| No |
Dork |
Kategori |
Deskripsi |
|
|
|---|
| 1 |
"syd_apply.cfm" |
Error Messages |
|
| 2 |
Coldfusion Error Pages |
Error Messages |
These aren\'t too horribly bad, but there are SO MANY of them. These sites got googlebotted while the site was having "technical difficulties." The resulting cached error message gives lots of juicy tidbits about the target site. |
| 3 |
MYSQL error message: supplied argument.... |
Error Messages |
|
| 4 |
"Chatologica MetaSearch" "stack tracking" |
Error Messages |
|
| 5 |
ORA-00921: unexpected end of SQL command |
Error Messages |
|
|
|
| 6 |
sitebuildercontent |
Error Messages |
|
| 7 |
sitebuilderfiles |
Error Messages |
|
| 8 |
sitebuilderpictures |
Error Messages |
|
| 9 |
IIS 4.0 error messages |
Error Messages |
|
| 10 |
Windows 2000 web server error messages |
Error Messages |
|
| 11 |
IIS web server error messages |
Error Messages |
|
| 12 |
Internal Server Error |
Error Messages |
|
| 13 |
mysql error with query |
Error Messages |
|
| 14 |
sQL syntax error |
Error Messages |
|
| 15 |
"Supplied argument is not a valid MySQL result resource" |
Error Messages |
|
|
|
| 16 |
ORA-00936: missing expression |
Error Messages |
|
| 17 |
ORA-00921: unexpected end of SQL command |
Error Messages |
|
| 18 |
"ORA-00933: SQL command not properly ended" |
Error Messages |
|
| 19 |
"Unclosed quotation mark before the character string" |
Error Messages |
|
| 20 |
"Incorrect syntax near" |
Error Messages |
|
| 21 |
"Incorrect syntax near" |
Error Messages |
|
| 22 |
"PostgreSQL query failed: ERROR: parser: parse error" |
Error Messages |
|
| 23 |
supplied argument is not a valid PostgreSQL result |
Error Messages |
|
| 24 |
"Syntax error in query expression " -the |
Error Messages |
|
| 25 |
"An illegal character has been found in the statement" -"previous message" |
Error Messages |
|
| 26 |
"A syntax error has occurred" filetype:ihtml |
Error Messages |
|
| 27 |
"detected an internal error [IBM][CLI Driver][DB2/6000]" |
Error Messages |
|
| 28 |
An unexpected token "END-OF-STATEMENT" was found |
Error Messages |
|
| 29 |
"Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL" |
Error Messages |
|
| 30 |
"Warning: Cannot modify header information - headers already sent" |
Error Messages |
|
| 31 |
"access denied for user" "using password" |
Error Messages |
|
| 32 |
intitle:"Under construction" "does not currently have" |
Error Messages |
|
| 33 |
"Can't connect to local" intitle:warning |
Error Messages |
|
| 34 |
filetype:asp "Custom Error Message" Category Source |
Error Messages |
|
| 35 |
"Fatal error: Call to undefined function" -reply -the -next |
Error Messages |
This error message can reveal information such as compiler used, language used, line numbers, program names and partial source code. |
| 36 |
warning "error on line" php sablotron |
Error Messages |
|
| 37 |
intitle:"Error Occurred" "The error occurred in" filetype:cfm |
Error Messages |
|
| 38 |
intitle:"Execution of this script not permitted" |
Error Messages |
|
| 39 |
"error found handling the request" cocoon filetype:xml |
Error Messages |
|
| 40 |
"Invision Power Board Database Error" |
Error Messages |
These are SQL error messages, ranging from to many connections, access denied to user xxx, showing full path info to the php files etc.. There is an exploitable bug in version 1.1 of this software and the current version is 1.3 available for download on the site. |
| 41 |
intitle:"Error using Hypernews" "Server Software" |
Error Messages |
|
| 42 |
intitle:"Error Occurred While Processing Request" +WHERE (SELECT|INSERT) filetype:cfm |
Error Messages |
|
| 43 |
ht://Dig htsearch error |
Error Messages |
The ht://Dig system is a complete world wide web indexing and searching system for a domain or intranet. A list of publically available sites that use ht://Dig is available at http://www.htdig.org/uses.htmlht://Dig 3.1.1 - 3.2 has a directory traversal and file view vulnerability as described at http://www.securityfocus.com/bid/1026. Attackers can read arbitrary files on the system. If the system is not vulnerable, attackers can still use the error produced by this search to gather information such as administrative email, validation of a cgi-bin executable directory, directory structure, location of a search database file and possible naming conventions. |
| 44 |
intext:"Warning: Failed opening" "on line" "include_path" |
Error Messages |
|
| 45 |
PHP application warnings failing "include_path" |
Error Messages |
|
| 46 |
"Internal Server Error" "server at" |
Error Messages |
|
| 47 |
filetype:php inurl:"logging.php" "Discuz" error |
Error Messages |
|
| 48 |
"ORA-12541: TNS:no listener" intitle:"error occurred" |
Error Messages |
In many cases, these pages display nice bits of SQL code which can be used by an attacker to mount attacks against the SQL database itself. Other pieces of information revealed include path names, file names, and data sources. |
| 49 |
"ASP.NET_SessionId" "data source=" |
Error Messages |
|
| 50 |
filetype:log "PHP Parse error" | "PHP Warning" | "PHP Error" |
Error Messages |
|