WEB-PHP Phorum code access /code.php3 arachnids,207 WEB-PHP modules.php access /modules.php bugtraq,9879 WEB-PHP YaBB SE packages.php file include /packages.php packer.php bugtraq,6663 WEB-PHP PHP-Wiki cross site scripting attempt /modules.php? name=Wiki bugtraq,5254 cve,2002-1070 WEB-PHP shoutbox.php access /shoutbox.php conf= nessus,11668 WEB-PHP Advanced Poll admin_tpl_misc_new.php access /admin_tpl_misc_new.php bugtraq,8890 nessus,11487 WEB-PHP rolis guestbook remote file include attempt /insert.inc.php path= bugtraq,9057 WEB-PHP autohtml.php directory traversal attempt /autohtml.php name= ../../ nessus,11630 WEB-PHP Invision Board emailer.php file include /ad_member.php emailer.php bugtraq,7204 WEB-PHP b2 cafelog gm-2-b2.php access /gm-2-b2.php nessus,11667 WEB-PHP phpBB mod tag board sql injection attempt tag_board.php action=delete id= tag_board.php\x3F[^\r\n]*action=delete[^\r\n]*id=[^\r\n\x26]*(select|insert|delete) bugtraq,32701 cve,2008-6314 WEB-PHP viewtopic.php access /viewtopic.php days= bugtraq,7979 cve,2003-0486 nessus,11767 WEB-PHP DCP-Portal remote file include lib script attempt /library/lib.php root= bugtraq,6525 WEB-PHP sphpblog password.txt access attempt sphpblog password.txt bugtraq,14667 cve,2005-2733 WEB-PHP strings overflow ?STRENGUR arachnids,430 bugtraq,1786 cve,2000-0967 WEB-PHP Advanced Poll admin_templates_misc.php access /admin_templates_misc.php bugtraq,8890 nessus,11487 WEB-PHP Cyboards options_form.php access /options_form.php bugtraq,6597 WEB-PHP Typo3 translations.php file include /translations.php ONLY= bugtraq,6984 WEB-PHP GlobalFunctions.php access /GlobalFunctions.php bugtraq,9057 WEB-PHP Blahz-DNS dostuff.php modify user attempt /dostuff.php?action=modify_user bugtraq,4618 cve,2002-0599 WEB-PHP Advanced Poll booth.php access /booth.php bugtraq,8890 nessus,11487 cgi-bin simple.cgi text_area TEXT.XPATH_JSON(xp%/glossary/title%).CONTAINS("example glossary") JSON XML Path Language Test post_json.php TEXT.XPATH_JSON(xp%/glossary/title%).CONTAINS("example glossary") JSON XML Path Language Test login_post.php TEXT.XPATH_JSON(xp%/web-app/servlet/Val/init-param/dataStoreDriver%).EQ("com.microsoft.jdbc.sqlserver.SQLServerDriver") JSON XML Path Language Test select insert delete update drop create alter grant revoke commit rollback shutdown union intersect minus case decode where group begin join exists distinct add modify constraint null like exec execute char or and sp_sdidebug xp_availablemedia xp_cmdshell xp_deletemail xp_dirtree xp_dropwebtask xp_dsninfo xp_enumdsn xp_enumerrorlogs xp_enumgroups xp_enumqueuedtasks xp_eventlog xp_findnextmsg xp_fixeddrives xp_getfiledetails xp_getnetname xp_grantlogin xp_logevent xp_loginconfig xp_logininfo xp_makewebtask xp_msver xp_regread xp_perfend xp_perfmonitor xp_perfsample xp_perfstart xp_readerrorlog xp_readmail xp_revokelogin xp_runwebtask xp_schedulersignal xp_sendmail xp_servicecontrol xp_snmp_getstate xp_snmp_raisetrap xp_sprintf xp_sqlinventory xp_sqlregister xp_sqltrace xp_sscanf xp_startmail xp_stopmail xp_subdirs xp_unc_to_drive sysobjects syscolumns MSysACEs MSysObjects MSysQueries MSysRelationships SYS.USER_OBJECTS SYS.TAB SYS.USER_TABLES SYS.USER_VIEWS SYS.ALL_TABLES SYS.USER_TAB_COLUMNS SYS.USER_CONSTRAINTS SYS.USER_TRIGGERS SYS.USER_CATALOG SYS.ALL_CATALOG SYS.ALL_CONSTRAINTS SYS.ALL_OBJECTS SYS.ALL_TAB_COLUMNS SYS.ALL_TAB_PRIVS SYS.ALL_TRIGGERS SYS.ALL_USERS SYS.ALL_VIEWS SYS.USER_ROLE_PRIVS SYS.USER_SYS_PRIVS SYS.USER_TAB_PRIVS ' \ ; '' '' ' '' \\ \\ \ \\ ; a address b basefont bgsound big blockquote bq br caption center cite dd del dfn div dl dt em font h1 h2 h3 h4 h5 h6 hr i img kbd li map marquee ol p small strike strong sub sup table td th tr tt u ul abbr accesskey align alt axis bgcolor border cellpadding cellspacing char charoff charset cite class clear color colspan compact coords dir face headers height href hreflang hspace id ismap lang longdesc name noshade nowrap rel rev rowspan rules scope shape size src start summary tabindex target title type usemap valign value vspace width \bonblur\b \bonchange\b \bonclick\b \bondblclick\b \bonfocus\b \bonkeydown\b \bonkeypress\b \bonkeyup\b \bonload\b \bonmousedown\b \bonmousemove\b \bonmouseout\b \bonmouseover\b \bonmouseup\b \bonreset\b \bonselect\b \bonsubmit\b \bonunload\b \bjavascript: &\{.+}; \bonabort\b \bonafterprint\b \bonbeforeprint\b \bonbeforeunload\b \boncanplay\b \boncanplaythrough\b \boncontextmenu\b \bondrag\b \bondragend\b \bondragenter\b \bondragleave\b \bondragover\b \bondragstart\b \bondrop\b \bondurationchange\b \bonemptied\b \bonended\b \bonerror\b \bonformchange\b \bonforminput\b \bonhashchange\b \boninput\b \boninvalid\b \bonloadeddata\b \bonloadedmetadata\b \bonloadstart\b \bonmessage\b \bonmousewheel\b \bonoffline\b \bononline\b \bonpagehide\b \bonpageshow\b \bonpause\b \bonplay\b \bonplaying\b \bonpopstate\b \bonprogress\b \bonratechange\b \bonreadystatechange\b \bonredo\b \bonresize\b \bonscroll\b \bonseeked\b \bonseeking\b \bonshow\b \bonstalled\b \bonstorage\b \bonsuspend\b \bontimeupdate\b \bonundo\b \bonvolumechange\b \bonwaiting\b