GHDB
GHDB
|
Google Search: “SquirrelMail version 1.4.4″ inurl:src ext:php
zawa rates this entry 2 out of 10. Submitted: 2005-01-30 00:00:00 Added by: zawa Hits: 4704 Score: 2 date :Jan 30 2005 this search reveal the src/webmail.php which would allow acrafted URL to include a remote web page. This was assigned CAN-2005-0103by the Common Vulnerabilities and Exposures.-what can possibly be done :*A possible cross site scripting issue exists in src/webmail.php that isonly accessible when the PHP installation is running with register_globalsset to On.*A possible local file inclusion issue was uncovered by one of ourdevelopers involving custom preference handlers. This issue is onlyactive if the PHP installation is running with register_globals set to On. Comments: 2005-02-04 09:02:53 (Deakster): Good but by removing the version number, you can find more:- “SquirrelMail version” inurl:src ext:php 2005-02-04 20:18:38 (zawa): thanks for ur good Help :) 2005-02-06 06:51:42 (murfie): Deakster, our policy is to always include version numbers for the “advisories and vulnerabilities” category. :) |
Does GHDB still updates for now?
The GHDB is alive and well, updated through the ExploitDB: http://www.exploit-db.com/google-dorks.
Hi Johnny,been a while since I’ve came last. Aren’t you gonna update this website anymore???
The GHDB is not updated and lives with the exploitdb: http://http://www.exploit-db.com. Please check out the awesome folks at Offensive Security as well: http://www.offensive-security.com!
Is any offline view-able resources is available of this product ?