report-2024-09-20_04-52-51-192.168.50.101.html

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html xmlns:fo="http://www.w3.org/1999/XSL/Format">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<!--generated with nmap.xsl - version 0.9c by Benjamin Erb - http://www.benjamin-erb.de/nmap_xsl.php --><style type="text/css">
/* stylesheet print */
@media print
{
  #menu {
    display:none;
  }

  body {
    font-family: Verdana, Helvetica, sans-serif;
  }
  
  h1 {
    font-size: 13pt;
    font-weight:bold;
    margin:4pt 0pt 0pt 0pt;
    padding:0;
  }

  h2 {
    font-size: 12pt;
    font-weight:bold;
    margin:3pt 0pt 0pt 0pt;
    padding:0;
  }

  h3, a:link, a:visited {
    font-size: 9pt;
    font-weight:bold;
    margin:1pt 0pt 0pt 20pt;
    padding:0;
    text-decoration: none;
    color: #000000;
  }

  p,ul {
    font-size: 9pt;
    margin:1pt 0pt 8pt 40pt;
    padding:0;
    text-align:left;
  }

  li {
    font-size: 9pt;
    margin:0;
    padding:0;
    text-align:left;
  }

  table {
    margin:1pt 0pt 8pt 40pt;
    border:0px;
    width:90%
  }

  td {
    border:0px;
    border-top:1px solid black;
    font-size: 9pt;
  }

  .head td {
    border:0px;
    font-weight:bold;
    font-size: 9pt;
  }
  .noprint { display: none; }
}

/* stylesheet screen */
@media screen
{
  body {
    font-family: Verdana, Helvetica, sans-serif;
    margin: 0px;
    background-color: #FFFFFF;
    color: #000000;
    text-align: center;
  }

  #container {
    text-align:left;
    margin: 10px auto;
    width: 90%;
  }

  h1 {
    font-family: Verdana, Helvetica, sans-serif;
    font-weight:bold;
    font-size: 14pt;
    color: #FFFFFF;
    background-color:#2A0D45;
    margin:10px 0px 0px 0px;
    padding:5px 4px 5px 4px;
    width: 100%;
    border:1px solid black;
    text-align: left;
  }

  h2 {
    font-family: Verdana, Helvetica, sans-serif;
    font-weight:bold;
    font-size: 11pt;
    color: #000000;
    margin:30px 0px 0px 0px;
    padding:4px;
    width: 100%;
    background-color:#F0F8FF;
    text-align: left;
  }

  h2.green {
    color: #000000;
    background-color:#CCFFCC;
    border-color:#006400;
  }

  h2.red {
    color: #000000;
    background-color:#FFCCCC;
    border-color:#8B0000;
  }
   
  h3 {
    font-family: Verdana, Helvetica, sans-serif;
    font-weight:bold;
    font-size: 10pt;
    color:#000000;
    background-color: #FFFFFF;
    width: 75%;
    text-align: left;
  }

  p {
    font-family: Verdana, Helvetica, sans-serif;
    font-size: 8pt;
    color:#000000;
    background-color: #FFFFFF;
    width: 75%;
    text-align: left;
  }

  p i {
    font-family: Verdana, Helvetica, sans-serif;
    font-size: 8pt;
    color:#000000;
    background-color: #CCCCCC;
  }

  ul {
    font-family: Verdana, Helvetica, sans-serif;
    font-size: 8pt;
    color:#000000;
    background-color: #FFFFFF;
    width: 75%;
    text-align: left;
  }

  a {
    font-family: Verdana, Helvetica, sans-serif;
    text-decoration: none;
    font-size: 8pt;
    color:#000000;
    font-weight:bold;
    background-color: #FFFFFF;
    color: #000000;
  }

  li a {
    font-family: Verdana, Helvetica, sans-serif;
    text-decoration: none;
    font-size: 10pt;
    color:#000000;
    font-weight:bold;
    background-color: #FFFFFF;
    color: #000000;
  }

  a:hover {
    text-decoration: underline;
  }

  a.up {
      color:#006400;
  }

  table {
    width: 80%;
    border:0px;
    color: #000000;
    background-color: #000000;
    margin:10px;
  }

  tr {
    vertical-align:top;
    font-family: Verdana, Helvetica, sans-serif;
    font-size: 8pt;
    color:#000000;
    background-color: #FFFFFF;
  }

  tr.head {
    background-color: #E1E1E1;
    color: #000000;
    font-weight:bold;
  }

  tr.open {
    background-color: #CCFFCC;
    color: #000000;
  }
	
  tr.script {
    background-color: #EFFFF7;
    color: #000000;
  }

  tr.filtered {
    background-color: #F2F2F2;
    color: #000000;
  }

  tr.closed {
    background-color: #F2F2F2;
    color: #000000;
  }
    
  td {
    padding:2px;
  }
        
  #menu li {
    display         : inline;
    margin          : 0;
    /*margin-right    : 10px;*/
    padding         : 0;
    list-style-type : none;
  }    
 
  #menubox {
    position: fixed;
    bottom: 0px;
    right: 0px;
    width: 120px;
  }
  
  
  /* This section handle's IE's refusal to honor the fixed CSS attribute */
  
  * html div#menubox {
    position: absolute;
    top:expression(eval(
      document.compatMode && document.compatMode=='CSS1Compat') ?
      documentElement.scrollTop+(documentElement.clientHeight-this.clientHeight) 
      : document.body.scrollTop +(document.body.clientHeight-this.clientHeight));
  }
  /* This fixes the jerky effect when scrolling in IE*/
  * html,* html body {
    background: #fff url(nosuchfile) fixed;
  }

  
  .up {
    color: #000000;
    background-color:#CCFFCC;
  }
  
  .down {
    color:#626262;
    background-color: #F2F2F2;
  }

  .print_only { display: none; }
  .hidden { display: none; }
  .unhidden { display: block; }
  
}
</style>
<title>Nmap Scan Report - Scanned at Fri Sep 20 04:52:54 2024</title>
<script type="text/javascript">
     
      
      function toggle(divID) {
        var item = document.getElementById(divID);
        if (item) {
          item.className=(item.className=='hidden')?'unhidden':'hidden';
        }
      }
           
      function togglePorts(tableID,portState) {
        var table = document.getElementById(tableID);    
        var tbody = table.getElementsByTagName("tbody")[0];
        var rows = tbody.getElementsByTagName("tr");
        for (var i=0; i < rows.length; i++) {
          var value = rows[i].getElementsByTagName("td")[2].firstChild.nodeValue;
          if (value == portState) {
            rows[i].style.display = (rows[i].style.display == 'none')?'':'none';
          }
        }
      }
      
      function toggleAll(portState) {
        var allTables = document.getElementsByTagName("table");
        for (var c=0; c < allTables.length; c++) {
          if (allTables[c].id != "") {
            togglePorts(allTables[c].id, portState)
          }
        }
      }
      
      function init (){
        toggleAll('closed');
        toggleAll('filtered');     
      }     
            
      window.onload = init; 
      
      
    </script>
</head>
<body>
<a name="top"></a><div id="container">
<h1>Nmap Scan Report - Scanned at Fri Sep 20 04:52:54 2024</h1>
<ul id="menu">
<li><a href="#scansummary">Scan Summary</a></li>
<li> | <a href="#host_192_168_50_101" class="up">192.168.50.101</a>
</li>
</ul>
<a name="scansummary"></a><hr class="print_only">
<h2>Scan Summary</h2>
<p>
      Nmap 7.94SVN was initiated at Fri Sep 20 04:52:54 2024 with these arguments:<br><i>nmap -A -p- --script vuln,smb-enum-shares,http-enum,brute -oA report-2024-09-20_04-52-51-192.168.50.101 -T4 192.168.50.101</i><br></p>
<p>
    Verbosity: 0; Debug level 0</p>
<p>Nmap done at Fri Sep 20 05:01:29 2024; 1 IP address (1 host up) scanned in 515.06 seconds</p>
<hr class="print_only">
<a name="host_192_168_50_101"></a><h2 class="up">192.168.50.101<span class="print_only">(online)</span>
</h2>
<div id="hostblock_192.168.50.101" class="unhidden">
<h3>Address</h3>
<ul>
<li>192.168.50.101
            (ipv4)
          </li>
<li>08:00:27:6F:69:5B - Oracle VirtualBox virtual NIC 
            (mac)
          </li>
</ul>


<h3>Ports</h3>
<p>The 65505 ports scanned but not shown below are in state: <b>closed</b></p>
<ul><li><p>65505 ports replied with: <b>reset</b></p></li></ul>
<table id="porttable_192.168.50.101" cellspacing="1">
<tr class="head">
<td colspan="2">Port</td>
<td>State 
          <a href="javascript:togglePorts('porttable_192.168.50.101','closed');"><span class="noprint"><small> (toggle closed [0] </small></span></a><a href="javascript:togglePorts('porttable_192.168.50.101','filtered');"><span class="noprint"><small> | filtered [0])</small></span></a>
</td>
<td>Service</td>
<td>Reason</td>
<td>Product</td>
<td>Version</td>
<td>Extra info</td>
</tr>


<tr class="open">
<td>21</td>
<td>tcp</td>
<td>open</td>
<td>ftp </td>
<td>syn-ack</td>
<td>vsftpd </td>
<td>2.3.4 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>ftp-vsftpd-backdoor </td>
<td colspan="6"><pre>
  VULNERABLE:
  vsFTPd version 2.3.4 backdoor
    State: VULNERABLE (Exploitable)
    IDs:  BID:48539  CVE:CVE-2011-2523
      vsFTPd version 2.3.4 backdoor, this was reported on 2011-07-04.
    Disclosure date: 2011-07-03
    Exploit results:
      Shell command: id
      Results: uid=0(root) gid=0(root)
    References:
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2523
      https://www.securityfocus.com/bid/48539
      https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/ftp/vsftpd_234_backdoor.rb
      http://scarybeastsecurity.blogspot.com/2011/07/alert-vsftpd-download-backdoored.html
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>ftp-brute </td>
<td colspan="6"><pre>
  Accounts: 
    user:user - Valid credentials
  Statistics: Performed 1302 guesses in 301 seconds, average tps: 3.3 </pre></td>
</tr>
<tr class="open">
<td>22</td>
<td>tcp</td>
<td>open</td>
<td>ssh </td>
<td>syn-ack</td>
<td>OpenSSH </td>
<td>4.7p1 Debian 8ubuntu1 </td>
<td>protocol 2.0 </td>
</tr>
<tr class="script">
<td></td>
<td>ssh-brute </td>
<td colspan="6"><pre>
  Accounts: 
    user:user - Valid credentials
  Statistics: Performed 124 guesses in 301 seconds, average tps: 1.8 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:openbsd:openssh:4.7p1: 
    	95499236-C9FE-56A6-9D7D-E943A24B633A	10.0	https://vulners.com/githubexploit/95499236-C9FE-56A6-9D7D-E943A24B633A	*EXPLOIT*
    	2C119FFA-ECE0-5E14-A4A4-354A2C38071A	10.0	https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A	*EXPLOIT*
    	CVE-2023-38408	9.8	https://vulners.com/cve/CVE-2023-38408
    	CVE-2016-1908	9.8	https://vulners.com/cve/CVE-2016-1908
    	B8190CDB-3EB9-5631-9828-8064A1575B23	9.8	https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23	*EXPLOIT*
    	8FC9C5AB-3968-5F3C-825E-E8DB5379A623	9.8	https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623	*EXPLOIT*
    	8AD01159-548E-546E-AA87-2DE89F3927EC	9.8	https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC	*EXPLOIT*
    	5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A	9.8	https://vulners.com/githubexploit/5E6968B4-DBD6-57FA-BF6E-D9B2219DB27A	*EXPLOIT*
    	CVE-2015-5600	8.5	https://vulners.com/cve/CVE-2015-5600
    	SSV:78173	7.8	https://vulners.com/seebug/SSV:78173	*EXPLOIT*
    	SSV:69983	7.8	https://vulners.com/seebug/SSV:69983	*EXPLOIT*
    	PACKETSTORM:98796	7.8	https://vulners.com/packetstorm/PACKETSTORM:98796	*EXPLOIT*
    	PACKETSTORM:94556	7.8	https://vulners.com/packetstorm/PACKETSTORM:94556	*EXPLOIT*
    	PACKETSTORM:140070	7.8	https://vulners.com/packetstorm/PACKETSTORM:140070	*EXPLOIT*
    	PACKETSTORM:101052	7.8	https://vulners.com/packetstorm/PACKETSTORM:101052	*EXPLOIT*
    	EXPLOITPACK:71D51B69AA2D3A74753D7A921EE79985	7.8	https://vulners.com/exploitpack/EXPLOITPACK:71D51B69AA2D3A74753D7A921EE79985	*EXPLOIT*
    	EXPLOITPACK:67F6569F63A082199721C069C852BBD7	7.8	https://vulners.com/exploitpack/EXPLOITPACK:67F6569F63A082199721C069C852BBD7	*EXPLOIT*
    	EXPLOITPACK:5BCA798C6BA71FAE29334297EC0B6A09	7.8	https://vulners.com/exploitpack/EXPLOITPACK:5BCA798C6BA71FAE29334297EC0B6A09	*EXPLOIT*
    	EDB-ID:24450	7.8	https://vulners.com/exploitdb/EDB-ID:24450	*EXPLOIT*
    	EDB-ID:15215	7.8	https://vulners.com/exploitdb/EDB-ID:15215	*EXPLOIT*
    	CVE-2020-15778	7.8	https://vulners.com/cve/CVE-2020-15778
    	CVE-2016-10012	7.8	https://vulners.com/cve/CVE-2016-10012
    	CVE-2015-8325	7.8	https://vulners.com/cve/CVE-2015-8325
    	1337DAY-ID-26494	7.8	https://vulners.com/zdt/1337DAY-ID-26494	*EXPLOIT*
    	SSV:92579	7.5	https://vulners.com/seebug/SSV:92579	*EXPLOIT*
    	SSV:61450	7.5	https://vulners.com/seebug/SSV:61450	*EXPLOIT*
    	PACKETSTORM:173661	7.5	https://vulners.com/packetstorm/PACKETSTORM:173661	*EXPLOIT*
    	F0979183-AE88-53B4-86CF-3AF0523F3807	7.5	https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807	*EXPLOIT*
    	EDB-ID:40888	7.5	https://vulners.com/exploitdb/EDB-ID:40888	*EXPLOIT*
    	CVE-2016-6515	7.5	https://vulners.com/cve/CVE-2016-6515
    	CVE-2016-10708	7.5	https://vulners.com/cve/CVE-2016-10708
    	CVE-2014-1692	7.5	https://vulners.com/cve/CVE-2014-1692
    	CVE-2010-4478	7.5	https://vulners.com/cve/CVE-2010-4478
    	1337DAY-ID-26576	7.5	https://vulners.com/zdt/1337DAY-ID-26576	*EXPLOIT*
    	CVE-2016-10009	7.3	https://vulners.com/cve/CVE-2016-10009
    	SSV:92582	7.2	https://vulners.com/seebug/SSV:92582	*EXPLOIT*
    	CVE-2016-10010	7.0	https://vulners.com/cve/CVE-2016-10010
    	SSV:92580	6.9	https://vulners.com/seebug/SSV:92580	*EXPLOIT*
    	CVE-2015-6564	6.9	https://vulners.com/cve/CVE-2015-6564
    	1337DAY-ID-26577	6.9	https://vulners.com/zdt/1337DAY-ID-26577	*EXPLOIT*
    	EDB-ID:46516	6.8	https://vulners.com/exploitdb/EDB-ID:46516	*EXPLOIT*
    	EDB-ID:46193	6.8	https://vulners.com/exploitdb/EDB-ID:46193	*EXPLOIT*
    	CVE-2019-6110	6.8	https://vulners.com/cve/CVE-2019-6110
    	CVE-2019-6109	6.8	https://vulners.com/cve/CVE-2019-6109
    	C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3	6.8	https://vulners.com/githubexploit/C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3	*EXPLOIT*
    	10213DBE-F683-58BB-B6D3-353173626207	6.8	https://vulners.com/githubexploit/10213DBE-F683-58BB-B6D3-353173626207	*EXPLOIT*
    	CVE-2023-51385	6.5	https://vulners.com/cve/CVE-2023-51385
    	CVE-2008-1657	6.5	https://vulners.com/cve/CVE-2008-1657
    	EDB-ID:40858	6.4	https://vulners.com/exploitdb/EDB-ID:40858	*EXPLOIT*
    	EDB-ID:40119	6.4	https://vulners.com/exploitdb/EDB-ID:40119	*EXPLOIT*
    	EDB-ID:39569	6.4	https://vulners.com/exploitdb/EDB-ID:39569	*EXPLOIT*
    	CVE-2016-3115	6.4	https://vulners.com/cve/CVE-2016-3115
    	EDB-ID:40136	5.9	https://vulners.com/exploitdb/EDB-ID:40136	*EXPLOIT*
    	EDB-ID:40113	5.9	https://vulners.com/exploitdb/EDB-ID:40113	*EXPLOIT*
    	CVE-2023-48795	5.9	https://vulners.com/cve/CVE-2023-48795
    	CVE-2019-6111	5.9	https://vulners.com/cve/CVE-2019-6111
    	CVE-2016-6210	5.9	https://vulners.com/cve/CVE-2016-6210
    	SSV:61911	5.8	https://vulners.com/seebug/SSV:61911	*EXPLOIT*
    	EXPLOITPACK:98FE96309F9524B8C84C508837551A19	5.8	https://vulners.com/exploitpack/EXPLOITPACK:98FE96309F9524B8C84C508837551A19	*EXPLOIT*
    	EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97	5.8	https://vulners.com/exploitpack/EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97	*EXPLOIT*
    	CVE-2014-2653	5.8	https://vulners.com/cve/CVE-2014-2653
    	1337DAY-ID-32328	5.8	https://vulners.com/zdt/1337DAY-ID-32328	*EXPLOIT*
    	1337DAY-ID-32009	5.8	https://vulners.com/zdt/1337DAY-ID-32009	*EXPLOIT*
    	SSV:91041	5.5	https://vulners.com/seebug/SSV:91041	*EXPLOIT*
    	PACKETSTORM:140019	5.5	https://vulners.com/packetstorm/PACKETSTORM:140019	*EXPLOIT*
    	PACKETSTORM:136234	5.5	https://vulners.com/packetstorm/PACKETSTORM:136234	*EXPLOIT*
    	EXPLOITPACK:F92411A645D85F05BDBD274FD222226F	5.5	https://vulners.com/exploitpack/EXPLOITPACK:F92411A645D85F05BDBD274FD222226F	*EXPLOIT*
    	EXPLOITPACK:9F2E746846C3C623A27A441281EAD138	5.5	https://vulners.com/exploitpack/EXPLOITPACK:9F2E746846C3C623A27A441281EAD138	*EXPLOIT*
    	EXPLOITPACK:1902C998CBF9154396911926B4C3B330	5.5	https://vulners.com/exploitpack/EXPLOITPACK:1902C998CBF9154396911926B4C3B330	*EXPLOIT*
    	CVE-2016-10011	5.5	https://vulners.com/cve/CVE-2016-10011
    	1337DAY-ID-25388	5.5	https://vulners.com/zdt/1337DAY-ID-25388	*EXPLOIT*
    	PACKETSTORM:181223	5.3	https://vulners.com/packetstorm/PACKETSTORM:181223	*EXPLOIT*
    	MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-	5.3	https://vulners.com/metasploit/MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-	*EXPLOIT*
    	EDB-ID:45939	5.3	https://vulners.com/exploitdb/EDB-ID:45939	*EXPLOIT*
    	EDB-ID:45233	5.3	https://vulners.com/exploitdb/EDB-ID:45233	*EXPLOIT*
    	CVE-2018-20685	5.3	https://vulners.com/cve/CVE-2018-20685
    	CVE-2018-15473	5.3	https://vulners.com/cve/CVE-2018-15473
    	CVE-2017-15906	5.3	https://vulners.com/cve/CVE-2017-15906
    	CVE-2016-20012	5.3	https://vulners.com/cve/CVE-2016-20012
    	SSV:60656	5.0	https://vulners.com/seebug/SSV:60656	*EXPLOIT*
    	SSH_ENUM	5.0	https://vulners.com/canvas/SSH_ENUM	*EXPLOIT*
    	PACKETSTORM:150621	5.0	https://vulners.com/packetstorm/PACKETSTORM:150621	*EXPLOIT*
    	EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0	5.0	https://vulners.com/exploitpack/EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0	*EXPLOIT*
    	EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283	5.0	https://vulners.com/exploitpack/EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283	*EXPLOIT*
    	CVE-2010-5107	5.0	https://vulners.com/cve/CVE-2010-5107
    	1337DAY-ID-31730	5.0	https://vulners.com/zdt/1337DAY-ID-31730	*EXPLOIT*
    	CVE-2014-2532	4.9	https://vulners.com/cve/CVE-2014-2532
    	EXPLOITPACK:802AF3229492E147A5F09C7F2B27C6DF	4.3	https://vulners.com/exploitpack/EXPLOITPACK:802AF3229492E147A5F09C7F2B27C6DF	*EXPLOIT*
    	EXPLOITPACK:5652DDAA7FE452E19AC0DC1CD97BA3EF	4.3	https://vulners.com/exploitpack/EXPLOITPACK:5652DDAA7FE452E19AC0DC1CD97BA3EF	*EXPLOIT*
    	CVE-2015-5352	4.3	https://vulners.com/cve/CVE-2015-5352
    	1337DAY-ID-25440	4.3	https://vulners.com/zdt/1337DAY-ID-25440	*EXPLOIT*
    	1337DAY-ID-25438	4.3	https://vulners.com/zdt/1337DAY-ID-25438	*EXPLOIT*
    	CVE-2010-4755	4.0	https://vulners.com/cve/CVE-2010-4755
    	CVE-2021-36368	3.7	https://vulners.com/cve/CVE-2021-36368
    	CVE-2012-0814	3.5	https://vulners.com/cve/CVE-2012-0814
    	CVE-2011-5000	3.5	https://vulners.com/cve/CVE-2011-5000
    	SSV:92581	2.1	https://vulners.com/seebug/SSV:92581	*EXPLOIT*
    	CVE-2011-4327	2.1	https://vulners.com/cve/CVE-2011-4327
    	CVE-2015-6563	1.9	https://vulners.com/cve/CVE-2015-6563
    	CVE-2008-3259	1.2	https://vulners.com/cve/CVE-2008-3259
    	PACKETSTORM:151227	0.0	https://vulners.com/packetstorm/PACKETSTORM:151227	*EXPLOIT*
    	PACKETSTORM:140261	0.0	https://vulners.com/packetstorm/PACKETSTORM:140261	*EXPLOIT*
    	PACKETSTORM:138006	0.0	https://vulners.com/packetstorm/PACKETSTORM:138006	*EXPLOIT*
    	PACKETSTORM:137942	0.0	https://vulners.com/packetstorm/PACKETSTORM:137942	*EXPLOIT*
    	EDB-ID:45210	0.0	https://vulners.com/exploitdb/EDB-ID:45210	*EXPLOIT*
    	EDB-ID:40963	0.0	https://vulners.com/exploitdb/EDB-ID:40963	*EXPLOIT*
    	EDB-ID:40962	0.0	https://vulners.com/exploitdb/EDB-ID:40962	*EXPLOIT*
    	1337DAY-ID-30937	0.0	https://vulners.com/zdt/1337DAY-ID-30937	*EXPLOIT*
    	1337DAY-ID-26468	0.0	https://vulners.com/zdt/1337DAY-ID-26468	*EXPLOIT*
    	1337DAY-ID-25391	0.0	https://vulners.com/zdt/1337DAY-ID-25391	*EXPLOIT* </pre></td>
</tr>
<tr class="open">
<td>23</td>
<td>tcp</td>
<td>open</td>
<td>telnet </td>
<td>syn-ack</td>
<td>Linux telnetd </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>tso-enum </td>
<td colspan="6"><pre>ERROR: Script execution failed (use -d to debug) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vtam-enum </td>
<td colspan="6"><pre>Not VTAM or 'logon applid' command not accepted. Try with script arg 'vtam-enum.macros=true' </pre></td>
</tr>
<tr class="script">
<td></td>
<td>telnet-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 2 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>25</td>
<td>tcp</td>
<td>open</td>
<td>smtp </td>
<td>syn-ack</td>
<td>Postfix smtpd </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>ssl-poodle </td>
<td colspan="6"><pre>
  VULNERABLE:
  SSL POODLE information leak
    State: VULNERABLE
    IDs:  BID:70574  CVE:CVE-2014-3566
          The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other
          products, uses nondeterministic CBC padding, which makes it easier
          for man-in-the-middle attackers to obtain cleartext data via a
          padding-oracle attack, aka the "POODLE" issue.
    Disclosure date: 2014-10-14
    Check results:
      TLS_RSA_WITH_AES_128_CBC_SHA
    References:
      https://www.imperialviolet.org/2014/10/14/poodle.html
      https://www.openssl.org/~bodo/ssl-poodle.pdf
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
      https://www.securityfocus.com/bid/70574
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>smtp-vuln-cve2010-4344 </td>
<td colspan="6"><pre>
  The SMTP server is not Exim: NOT VULNERABLE
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>sslv2-drown </td>
<td colspan="6"><pre>ERROR: Script execution failed (use -d to debug) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>ssl-dh-params </td>
<td colspan="6"><pre>
  VULNERABLE:
  Anonymous Diffie-Hellman Key Exchange MitM Vulnerability
    State: VULNERABLE
      Transport Layer Security (TLS) services that use anonymous
      Diffie-Hellman key exchange only provide protection against passive
      eavesdropping, and are vulnerable to active man-in-the-middle attacks
      which could completely compromise the confidentiality and integrity
      of any data exchanged over the resulting session.
    Check results:
      ANONYMOUS DH GROUP 1
            Cipher Suite: TLS_DH_anon_WITH_AES_128_CBC_SHA
            Modulus Type: Safe prime
            Modulus Source: postfix builtin
            Modulus Length: 1024
            Generator Length: 8
            Public Key Length: 1024
    References:
      https://www.ietf.org/rfc/rfc2246.txt
  
  Transport Layer Security (TLS) Protocol DHE_EXPORT Ciphers Downgrade MitM (Logjam)
    State: VULNERABLE
    IDs:  BID:74733  CVE:CVE-2015-4000
      The Transport Layer Security (TLS) protocol contains a flaw that is
      triggered when handling Diffie-Hellman key exchanges defined with
      the DHE_EXPORT cipher. This may allow a man-in-the-middle attacker
      to downgrade the security of a TLS session to 512-bit export-grade
      cryptography, which is significantly weaker, allowing the attacker
      to more easily break the encryption and monitor or tamper with
      the encrypted stream.
    Disclosure date: 2015-5-19
    Check results:
      EXPORT-GRADE DH GROUP 1
            Cipher Suite: TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
            Modulus Type: Safe prime
            Modulus Source: Unknown/Custom-generated
            Modulus Length: 512
            Generator Length: 8
            Public Key Length: 512
    References:
      https://www.securityfocus.com/bid/74733
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
      https://weakdh.org
  
  Diffie-Hellman Key Exchange Insufficient Group Strength
    State: VULNERABLE
      Transport Layer Security (TLS) services that use Diffie-Hellman groups
      of insufficient strength, especially those using one of a few commonly
      shared groups, may be susceptible to passive eavesdropping attacks.
    Check results:
      WEAK DH GROUP 1
            Cipher Suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA
            Modulus Type: Safe prime
            Modulus Source: postfix builtin
            Modulus Length: 1024
            Generator Length: 8
            Public Key Length: 1024
    References:
      https://weakdh.org
 </pre></td>
</tr>
<tr class="open">
<td>53</td>
<td>tcp</td>
<td>open</td>
<td>domain </td>
<td>syn-ack</td>
<td>ISC BIND </td>
<td>9.4.2 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:isc:bind:9.4.2: 
    	SSV:2853	10.0	https://vulners.com/seebug/SSV:2853	*EXPLOIT*
    	CVE-2008-0122	10.0	https://vulners.com/cve/CVE-2008-0122
    	95499236-C9FE-56A6-9D7D-E943A24B633A	10.0	https://vulners.com/githubexploit/95499236-C9FE-56A6-9D7D-E943A24B633A	*EXPLOIT*
    	2C119FFA-ECE0-5E14-A4A4-354A2C38071A	10.0	https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A	*EXPLOIT*
    	CVE-2021-25216	9.8	https://vulners.com/cve/CVE-2021-25216
    	CVE-2020-8616	8.6	https://vulners.com/cve/CVE-2020-8616
    	CVE-2016-1286	8.6	https://vulners.com/cve/CVE-2016-1286
    	SSV:60184	8.5	https://vulners.com/seebug/SSV:60184	*EXPLOIT*
    	CVE-2012-1667	8.5	https://vulners.com/cve/CVE-2012-1667
    	SSV:60292	7.8	https://vulners.com/seebug/SSV:60292	*EXPLOIT*
    	PACKETSTORM:180552	7.8	https://vulners.com/packetstorm/PACKETSTORM:180552	*EXPLOIT*
    	PACKETSTORM:138960	7.8	https://vulners.com/packetstorm/PACKETSTORM:138960	*EXPLOIT*
    	PACKETSTORM:132926	7.8	https://vulners.com/packetstorm/PACKETSTORM:132926	*EXPLOIT*
    	MSF:AUXILIARY-DOS-DNS-BIND_TKEY-	7.8	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TKEY-	*EXPLOIT*
    	EXPLOITPACK:BE4F638B632EA0754155A27ECC4B3D3F	7.8	https://vulners.com/exploitpack/EXPLOITPACK:BE4F638B632EA0754155A27ECC4B3D3F	*EXPLOIT*
    	EXPLOITPACK:46DEBFAC850194C04C54F93E0DFF5F4F	7.8	https://vulners.com/exploitpack/EXPLOITPACK:46DEBFAC850194C04C54F93E0DFF5F4F	*EXPLOIT*
    	EXPLOITPACK:09762DB0197BBAAAB6FC79F24F0D2A74	7.8	https://vulners.com/exploitpack/EXPLOITPACK:09762DB0197BBAAAB6FC79F24F0D2A74	*EXPLOIT*
    	EDB-ID:42121	7.8	https://vulners.com/exploitdb/EDB-ID:42121	*EXPLOIT*
    	EDB-ID:37723	7.8	https://vulners.com/exploitdb/EDB-ID:37723	*EXPLOIT*
    	EDB-ID:37721	7.8	https://vulners.com/exploitdb/EDB-ID:37721	*EXPLOIT*
    	CVE-2017-3141	7.8	https://vulners.com/cve/CVE-2017-3141
    	CVE-2015-5722	7.8	https://vulners.com/cve/CVE-2015-5722
    	CVE-2015-5477	7.8	https://vulners.com/cve/CVE-2015-5477
    	CVE-2014-8500	7.8	https://vulners.com/cve/CVE-2014-8500
    	CVE-2012-5166	7.8	https://vulners.com/cve/CVE-2012-5166
    	CVE-2012-4244	7.8	https://vulners.com/cve/CVE-2012-4244
    	CVE-2012-3817	7.8	https://vulners.com/cve/CVE-2012-3817
    	CVE-2008-4163	7.8	https://vulners.com/cve/CVE-2008-4163
    	1337DAY-ID-25325	7.8	https://vulners.com/zdt/1337DAY-ID-25325	*EXPLOIT*
    	1337DAY-ID-23970	7.8	https://vulners.com/zdt/1337DAY-ID-23970	*EXPLOIT*
    	1337DAY-ID-23960	7.8	https://vulners.com/zdt/1337DAY-ID-23960	*EXPLOIT*
    	1337DAY-ID-23948	7.8	https://vulners.com/zdt/1337DAY-ID-23948	*EXPLOIT*
    	CVE-2010-0382	7.6	https://vulners.com/cve/CVE-2010-0382
    	PACKETSTORM:180551	7.5	https://vulners.com/packetstorm/PACKETSTORM:180551	*EXPLOIT*
    	PACKETSTORM:180550	7.5	https://vulners.com/packetstorm/PACKETSTORM:180550	*EXPLOIT*
    	MSF:AUXILIARY-DOS-DNS-BIND_TSIG_BADTIME-	7.5	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TSIG_BADTIME-	*EXPLOIT*
    	MSF:AUXILIARY-DOS-DNS-BIND_TSIG-	7.5	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TSIG-	*EXPLOIT*
    	EDB-ID:40453	7.5	https://vulners.com/exploitdb/EDB-ID:40453	*EXPLOIT*
    	CVE-2023-50387	7.5	https://vulners.com/cve/CVE-2023-50387
    	CVE-2023-3341	7.5	https://vulners.com/cve/CVE-2023-3341
    	CVE-2021-25215	7.5	https://vulners.com/cve/CVE-2021-25215
    	CVE-2020-8617	7.5	https://vulners.com/cve/CVE-2020-8617
    	CVE-2017-3145	7.5	https://vulners.com/cve/CVE-2017-3145
    	CVE-2017-3143	7.5	https://vulners.com/cve/CVE-2017-3143
    	CVE-2016-9444	7.5	https://vulners.com/cve/CVE-2016-9444
    	CVE-2016-9131	7.5	https://vulners.com/cve/CVE-2016-9131
    	CVE-2016-8864	7.5	https://vulners.com/cve/CVE-2016-8864
    	CVE-2016-2848	7.5	https://vulners.com/cve/CVE-2016-2848
    	CVE-2016-2776	7.5	https://vulners.com/cve/CVE-2016-2776
    	CVE-2009-0265	7.5	https://vulners.com/cve/CVE-2009-0265
    	BB688FBF-CEE2-5DD1-8561-8F76501DE2D4	7.5	https://vulners.com/githubexploit/BB688FBF-CEE2-5DD1-8561-8F76501DE2D4	*EXPLOIT*
    	5EFDF373-FBD1-5C09-A612-00ADBFE574CF	7.5	https://vulners.com/githubexploit/5EFDF373-FBD1-5C09-A612-00ADBFE574CF	*EXPLOIT*
    	1337DAY-ID-34485	7.5	https://vulners.com/zdt/1337DAY-ID-34485	*EXPLOIT*
    	EXPLOITPACK:D6DDF5E24DE171DAAD71FD95FC1B67F2	7.2	https://vulners.com/exploitpack/EXPLOITPACK:D6DDF5E24DE171DAAD71FD95FC1B67F2	*EXPLOIT*
    	CVE-2015-8461	7.1	https://vulners.com/cve/CVE-2015-8461
    	CVE-2015-5986	7.1	https://vulners.com/cve/CVE-2015-5986
    	CVE-2015-8705	7.0	https://vulners.com/cve/CVE-2015-8705
    	CVE-2016-1285	6.8	https://vulners.com/cve/CVE-2016-1285
    	CVE-2009-0025	6.8	https://vulners.com/cve/CVE-2009-0025
    	CVE-2020-8622	6.5	https://vulners.com/cve/CVE-2020-8622
    	CVE-2018-5741	6.5	https://vulners.com/cve/CVE-2018-5741
    	CVE-2016-6170	6.5	https://vulners.com/cve/CVE-2016-6170
    	CVE-2015-8704	6.5	https://vulners.com/cve/CVE-2015-8704
    	CVE-2010-3614	6.4	https://vulners.com/cve/CVE-2010-3614
    	CVE-2016-2775	5.9	https://vulners.com/cve/CVE-2016-2775
    	SSV:4636	5.8	https://vulners.com/seebug/SSV:4636	*EXPLOIT*
    	CVE-2022-2795	5.3	https://vulners.com/cve/CVE-2022-2795
    	CVE-2021-25219	5.3	https://vulners.com/cve/CVE-2021-25219
    	CVE-2017-3142	5.3	https://vulners.com/cve/CVE-2017-3142
    	SSV:30099	5.0	https://vulners.com/seebug/SSV:30099	*EXPLOIT*
    	SSV:20595	5.0	https://vulners.com/seebug/SSV:20595	*EXPLOIT*
    	PACKETSTORM:157836	5.0	https://vulners.com/packetstorm/PACKETSTORM:157836	*EXPLOIT*
    	FBC03933-7A65-52F3-83F4-4B2253A490B6	5.0	https://vulners.com/githubexploit/FBC03933-7A65-52F3-83F4-4B2253A490B6	*EXPLOIT*
    	CVE-2015-8000	5.0	https://vulners.com/cve/CVE-2015-8000
    	CVE-2012-1033	5.0	https://vulners.com/cve/CVE-2012-1033
    	CVE-2011-4313	5.0	https://vulners.com/cve/CVE-2011-4313
    	CVE-2011-1910	5.0	https://vulners.com/cve/CVE-2011-1910
    	SSV:11919	4.3	https://vulners.com/seebug/SSV:11919	*EXPLOIT*
    	CVE-2010-3762	4.3	https://vulners.com/cve/CVE-2010-3762
    	CVE-2010-0097	4.3	https://vulners.com/cve/CVE-2010-0097
    	CVE-2009-0696	4.3	https://vulners.com/cve/CVE-2009-0696
    	CVE-2010-0290	4.0	https://vulners.com/cve/CVE-2010-0290
    	SSV:14986	2.6	https://vulners.com/seebug/SSV:14986	*EXPLOIT*
    	CVE-2009-4022	2.6	https://vulners.com/cve/CVE-2009-4022
    	PACKETSTORM:142800	0.0	https://vulners.com/packetstorm/PACKETSTORM:142800	*EXPLOIT*
    	EDB-ID:9300	0.0	https://vulners.com/exploitdb/EDB-ID:9300	*EXPLOIT*
    	EDB-ID:48521	0.0	https://vulners.com/exploitdb/EDB-ID:48521	*EXPLOIT*
    	1337DAY-ID-27896	0.0	https://vulners.com/zdt/1337DAY-ID-27896	*EXPLOIT* </pre></td>
</tr>
<tr class="open">
<td>80</td>
<td>tcp</td>
<td>open</td>
<td>http </td>
<td>syn-ack</td>
<td>Apache httpd </td>
<td>2.2.8 </td>
<td>(Ubuntu) DAV/2 </td>
</tr>
<tr class="script">
<td></td>
<td>http-enum </td>
<td colspan="6"><pre>
  /tikiwiki/: Tikiwiki
  /test/: Test page
  /phpinfo.php: Possible information file
  /phpMyAdmin/: phpMyAdmin
  /doc/: Potentially interesting directory w/ listing on 'apache/2.2.8 (ubuntu) dav/2'
  /icons/: Potentially interesting folder w/ directory listing
  /index/: Potentially interesting folder
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-dombased-xss </td>
<td colspan="6"><pre>Couldn't find any DOM based XSS. </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-slowloris-check </td>
<td colspan="6"><pre>
  VULNERABLE:
  Slowloris DOS attack
    State: LIKELY VULNERABLE
    IDs:  CVE:CVE-2007-6750
      Slowloris tries to keep many connections to the target web server open and hold
      them open as long as possible.  It accomplishes this by opening connections to
      the target web server and sending a partial request. By doing so, it starves
      the http server's resources causing Denial Of Service.
      
    Disclosure date: 2009-09-17
    References:
      http://ha.ckers.org/slowloris/
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-trace </td>
<td colspan="6"><pre>TRACE is enabled </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-server-header </td>
<td colspan="6"><pre>Apache/2.2.8 (Ubuntu) DAV/2 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-brute </td>
<td colspan="6"><pre>  
  Path "/" does not require authentication </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-vuln-cve2017-1001000 </td>
<td colspan="6"><pre>ERROR: Script execution failed (use -d to debug) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>citrix-brute-xml </td>
<td colspan="6"><pre>FAILED: No domain specified (use ntdomain argument) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-csrf </td>
<td colspan="6"><pre>
Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=192.168.50.101
  Found the following possible CSRF vulnerabilities: 
    
    Path: http://192.168.50.101:80/dvwa/
    Form id: 
    Form action: login.php
    
    Path: http://192.168.50.101:80/dvwa/login.php
    Form id: 
    Form action: login.php
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-sql-injection </td>
<td colspan="6"><pre>
  Possible sqli for queries:
    http://192.168.50.101:80/dav/?C=M%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=S%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=D%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=N%3BO%3DD%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php&amp;do=toggle-security%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?username=anonymous&amp;page=password-generator.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=login.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=usage-instructions.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=notes.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php&amp;do=toggle-hints%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=php-errors.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=M%3BO%3DD%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=N%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=S%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=D%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=M%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=N%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=D%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=S%3BO%3DD%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=M%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=S%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=N%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=D%3BO%3DD%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=M%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=S%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=N%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/dav/?C=D%3BO%3DA%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php&amp;do=toggle-security%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?username=anonymous&amp;page=password-generator.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=login.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=usage-instructions.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=notes.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=home.php&amp;do=toggle-hints%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=php-errors.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
    http://192.168.50.101:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:apache:http_server:2.2.8: 
    	SSV:69341	10.0	https://vulners.com/seebug/SSV:69341	*EXPLOIT*
    	SSV:19282	10.0	https://vulners.com/seebug/SSV:19282	*EXPLOIT*
    	SSV:19236	10.0	https://vulners.com/seebug/SSV:19236	*EXPLOIT*
    	PACKETSTORM:86964	10.0	https://vulners.com/packetstorm/PACKETSTORM:86964	*EXPLOIT*
    	PACKETSTORM:180533	10.0	https://vulners.com/packetstorm/PACKETSTORM:180533	*EXPLOIT*
    	MSF:AUXILIARY-DOS-HTTP-APACHE_MOD_ISAPI-	10.0	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-HTTP-APACHE_MOD_ISAPI-	*EXPLOIT*
    	EXPLOITPACK:30ED468EC8BD5B71B2CB93825A852B80	10.0	https://vulners.com/exploitpack/EXPLOITPACK:30ED468EC8BD5B71B2CB93825A852B80	*EXPLOIT*
    	EDB-ID:14288	10.0	https://vulners.com/exploitdb/EDB-ID:14288	*EXPLOIT*
    	EDB-ID:11650	10.0	https://vulners.com/exploitdb/EDB-ID:11650	*EXPLOIT*
    	CVE-2010-0425	10.0	https://vulners.com/cve/CVE-2010-0425
    	95499236-C9FE-56A6-9D7D-E943A24B633A	10.0	https://vulners.com/githubexploit/95499236-C9FE-56A6-9D7D-E943A24B633A	*EXPLOIT*
    	2C119FFA-ECE0-5E14-A4A4-354A2C38071A	10.0	https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A	*EXPLOIT*
    	EDB-ID:51193	9.8	https://vulners.com/exploitdb/EDB-ID:51193	*EXPLOIT*
    	CVE-2022-31813	9.8	https://vulners.com/cve/CVE-2022-31813
    	CVE-2022-22720	9.8	https://vulners.com/cve/CVE-2022-22720
    	CVE-2021-44790	9.8	https://vulners.com/cve/CVE-2021-44790
    	CVE-2021-39275	9.8	https://vulners.com/cve/CVE-2021-39275
    	CVE-2017-7679	9.8	https://vulners.com/cve/CVE-2017-7679
    	CVE-2017-3167	9.8	https://vulners.com/cve/CVE-2017-3167
    	B02819DB-1481-56C4-BD09-6B4574297109	9.8	https://vulners.com/githubexploit/B02819DB-1481-56C4-BD09-6B4574297109	*EXPLOIT*
    	CVE-2024-38475	9.1	https://vulners.com/cve/CVE-2024-38475
    	CVE-2022-28615	9.1	https://vulners.com/cve/CVE-2022-28615
    	CVE-2022-22721	9.1	https://vulners.com/cve/CVE-2022-22721
    	CVE-2017-9788	9.1	https://vulners.com/cve/CVE-2017-9788
    	0486EBEE-F207-570A-9AD8-33269E72220A	9.1	https://vulners.com/githubexploit/0486EBEE-F207-570A-9AD8-33269E72220A	*EXPLOIT*
    	CVE-2021-40438	9.0	https://vulners.com/cve/CVE-2021-40438
    	AE3EF1CC-A0C3-5CB7-A6EF-4DAAAFA59C8C	9.0	https://vulners.com/githubexploit/AE3EF1CC-A0C3-5CB7-A6EF-4DAAAFA59C8C	*EXPLOIT*
    	8AFB43C5-ABD4-52AD-BB19-24D7884FF2A2	9.0	https://vulners.com/githubexploit/8AFB43C5-ABD4-52AD-BB19-24D7884FF2A2	*EXPLOIT*
    	7F48C6CF-47B2-5AF9-B6FD-1735FB2A95B2	9.0	https://vulners.com/githubexploit/7F48C6CF-47B2-5AF9-B6FD-1735FB2A95B2	*EXPLOIT*
    	4810E2D9-AC5F-5B08-BFB3-DDAFA2F63332	9.0	https://vulners.com/githubexploit/4810E2D9-AC5F-5B08-BFB3-DDAFA2F63332	*EXPLOIT*
    	4373C92A-2755-5538-9C91-0469C995AA9B	9.0	https://vulners.com/githubexploit/4373C92A-2755-5538-9C91-0469C995AA9B	*EXPLOIT*
    	36618CA8-9316-59CA-B748-82F15F407C4F	9.0	https://vulners.com/githubexploit/36618CA8-9316-59CA-B748-82F15F407C4F	*EXPLOIT*
    	B0A9E5E8-7CCC-5984-9922-A89F11D6BF38	8.2	https://vulners.com/githubexploit/B0A9E5E8-7CCC-5984-9922-A89F11D6BF38	*EXPLOIT*
    	CVE-2016-5387	8.1	https://vulners.com/cve/CVE-2016-5387
    	SSV:72403	7.8	https://vulners.com/seebug/SSV:72403	*EXPLOIT*
    	SSV:2820	7.8	https://vulners.com/seebug/SSV:2820	*EXPLOIT*
    	SSV:26043	7.8	https://vulners.com/seebug/SSV:26043	*EXPLOIT*
    	SSV:20899	7.8	https://vulners.com/seebug/SSV:20899	*EXPLOIT*
    	SSV:11569	7.8	https://vulners.com/seebug/SSV:11569	*EXPLOIT*
    	PACKETSTORM:180517	7.8	https://vulners.com/packetstorm/PACKETSTORM:180517	*EXPLOIT*
    	PACKETSTORM:126851	7.8	https://vulners.com/packetstorm/PACKETSTORM:126851	*EXPLOIT*
    	PACKETSTORM:123527	7.8	https://vulners.com/packetstorm/PACKETSTORM:123527	*EXPLOIT*
    	PACKETSTORM:122962	7.8	https://vulners.com/packetstorm/PACKETSTORM:122962	*EXPLOIT*
    	MSF:AUXILIARY-DOS-HTTP-APACHE_RANGE_DOS-	7.8	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-HTTP-APACHE_RANGE_DOS-	*EXPLOIT*
    	EXPLOITPACK:186B5FCF5C57B52642E62C06BABC6F83	7.8	https://vulners.com/exploitpack/EXPLOITPACK:186B5FCF5C57B52642E62C06BABC6F83	*EXPLOIT*
    	EDB-ID:18221	7.8	https://vulners.com/exploitdb/EDB-ID:18221	*EXPLOIT*
    	CVE-2011-3192	7.8	https://vulners.com/cve/CVE-2011-3192
    	1337DAY-ID-21170	7.8	https://vulners.com/zdt/1337DAY-ID-21170	*EXPLOIT*
    	SSV:12673	7.5	https://vulners.com/seebug/SSV:12673	*EXPLOIT*
    	SSV:12626	7.5	https://vulners.com/seebug/SSV:12626	*EXPLOIT*
    	PACKETSTORM:181038	7.5	https://vulners.com/packetstorm/PACKETSTORM:181038	*EXPLOIT*
    	PACKETSTORM:171631	7.5	https://vulners.com/packetstorm/PACKETSTORM:171631	*EXPLOIT*
    	MSF:AUXILIARY-SCANNER-HTTP-APACHE_OPTIONSBLEED-	7.5	https://vulners.com/metasploit/MSF:AUXILIARY-SCANNER-HTTP-APACHE_OPTIONSBLEED-	*EXPLOIT*
    	F7F6E599-CEF4-5E03-8E10-FE18C4101E38	7.5	https://vulners.com/githubexploit/F7F6E599-CEF4-5E03-8E10-FE18C4101E38	*EXPLOIT*
    	EDB-ID:42745	7.5	https://vulners.com/exploitdb/EDB-ID:42745	*EXPLOIT*
    	ECC3E825-EE29-59D3-BE28-1B30DB15940E	7.5	https://vulners.com/githubexploit/ECC3E825-EE29-59D3-BE28-1B30DB15940E	*EXPLOIT*
    	E5C174E5-D6E8-56E0-8403-D287DE52EB3F	7.5	https://vulners.com/githubexploit/E5C174E5-D6E8-56E0-8403-D287DE52EB3F	*EXPLOIT*
    	DB6E1BBD-08B1-574D-A351-7D6BB9898A4A	7.5	https://vulners.com/githubexploit/DB6E1BBD-08B1-574D-A351-7D6BB9898A4A	*EXPLOIT*
    	CVE-2024-40898	7.5	https://vulners.com/cve/CVE-2024-40898
    	CVE-2024-39573	7.5	https://vulners.com/cve/CVE-2024-39573
    	CVE-2024-27316	7.5	https://vulners.com/cve/CVE-2024-27316
    	CVE-2023-31122	7.5	https://vulners.com/cve/CVE-2023-31122
    	CVE-2022-30556	7.5	https://vulners.com/cve/CVE-2022-30556
    	CVE-2022-29404	7.5	https://vulners.com/cve/CVE-2022-29404
    	CVE-2022-22719	7.5	https://vulners.com/cve/CVE-2022-22719
    	CVE-2021-34798	7.5	https://vulners.com/cve/CVE-2021-34798
    	CVE-2019-0215	7.5	https://vulners.com/cve/CVE-2019-0215
    	CVE-2018-1303	7.5	https://vulners.com/cve/CVE-2018-1303
    	CVE-2017-9798	7.5	https://vulners.com/cve/CVE-2017-9798
    	CVE-2016-8743	7.5	https://vulners.com/cve/CVE-2016-8743
    	CVE-2009-2699	7.5	https://vulners.com/cve/CVE-2009-2699
    	CVE-2009-1955	7.5	https://vulners.com/cve/CVE-2009-1955
    	CVE-2006-20001	7.5	https://vulners.com/cve/CVE-2006-20001
    	C9A1C0C1-B6E3-5955-A4F1-DEA0E505B14B	7.5	https://vulners.com/githubexploit/C9A1C0C1-B6E3-5955-A4F1-DEA0E505B14B	*EXPLOIT*
    	BD3652A9-D066-57BA-9943-4E34970463B9	7.5	https://vulners.com/githubexploit/BD3652A9-D066-57BA-9943-4E34970463B9	*EXPLOIT*
    	B5E74010-A082-5ECE-AB37-623A5B33FE7D	7.5	https://vulners.com/githubexploit/B5E74010-A082-5ECE-AB37-623A5B33FE7D	*EXPLOIT*
    	B0208442-6E17-5772-B12D-B5BE30FA5540	7.5	https://vulners.com/githubexploit/B0208442-6E17-5772-B12D-B5BE30FA5540	*EXPLOIT*
    	A820A056-9F91-5059-B0BC-8D92C7A31A52	7.5	https://vulners.com/githubexploit/A820A056-9F91-5059-B0BC-8D92C7A31A52	*EXPLOIT*
    	9814661A-35A4-5DB7-BB25-A1040F365C81	7.5	https://vulners.com/githubexploit/9814661A-35A4-5DB7-BB25-A1040F365C81	*EXPLOIT*
    	5A864BCC-B490-5532-83AB-2E4109BB3C31	7.5	https://vulners.com/githubexploit/5A864BCC-B490-5532-83AB-2E4109BB3C31	*EXPLOIT*
    	45D138AD-BEC6-552A-91EA-8816914CA7F4	7.5	https://vulners.com/githubexploit/45D138AD-BEC6-552A-91EA-8816914CA7F4	*EXPLOIT*
    	17C6AD2A-8469-56C8-BBBE-1764D0DF1680	7.5	https://vulners.com/githubexploit/17C6AD2A-8469-56C8-BBBE-1764D0DF1680	*EXPLOIT*
    	1337DAY-ID-38427	7.5	https://vulners.com/zdt/1337DAY-ID-38427	*EXPLOIT*
    	SSV:11802	7.1	https://vulners.com/seebug/SSV:11802	*EXPLOIT*
    	SSV:11762	7.1	https://vulners.com/seebug/SSV:11762	*EXPLOIT*
    	CVE-2009-1891	7.1	https://vulners.com/cve/CVE-2009-1891
    	CVE-2009-1890	7.1	https://vulners.com/cve/CVE-2009-1890
    	SSV:60427	6.9	https://vulners.com/seebug/SSV:60427	*EXPLOIT*
    	SSV:60386	6.9	https://vulners.com/seebug/SSV:60386	*EXPLOIT*
    	SSV:60069	6.9	https://vulners.com/seebug/SSV:60069	*EXPLOIT*
    	CVE-2012-0883	6.9	https://vulners.com/cve/CVE-2012-0883
    	SSV:12447	6.8	https://vulners.com/seebug/SSV:12447	*EXPLOIT*
    	PACKETSTORM:127546	6.8	https://vulners.com/packetstorm/PACKETSTORM:127546	*EXPLOIT*
    	FDF3DFA1-ED74-5EE2-BF5C-BA752CA34AE8	6.8	https://vulners.com/githubexploit/FDF3DFA1-ED74-5EE2-BF5C-BA752CA34AE8	*EXPLOIT*
    	CVE-2014-0226	6.8	https://vulners.com/cve/CVE-2014-0226
    	1337DAY-ID-22451	6.8	https://vulners.com/zdt/1337DAY-ID-22451	*EXPLOIT*
    	0095E929-7573-5E4A-A7FA-F6598A35E8DE	6.8	https://vulners.com/githubexploit/0095E929-7573-5E4A-A7FA-F6598A35E8DE	*EXPLOIT*
    	SSV:11568	6.4	https://vulners.com/seebug/SSV:11568	*EXPLOIT*
    	CVE-2009-1956	6.4	https://vulners.com/cve/CVE-2009-1956
    	CVE-2016-4975	6.1	https://vulners.com/cve/CVE-2016-4975
    	CVE-2023-45802	5.9	https://vulners.com/cve/CVE-2023-45802
    	CVE-2018-1302	5.9	https://vulners.com/cve/CVE-2018-1302
    	CVE-2018-1301	5.9	https://vulners.com/cve/CVE-2018-1301
    	VULNERLAB:967	5.8	https://vulners.com/vulnerlab/VULNERLAB:967	*EXPLOIT*
    	VULNERABLE:967	5.8	https://vulners.com/vulnerlab/VULNERABLE:967	*EXPLOIT*
    	SSV:67231	5.8	https://vulners.com/seebug/SSV:67231	*EXPLOIT*
    	SSV:18637	5.8	https://vulners.com/seebug/SSV:18637	*EXPLOIT*
    	SSV:15088	5.8	https://vulners.com/seebug/SSV:15088	*EXPLOIT*
    	SSV:12600	5.8	https://vulners.com/seebug/SSV:12600	*EXPLOIT*
    	PACKETSTORM:84112	5.8	https://vulners.com/packetstorm/PACKETSTORM:84112	*EXPLOIT*
    	EXPLOITPACK:8B4E7E8DAE5A13C8250C6C33307CD66C	5.8	https://vulners.com/exploitpack/EXPLOITPACK:8B4E7E8DAE5A13C8250C6C33307CD66C	*EXPLOIT*
    	EDB-ID:10579	5.8	https://vulners.com/exploitdb/EDB-ID:10579	*EXPLOIT*
    	CVE-2009-3555	5.8	https://vulners.com/cve/CVE-2009-3555
    	CVE-2022-37436	5.3	https://vulners.com/cve/CVE-2022-37436
    	CVE-2022-28614	5.3	https://vulners.com/cve/CVE-2022-28614
    	CVE-2022-28330	5.3	https://vulners.com/cve/CVE-2022-28330
    	SSV:60788	5.1	https://vulners.com/seebug/SSV:60788	*EXPLOIT*
    	CVE-2013-1862	5.1	https://vulners.com/cve/CVE-2013-1862
    	SSV:96537	5.0	https://vulners.com/seebug/SSV:96537	*EXPLOIT*
    	SSV:62058	5.0	https://vulners.com/seebug/SSV:62058	*EXPLOIT*
    	SSV:61874	5.0	https://vulners.com/seebug/SSV:61874	*EXPLOIT*
    	SSV:20993	5.0	https://vulners.com/seebug/SSV:20993	*EXPLOIT*
    	SSV:20979	5.0	https://vulners.com/seebug/SSV:20979	*EXPLOIT*
    	SSV:20969	5.0	https://vulners.com/seebug/SSV:20969	*EXPLOIT*
    	SSV:19592	5.0	https://vulners.com/seebug/SSV:19592	*EXPLOIT*
    	SSV:15137	5.0	https://vulners.com/seebug/SSV:15137	*EXPLOIT*
    	SSV:12005	5.0	https://vulners.com/seebug/SSV:12005	*EXPLOIT*
    	PACKETSTORM:181059	5.0	https://vulners.com/packetstorm/PACKETSTORM:181059	*EXPLOIT*
    	PACKETSTORM:105672	5.0	https://vulners.com/packetstorm/PACKETSTORM:105672	*EXPLOIT*
    	PACKETSTORM:105591	5.0	https://vulners.com/packetstorm/PACKETSTORM:105591	*EXPLOIT*
    	MSF:AUXILIARY-SCANNER-HTTP-REWRITE_PROXY_BYPASS-	5.0	https://vulners.com/metasploit/MSF:AUXILIARY-SCANNER-HTTP-REWRITE_PROXY_BYPASS-	*EXPLOIT*
    	EXPLOITPACK:C8C256BE0BFF5FE1C0405CB0AA9C075D	5.0	https://vulners.com/exploitpack/EXPLOITPACK:C8C256BE0BFF5FE1C0405CB0AA9C075D	*EXPLOIT*
    	EXPLOITPACK:460143F0ACAE117DD79BD75EDFDA154B	5.0	https://vulners.com/exploitpack/EXPLOITPACK:460143F0ACAE117DD79BD75EDFDA154B	*EXPLOIT*
    	EDB-ID:17969	5.0	https://vulners.com/exploitdb/EDB-ID:17969	*EXPLOIT*
    	CVE-2015-3183	5.0	https://vulners.com/cve/CVE-2015-3183
    	CVE-2015-0228	5.0	https://vulners.com/cve/CVE-2015-0228
    	CVE-2014-0231	5.0	https://vulners.com/cve/CVE-2014-0231
    	CVE-2014-0098	5.0	https://vulners.com/cve/CVE-2014-0098
    	CVE-2013-6438	5.0	https://vulners.com/cve/CVE-2013-6438
    	CVE-2013-5704	5.0	https://vulners.com/cve/CVE-2013-5704
    	CVE-2011-3368	5.0	https://vulners.com/cve/CVE-2011-3368
    	CVE-2010-1623	5.0	https://vulners.com/cve/CVE-2010-1623
    	CVE-2010-1452	5.0	https://vulners.com/cve/CVE-2010-1452
    	CVE-2010-0408	5.0	https://vulners.com/cve/CVE-2010-0408
    	CVE-2009-3720	5.0	https://vulners.com/cve/CVE-2009-3720
    	CVE-2009-3560	5.0	https://vulners.com/cve/CVE-2009-3560
    	CVE-2009-3095	5.0	https://vulners.com/cve/CVE-2009-3095
    	CVE-2008-2364	5.0	https://vulners.com/cve/CVE-2008-2364
    	CVE-2007-6750	5.0	https://vulners.com/cve/CVE-2007-6750
    	1337DAY-ID-28573	5.0	https://vulners.com/zdt/1337DAY-ID-28573	*EXPLOIT*
    	SSV:11668	4.9	https://vulners.com/seebug/SSV:11668	*EXPLOIT*
    	SSV:11501	4.9	https://vulners.com/seebug/SSV:11501	*EXPLOIT*
    	CVE-2009-1195	4.9	https://vulners.com/cve/CVE-2009-1195
    	SSV:30024	4.6	https://vulners.com/seebug/SSV:30024	*EXPLOIT*
    	CVE-2012-0031	4.6	https://vulners.com/cve/CVE-2012-0031
    	1337DAY-ID-27465	4.6	https://vulners.com/zdt/1337DAY-ID-27465	*EXPLOIT*
    	SSV:23169	4.4	https://vulners.com/seebug/SSV:23169	*EXPLOIT*
    	CVE-2011-3607	4.4	https://vulners.com/cve/CVE-2011-3607
    	1337DAY-ID-27473	4.4	https://vulners.com/zdt/1337DAY-ID-27473	*EXPLOIT*
    	SSV:60905	4.3	https://vulners.com/seebug/SSV:60905	*EXPLOIT*
    	SSV:60657	4.3	https://vulners.com/seebug/SSV:60657	*EXPLOIT*
    	SSV:60653	4.3	https://vulners.com/seebug/SSV:60653	*EXPLOIT*
    	SSV:60345	4.3	https://vulners.com/seebug/SSV:60345	*EXPLOIT*
    	SSV:4786	4.3	https://vulners.com/seebug/SSV:4786	*EXPLOIT*
    	SSV:3804	4.3	https://vulners.com/seebug/SSV:3804	*EXPLOIT*
    	SSV:30094	4.3	https://vulners.com/seebug/SSV:30094	*EXPLOIT*
    	SSV:30056	4.3	https://vulners.com/seebug/SSV:30056	*EXPLOIT*
    	SSV:24250	4.3	https://vulners.com/seebug/SSV:24250	*EXPLOIT*
    	SSV:20555	4.3	https://vulners.com/seebug/SSV:20555	*EXPLOIT*
    	SSV:19320	4.3	https://vulners.com/seebug/SSV:19320	*EXPLOIT*
    	SSV:11558	4.3	https://vulners.com/seebug/SSV:11558	*EXPLOIT*
    	PACKETSTORM:109284	4.3	https://vulners.com/packetstorm/PACKETSTORM:109284	*EXPLOIT*
    	EXPLOITPACK:FDCB3D93694E48CD5EE27CE55D6801DE	4.3	https://vulners.com/exploitpack/EXPLOITPACK:FDCB3D93694E48CD5EE27CE55D6801DE	*EXPLOIT*
    	EDB-ID:35738	4.3	https://vulners.com/exploitdb/EDB-ID:35738	*EXPLOIT*
    	CVE-2016-8612	4.3	https://vulners.com/cve/CVE-2016-8612
    	CVE-2014-0118	4.3	https://vulners.com/cve/CVE-2014-0118
    	CVE-2013-1896	4.3	https://vulners.com/cve/CVE-2013-1896
    	CVE-2012-4558	4.3	https://vulners.com/cve/CVE-2012-4558
    	CVE-2012-3499	4.3	https://vulners.com/cve/CVE-2012-3499
    	CVE-2012-0053	4.3	https://vulners.com/cve/CVE-2012-0053
    	CVE-2011-4317	4.3	https://vulners.com/cve/CVE-2011-4317
    	CVE-2011-3639	4.3	https://vulners.com/cve/CVE-2011-3639
    	CVE-2011-0419	4.3	https://vulners.com/cve/CVE-2011-0419
    	CVE-2010-0434	4.3	https://vulners.com/cve/CVE-2010-0434
    	CVE-2009-0023	4.3	https://vulners.com/cve/CVE-2009-0023
    	CVE-2008-2939	4.3	https://vulners.com/cve/CVE-2008-2939
    	CVE-2008-0455	4.3	https://vulners.com/cve/CVE-2008-0455
    	CVE-2007-6420	4.3	https://vulners.com/cve/CVE-2007-6420
    	SSV:12628	2.6	https://vulners.com/seebug/SSV:12628	*EXPLOIT*
    	CVE-2012-2687	2.6	https://vulners.com/cve/CVE-2012-2687
    	CVE-2009-3094	2.6	https://vulners.com/cve/CVE-2009-3094
    	CVE-2008-0456	2.6	https://vulners.com/cve/CVE-2008-0456
    	SSV:60250	1.2	https://vulners.com/seebug/SSV:60250	*EXPLOIT*
    	CVE-2011-4415	1.2	https://vulners.com/cve/CVE-2011-4415
    	EDB-ID:8842	0.0	https://vulners.com/exploitdb/EDB-ID:8842	*EXPLOIT*
    	EDB-ID:41769	0.0	https://vulners.com/exploitdb/EDB-ID:41769	*EXPLOIT*
    	EDB-ID:41768	0.0	https://vulners.com/exploitdb/EDB-ID:41768	*EXPLOIT*
    	EDB-ID:36663	0.0	https://vulners.com/exploitdb/EDB-ID:36663	*EXPLOIT*
    	EDB-ID:36352	0.0	https://vulners.com/exploitdb/EDB-ID:36352	*EXPLOIT*
    	EDB-ID:34133	0.0	https://vulners.com/exploitdb/EDB-ID:34133	*EXPLOIT*
    	EDB-ID:31052	0.0	https://vulners.com/exploitdb/EDB-ID:31052	*EXPLOIT*
    	EDB-ID:18442	0.0	https://vulners.com/exploitdb/EDB-ID:18442	*EXPLOIT*
    	EDB-ID:17696	0.0	https://vulners.com/exploitdb/EDB-ID:17696	*EXPLOIT*
    	EDB-ID:10071	0.0	https://vulners.com/exploitdb/EDB-ID:10071	*EXPLOIT*
    	1337DAY-ID-9602	0.0	https://vulners.com/zdt/1337DAY-ID-9602	*EXPLOIT*
    	1337DAY-ID-21346	0.0	https://vulners.com/zdt/1337DAY-ID-21346	*EXPLOIT*
    	1337DAY-ID-17257	0.0	https://vulners.com/zdt/1337DAY-ID-17257	*EXPLOIT*
    	1337DAY-ID-16843	0.0	https://vulners.com/zdt/1337DAY-ID-16843	*EXPLOIT*
    	1337DAY-ID-13268	0.0	https://vulners.com/zdt/1337DAY-ID-13268	*EXPLOIT*
    	1337DAY-ID-11185	0.0	https://vulners.com/zdt/1337DAY-ID-11185	*EXPLOIT* </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-stored-xss </td>
<td colspan="6"><pre>Couldn't find any stored XSS vulnerabilities. </pre></td>
</tr>
<tr class="open">
<td>111</td>
<td>tcp</td>
<td>open</td>
<td>rpcbind </td>
<td>syn-ack</td>
<td> </td>
<td>2 </td>
<td>RPC #100000 </td>
</tr>
<tr class="script">
<td></td>
<td>rpcinfo </td>
<td colspan="6"><pre>
  program version    port/proto  service
  100000  2            111/tcp   rpcbind
  100000  2            111/udp   rpcbind
  100003  2,3,4       2049/tcp   nfs
  100003  2,3,4       2049/udp   nfs
  100005  1,2,3      41398/udp   mountd
  100005  1,2,3      51706/tcp   mountd
  100021  1,3,4      49666/udp   nlockmgr
  100021  1,3,4      50137/tcp   nlockmgr
  100024  1          50536/tcp   status
  100024  1          54817/udp   status
 </pre></td>
</tr>
<tr class="open">
<td>139</td>
<td>tcp</td>
<td>open</td>
<td>netbios-ssn </td>
<td>syn-ack</td>
<td>Samba smbd </td>
<td>3.X - 4.X </td>
<td>workgroup: WORKGROUP </td>
</tr>
<tr class="open">
<td>445</td>
<td>tcp</td>
<td>open</td>
<td>netbios-ssn </td>
<td>syn-ack</td>
<td>Samba smbd </td>
<td>3.X - 4.X </td>
<td>workgroup: WORKGROUP </td>
</tr>
<tr class="open">
<td>512</td>
<td>tcp</td>
<td>open</td>
<td>exec </td>
<td>syn-ack</td>
<td>netkit-rsh rexecd </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>rexec-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 8 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>513</td>
<td>tcp</td>
<td>open</td>
<td>login </td>
<td>syn-ack</td>
<td> </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>rlogin-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 1 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>514</td>
<td>tcp</td>
<td>open</td>
<td>tcpwrapped </td>
<td>syn-ack</td>
<td> </td>
<td> </td>
<td> </td>
</tr>
<tr class="open">
<td>1099</td>
<td>tcp</td>
<td>open</td>
<td>java-rmi </td>
<td>syn-ack</td>
<td>GNU Classpath grmiregistry </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>rmi-vuln-classloader </td>
<td colspan="6"><pre>
  VULNERABLE:
  RMI registry default configuration remote code execution vulnerability
    State: VULNERABLE
      Default configuration of RMI registry allows loading classes from remote URLs which can lead to remote code execution.
      
    References:
      https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/java_rmi_server.rb
 </pre></td>
</tr>
<tr class="open">
<td>1524</td>
<td>tcp</td>
<td>open</td>
<td>bindshell </td>
<td>syn-ack</td>
<td>Metasploitable root shell </td>
<td> </td>
<td> </td>
</tr>
<tr class="open">
<td>2049</td>
<td>tcp</td>
<td>open</td>
<td>nfs </td>
<td>syn-ack</td>
<td> </td>
<td>2-4 </td>
<td>RPC #100003 </td>
</tr>
<tr class="open">
<td>2121</td>
<td>tcp</td>
<td>open</td>
<td>ftp </td>
<td>syn-ack</td>
<td>ProFTPD </td>
<td>1.3.1 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>ftp-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 1 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:proftpd:proftpd:1.3.1: 
    	SAINT:FD1752E124A72FD3A26EEB9B315E8382	10.0	https://vulners.com/saint/SAINT:FD1752E124A72FD3A26EEB9B315E8382	*EXPLOIT*
    	SAINT:950EB68D408A40399926A4CCAD3CC62E	10.0	https://vulners.com/saint/SAINT:950EB68D408A40399926A4CCAD3CC62E	*EXPLOIT*
    	SAINT:63FB77B9136D48259E4F0D4CDA35E957	10.0	https://vulners.com/saint/SAINT:63FB77B9136D48259E4F0D4CDA35E957	*EXPLOIT*
    	SAINT:1B08F4664C428B180EEC9617B41D9A2C	10.0	https://vulners.com/saint/SAINT:1B08F4664C428B180EEC9617B41D9A2C	*EXPLOIT*
    	PROFTPD_MOD_COPY	10.0	https://vulners.com/canvas/PROFTPD_MOD_COPY	*EXPLOIT*
    	PACKETSTORM:162777	10.0	https://vulners.com/packetstorm/PACKETSTORM:162777	*EXPLOIT*
    	PACKETSTORM:132218	10.0	https://vulners.com/packetstorm/PACKETSTORM:132218	*EXPLOIT*
    	PACKETSTORM:131567	10.0	https://vulners.com/packetstorm/PACKETSTORM:131567	*EXPLOIT*
    	PACKETSTORM:131555	10.0	https://vulners.com/packetstorm/PACKETSTORM:131555	*EXPLOIT*
    	PACKETSTORM:131505	10.0	https://vulners.com/packetstorm/PACKETSTORM:131505	*EXPLOIT*
    	MSF:EXPLOIT-UNIX-FTP-PROFTPD_MODCOPY_EXEC-	10.0	https://vulners.com/metasploit/MSF:EXPLOIT-UNIX-FTP-PROFTPD_MODCOPY_EXEC-	*EXPLOIT*
    	EDB-ID:49908	10.0	https://vulners.com/exploitdb/EDB-ID:49908	*EXPLOIT*
    	EDB-ID:37262	10.0	https://vulners.com/exploitdb/EDB-ID:37262	*EXPLOIT*
    	95499236-C9FE-56A6-9D7D-E943A24B633A	10.0	https://vulners.com/githubexploit/95499236-C9FE-56A6-9D7D-E943A24B633A	*EXPLOIT*
    	2C119FFA-ECE0-5E14-A4A4-354A2C38071A	10.0	https://vulners.com/githubexploit/2C119FFA-ECE0-5E14-A4A4-354A2C38071A	*EXPLOIT*
    	1337DAY-ID-36298	10.0	https://vulners.com/zdt/1337DAY-ID-36298	*EXPLOIT*
    	1337DAY-ID-23720	10.0	https://vulners.com/zdt/1337DAY-ID-23720	*EXPLOIT*
    	1337DAY-ID-23544	10.0	https://vulners.com/zdt/1337DAY-ID-23544	*EXPLOIT*
    	CVE-2019-12815	9.8	https://vulners.com/cve/CVE-2019-12815
    	SSV:26016	9.0	https://vulners.com/seebug/SSV:26016	*EXPLOIT*
    	SSV:24282	9.0	https://vulners.com/seebug/SSV:24282	*EXPLOIT*
    	CVE-2011-4130	9.0	https://vulners.com/cve/CVE-2011-4130
    	SSV:96525	7.5	https://vulners.com/seebug/SSV:96525	*EXPLOIT*
    	CVE-2023-51713	7.5	https://vulners.com/cve/CVE-2023-51713
    	CVE-2021-46854	7.5	https://vulners.com/cve/CVE-2021-46854
    	CVE-2020-9272	7.5	https://vulners.com/cve/CVE-2020-9272
    	CVE-2019-19272	7.5	https://vulners.com/cve/CVE-2019-19272
    	CVE-2019-19271	7.5	https://vulners.com/cve/CVE-2019-19271
    	CVE-2019-19270	7.5	https://vulners.com/cve/CVE-2019-19270
    	CVE-2019-18217	7.5	https://vulners.com/cve/CVE-2019-18217
    	CVE-2016-3125	7.5	https://vulners.com/cve/CVE-2016-3125
    	739FE495-4675-5A2A-BB93-EEF94AC07632	7.5	https://vulners.com/githubexploit/739FE495-4675-5A2A-BB93-EEF94AC07632	*EXPLOIT*
    	SSV:20226	7.1	https://vulners.com/seebug/SSV:20226	*EXPLOIT*
    	PACKETSTORM:95517	7.1	https://vulners.com/packetstorm/PACKETSTORM:95517	*EXPLOIT*
    	CVE-2010-3867	7.1	https://vulners.com/cve/CVE-2010-3867
    	SSV:12447	6.8	https://vulners.com/seebug/SSV:12447	*EXPLOIT*
    	SSV:11950	6.8	https://vulners.com/seebug/SSV:11950	*EXPLOIT*
    	EDB-ID:33128	6.8	https://vulners.com/exploitdb/EDB-ID:33128	*EXPLOIT*
    	CVE-2010-4652	6.8	https://vulners.com/cve/CVE-2010-4652
    	CVE-2009-0543	6.8	https://vulners.com/cve/CVE-2009-0543
    	CVE-2023-48795	5.9	https://vulners.com/cve/CVE-2023-48795
    	SSV:12523	5.8	https://vulners.com/seebug/SSV:12523	*EXPLOIT*
    	CVE-2009-3639	5.8	https://vulners.com/cve/CVE-2009-3639
    	CVE-2017-7418	5.5	https://vulners.com/cve/CVE-2017-7418
    	CVE-2011-1137	5.0	https://vulners.com/cve/CVE-2011-1137
    	CVE-2019-19269	4.9	https://vulners.com/cve/CVE-2019-19269
    	CVE-2008-7265	4.0	https://vulners.com/cve/CVE-2008-7265
    	CVE-2012-6095	1.2	https://vulners.com/cve/CVE-2012-6095
    	EDB-ID:8037	0.0	https://vulners.com/exploitdb/EDB-ID:8037	*EXPLOIT*
    	EDB-ID:16129	0.0	https://vulners.com/exploitdb/EDB-ID:16129	*EXPLOIT* </pre></td>
</tr>
<tr class="open">
<td>3306</td>
<td>tcp</td>
<td>open</td>
<td>mysql </td>
<td>syn-ack</td>
<td>MySQL </td>
<td>5.0.51a-3ubuntu5 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>ssl-ccs-injection </td>
<td colspan="6"><pre>No reply from server (TIMEOUT) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:mysql:mysql:5.0.51a-3ubuntu5: 
    	SSV:15006	6.8	https://vulners.com/seebug/SSV:15006	*EXPLOIT*
    	CVE-2009-4028	6.8	https://vulners.com/cve/CVE-2009-4028
    	SSV:3280	4.6	https://vulners.com/seebug/SSV:3280	*EXPLOIT*
    	CVE-2008-2079	4.6	https://vulners.com/cve/CVE-2008-2079
    	CVE-2010-3682	4.0	https://vulners.com/cve/CVE-2010-3682
    	CVE-2010-3677	4.0	https://vulners.com/cve/CVE-2010-3677
    	EDB-ID:34506	0.0	https://vulners.com/exploitdb/EDB-ID:34506	*EXPLOIT* </pre></td>
</tr>
<tr class="script">
<td></td>
<td>mysql-vuln-cve2012-2122 </td>
<td colspan="6"><pre>ERROR: Script execution failed (use -d to debug) </pre></td>
</tr>
<tr class="script">
<td></td>
<td>mysql-enum </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 8 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="script">
<td></td>
<td>mysql-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 9 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>3632</td>
<td>tcp</td>
<td>open</td>
<td>distccd </td>
<td>syn-ack</td>
<td>distccd </td>
<td>v1 </td>
<td>(GNU) 4.2.4 (Ubuntu 4.2.4-1ubuntu4) </td>
</tr>
<tr class="script">
<td></td>
<td>distcc-cve2004-2687 </td>
<td colspan="6"><pre>
  VULNERABLE:
  distcc Daemon Command Execution
    State: VULNERABLE (Exploitable)
    IDs:  CVE:CVE-2004-2687
    Risk factor: High  CVSSv2: 9.3 (HIGH) (AV:N/AC:M/Au:N/C:C/I:C/A:C)
      Allows executing of arbitrary commands on systems running distccd 3.1 and
      earlier. The vulnerability is the consequence of weak service configuration.
      
    Disclosure date: 2002-02-01
    Extra information:
      
    uid=1(daemon) gid=1(daemon) groups=1(daemon)
  
    References:
      https://nvd.nist.gov/vuln/detail/CVE-2004-2687
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2687
      https://distcc.github.io/security.html
 </pre></td>
</tr>
<tr class="open">
<td>5432</td>
<td>tcp</td>
<td>open</td>
<td>postgresql </td>
<td>syn-ack</td>
<td>PostgreSQL DB </td>
<td>8.3.0 - 8.3.7 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>ssl-dh-params </td>
<td colspan="6"><pre>
  VULNERABLE:
  Diffie-Hellman Key Exchange Insufficient Group Strength
    State: VULNERABLE
      Transport Layer Security (TLS) services that use Diffie-Hellman groups
      of insufficient strength, especially those using one of a few commonly
      shared groups, may be susceptible to passive eavesdropping attacks.
    Check results:
      WEAK DH GROUP 1
            Cipher Suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA
            Modulus Type: Safe prime
            Modulus Source: Unknown/Custom-generated
            Modulus Length: 1024
            Generator Length: 8
            Public Key Length: 1024
    References:
      https://weakdh.org
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>vulners </td>
<td colspan="6"><pre>
  cpe:/a:postgresql:postgresql:8.3: 
    	SSV:60718	10.0	https://vulners.com/seebug/SSV:60718	*EXPLOIT*
    	CVE-2013-1903	10.0	https://vulners.com/cve/CVE-2013-1903
    	CVE-2013-1902	10.0	https://vulners.com/cve/CVE-2013-1902
    	CVE-2019-10211	9.8	https://vulners.com/cve/CVE-2019-10211
    	CVE-2015-3166	9.8	https://vulners.com/cve/CVE-2015-3166
    	CVE-2015-0244	9.8	https://vulners.com/cve/CVE-2015-0244
    	CVE-2018-1115	9.1	https://vulners.com/cve/CVE-2018-1115
    	CVE-2022-1552	8.8	https://vulners.com/cve/CVE-2022-1552
    	CVE-2021-32027	8.8	https://vulners.com/cve/CVE-2021-32027
    	CVE-2020-25695	8.8	https://vulners.com/cve/CVE-2020-25695
    	CVE-2019-10164	8.8	https://vulners.com/cve/CVE-2019-10164
    	CVE-2019-10127	8.8	https://vulners.com/cve/CVE-2019-10127
    	CVE-2015-0243	8.8	https://vulners.com/cve/CVE-2015-0243
    	CVE-2015-0242	8.8	https://vulners.com/cve/CVE-2015-0242
    	CVE-2015-0241	8.8	https://vulners.com/cve/CVE-2015-0241
    	SSV:30015	8.5	https://vulners.com/seebug/SSV:30015	*EXPLOIT*
    	SSV:19652	8.5	https://vulners.com/seebug/SSV:19652	*EXPLOIT*
    	CVE-2010-1447	8.5	https://vulners.com/cve/CVE-2010-1447
    	CVE-2010-1169	8.5	https://vulners.com/cve/CVE-2010-1169
    	CVE-2016-5423	8.3	https://vulners.com/cve/CVE-2016-5423
    	CVE-2021-23214	8.1	https://vulners.com/cve/CVE-2021-23214
    	CVE-2020-25694	8.1	https://vulners.com/cve/CVE-2020-25694
    	CVE-2016-7048	8.1	https://vulners.com/cve/CVE-2016-7048
    	CVE-2022-2625	8.0	https://vulners.com/cve/CVE-2022-2625
    	CVE-2019-10128	7.8	https://vulners.com/cve/CVE-2019-10128
    	SSV:19754	7.5	https://vulners.com/seebug/SSV:19754	*EXPLOIT*
    	CVE-2020-25696	7.5	https://vulners.com/cve/CVE-2020-25696
    	CVE-2017-7484	7.5	https://vulners.com/cve/CVE-2017-7484
    	CVE-2016-0773	7.5	https://vulners.com/cve/CVE-2016-0773
    	CVE-2016-0768	7.5	https://vulners.com/cve/CVE-2016-0768
    	CVE-2015-3167	7.5	https://vulners.com/cve/CVE-2015-3167
    	EDB-ID:45184	7.3	https://vulners.com/exploitdb/EDB-ID:45184	*EXPLOIT*
    	CVE-2020-14350	7.3	https://vulners.com/cve/CVE-2020-14350
    	CVE-2020-10733	7.3	https://vulners.com/cve/CVE-2020-10733
    	CVE-2017-14798	7.3	https://vulners.com/cve/CVE-2017-14798
    	CVE-2023-2454	7.2	https://vulners.com/cve/CVE-2023-2454
    	CVE-2020-14349	7.1	https://vulners.com/cve/CVE-2020-14349
    	CVE-2016-5424	7.1	https://vulners.com/cve/CVE-2016-5424
    	CVE-2019-10210	7.0	https://vulners.com/cve/CVE-2019-10210
    	PACKETSTORM:148884	6.9	https://vulners.com/packetstorm/PACKETSTORM:148884	*EXPLOIT*
    	EXPLOITPACK:6F8D33BC4F1C65AE0911D23B5E6EB665	6.9	https://vulners.com/exploitpack/EXPLOITPACK:6F8D33BC4F1C65AE0911D23B5E6EB665	*EXPLOIT*
    	1337DAY-ID-30875	6.9	https://vulners.com/zdt/1337DAY-ID-30875	*EXPLOIT*
    	SSV:30152	6.8	https://vulners.com/seebug/SSV:30152	*EXPLOIT*
    	CVE-2013-0255	6.8	https://vulners.com/cve/CVE-2013-0255
    	CVE-2012-0868	6.8	https://vulners.com/cve/CVE-2012-0868
    	CVE-2009-3231	6.8	https://vulners.com/cve/CVE-2009-3231
    	SSV:62083	6.5	https://vulners.com/seebug/SSV:62083	*EXPLOIT*
    	SSV:62016	6.5	https://vulners.com/seebug/SSV:62016	*EXPLOIT*
    	SSV:61543	6.5	https://vulners.com/seebug/SSV:61543	*EXPLOIT*
    	SSV:19018	6.5	https://vulners.com/seebug/SSV:19018	*EXPLOIT*
    	CVE-2021-3677	6.5	https://vulners.com/cve/CVE-2021-3677
    	CVE-2021-32029	6.5	https://vulners.com/cve/CVE-2021-32029
    	CVE-2021-32028	6.5	https://vulners.com/cve/CVE-2021-32028
    	CVE-2014-0065	6.5	https://vulners.com/cve/CVE-2014-0065
    	CVE-2014-0064	6.5	https://vulners.com/cve/CVE-2014-0064
    	CVE-2014-0063	6.5	https://vulners.com/cve/CVE-2014-0063
    	CVE-2014-0061	6.5	https://vulners.com/cve/CVE-2014-0061
    	CVE-2012-0866	6.5	https://vulners.com/cve/CVE-2012-0866
    	CVE-2010-4015	6.5	https://vulners.com/cve/CVE-2010-4015
    	CVE-2010-0442	6.5	https://vulners.com/cve/CVE-2010-0442
    	CVE-2015-5288	6.4	https://vulners.com/cve/CVE-2015-5288
    	CVE-2010-3433	6.0	https://vulners.com/cve/CVE-2010-3433
    	CVE-2010-1170	6.0	https://vulners.com/cve/CVE-2010-1170
    	CVE-2021-23222	5.9	https://vulners.com/cve/CVE-2021-23222
    	SSV:19669	5.5	https://vulners.com/seebug/SSV:19669	*EXPLOIT*
    	CVE-2010-1975	5.5	https://vulners.com/cve/CVE-2010-1975
    	CVE-2023-2455	5.4	https://vulners.com/cve/CVE-2023-2455
    	SSV:61546	4.9	https://vulners.com/seebug/SSV:61546	*EXPLOIT*
    	SSV:60334	4.9	https://vulners.com/seebug/SSV:60334	*EXPLOIT*
    	CVE-2014-0062	4.9	https://vulners.com/cve/CVE-2014-0062
    	CVE-2012-3488	4.9	https://vulners.com/cve/CVE-2012-3488
    	SSV:61544	4.6	https://vulners.com/seebug/SSV:61544	*EXPLOIT*
    	CVE-2014-0067	4.6	https://vulners.com/cve/CVE-2014-0067
    	CVE-2021-3393	4.3	https://vulners.com/cve/CVE-2021-3393
    	CVE-2021-20229	4.3	https://vulners.com/cve/CVE-2021-20229
    	CVE-2015-3165	4.3	https://vulners.com/cve/CVE-2015-3165
    	CVE-2014-8161	4.3	https://vulners.com/cve/CVE-2014-8161
    	CVE-2012-2143	4.3	https://vulners.com/cve/CVE-2012-2143
    	SSV:61547	4.0	https://vulners.com/seebug/SSV:61547	*EXPLOIT*
    	SSV:61545	4.0	https://vulners.com/seebug/SSV:61545	*EXPLOIT*
    	SSV:60186	4.0	https://vulners.com/seebug/SSV:60186	*EXPLOIT*
    	CVE-2014-0066	4.0	https://vulners.com/cve/CVE-2014-0066
    	CVE-2014-0060	4.0	https://vulners.com/cve/CVE-2014-0060
    	CVE-2012-2655	4.0	https://vulners.com/cve/CVE-2012-2655
    	CVE-2009-3229	4.0	https://vulners.com/cve/CVE-2009-3229
    	CVE-2022-41862	3.7	https://vulners.com/cve/CVE-2022-41862
    	SSV:19322	3.5	https://vulners.com/seebug/SSV:19322	*EXPLOIT*
    	PACKETSTORM:127092	3.5	https://vulners.com/packetstorm/PACKETSTORM:127092	*EXPLOIT*
    	CVE-2010-0733	3.5	https://vulners.com/cve/CVE-2010-0733
    	EDB-ID:33729	0.0	https://vulners.com/exploitdb/EDB-ID:33729	*EXPLOIT*
    	EDB-ID:33571	0.0	https://vulners.com/exploitdb/EDB-ID:33571	*EXPLOIT* </pre></td>
</tr>
<tr class="script">
<td></td>
<td>ssl-ccs-injection </td>
<td colspan="6"><pre>
  VULNERABLE:
  SSL/TLS MITM vulnerability (CCS Injection)
    State: VULNERABLE
    Risk factor: High
      OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h
      does not properly restrict processing of ChangeCipherSpec messages,
      which allows man-in-the-middle attackers to trigger use of a zero
      length master key in certain OpenSSL-to-OpenSSL communications, and
      consequently hijack sessions or obtain sensitive information, via
      a crafted TLS handshake, aka the "CCS Injection" vulnerability.
          
    References:
      http://www.openssl.org/news/secadv_20140605.txt
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224
      http://www.cvedetails.com/cve/2014-0224
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>ssl-poodle </td>
<td colspan="6"><pre>
  VULNERABLE:
  SSL POODLE information leak
    State: VULNERABLE
    IDs:  BID:70574  CVE:CVE-2014-3566
          The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other
          products, uses nondeterministic CBC padding, which makes it easier
          for man-in-the-middle attackers to obtain cleartext data via a
          padding-oracle attack, aka the "POODLE" issue.
    Disclosure date: 2014-10-14
    Check results:
      TLS_RSA_WITH_AES_128_CBC_SHA
    References:
      https://www.imperialviolet.org/2014/10/14/poodle.html
      https://www.openssl.org/~bodo/ssl-poodle.pdf
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
      https://www.securityfocus.com/bid/70574
 </pre></td>
</tr>
<tr class="open">
<td>5900</td>
<td>tcp</td>
<td>open</td>
<td>vnc </td>
<td>syn-ack</td>
<td>VNC </td>
<td> </td>
<td>protocol 3.3 </td>
</tr>
<tr class="script">
<td></td>
<td>vnc-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 1 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>6000</td>
<td>tcp</td>
<td>open</td>
<td>X11 </td>
<td>syn-ack</td>
<td> </td>
<td> </td>
<td>access denied </td>
</tr>
<tr class="open">
<td>6667</td>
<td>tcp</td>
<td>open</td>
<td>irc </td>
<td>syn-ack</td>
<td>UnrealIRCd </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>irc-sasl-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 1 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="open">
<td>6697</td>
<td>tcp</td>
<td>open</td>
<td>irc </td>
<td>syn-ack</td>
<td>UnrealIRCd </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>irc-sasl-brute </td>
<td colspan="6"><pre>
  Accounts: No valid accounts found
  Statistics: Performed 0 guesses in 1 seconds, average tps: 0.0
  ERROR: The service seems to have failed or is heavily firewalled... </pre></td>
</tr>
<tr class="script">
<td></td>
<td>ssl-ccs-injection </td>
<td colspan="6"><pre>No reply from server (TIMEOUT) </pre></td>
</tr>
<tr class="open">
<td>8009</td>
<td>tcp</td>
<td>open</td>
<td>ajp13 </td>
<td>syn-ack</td>
<td>Apache Jserv </td>
<td> </td>
<td>Protocol v1.3 </td>
</tr>
<tr class="script">
<td></td>
<td>ajp-brute </td>
<td colspan="6"><pre>
  URL does not require authentication </pre></td>
</tr>
<tr class="open">
<td>8180</td>
<td>tcp</td>
<td>open</td>
<td>http </td>
<td>syn-ack</td>
<td>Apache Tomcat/Coyote JSP engine </td>
<td>1.1 </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>http-brute </td>
<td colspan="6"><pre>  
  Path "/" does not require authentication </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-csrf </td>
<td colspan="6"><pre>Couldn't find any CSRF vulnerabilities. </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-cookie-flags </td>
<td colspan="6"><pre>
  /admin/: 
    JSESSIONID: 
      httponly flag not set
  /admin/index.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/login.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/account.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin_login.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/home.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin-login.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/adminLogin.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/controlpanel.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/cp.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/index.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/login.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/home.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/controlpanel.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin-login.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/cp.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/account.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/admin_login.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/adminLogin.jsp: 
    JSESSIONID: 
      httponly flag not set
  /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/includes/FCKeditor/editor/filemanager/upload/test.html: 
    JSESSIONID: 
      httponly flag not set
  /admin/jscript/upload.html: 
    JSESSIONID: 
      httponly flag not set </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-enum </td>
<td colspan="6"><pre>
  /admin/: Possible admin folder
  /admin/index.html: Possible admin folder
  /admin/login.html: Possible admin folder
  /admin/admin.html: Possible admin folder
  /admin/account.html: Possible admin folder
  /admin/admin_login.html: Possible admin folder
  /admin/home.html: Possible admin folder
  /admin/admin-login.html: Possible admin folder
  /admin/adminLogin.html: Possible admin folder
  /admin/controlpanel.html: Possible admin folder
  /admin/cp.html: Possible admin folder
  /admin/index.jsp: Possible admin folder
  /admin/login.jsp: Possible admin folder
  /admin/admin.jsp: Possible admin folder
  /admin/home.jsp: Possible admin folder
  /admin/controlpanel.jsp: Possible admin folder
  /admin/admin-login.jsp: Possible admin folder
  /admin/cp.jsp: Possible admin folder
  /admin/account.jsp: Possible admin folder
  /admin/admin_login.jsp: Possible admin folder
  /admin/adminLogin.jsp: Possible admin folder
  /manager/html/upload: Apache Tomcat (401 Unauthorized)
  /manager/html: Apache Tomcat (401 Unauthorized)
  /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html: OpenCart/FCKeditor File upload
  /admin/includes/FCKeditor/editor/filemanager/upload/test.html: ASP Simple Blog / FCKeditor File Upload
  /admin/jscript/upload.html: Lizard Cart/Remote File upload
  /webdav/: Potentially interesting folder
 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-server-header </td>
<td colspan="6"><pre>Apache-Coyote/1.1 </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-stored-xss </td>
<td colspan="6"><pre>Couldn't find any stored XSS vulnerabilities. </pre></td>
</tr>
<tr class="script">
<td></td>
<td>http-dombased-xss </td>
<td colspan="6"><pre>Couldn't find any DOM based XSS. </pre></td>
</tr>
<tr class="open">
<td>8787</td>
<td>tcp</td>
<td>open</td>
<td>drb </td>
<td>syn-ack</td>
<td>Ruby DRb RMI </td>
<td> </td>
<td>Ruby 1.8; path /usr/lib/ruby/1.8/drb </td>
</tr>
<tr class="open">
<td>41802</td>
<td>tcp</td>
<td>open</td>
<td>java-rmi </td>
<td>syn-ack</td>
<td>GNU Classpath grmiregistry </td>
<td> </td>
<td> </td>
</tr>
<tr class="script">
<td></td>
<td>rmi-vuln-classloader </td>
<td colspan="6"><pre>
  VULNERABLE:
  RMI registry default configuration remote code execution vulnerability
    State: VULNERABLE
      Default configuration of RMI registry allows loading classes from remote URLs which can lead to remote code execution.
      
    References:
      https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/java_rmi_server.rb
 </pre></td>
</tr>
<tr class="open">
<td>50137</td>
<td>tcp</td>
<td>open</td>
<td>nlockmgr </td>
<td>syn-ack</td>
<td> </td>
<td>1-4 </td>
<td>RPC #100021 </td>
</tr>
<tr class="open">
<td>50536</td>
<td>tcp</td>
<td>open</td>
<td>status </td>
<td>syn-ack</td>
<td> </td>
<td>1 </td>
<td>RPC #100024 </td>
</tr>
<tr class="open">
<td>51706</td>
<td>tcp</td>
<td>open</td>
<td>mountd </td>
<td>syn-ack</td>
<td> </td>
<td>1-3 </td>
<td>RPC #100005 </td>
</tr>
</table>
<h3>Remote Operating System Detection</h3>
<ul>
<li>Used port: <b>21/tcp</b> (<b>open</b>)  </li>
<li>Used port: <b>1/tcp</b> (<b>closed</b>)  </li>
<li>Used port: <b>33089/udp</b> (<b>closed</b>)  </li>
<li>OS match: <b>Linux 2.6.9 - 2.6.33</b> (<b>100%</b>)</li>
</ul>


<h3>Host Script Output</h3>
<table>
<tr class="head">
<td>Script Name</td>
<td>Output</td>
</tr>
<tr class="script">
<td>smb-brute </td>
<td><pre>
  msfadmin:msfadmin =&gt; Valid credentials
  user:user =&gt; Valid credentials
 </pre></td>
</tr>
<tr class="script">
<td>smb-enum-shares </td>
<td><pre>
  account_used: msfadmin
  \\192.168.50.101\ADMIN$: 
    Type: STYPE_IPC
    Comment: IPC Service (metasploitable server (Samba 3.0.20-Debian))
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\tmp
    Anonymous access: &lt;none&gt;
    Current user access: READ/WRITE
  \\192.168.50.101\IPC$: 
    Type: STYPE_IPC
    Comment: IPC Service (metasploitable server (Samba 3.0.20-Debian))
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\tmp
    Anonymous access: READ/WRITE
    Current user access: READ/WRITE
  \\192.168.50.101\msfadmin: 
    Type: STYPE_DISKTREE
    Comment: Home Directories
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\home\msfadmin
    Anonymous access: &lt;none&gt;
    Current user access: READ/WRITE
  \\192.168.50.101\opt: 
    Type: STYPE_DISKTREE
    Comment: 
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\tmp
    Anonymous access: &lt;none&gt;
    Current user access: READ
  \\192.168.50.101\print$: 
    Type: STYPE_DISKTREE
    Comment: Printer Drivers
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\var\lib\samba\printers
    Anonymous access: &lt;none&gt;
    Current user access: READ/WRITE
  \\192.168.50.101\tmp: 
    Type: STYPE_DISKTREE
    Comment: oh noes!
    Users: 1
    Max Users: &lt;unlimited&gt;
    Path: C:\tmp
    Anonymous access: READ
    Current user access: READ </pre></td>
</tr>
<tr class="script">
<td>smb-vuln-ms10-054 </td>
<td><pre>false </pre></td>
</tr>
<tr class="script">
<td>smb-vuln-ms10-061 </td>
<td><pre>false </pre></td>
</tr>
<tr class="script">
<td>smb-vuln-regsvc-dos </td>
<td><pre>ERROR: Script execution failed (use -d to debug) </pre></td>
</tr>
</table>

<br><a href="javascript:toggle('metrics_192.168.50.101');">
    Misc Metrics <span class="noprint"><small> (click to expand)</small></span></a><div id="metrics_192.168.50.101" class="hidden"><table cellspacing="1">
<tr class="head">
<td>Metric</td>
<td>Value</td>
</tr>
<tr>
<td>Ping Results</td>
<td>arp-response</td>
</tr>
<tr>
<td>System Uptime</td>
<td>3495 seconds  (last reboot: Fri Sep 20 04:03:14 2024)
        </td>
</tr>
<tr>
<td>Network Distance</td>
<td>1 hops</td>
</tr>
<tr>
<td>TCP Sequence Prediction</td>
<td>Difficulty=196 (Good luck!)</td>
</tr>
<tr>
<td>IP ID Sequence Generation</td>
<td>All zeros</td>
</tr>
</table></div>
</div>
</div>
<div id="menubox" class="noprint">
<a href="#top"><small>Go to top</small></a><br><a href="javascript:toggleAll('closed');"><small>Toggle Closed Ports</small></a><br><a href="javascript:toggleAll('filtered');"><small>Toggle Filtered Ports</small></a>
</div>
</body>
</html>