1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
|
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
# Version 0.2 # 2011-02-19 #
# Updated version detection
##
Plugin.define "File-Upload-Manager" do
author "Brendan Coles <bcoles@gmail.com>" # 2010-06-05
version "0.2"
description "Web based file upload manager written in PHP. - homepage:http://www.mtnpeak.net"
# Google results as at 2010-06-05 #
# 559 for +intitle:"File Upload Manager" "rename to" "file types allowed"
# Dorks #
dorks [
'intitle:"File Upload Manager" "rename to" "file types allowed"'
]
# Examples #
examples %w|
www.ancea.org/fileupload/
www.philadelphiaprint.com/fileupload/
www.akroncigarclub.com/fileman/index.php
ellipsisanalytics.com/uploads/
reallab.info/up/
www.fotomi.pl/0up/
dtti.prv.pl/upload/
kusunoki.ty.land.to/party-upload/
www.libor-ri.hr/fileupload/
www.worldalpinerockfest.com/submit/
lnx.gtiuruguay.com/phr/
klikni.hit.bg/
125.162.92.55/upload/
cuonglv.110mb.com/upload/
www.rastodolix.ovh.org/upload/upload.php
|
# Matches #
matches [
# GHDB Match # http://johnny.ihackstuff.com/ghdb/?function=detail&id=734
{ :certainty=>75, :ghdb=>'+intitle:"File Upload Manager" "rename to" "file types allowed"' },
# Default title
{ :certainty=>75, :text=>'<title>File Upload Manager</title>' },
# Default HTML copyright comment
{ :text=>'<!-- Copyright (c) 2003 thepeak. Get your own copy of this free PHP script from www.mtnpeak.net -->' },
# Default copyright text
{ :text=>'<a href="http://www.mtnpeak.net" style="text-decoration: none; color: #C0C0C0; font-size: 9px; cursor: default";>© thepeak</a>' },
# Version Detection # Default HTML Comment
{ :version=>/<!-- File Upload Manager v([\d\.]+[^>]+) -->/ },
]
end
|
