test醫(yī)藥物流平臺(tái)安全測(cè)試報(bào)告第

省信息系統(tǒng)工程評(píng)測(cè)中心電子 分中心成電電子 工程SichuanInformationSystemsEngineeringTestingCenter本次表明點(diǎn)51處，見附件測(cè)試記錄一。侵檢測(cè)系統(tǒng)（IntrusionDetectionSystems簡(jiǎn)稱IDS）、掃描系統(tǒng)和網(wǎng)頁防篡改附件：152跨站點(diǎn)(Cross-siteHTTPPasswordTransmittedover1測(cè)試記錄二測(cè)試記錄三VulnCheckNaVulnBrowserMimeSniffingisnot1MissingContent-Type6ServerError3SessionToken1SessionIDBest1POSTParametersAcceptedasGETBest1Set-doesnotuseHTTPOnlyBest1FormAutoCompleteBest3已通過安全檢點(diǎn)：Vuln Check Vuln可能的SQL注入-phpBB2.x(ActivityMODPlus)文件包含-TinyBB目錄遍歷-Resin路徑遍歷-SQL盲注（已確認(rèn)-SQL注入（已確認(rèn)--可能的數(shù)據(jù)庫連接字符串（InformixOleDbInformixOleDb提供程序-可能的數(shù)據(jù)庫連接字符串（InformixODBCDSNINFORMIX3.30ODBC驅(qū)動(dòng)程序-可能的數(shù)據(jù)庫連接字符串（InformixODBCINFORMIX3.30ODBC驅(qū)動(dòng)程序-可能的數(shù)據(jù)庫連接字符串(SybaseOleDbAdaptiveServerEnterprise-可能的數(shù)據(jù)庫連接字符串(SybaseODBC-可能的數(shù)據(jù)庫連接字符串（SybaseODBCSystem11ODBC驅(qū)動(dòng)程序或Intersolv3.10-可能的數(shù)據(jù)庫連接字符串（SybaseODBCSystem12(12.5)ODBC驅(qū)動(dòng)程序-可能的數(shù)據(jù)庫連接字符串（來自CoreLab的MySQL.NET-可能的數(shù)據(jù)庫連接字符串（MySQLODBC驅(qū)動(dòng)程序-數(shù)據(jù)庫-可能的數(shù)據(jù)庫連接字符串（MySQLODBC驅(qū)動(dòng)程序-本地?cái)?shù)據(jù)庫-可能的數(shù)據(jù)庫連接字符串（來自IBM的DB2.NET-可能的數(shù)據(jù)庫連接字符串（IBMDB2-可能的數(shù)據(jù)庫連接字符串（IBMDB2ODBCDSN和OleDbIBM驅(qū)動(dòng)程序-可能的數(shù)據(jù)庫連接字符串（來 和Oracle的Oracle.NETDataProvider-信任連接-可能的數(shù)據(jù)庫連接字符串（來 和Oracle的Oracle.NETDataProvider-標(biāo)準(zhǔn)連接-可能的數(shù)據(jù)庫連接字符串（OracleOleDbOracle動(dòng)程序-信任連接-可能的數(shù)據(jù)庫連接字符串（OracleOleDb驅(qū)動(dòng)程序和Oracle驅(qū)動(dòng)程序-可能的信任連接-可能的數(shù)據(jù)庫連接字符串（OracleODBC-可能的數(shù)據(jù)庫連接字符串（OracleODBC-可能的數(shù)據(jù)庫連接字符串（AccessOleDbwithJet-附帶-可能的數(shù)據(jù)庫連接字符串（AccessOleDbwithJet工作組-系統(tǒng)數(shù)據(jù)庫-可能的數(shù)據(jù)庫連接字符串（AccessODBC獨(dú)占使-可能的數(shù)據(jù)庫連接字符串（AccessODBC工作組-可能的數(shù)據(jù)庫連接字符串（Access和-可能的數(shù)據(jù)庫連接字符串（通過IP地址的MSSQL.NET-可能的數(shù)據(jù)庫連接字符串（MSSQL.DataProvider信任連接-可能的數(shù)據(jù)庫連接字符串（MSSQL.DataProvider標(biāo)準(zhǔn)連接或Sybase. -可能的數(shù)據(jù)庫連接字符串（通過IP地址的-可能的數(shù)據(jù)庫連接字符串（MSSQLOleDb信任-betaparticleSQL注入-CleverCopySQL注入-eyeOS命令執(zhí)行-NOCC命令執(zhí)-PwsPHPSQL注入-CassiniDevelopment- Sugar文件包含 Yes phpCOIN文件包含和路徑泄漏 Yes PHP-NukeSearchModuleSQL PLUPIILinux蠕 PHPXML- AWStatsRawlog插件日志文件參數(shù)輸入驗(yàn)證--NovellZENworksPatchManagementServergCardsnews.phpSQL注入-OracleApplicationServer-ZomplogSQL注入-Oracle10gStackBased-Xerver源代碼泄-Gallery文件泄漏-CompletePHPCounterSQL注入-UtopiaNewsProSQL注入-phpMyFAQSQL注入、任意文件泄漏-MyLittleForumSQL注入-Apache 遍-AlstraSoftEPayPro文件泄漏-PHPAdvancedTransferManager-NooTopListSQL注入-MXKart和MXShopSQL注入-merceSQL注入-DeluxeBBSQL注入-TACVista文件泄漏-MyBBmisc.php“fid”參數(shù)SQL注入-MidiCartASPSQL注入-SubscribeMePro文件泄漏-Mall23SQL注入-IISRemoteServerName-WEB//NEWSSQL注入-MPMGuestBookPro-HostingControllerSQL注入-PBLang任意文件泄漏-BarracudaSpamFirewall文件泄漏-FlatNuke路徑泄漏-JBoss管理控制臺(tái)權(quán)-LandDownUnderSQL注入--phpLDAPadmin-OpenBulletinBoardSQL注入-LookingGlassArbitraryCommand-MyBBmember.php“fid”參數(shù)SQL注入-paFileDB驗(yàn)證泄漏和路徑泄-Haserl任意文件源代碼-PhotoPost5.0SQL注入-LOG-FT任意文件泄漏-CaudiumWebServerDenialof-Zorum任意命令執(zhí)行和文件源代碼-PHPNewsSQL注-ECW-ShopSQL注入-phpWebSiteSQL注入-w-Agora文件源代碼-WoltLabBurningBoardSQL-ACNews數(shù)據(jù)庫泄漏-LandDownUnderSQL注入和跨站點(diǎn)--HPOpenViewNetworkNodeManagerCommandMacallanMailSolutionDenialof-WhatsUpGoldWebInterfaceDenialof-PHPTopicBoardSQL注入-VladersoftShopCartSQL注-MidiCartSQL注入-PersianBlogSQL注入-inserter.cgi文件泄漏和命令執(zhí)-include.cgi文件泄漏和命令執(zhí)-citat.pl文件泄漏和命令執(zhí)-forum.pl文件泄漏和命令執(zhí)-ASPAppSQL注入-ESMIStudio產(chǎn)品SQL注入-PhotopostPHPProPhotoGallery-PortalAPPSQL注入-CamServer文件泄漏-MyServer文件泄漏-phpPgAdminFile-GravityBoardX路徑泄漏-GravityBoardX任意代碼執(zhí)行和-OpenBookSQL-eSKUeLFile-ACNewsSQL-Ocean12MailingListManagerSQL-WebContentManagement管理權(quán)-ChurchInfoSQL-OwlIntranetEngineSQL注入-NaxtorShopCart路徑泄漏-MySQLEventumSQL注入和跨站點(diǎn)-PHPListSQL注入-Comersus跨站點(diǎn)-VBZoomForumSQL注入-ReviewPostSQL注入-KNetArbitraryCode-CoolCafeSQL-Ocean12CalendarManagerSQL-ActiveNewsManagerSQL-ibProArcadeSQL注入-NewsletterEzSQL-ASPVirtualNewsManagerSQL-JiRo'sStatisticsSystemSQL-EventCalendarSQL注入-IkonBoardSQL注入-MaxWebPortalSQL注入-(i)Site數(shù)據(jù)庫泄漏和-ZonGGSQL--SoftwareSolutionShopCartWoltLabBurningBoardSQL-InvisionCommunityBlogSQL注入-FortibusCMSSQL注入-IdBoardSQL注入-VP-ASPSQL注入-IpswitchWhatsUpProfessionalSql-- -JeucealWebServerDenialof-class-1ForumSQL注入-Qwiki目錄遍歷-DragonflyCommerceSQL注入-PMSoftwareSimpleWebServerBuffer-MyBBmember.php“uid”參數(shù)SQL注入-PHP-Blogger電子郵件地址和泄漏-phpAuctionSQL注入和驗(yàn)證繞-phpWebSitesearch.php中的SQL注入-LBEWebHelpDeskSQL注入-OneWorldStoreRemoteDenialof-kaiseki.cgi任意命令執(zhí)-PhotoPostProSQL注入-MailEnableHTTPMailRemoteCode-2BGalSQL注入-ComersusSQL注入-CartWIZSQL注入-ANHTTPDServercmdIS.DLLBuffer- SQL注入-S-MartShopCart配置文件泄-PHPKitSQL注入-getInternetSQL注入Dansie Cart變量泄漏--PHPXMLRPCLibraryRemoteCode-ASPKnowledgeBase數(shù)據(jù)庫-ASPWebMail數(shù)據(jù)庫-Quick&DirtyPHPSourcePrinter-GlobalNoteScript任意命令執(zhí)-Mambo“com_content”SQL注入-CommunityLinkPro任意命令執(zhí)-IPSwitchIMail文件泄漏-ASPNuke跨站點(diǎn)-UBBThreadsSQL注入-SDServerDirectory-ClarolineSQL注入-SerendipitySQL注入(-MaxWebPortalSQL注入-uBlogReloadSQL注入-Whois.Cart文件泄漏-osTicket文件泄漏-CJUltraSQL注入(-WordPressSQL-HelpCenterLiveSQL注入-PostNukeSQL注入(-X-CartSQL注入-CodeThatShopCartSQL注-WebHints任意命令執(zhí)- il任意命令執(zhí)行-UltimatePHPBoard信息泄漏-paFileDB文件泄漏和SQL注入-mcGallery任意文件檢-socialMPNSQL注入-phpCOINSQL注入-BKForumSQL注入-PHPCart驗(yàn)證缺-ProductCartSQL-ASPInlineCorporateCalendar-JGSPortalSQL注入-enVivo!CMSSQL注入-EZGuestbook數(shù)據(jù)庫-Cart密碼文件泄漏-FlatNuke任意命令執(zhí)-NetPortalDynamicSystemSQL注入-SingaporeImageGallery任意文件源代碼-ASPPortalSQL注入和跨站點(diǎn)-MyBBSQL注入-SybaseEAserverStack-BasedBuffer-EasyMessageBoard任意命令執(zhí)-MetaCartSQL注入-CalendarixSQL注入-CartWIZ允許SQL注入-ASPNuke允許SQL注入-E-Cart模塊S命令注入-phpBBAuction模塊auction_rating.phpSQL注入-OneWorldStore將訂單信息泄漏給用-OneWorldStore多個(gè)SQL注入-OneWorldStore允許SQL注入-zOOmMediaGallery允許SQL注入-InvisionPowerBoard允許SQL注入-PostNukeNews模塊中的SQL注入-ActiveAuctionHouse允許SQL注入-SiteEnableSQL注入-PortalAppSQL注入-SquirrelcartSQL注入-MXShop使用戶可注入SQL命令-MercuryBoardSQL注入-ESMIPayPalStorefrontSQL--NukeBookmarks允許SQL注入、跨站點(diǎn)和exoopsSQL注入-KoobiSQL注入--phpBBTopicCalendar模塊CiamosHighlight.php任意文件-ExoopsHighlight.php任意文件-RaidenHTTPD將文件泄漏給用-xGB向用戶授予管理權(quán)-OutStartParticipate 泄漏給用-SparkleBlog授予管理權(quán)-Zeroboard將文件泄漏給用-RaidenHTTPDPHP源代碼-TYPO3允許SQL注入-利用YaBB進(jìn)-aeNovo將數(shù)據(jù)庫和管理泄漏給用-paFileDBSQL注入-iGShopSQL注入-PerlDeskSQL注入-SGallerySQL注入-TheIncluder任意命令執(zhí)-paFAQ輸入驗(yàn)證允許SQL注入-phpCOINSQL注入-ProjectBBSQL注入-LaytonHelpBox多個(gè)SQL注入-NovellGroupWiseWebAccess錯(cuò)誤模塊裝入-PHP跨站點(diǎn)（驗(yàn)證轉(zhuǎn)義-Centre向用戶授予管理權(quán)-KayakoeSupport中的多個(gè)SQL注入-BlogTorrent-WebLibsFileDisclosure-phpBugTrackerSQL注入-PHPNuke嚴(yán)重SQL注入-PHPNukeindex.php中的SQL注入-PHPNukesearch.php中的SQL注入-ASPCalendar管理權(quán)限-SimplePHPBlog目錄遍-SugarSales中的文件包含/命令執(zhí)- Ikonboard中的SQL注入(-Ikonboard(st=)中的SQL注入-2BgalSQL注入-PhotoPostClassifieds-PhotoPostProshowgallery中的SQL注入-PHP-Nuke中的SQL注入--ASP.NETorASPUnicodeConversionCross-Site-OWLSQL注入-SparkleBlogSQL注入-MercuryBoardSQL注入- -SGallery(PHPNuke)中的SQL注入-JSBoard任意文件和路徑泄漏-MiniShareGET緩-b2evolution“title”SQL注入-phpBBviewtopic.php命令執(zhí)- -MegabbsForum's中的SQL注入-PostNuke模塊SQL注入-ComersusSQL注入-RiSearch和RiSearchPro多個(gè)-EasyWeb -MyBulletinBoard“uid”SQL注入-eXtropiaWebStore輸入驗(yàn)證錯(cuò)誤使用戶可-WpQuiz獲取管理員權(quán)限-AntiBoardSQL注入-Web_Store.cgi允許命令執(zhí)-VP-ASPShopCart多個(gè)-InvisionPowerBoardv1.3.1Final-phpMyChat中的多個(gè)-I-MallRemoteCommand-PostNuke0.726Phoenix中的SQL注入-PostNuke的phProfession模塊中的SQL--PHP-Nuke的PHP-NukeGallery模塊中SQL注入misc.php中的XMBForumSQL注入-phpBBprivmsg.phpSQL注入--e107：名為ArticleToAFriend的功能中的e107：名為SubmitNews的功能中的跨站點(diǎn)- .php中的跨站點(diǎn)-JPortal(print.php)中的多個(gè)SQL注入-ZenCartlogin.phpSQL注入--FrontpageServerExtensionsfp30reg.dll緩出WebConnection管理-WebConnectionAPI-HassanShopCartshop.pl文件查看-WebCalender信息泄漏-CCBill任意命令執(zhí)-HappyMallmember_html.cgi任意命令執(zhí)-zenTrack任意命令執(zhí)-IIS5.0Denialof--IISWebDAVSEARCHArbitraryLogbook任意命令執(zhí)-cPanelguestbook.cgi任意命令執(zhí)-PHPSAPI任意文件處-WAnewsletter任意命令執(zhí)-E-theni任意命令執(zhí)-Smartsearch.cgiArbitraryCommand-Smartsearch.cgi任意命令執(zhí)-NetscapeEnterpriseServerWebPublisher-IISUnicode任意命令執(zhí)行(..%-FrontpageServerExtensionsshtml.dllDenial--OracleApplicationServeriSQLPlusCommandCoolForumDirectoryTraversalFile-phpWebSite任意命令執(zhí)-PHPphp.exe任意命令執(zhí)-ADPForumArbitraryCommand-SiteSearcher任意命令執(zhí)--TomahawkSteelArrowArbitraryNovellPerlCGIHandlerArbitrary-FUDForumMultiple- 遍歷- 遍歷-Cafelogb2Weblog多個(gè)可能的-L-Forum多個(gè)-WebShopManagerArbitraryCommand-Galleryslideshow.php任意命令執(zhí)-InformixWebDatabladeUniversalSQL-OracleReportsServer任意命令執(zhí)行-PHP多部分表單數(shù)據(jù)任意命令執(zhí)-AdobeContentServerSQL注入--NovellNetWareEnterpriseWebserver存在Perl任-JRunHostHeaderOverflowArbitraryCarelloShopCart任意命令執(zhí)-NetscapeSearchArbitraryCommand-PUT方法任意文件上-NoguskaNola可能的任意命令執(zhí)-DynamicGuestbook命令執(zhí)-Metacart2.sql完整數(shù)據(jù)庫-Metacart2.sql完整數(shù)據(jù)庫-Metacart2.sql完整數(shù)據(jù)庫-Metacart2.sql完整數(shù)據(jù)庫-Metacart2.sql完整數(shù)據(jù)庫-ShopPlusCart任意命令執(zhí)-ezContentSQL注入-DreamCatchersMessageBoard任意命令執(zhí)-Webcart任意命令執(zhí)-phpBBbb_memberlist.phpSQL注入-Metacart2.sql完整數(shù)據(jù)庫-phpBBinstall.php任意命令執(zhí)-merceShopCart任意命令執(zhí)-ApacheChunkedEncodingOverflow-Zeroboard任意命令執(zhí)-Pforum可能的SQL注入-CSNews任意命令執(zhí)-MakeBook可能的任意命令執(zhí)-MyHelpdesk輸入驗(yàn)證-AlienForm2任意文件-ImageFolio任意命令執(zhí)-GeekLogSQL注入-LokwaBBSQL注入-W-Agora任意命令執(zhí)-W-Agora任意命令執(zhí)-DemarcPureSecure可能的SQL注入-Ikonboard可能的任意命令執(zhí)-Sunsolve任意命令執(zhí)-phpGroupWare可能的SQL注入-PenguinTraceRoutev1.0任意命令執(zhí)-VP-ASPshopadmin.asp可能的SQL注入-Metacart2.sql完整數(shù)據(jù)庫-NewAtlantaServletExecISAPI任意命令執(zhí)--SunAnswerbook2gettransbitmap可能的緩出lastlines.cgi任意命令執(zhí)-PGPMail.pl可能令執(zhí)-Add2it -PHPAddress任意命令執(zhí) -mcNews任意命令執(zhí) -Easynews任意文件修 -4DWebserverBasicAuth -MDaemon/World命令執(zhí) -b2php任意命令執(zhí) -CSMailto任意命令執(zhí) -SQL注入 -WebTrendsReportingCenter任意命令執(zhí) -xGB任意命令執(zhí) -phpBBdb.php任意命令執(zhí) - -csSearch命令執(zhí) -FileSeek.cgi任意命令執(zhí) -IISASPChunkedEncoding -IIS.htr任意命令執(zhí) -WebSphere配置信息泄漏 -WebSphere配置信息泄漏 -WebSphere配置信息泄漏 -WebSphere配置信息泄漏 -WebSphere配置信息泄漏 -BEAWeblogic字符編 -Apache批處理文件任意命令執(zhí) -WebSphereFileHandler源代碼泄 -WebSphereJSP源代碼泄漏（主機(jī)別名 -PHProjekt執(zhí) -OracleApplicationServerDAD管理幫 -OracleApplicationServerowa_util -OracleApplicationServerJSP源代碼泄 -SQL注入( -SQL注入(' -后門－NTRoot -后門-Netcat -后門-Netcat -后門－Netcat - 后門－ CSVForm.pl執(zhí) LotusDomino數(shù)據(jù)庫 DirectoryManager執(zhí) DirectoryManager執(zhí) DirectoryManager執(zhí) ActivePerlISAPI緩沖區(qū)溢 IISTranslate:f源代碼泄 Empris任意命令執(zhí) DarkHartPortal任意命令執(zhí) Cardboard任意命令執(zhí) IIS%uUTF編碼任意命令執(zhí) Eshop任意命令執(zhí) HassanCart任意命令執(zhí) phpMyExplorer任意文件源代碼泄 sglMerch任意文件泄 PowerUp任意命令執(zhí) Basilix任意文件源代碼泄 PHProject多個(gè)可能的 Yes phpMyAdmin任意命令執(zhí) Un-CGI任意命令執(zhí) IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏(global.asa.- IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 IIS全局服務(wù)器變量泄漏 全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-全局服務(wù)器變-CrazyWWWBoard任意命令執(zhí)-Foldoc任意命令執(zhí)-電子郵件列表任意命令執(zhí)-phpSecurePages任意命令執(zhí)-TektronixPhaserLinkncl_subjects.html管理-Carello任意命令執(zhí)-IISUnicode雙任意命令執(zhí)行-IISUnicode雙任意命令執(zhí)行-IISUnicode雙任意命令執(zhí)行-IISUnicode雙任意命令執(zhí)行-DCForum任意命令執(zhí)-Bugzilla任意命令執(zhí)--IIS5.0InternetPrintingProtocolISAPIBizDB任意命令執(zhí)-infosrch.cgi任意命令執(zhí)-IrixWebdist.cgi任意命令執(zhí)-YetAnotherBulletinBoard任意命令執(zhí)-EZShopper任意命令執(zhí)-vBulletin任意命令執(zhí)-JJ任意命令執(zhí)-任意服務(wù)器端包含執(zhí)-ASPSeek任意命令執(zhí)-CobaltRaQnetworker.cgi-Post-query緩-MailNews.cgi任意命令執(zhí)-ChiliSoft-PALSLibrary任意命令執(zhí)-BajieJServer任意命令執(zhí)-可能令S-可能令S-可能令S-可能令S-PHF任意命令執(zhí)-calendar_admin.pl任意命令執(zhí)-PollIt任意文件源代碼-MobiusDirect緩沖區(qū)溢- -(/../../../.備份文件(-備份文件(-備份文件(-netIntra緩-GoAheadWebserver任意命令執(zhí)-GoAheadWebserverArbitraryCommand-Guestserver任意命令執(zhí)行-Guestserver任意命令執(zhí)-Formvar.bot多個(gè)可能的-Formvarconfiguration.exe多個(gè)可能的-Formvar.ini多個(gè)可能的-Formvar.top多個(gè)可能的-OmniHTTPDStatsconfig任意命令執(zhí)-IIScpshost.dll任意文件上-BBSForum任意命令執(zhí)-Global.cgi任意文件源代碼-Links.pl任意命令執(zhí)-Sambar任意文件創(chuàng)建/刪除/泄漏 -Sambar任意文件創(chuàng)建/刪除/泄漏(-TektronixPhaserLinkncl_items.html管理-Alibaba任意文件創(chuàng)建/泄漏/刪除-BIG-IP任意文件-PDGSoftShopCart配置信息泄漏--PDGSoftShopCart配置信息泄NCSA-An-HTTPD任意命令執(zhí)-An-HTTPD任意命令執(zhí)-An-HTTPD任意命令執(zhí)-Perl.exe任意命令執(zhí)-CounterFiglet任意命令執(zhí)-Piranha配置執(zhí)-Responder.cgi緩-Info2www任意命令執(zhí)-Survey.cgi任意命令執(zhí)-帳戶信息泄漏(-帳戶信息泄漏(-wdirs.txt信息泄漏-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-NewsDesk任意命令執(zhí)-wsendmail.exe郵-IISUnicode雙任意命令執(zhí)行-BSlist.cgi任意命令執(zhí)-BSguest.cgi任意命令執(zhí)-OracleApplicationServerPLSQL管理權(quán)-MailMan任意命令執(zhí)-EZShopper任意命令執(zhí)-EZShopper任意命令執(zhí)-ad.cgi任意命令執(zhí)- -Sendfile.exe郵-Postiecgi.exe郵-mailsend.exe郵SMTPWeb應(yīng)用程序多個(gè)可能的SMTPWeb應(yīng)用程序多個(gè)可能的--SMTPWeb應(yīng)用程序多個(gè)可能的-SMTPWeb應(yīng)用程序多個(gè)可能的SMTPWeb應(yīng)用程序多個(gè)可能的(cl-Blat.exe郵-BatMail.exe郵-SimplestMail任意命令執(zhí)-S錯(cuò)誤消-S錯(cuò)誤消-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-測(cè)試應(yīng)用程序(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-AccountInformation-AccountInformation-AccountInformation-AccountInformation-AccountInformation-AccountInformation-AccountInformation-AccountInformation-TestApplication-AccountInformation-AccountInformationDisclosure-AccountInformation-AccountInformation-AccountInformation-AccountInformation- 薄服務(wù)任意命令執(zhí)-IISUnicode任意命令執(zhí)行(..%-管理應(yīng)用程序(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-帳戶信息泄漏(-Cart32多個(gè)可能的-Gbook任意命令執(zhí)-FormNow任意命令執(zhí)-UnifyeWave任意文件上-Catalyst3500XL任意命令執(zhí)-IISUnicode任意命令執(zhí)行(..%--IISUnicode雙任意命令執(zhí)行-IISUnicode雙任意命令執(zhí)行IISUnicode雙任意命令執(zhí)行-IISUnicode雙任意命令執(zhí)行-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-IISUnicode任意命令執(zhí)行(..%-KootenayWhois任意命令執(zhí)-MailList&NewsManager任意命令執(zhí)-Clickresponder.pl任意命令執(zhí)-WebGlimpse任意命令執(zhí)-CounterFiglet任意命令執(zhí)-AuctionWeaver任意文件創(chuàng)建/泄漏/刪-AuctionWeaver任意文件創(chuàng)建/泄漏/刪-SoftCart配置信息泄漏-QuikStore配置信息泄漏(-EZMall2000泄-Dragon-FireIDS任意命令執(zhí)-LWGate任意文件源代碼泄漏-Man.sh執(zhí)-Excite(EWS) -“AnyForm”CGI任意命令執(zhí)- 驗(yàn)證CGI執(zhí)行 Yes EZshopper任意命令執(zhí)-HtDightsearch任意文件源代碼-Dmailweb.cgi緩沖區(qū)溢出-Dmailweb緩沖區(qū)溢出-WebWho+命令執(zhí)-MailStudio2000任意命令執(zhí)-Wais客戶端緩-FaxSurvey執(zhí)-CampusCGI執(zhí)-Cart32客戶-OmniHTTPD緩-AnopeW4-Servercgitest.exe緩沖區(qū)溢-CyberOfficeShopCart數(shù)據(jù)庫-IIS.ida變址型服務(wù)緩-RobPoll任意命令執(zhí)行-Web+任意命令執(zhí)-BizDB任意命令執(zhí)行-DNewsWeb緩-Calendar_admin.pl任意命令執(zhí)-Calendar.pl任意命令執(zhí)-CVSweb任意命令執(zhí)-MultiHTMLS-AlibabaWeb服務(wù)器任意命令執(zhí)行(-AlibabaWeb服務(wù)器任意命令執(zhí)行(-AlibabaWeb服務(wù)器任意命令執(zhí)行(-AlibabaWeb服務(wù)器任意命令執(zhí)行(-IOPerl系統(tǒng)信息-IIS全局服務(wù)器變量泄漏-IISRDS多個(gè)可能的-IISism.dll多個(gè)可能的--IISFrontpageServerExtensionsAuthor.dll可能的FrontpageServerExtensions加密文-NetscapeEnterpriseServerWeb-SitePanel2文件和路徑泄漏--TurnkeyWebsitesShopCartSQL注-WoltabBurningBoardSQL--FrontpageServerExtensions加密文PHP-Nuke“forwarder”參數(shù)HTTP響應(yīng)-服務(wù)器端注- -隱私:社會(huì)-Node.js注入-MongoDB注入-SQL盲注(已確認(rèn)-MongoDBPHP請(qǐng)求注入-傳輸層保護(hù)不足-弱-傳輸層保護(hù)不足-弱加密法--ApacheHTTPD范圍標(biāo)頭服-持久性跨站點(diǎn)（用戶交互PersistentCross-SiteScripting-第未公開的跨站-PHP雙精度分析服-SQL盲注（已確認(rèn)-JavaDouble-precisionParsingDenialof-SQL注入（經(jīng)Fortify確認(rèn)-ASP.Net信息泄漏（PaddingOracle-Adobe -ApacheAxis2Cross-Site-SQL盲注（已確認(rèn)--Campsite ents.php“article_id”參數(shù)入注 phpMyAdminunserialize()代碼執(zhí) 持久型跨站 IBMRationalClearQuest嚴(yán)重注入-phpMyAdminsql.php任意文件檢-JoomlaguestBook擴(kuò)- -CreditCardNumbers--不安全的可能的號(hào)泄-可使用應(yīng)用程序源代-不安全的LocalConnection.allow-不安全的Security.allow()用-不安全的Security.allowInsecure-WordPressShiftThisNewsLetter插件SQL注入-Wordpress搜索多字節(jié)字符集SQL注入-phpMyAdmin任意命令執(zhí)-QuickPollScriptcode.phpSQL注入-e107CMS命令執(zhí)--SunJavaSystemActiveServerPages任意命令行EasyNewsindex.phpSQL注入-SQLInjectionConfirmed(NoData-CraftySyntaxLiveHelpis_xmlhttp.phpSQL注入-MyWebFTPpass.txt泄-可能的XSS-注入-BadBluePassThru服-TUTOSCmd.php任意命令執(zhí)-HacmeCasinoSQL注入-GET-CONNECT-中可能有--UniversalArbitraryCommand-UniversalArbitraryCommand(Pipe/Ampersand/Double-UniversalArbitraryCommand(Pipe/Ampersand/Single-UniversalArbitraryCommandUniversalArbitraryCommandExecution-UniversalArbitraryCommandExecution-UniversalArbitraryCommandExecution-NovellGroupwiseWebAccess驗(yàn)證緩沖區(qū)溢-可能的MPack注入--ApacheTomcatJKWebServerConnector緩帳戶信息泄漏(-SearchApplianceUTF-7編碼的跨站點(diǎn)-alIdentificationNumber-跨站點(diǎn)（用戶交互--參數(shù)轉(zhuǎn)義-EdgewallTracSQL注入--編碼的嵌入式電子郵-TableTag跨站點(diǎn)-嵌入式VBScript跨站點(diǎn)-嵌入式STYLETag跨站點(diǎn)-BODYONLOADTag跨站點(diǎn)-IMGStyleTAG跨站點(diǎn)-LINK標(biāo)記跨站點(diǎn)-未知應(yīng)用程序IMG標(biāo)記跨站點(diǎn)-Javascript注入跨站點(diǎn)（雙引號(hào)-Javascript注入跨站點(diǎn)（單引號(hào)-表單跨站點(diǎn)（雙引號(hào)-表單跨站點(diǎn)（單引號(hào)BigBrotherbb-ack.sh任意文件檢-Tigvote.cgi命令執(zhí)-數(shù)據(jù)庫服務(wù)器錯(cuò)誤-Face -HelpDeskReloaded重新安裝-FlatNuke驗(yàn)證憑據(jù)泄-OracleASWebCache-Oracle9iASXMLSOAP處理-MyWebServer信息泄漏-VignetteApplicationPortal信息泄漏-YawsWebServer源代碼泄漏-SilentStorm權(quán)限提升和跨站點(diǎn)-OracleReportsServer文件泄漏-OracleReportsServer跨站點(diǎn)-Netquery任意命令執(zhí)-SaveWeb文件泄漏和管理權(quán)-Megabook數(shù)據(jù)庫泄漏-PHPNews安裝路徑泄-SugarSales文件泄漏-SAPInternet圖-68DesignsFroogleUploader管理權(quán)-Y.SAK任意命令執(zhí)行-04WebServer服務(wù)和日志篡-KeeneDigitalMediaServer管理權(quán)-YaPiG路徑泄漏 創(chuàng)建與刪-IlohaMail-oaBoard路徑泄漏-SqWebMailHTTP響應(yīng)- -probe.cgi任意命令執(zhí)-Phorum“search.php”HTTP響應(yīng)-ListPics數(shù)據(jù)庫泄漏-lighttpdCGI源代碼-CSV_DB任意命令執(zhí)行-SukruAlatas'GuestBook數(shù)據(jù)庫-BXCP安裝路徑泄漏-SingaporeImageGallery路徑泄漏-AffinityPath任意命令執(zhí)-betaparticleblog數(shù)據(jù)庫-UApplication產(chǎn)品數(shù)據(jù)庫泄漏- -ImageGallery將數(shù)據(jù)庫泄漏給用-paFAQ數(shù)據(jù)庫泄漏-GurgensGuestBook數(shù)據(jù)庫-UltimatePHPBoard安裝路徑泄漏-ArticleLive安裝路徑泄漏-PortailPHPSQL注入-PHPPoll服務(wù)器端包-PwsPHP錯(cuò)誤使用戶可確定安裝路-bttlxeForum將安裝路徑泄漏給用-XOOPS文件內(nèi)容泄漏- -PayProCart路徑泄漏和管理權(quán)-phpMyAdmin跨站點(diǎn)-PHPNuke路徑泄漏-VortexPortal-ExponentCMS完整路徑泄漏-Perl源代碼-paNews跨站點(diǎn)-paFileDB-Zorum路徑泄漏、信息泄漏和跨站點(diǎn)-UltimatePHPBoard向用戶泄漏路-w-agora路徑泄漏-PostNuke.NET嵌入的空字符跨站點(diǎn)-LotusDomino-aspWebAlbumSQL注入-TurboSeek信息泄漏--merce安裝可能使用戶獲取管 PHP-NukeReviews模塊中的SQL注

WebSTAR（5.3.2和更低版本）中主機(jī)上任

EnceladusServerSuiteInputValidation-JAWS中的多個(gè)-PowerPortal中的多個(gè)PostNuke0.726Phoenix中的跨站點(diǎn)-InvisionPowerBoard“functions.php”SQL-InvisionPowerBoard“f”跨站點(diǎn)-InvisionPowerBoard“UserName”跨站點(diǎn)-InvisionPowerBoard“c”跨站點(diǎn)-PostNuke的phProfession模塊中的跨站點(diǎn)-PostNukePhoenix中的跨站點(diǎn)-PostNukePhoenix中的跨站點(diǎn)-Moodle跨站點(diǎn)-PhotoPostPHP“uploadphoto.php”SQL注入-PhotoPostPHP“comments.php”SQL注入-misc.php中的XMB跨站點(diǎn)-today.php中的XMB跨站點(diǎn)-forumdisy.php中的XMB跨站點(diǎn)-post.php中的XMB跨站點(diǎn)-stats.php中的XMB跨站點(diǎn)-stats.php中的XMB跨站點(diǎn)-stats.php中的XMB跨站點(diǎn)-xmb.php中的XMB跨站點(diǎn)-phpinfo.php中的XMB跨站點(diǎn)-WebWizForumSQL注入-AspDotNetStoreFront跨站點(diǎn)-BackupFile(Appended-備份文件（附加.-備份文件(.-Linksys遍-CopperminePhotoGallery跨站點(diǎn)-NetworkQueryTool跨站點(diǎn)-TurboTraffic跨站點(diǎn)-NewsPHP跨站點(diǎn)- - --FusionNews跨站點(diǎn)--.NETC#項(xiàng)-.NETVB項(xiàng)-.NETC#源代-.NETVB源代-.NET解決方案文件搜索--AzDGDatingLite跨站點(diǎn)-NewsManagerLite跨站點(diǎn)-paFileDB跨站點(diǎn)phpBugTrackerSQL注入AzDGDatingLite跨站點(diǎn)-SurgeLDAP文件源代碼-NukeCalendar跨站點(diǎn)-FTGatePro跨站點(diǎn)-CactuShop跨站點(diǎn)- FrontpageServerExtensionsdvwssr.dll文件源代X-Cart任意命令執(zhí)-Rx跨站點(diǎn)cPanel任意命令執(zhí)Web.configEMUWebmail跨站點(diǎn)-InvisionPowerBoard“showuser-WebConnectionAPI-VirtuaNews跨站點(diǎn)- -@Mail跨站點(diǎn)-ChiliSoftASP401k示例-ChiliSoftASP數(shù)據(jù)庫編輯-ChiliSoftASPADO查詢執(zhí)-ChiliSoftASPJSADO默認(rèn)-Owls任意文件源代碼泄漏-ShopCartCGI任意文件源代碼泄漏-ProductCart跨站點(diǎn)-phpMyAdmin -Aprox任意文件源代碼--NetCamDirectory-PHPNukefriend.php跨站點(diǎn)-phpGedView跨站點(diǎn)-OpenBB跨站點(diǎn)- -Bajie跨站點(diǎn)-VP-ASP跨站點(diǎn)-CommerceSQL任意文件源代碼-SAPDBWeb-ToolsDirectory-HTTP -DailyDose任意命令執(zhí)-ZoomEngine跨站點(diǎn)-SecureSectionMustRequireSSL-通過未加密的連接發(fā)送登錄-AdminSectionMustRequire-DivineContentServer跨站點(diǎn)-inet管理任意文件源代碼泄漏-可能的注釋--可能的IMG-Tag嵌入式Javascript可能的IMG-Tag嵌入式Javascript跨站點(diǎn)-可能的TextArea跨站點(diǎn)-GeekLogbrokenfile.php跨站點(diǎn)-ACart跨站點(diǎn)-DBabble跨站點(diǎn)-Escapade跨站點(diǎn)-DigitalScribe跨站點(diǎn)-miniPortail跨站點(diǎn)-eNdonesia跨站點(diǎn)- -MatrikzGBWeb應(yīng)-Drupal主頁面頁面跨站點(diǎn)-OmniHTTPD跨站點(diǎn)(test--TUTOS跨站點(diǎn)- -JEUS跨站點(diǎn)-PHPSessionID跨站點(diǎn)- -SaarportWebchat跨站點(diǎn)-Zeusvs_diag.cgi-XMB跨站點(diǎn)-eZPublisharticleview跨站點(diǎn)-BiztalkDTASQLI-PHPNukeYourAccount跨站點(diǎn)-Phorum跨站點(diǎn)-HappyMall跨站點(diǎn)-SLMail目錄遍-BiztalkServer緩-ANHTTPd任意系統(tǒng)文件創(chuàng)-InstaBoardSQL注入-CeilidhBBS跨站點(diǎn)-merce跨站點(diǎn)-PHPNukeblock-forums.php跨站點(diǎn)- Basit內(nèi)容管理跨站 -PHPNuke ge.php任意文件源代碼-MamboSiteServer搜索跨站點(diǎn)-paFileDBSQL注入-Gbook.php跨站點(diǎn)-ClearTrust跨站點(diǎn)-PHPNukemodules.phpSQL-PY-Livredor跨站點(diǎn)-WWWboard跨站點(diǎn)-Immobilieragentadmin.phpSQL-ColdFusionindex.cfm-Mailman電子郵件跨站點(diǎn)-NukedKlan跨站點(diǎn)-phpMyShopcompte.phpSQL--JakartaTomcatNullByteDirectoryFormMail.cgi跨站點(diǎn)-GeekLogusers.php跨站點(diǎn)-DirectoryTraversalWebServer-PHPTopSitesSQL-PsunamiBulletinBoard任意命令執(zhí)-W-Agora任意文件源代碼泄漏-PHPNukemailattach.php任意命令執(zhí)-a_security.html信息泄漏-ImageFolio跨站點(diǎn)-TinyHTTPd目錄遍-phpBBviewtopic.phpCross-Site-PostNukeNewsModuleCross-site-VersatileBulletinBoard應(yīng)-Communigate -IMPSQL-YaBBSEnews_temte.php跨站點(diǎn)-IonScript任意文件-SquirrelMailread_body.php跨站點(diǎn)-SybasePowerDynamoDirectory-PsunamiBulletinBoard任意命令執(zhí)-ImageFolioimagefolio.cgi跨站點(diǎn)-phpBBviewtopic.phpCross-site-VersatileBulletinBoard應(yīng)-myPHPNuke跨站點(diǎn)-IMPSQL注入-BEAWeblogicLogfileSearch默認(rèn)應(yīng)用程序-OracleApplicationServerPL/SQLCode-Zeus管理界面跨站點(diǎn)-Zeusindex.fcgi-ColdFusionISAPIArbitraryCommand-.jspWebApplicationSourceCode-phpBBadmin_ug_auth.php權(quán)-Mailreader任意命令執(zhí)-WebSphere標(biāo)頭注入跨站點(diǎn)-WebSphere跨站點(diǎn)-MyMarket跨站點(diǎn)-Mojo跨站點(diǎn)-YaBB多個(gè)-vBulletin-TheServer服務(wù)-phpToNuke任意文件-IIS.idcISAPI跨站點(diǎn)-SurfControlSuperScout帳戶-SurfControlSuperScout跨站點(diǎn)-Authoria-BEAWeblogicWebguitop.html管理界面-SurfControlSuperScout多個(gè)-phpWebSite跨站點(diǎn)-JettyCGI-BIN任意命令執(zhí)-phpLinkat跨站點(diǎn)-myNewsGroups跨站點(diǎn)--JakartaTomcatDefaultServletSourceHamWeather-BEAWeblogicAdminRealmAdministrative--BEAWeblogicAdminPropsAdministrative-BEAWeblogicAdminMainAdministrativeCobalt 遍歷-CitrixNFuse遍歷文件-CitrixNFuse遍歷- Apache用戶錯(cuò)誤配置（文 JakartaTomcatServletWebdavStatus跨站點(diǎn)-JakartaTomcatServlet上下文跨站點(diǎn)-JakartaTomcatContainerServlet跨站點(diǎn)-Suni-Runbook(none.php)-NetDetector數(shù)據(jù)-PHPShare文件上傳問題-PHPShare文件上-備份文件（附加-備份文件(-SquirrelMail跨站點(diǎn)-WebSphere.jspHandlerDenialof-HTTP標(biāo)頭CRLF注入（HTTP響應(yīng)分離-DB4WebDirectoryTraversalFile-IonScript任意文件- -Frontpage作者文件檢索(-ACart數(shù)據(jù)庫-AbyssWebserver-BlazixJSPSource-OmniHTTPD測(cè)試應(yīng)用程序跨站點(diǎn)-OmniHTTPD測(cè)試應(yīng)用程序跨站點(diǎn)-NovellNetWare -NovellNetWare文件系-phpMyNewsletter任意命令執(zhí)-OracleApplicationServerusebean.jsp跨站點(diǎn)-OracleApplication euser.jsp跨站點(diǎn)-OracleApplication ouser.jsp跨站點(diǎn)-Midicart數(shù)據(jù)庫-FalconWebserver跨站點(diǎn)-SendformCGI -SendformCGI -ShoutBOXForum-phpBBprofile.php管 權(quán)-EasyHomepageCreator可能的應(yīng)-InterNICWhois跨站點(diǎn)--JRundServer-SideIncludeArbitrarySourcePostNukeWiki模塊跨站點(diǎn)-GeekLog(search.php)跨站點(diǎn)-MacromediaSitespring500error.jsp)跨站點(diǎn)-MewsoftAuctionterms)跨站點(diǎn)-W3Mail郵--NorthernSolutionsWebManWebserverTraversalFilewops.cgi跨站點(diǎn)-Suni-Runbook( 遍歷-FluidDynamicsSearchEngine-Lil'HTTPPbcgi.cgi跨站點(diǎn)-JakartaTomcatServlet跨站點(diǎn)-GoAheadWebserver跨站點(diǎn)-GoAhead 遍歷-NetscapeSearch應(yīng)用程 遍歷文-NetscapeSearch應(yīng)用程 遍歷文--JRunAppendedUnicodeCharacterSourceBadBlue搜索跨站點(diǎn)-ArGoSoftMail -ImpWebmail跨站點(diǎn)-PHPAuction應(yīng)-Blackboard跨站點(diǎn)-MultipleVendorWEB-INF文件泄漏-LilHTTPServerurlcount.cgi-PHPNuke可能的文件源代碼-phpSquidPass用戶服-RapidWebPublisher管理界面-Cherokee -Linker - -PHPTroubleTicket可能的應(yīng)-ColdFusionview.cfm跨站點(diǎn)-SttForum跨站點(diǎn)-4D目錄遍-MyPostcards 遍歷文- 遍歷-Resin 遍歷-PHPClassifieds跨站點(diǎn)-MewsoftAuction(searchstring)-CiscoIDSDevice 遍歷-SEANOXDevwex任意文件源代碼--NovellGroupwiseServletManagerXerver任意文件源代碼泄漏-AvotravisStaticAdministrative-OracleApplicationServer配置器跨站點(diǎn)-DatalexBookit-Anthill-php(Reactor)跨站點(diǎn)-AlGuestWebApplication-phpMyNewsletterWebApplication--PCINetsupportManagerDirectoryTraversalPForum-BEAWeblogicJSPProcessorDenialof-Quik-ServWebServerArbitraryFile--ASPUploadDirectoryListing.asp任意文件源代碼漏Delegate404頁面跨站點(diǎn)-SunNetDynamicsndCGI.exe會(huì)話-wbbboardaction.php會(huì)話劫持-BPMStudioProArbitraryFileSource-CobaltRaQservice.cgi跨站點(diǎn)-Emumail任意文件源代碼泄漏-JSP/JHTML擴(kuò)展名大小寫變更源代碼-zml.cgi任意文件源代碼泄漏-CitrixNFuseWebPublishing跨站點(diǎn)-PGPKeyserver可能的Web應(yīng)-mcNewsWindows任意文件源代碼-mcNews跨站點(diǎn)-DOS8.3FilenameFileSource-Apache和WinMEPHP源代碼-HostingController -ViewCVS跨站點(diǎn)-CiscoSecureACSWeb服務(wù) -附加斜杠的JSP源代碼-NovellNetWareWebSearchServer-PHPNuke跨站點(diǎn)-inJoinDirectoryServer文件源代碼-SGDynamo跨站點(diǎn)-Aktivate購(gòu)物系統(tǒng)跨站點(diǎn)-GafwareCFXImage任意文件源代碼-Abyss -BadBlue -JRunJSPISAPIArbitraryCommand-備份文件(.-備份文件（附加.- -Lidik -mwForum可能的Web應(yīng)-askSamas_web.exe跨站點(diǎn)-PostCalendar跨站點(diǎn)-備份文件（附加.-備份文件(.-NovellGroupwiseWebAccess任意文件源代碼泄漏-Sympoll投票系統(tǒng)應(yīng)-IceWarpWebMail跨站點(diǎn)-URLCross-Site-StepWebSearch管理權(quán)-mcNewsUnix任意文件源代碼-JRunWEB-INF目錄-WebSphereDemoMall-FrontpageServerExtensionsShtml.dll跨站點(diǎn)-JRunWEB-INF目錄-JRun%3F.jsp目錄-Jakarta 遍歷-JRunSSIFilter任意文件源代碼-WebSphere示例(-BEAWeblogic處理Servlet源代碼--NombasScriptEaseWebServerEdition任意文件源代碼泄漏-NombasScriptEaseWebServerEdition任意文件源代碼泄漏后門---OracleApplicationServerXSQLServletXML文件OracleApplicationServerSOAP配置-OracleApplicationServerSOAP管理-OracleApplicationServerSOAP管理--OracleApplicationServer默認(rèn)應(yīng) --OracleApplicationServer默認(rèn)應(yīng) --OracleApplicationServer默認(rèn)應(yīng)-OracleApplicationServer默認(rèn)應(yīng)-OracleApplicationServer默認(rèn)應(yīng)-OracleApplicationServer默認(rèn)應(yīng)OracleApplicationServer默認(rèn)應(yīng)用程序(-OracleApplicationServerDAD管理--OracleApplicationOracleApplicationServer-Forte示例-后門-NTRoot(-后門-NTRoot-后門－AckCmd-后門-Netcat(-后門-Netcat(-后門-Netcat(-WebMavenCommand-CodeCharge配置/數(shù)據(jù)庫泄-LotusDomino250+Webadmin.ntf-LotusDomino!Open數(shù)據(jù)-LotusDomino!OpenServerDatabase-LotusDomino?Open數(shù)據(jù)-LotusDomino數(shù)據(jù)庫(vpuserinfo-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫(stauths-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-NovellGroupWise任意文件源代碼-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-FAQManager空字-HostingController瀏覽磁-HostingController瀏覽磁-HostingControllerServ-U-HostingControllerServ-U-HostingControllerServ-U-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-HostingController統(tǒng)計(jì)信息-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-LotusDomino數(shù)據(jù)庫-Lotus-Lotus-Lotus-Lotus-LotusDominoOpenServer數(shù)據(jù)-NovellNetwareWebServer示例頁面源代碼-GetAccess任意Java類執(zhí)-PHPNuke多個(gè)可能的-SambarServer任意文件創(chuàng)-MamboSiteServer管理-DCShop客戶信息泄漏(-CobaltLinuxWebmail任意文件源代碼-Apache帳戶信息泄漏(.- -SlimServer任意文件源代碼-NCM任意SQL命令執(zhí)-包含源代碼信息-PHPNuke任意SQL命令執(zhí)-A1-Statsa1disp4.cgi任意文件源代碼泄漏-A1-Statsa1disp3.cgi任意文件源代碼泄漏-PHProjekt任意文件源代碼-ASP.NET應(yīng)用程序級(jí)別日-WebCalendar配置信息泄漏-QuoteGenerator任意文件源代碼-PerlCalc任意文件源代碼泄漏-BearShare任意文件源代碼--Bytes ctiveWeb H