Netlas Featured Queries

In this document, you will find dorks for the Netlas.io search engine. They are divided into several categories, and each dork includes a link to perform the search on Netlas. The dork list from RedTeamGuide was used as a basis and processed according to our syntax.

If you find any inaccuracies, please feel free to send pull requests or write Issues.

Note: In some cases, you will see two dorks. This is typically done to duplicate the request made using a tag. In Netlas, the use of tags is available starting with a Business subscription, so users of the Community, Community II, and Freelancer levels should pay close attention to the duplicate dorks.

Contents

General Searches

IoT, Routers and Security

  • All IoT devices[Search →]

    tag.category:"IoT"
  • Barracuda[Search →]

    http.headers.server:"BarracudaHTTP"
  • Brightsign Digital Sign[Search →]

    http.title:"BrightSign®"
  • Canon[Search →]

    http.headers.server:"Canon HTTP Server"
  • Carel PlantVisor[Search →]

    http.title:"CAREL Pl@ntVisor"
  • Cisco[Search →] [Alt →]

    tag.name:"Cisco"
    http.favicon.hash_sha256:62a8461e328d5bace3780ff738d0b58f6502592c04afa564e0a8a792583a7bfb
  • Cisco Small Business Switches[Search →]

    http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
  • Cisco XE WebUI[Search →]

    certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"
  • Controllers with Windows CE OS[Search →]

    http.headers.server:"Microsoft-WinCE"
  • DefectDojo[Search →]

    http.title:"DefectDojo"
  • DLink[Search →] [Alt →]

    tag.name:"dlink"
    http.favicon.hash_sha256:81adccffbd70a76e9662977e7b55938e7eec597ac8b58e5a564959e6d465deec
  • Draytek Routers[Search →]

    http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
  • EdgeRouter[Search →]

    http.favicon.hash_sha256:5aad1b2127b8c67d146f6bad69db98d7e3dc328da8940d49f8cdafa6699283ce
  • Electric vehicle charges[Search →]

    http.headers.server:"gSOAP" AND http.content_length:583
  • Emerson Site Supervisor[Search →]

    http.title:"Emerson Site Supervisor"
  • Epson HTTP[Search →]

    http.headers.server:"EPSON-HTTP"
  • Epson Linux[Search →]

    http.headers.server:"EPSON_Linux UpnP" http.status_code:200
  • Fortinet[Search →] [Alt →]

    tag.name:"fortinet"
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
  • Home Assistant[Search →]

    http.favicon.hash_sha256:892d336ba0b3ce7f94ebbcbe2fa5c3fcfdc79f25efcdc7a7e17918e85daaf9f0
  • HP iLO[Search →] [Alt →]

    tag.name:"hp_ilo"
    http.favicon.hash_sha256:0c16db2ccec266761010fa53ad69e2f6aafbf6b3134730e1fa72f19daf93ed04
  • HPE Aruba[Search →] [Alt →]

    tag.name:"aruba"
    http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753
  • HP Printers[Search →]

    http.headers.server:("HP HTTP" "Serial Number" "Built")
  • Huawei Routers[Search →] [Alt →]

    tag.name:"huawei_router"
    http.favicon.hash_sha256:e64086f94c7013d92ca6d7e05933f4fb90cf8966aeff1efc583a92d1827093db
  • Ivanti Connect Secure[Search →]

    http.body:"welcome.cgi?p=logo"
  • Lexmark printers[Search →]

    http.headers.server:"Lexmark"
  • Media servers[Search →]

    tag.category:"Media servers"
  • Mitsubishi Air Conditioning Control System[Search →]

    http.favicon.hash_sha256:055c1bfeac57280906a11333c72430893014329296751f398939987e11d7df5c
  • Netgear[Search →] [Alt →]

    tag.name:"netgear"
    http.favicon.hash_sha256:3bfc11a176b9c8a39870478951fc177a3bc53c9fb689cdf5f80bff6a0c4c3c6b
  • Nethix Wireless Controller[Search →]

    http.headers.set_cookie:"NethixSession"
  • Nexus[Search →]

    http.favicon.hash_sha256:9337dace49934010c4fdbb5c2c778c16f9e42bdb3da2ac476744dcc8705025c2
  • OpenCTI[Search →]

    http.title:"OpenCTI"
  • PaperCut MF/NG[Search →]

    http.meta:"PaperCut MF" OR http.meta:"PaperCut NG"
  • PRTG[Search →]

    (http.body:"PRTG Network Monitor") AND (http.headers.server:"prtg")
  • Ruckus[Search →]

    http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
  • Ruijie[Search →]

    http.favicon.hash_sha256:8be4899f8cbc8a9d6283d101ef5b9afa95f83bef8ba676b1e5b8cfb375d2391d
  • Samsung old printers[Search →]

    http.title:"syncthru web service"
  • Samsung Prismview[Search →]

    http.headers.server:"Prismview"
  • SecurePoint[Search →] [Alt →]

    tag.name:"securepoint"
    http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
  • Siemens[Search →]

    http.favicon.hash_sha256:4f81d8e8df852d2ef27c4b1d9f211a505346ae12840a83db033db329750e7fdb
  • SuperMicro BMC[Search →] [Search →]

    tag.name:"supermicro_ipmi"
    certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI
  • Tenda[Search →]

    http.favicon.hash_sha256:9322e4def463fff36b0e180ddcf67a38853b7b729716aa5ab7a119e3a24841bc
  • TPLink[Search →] [Alt →]

    tag.name:"tplink"
    http.favicon.hash_sha256:9e803d05d8907cca1f7730f187707c25b0fb60f9e286e2957ab1e21cffdefde2
  • Vigor Routers[Search →]

    certificate.issuer.common_name:"Vigor Router"
  • Wazuh[Search →]

    http.title:"Wazuh"
  • XEROX WorkCentre[Search →]

    certificate.issuer.common_name:"Xerox Generic Root"
  • XZERES Wind[Search →]

    http.body:"xzeres wind"
  • Zyxel ZyWALL[Search →] [Alt →]

    tag.name:"zyxel_zywall"
    http.favicon.hash_sha256:9a02f3cf948f9409c25070f2f057b69dda5d0aaf7fa8d056552e8bda8295ca1f

Security Applications

  • Deimos C2[Search →]

    http.title:"Deimos C2" OR certificate.subject.organization:"Acme Co" AND port:8443
  • EvilGinx2[Search →]

    jarm:"20d14d20d21d20d20c20d14d20d20daddf8a68a1444c74b6dbe09910a511e6"
  • Keycloak[Search →]

    http.favicon.hash_sha256:47dcf1f1a8f1afd68297a294a263849069a7a62b2e86550241416c2cc56c5676
  • NanoCore[Search →]

    certificate.subject.common_name:"unk"
  • Nessus Scanner Servers[Search →]

    http.headers.server:"NessusWWW"
  • NimPlant C2[Search →]

    http.headers.server:"NimPlant C2 Server"
  • NTOP Network Analyzers[Search →]

    http.title:"Welcome to ntopng" OR (http.title:"Global Traffic Statistics" AND http.headers.server:"ntop/*")
  • Merlin C2[Search →]

    jarm:"29d21b20d29d29d21c41d21b21b41d494e0df9532e75299f15ba73156cee38"

Web cameras

  • All Web cameras[Search →] [Alt →]

    tag.category:"Web cameras"
    http.title:"camera"
  • Android IP Webcam Server[Search →]

    http.headers.server:"IP Webcam Server"
  • Avigilion webcams[Search →]

    http.title:"Avigilon"
  • Blue Iris[Search →]

    http.favicon.hash_sha256:6e32c76e9c522baacd1362fdfacc8e47eda0f62937bb226ae38a5b8d2157f7cd
  • GeoVision webcams[Search →]

    http.headers.server:"GeoHttpServer"
  • Hipcam[Search →]

    http.headers.server:"Hipcam"
  • i-Catcher[Search →]

    http.headers.server:"i-Catcher Console"
  • IPCam Client[Search →]

    http.title:”ipcam″
  • Linksys[Search →]

    http.title:"tm01"
  • SQ-WEBCAM[Search →]

    http.headers.server:"SQ-WEBCAM"
  • UI3 for Blue Iris[Search →]

    http.title:"ui3"
  • VB-M600 cameras[Search →]

    http.title:”VB-M600″
  • Vivotek IP cameras[Search →]

    http.headers.server:"VVTK-HTTP-Server"
  • Webcam 7[Search →]

    http.headers.server:"webcam 7"
  • YawCam[Search →]

    http.headers.server:"yawcam" http.unknown_headers.key:"mime_type" AND http.unknown_headers.value:"text/html"

Communication

  • Adobe Connect[Search →]

    http.favicon.hash_sha256:65576e8c7a144d8f4530ee1f87f6157d3fc680a029409d874f529d05e60b9fa1
  • Exim[Search →]

    smtp.banner:"Exim"
  • Gitter[Search →]

    http.title:"Gitter"
  • Mattermost[Search →]

    http.title:"mattermost"
  • Microsoft Exchange[Search →]

    tag.name:"microsoft_exchange"
  • Microsoft Teams[Search →]

    http.favicon.hash_sha256:397eddf44e1bf7e557b0b4f5173da95d8fd832b6f2f10d6e41c17dc539d5a822
  • RabbitMQ[Search →] [Alt →]

    tag.name:"rabbitmq"
    http.favicon.hash_sha256:8c08be4e11537f793f06a9e6dd91aba52d43032b66d11f81fa5df7e452e52aa1
  • Rocket.Chat[Search →]

    http.title:"Rocket.Chat"
  • Roundcube[Search →] [Alt →]

    tag.name:"roundcube"
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
  • Skype for Business[Search →] [Alt →]

    tag.name:"skype" AND http.title:"Skype for Business"
    http.favicon.hash_sha256:7d188ade5d6bc30a4d55e83a08f4e4bafe8f71ae5af2023fc87ed9767b7dda12 AND http.title:"Skype for Business"
  • Zimbra[Search →]

    tag.name:"zimbra"

Remote Access

VoIP

Storages and Databases

  • Apache Tomcat[Search →] [Alt →]

    tag.name:"apache_tomcat"
    http.favicon.hash_sha256:64a3170a912786e9eece7e347b58f36471cb9d0bc790697b216c61050e6b1f08
  • Ceph[Search →]

    http.favicon.hash_sha256:3db088b4089dee70dfd305a4e200dc72c9ad7d78ffd28ffe36608eaf46591bcd
  • CouchDB[Search →] [Search]

    tag.name:"couchdb"
    http.headers.server:"CouchDB"
  • InfluxDB[Search →]

    http.title:”InfluxDB Admin”
  • Kubernetes[Search →]

    http.favicon.hash_sha256:a8576f89337c561e1128e490c6f9e074fc4069057acb8d164b62d4cb205248bc
  • Memcached[Search →]

    prot7:memcached
  • MicrosoftSQL[Search →]

    prot7:mssql
  • Minio[Search →]

    http.title:"Minio"
  • Nextcloud[Search →]

    http.favicon.hash_sha256:bea7d85401905c569359239339770d962854ccda24f134a76f492ab58ecde9f5
  • OpenShift[Search →]

    http.favicon.hash_sha256:28409a985f1f3322a58dc5d1af0e3f09efa5b7d193341b55b11a72711a55a3dc
  • OpenStack[Search →]

    http.favicon.hash_sha256:27b7287de853e2ea7d05cf5636d6b7c70b9fb65b2f4ce9e9fded1bb27921d839
  • phpmyadmin[Search →] [Alt →]

    tag.name:"phpmyadmin"
    http.favicon.hash_sha256:e2905705920b2636309d785c2df3f155d6379b0aa9a44dc7831524505fa2defd
  • PostgreSQL[Search →]

    prot7:postgres
  • Redis[Search →]

    redis:*
  • Redis wihout authentication[Search →]

    redis.ping_response:"PONG"
  • Vault[Search →]

    http.title:"Vault"

Web Services

  • **Adobe Commerce (Magento)   [Search →]

    tag.name:"magento" AND http.headers.server:"Apache"
  • Apache[Search →]

    http.headers.server:"apache"
  • IIS[Search →] [Alt →]

    tag.name:"iis"
    http.headers.server:"Microsoft-IIS"
  • Nginx[Search →]

    http.headers.server:"nginx"
  • SolarWinds[Search →] [Alt →]

    tag.name:"solarwinds_ftp"
    http.favicon.hash_sha256:2dbf88db1be0f1305a415b0455fe258627f56aa4b6b334130707a3b1adc6dba7
  • WordPress[Search →] [Alt →]

    tag.name:"wordpress"
    http.favicon.path:"/wp-content/"
  • WordPress (misconfigured)[Search →]

    http.body:"The wp-config.php creation script uses this file"
  • Drupal[Search →]

    tag.name:"drupal"
  • Joomla[Search →]

    tag.name:"joomla"
  • Confluence[Search →] [Alt →]

    tag.name:"atlassian_confluence"
    http.favicon.hash_sha256:35998ea6b404f48cdaea65529793d93c19135974f6324bf1aabebce850e469bb
  • DokuWiki[Search →] [Alt →]

    tag.name:"dokuwiki"
    http.favicon.hash_sha256:3ca2c21f1821782f2b2a29b814b7aa240862014a35fdee54d23a72575fc16ec1

Developing and Monitoring

  • Apache Superset[Search →]

    (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
  • Bamboo[Search →] [Alt →]

    tag.name:"atlassian_bamboo"
    http.favicon.hash_sha256:9fac9dadbd379126f3f81ba14e4e8d911362ec766e09226504121ee2758d0f64
  • Bugzilla[Search →] [Alt →]

    tag.name:"bugzilla"
    http.favicon.hash_sha256:92307d57240ad6473bf3aa757f185ee549469bb51363be2ea824fb03c7299bf2
  • cAdvisor[Search →]

    http.title:"cAdvisor - /"
  • Citrix Gateway[Search →]

    http.title:"citrix gateway"
  • GitLab[Search →]

    http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef
  • Grafana[Search →]

    http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
  • Graylog[Search →]

    http.favicon.hash_sha256:6d1c0130478d8645c82d039b270e7ca20e912b87489163bd5d9b1c1af95db7f8
  • HashiCorp Consul Dashboards[Search →]

    http.title:"Consul by HashiCorp"
  • Jenkins[Search →] [Alt →]

    tag.name:"jenkins"
    http.favicon.hash_sha256:4fec1ee82f0dc4a8e4e9bb26954cf54cf9bf1e6a009516cb6c49ff16924e8caa
  • Jira[Search →] [Alt →]

    tag.name:"atlassian_jira"
    http.favicon.hash_sha256:7bd6886a738297cd7bf2113d2cc3d898b9cad4079f336eb03fcd737549aea8a6 OR http.favicon.hash_sha256:84f150bf0c8858f1eb6c1e7ccc86f3208cc5a59b496059892c3aff5e22992d27 OR http.favicon.hash_sha256:181076e8983bc2c9fdff6d0548000cd78d1379e410f55648f2c40d6d893fa9fa
  • Kafka[Search →]

    http.title:”kafka” OR http.title:”Apache Kafka” OR http.body:”kafka” OR http.body:”Apache Kafka”
  • Kibana[Search →]

    http.favicon.hash_sha256:30db4185530d8617e9f08858787a24b219ac5102321b48515baf5da7ac43b590
  • Laravel[Search →]

    tag.name:"laravel"
  • ManageEngine ServiceDesk[Search →]

    tag.name:"manageengine_servicedesk"
  • Nagios[Search →]

    (http.favicon.hash_sha256:8b19d77c4a4ee2d846b1918a8c75c66fa1c3285a12b1d28950e1e6b817b237d4) OR (http.favicon.hash_sha256:57ff1068caf7d83d9c252ae26af5f833290b917945051a90cfc4b42e4e72ac13)
  • NetData Dashboards[Search →]

    http.headers.server:"Netdata Embedded HTTP*"
  • Node.js Express[Search →]

    http.headers.x_powered_by:"Express" OR http.headres.set_cookie:"connect.sid"
  • PandoraFMS[Search →]

    http.favicon.hash_sha256:62d73ef206143e68ac686f08fc770db66aa84b21f320f4953af8bdbb6b9da50e
  • Portainer[Search →]

    http.favicon.hash_sha256:8170dab248310e6d887a088e75d72116e74ce99e91782e5dc0e3ff2cc4b63c3d
  • Prometheus[Search →]

    http.favicon.hash_sha256:d72fc7b0bd1a4c1c4a016dfa4bfd594b2fb65a409575ec8f857864d4bdc658be
  • Rancher Dashboards[Search →]

    http.title:"Loading…"
  • Redmine[Search →] [Alt →]

    tag.name:"redmine"
    http.favicon.hash_sha256:5210ac65f141394a8540d408a9b56ed64c21c6b212cb28144c874f5715be9ed1
  • Sentry[Search →]

    tag.name:"sentry"
  • SonarQube[Search →] [Alt →]

    tag.name:"sonarqubes"
    http.favicon.hash_sha256:f04d7cdd55fe15c50e78457f366afa723587cf267c28b81cbcfe44248934a82b
  • Swagger[Search →]

    http.favicon.hash_sha256:3ed612f41e050ca5e7000cad6f1cbe7e7da39f65fca99c02e99e6591056e5837
  • Symfony[Search →]

    tag.name:"symfony"
  • Terraform[Search →]

    http.title:"Terraform Enterprise"
  • Traefik Dashboards[Search →]

    http.title:"Traefik"
  • Weave Scope[Search →]

    http.title:"Weave Scope"
  • Zabbix[Search →] [Alt →]

    tag.name:"zabbix"
    http.favicon.hash_sha256:22b06a141c425c92951056805f46691c4cd8e7547ed90b8836a282950d4b4be2
  • Zend Framework[Search →]

    http.headers.server:"ZendServer" OR http.headers.set_cookie:"ZDEDebuggerPresent"

Other

  • GaugeTech Electricity Meters[Search →]

    http.headers.server:"EIG Embedded Web Server"
  • GeoServer[Search →]

    http.title:"geoserver"
  • Hadoop[Search →]

    http.title:"Hadoop Administration"
  • Mein Automowers[Search →]

    http.favicon.hash_sha256:2a4b14d1620a2461ac510266249624df6152f266aea2946feb9b0ec8ac8a960d
  • Moodle[Search →]

    http.headers.set_cookie:"MoodleSession"
  • Navidrome Music Server[Search →]

    http.description:"Navidrome Music Server"
  • Nordex Control[Search →]

    http.favicon.hash_sha256:830a18175634c591efda599c39e280d0a1e98213ffe96e9d637ebff817cbc326
  • shell2http[Search →]

    http.title:"shell2http"
  • Splunkd[Search →]

    tag.name:"splunkd"
  • Unconfigured AdGuard[Search →]

    http.title:"Setup AdGuard Home"
  • VictoriaMetrics Agent[Search →]

    http.body:"<h2>vmagent</h2>"
  • VSphere[Search →]

    http.favicon.hash_sha256:0e3b83492fe3d83d72a60b6fb194adb9afd04466268241f5ccf700278737f74d

2024 Interesting CVEs

  • CVE-2024-1708, -1709 (ConnectWise ScreenConnect)   [Search →]
    http.headers.server:"ScreenConnect"
  • CVE-2024-20356 (Costp IMC)   [Search →]
    http.title:"Cisco Integrated Management Controller"
  • CVE-2024-20767 (Adobe ColdFusion)   [Search →]
    tag.name:"adobe_coldfusion"
  • CVE-2024-20931 (Oracle WebLogic)   [Search →]
    protocol:t3 OR protocol:t3s
  • CVE-2024-21006 (Oracle WebLogic)   [Search →]
    port:7001 AND protocol:t3
  • CVE-2024-21410 (MS Exchange)   [Search →]
    tag.name:"microsoft_exchange"
  • CVE-2024-21690 (Junos OS)   [Search →]
    http.title:"Juniper"
  • CVE-2024-27198, -27199 (JetBrains TeamCity)   [Search →]
    http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.11.3" NOT http.body:"2023.11.4"
  • CVE-2024-21677 (Atlassian Confluence)   [Search →]
    http.meta:"confluence-base-url"
  • CVE-21722, -21723, -21724, -21725, -21726 (Joomla)   [Search →]
    tag.name:"joomla"
  • CVE-2024-22024 (Ivanti Connect Secure)   [Search →]
    http.body:"welcome.cgi?p=logo"
  • CVE-2024-23334 (Python aiohttp)   [Search →]
    http.headers.server:"aiohttp"
  • CVE-2024-23897 (Jenkins)   [Search →]
    http.headers.x_jenkins:[0 TO 2.441]
  • CVE-2024-24919 (Check Point)   [Search →] [Search]
    http.favicon.hash_sha256:9a3a865d8911afcd95389ec701e5e8abcad69d928efd5b52b5d0bcc70a60d11a
    tag.name:"checkpoint"
  • CVE-2024-26026, -21793 (F5 BigIP)   [Search →]
    http.headers.server:"BigIP"
  • CVE-2024-26304, -26305, -33511, -33512 (ArubaOS)   [Search →]
    http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753
  • CVE-2024-2879 (LayerSlider)   [Search →]
    http.body:"plugins/layerslider"
  • CVE-2024-29895, -25641, -31445, -31459 (Cacti)   [Search →]
    http.title:"Login to Cacti" OR http.headers.set_cookie:"Cacti"
  • CVE-2024-31136 (JetBrains TeamCity)   [Search →]
    tag.name:"teamcity"
  • CVE-2024-3273 (D-Link NAS)   [Search →]
    http.body:"Text:In order to access the ShareCenter"
  • CVE-2024-3400 (Palo Alto Networks PAN-OS)   [Search →]
    tag.name:"palo_alto"
  • CVE-2024-43770 (Roundcube)   [Search →]
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
  • CVE-2024-4835 (GitLab)   [Search →]
    http.meta:"Gitlab"
  • CVE-2024-49606 (Tinyproxy)   [Search →]
    http.headers.server:"tinyproxy/1.11.1" OR http.headers.server:"tinyproxy/1.10.0"

2023 Interesting CVEs

  • CVE-2023-2030, -5356, -7028 (GitLab Multiple vulnerability)   [Search →]
    http.meta:"Gitlab"
  • CVE-2023-20159, -20160, -20161, -20189 (Cisco Small Business Switches)   [Search →]
    http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
  • CVE-2023-20198 (Cisco XE WebUI)   [Search →]
    certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"
  • CVE-2023-21887, -46805 (Ivanti Connect Secure)   [Search →]
    http.body:"welcome.cgi?p=logo"
  • CVE-2023-22515 (Attlassian Confluence Data and Server)   [Search →] [Alt →]
    tag.name:"atlassian_confluence"
    http.meta:"confluence-base-url"
  • CVE-2023-22527 (Atlassian Confluence)   [Search →]
    http.meta:"confluence-base-url"
  • CVE-2023-22620 (SecurePoiunt)   [Search →]
    http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e
  • CVE-2023-24411 (WordPress plugin)   [Search →]
    (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/bne-testimonials")
  • CVE-2023-25135 (vBulletin)   [Search →]
    tag.vbulletin.version:<=5.6.9
  • CVE-2023-25157 (GeoServer)   [Search →]
    http.title:"geoserver"
  • CVE-2023-25690 (Apache HTTP Server)   [Search →]
    tag.apache.version:>=2.4.0 AND tag.apache.version:<=2.4.55
  • CVE-2023-25717 (Ruckus Wireless Admin)   [Search →]
    http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f
  • CVE-2023-26359 (Adobe ColdFusion)   [Searc →]
    tag.name:"adobe_coldfusion"
  • CVE-2023-2732 (Barracuda Email Security Gateway)   [Search →]
    http.headers.server:"BarracudaHTTP"
  • CVE-2023-27350 (PaperCut MF/NG)   [Search →]
    (http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)
  • CVE-2023-27524 (Apache Superset)   [Search →]
    (http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e
  • CVE-2023-27997 (Fortigate VPN)   [Search →] [Alt →]
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
    tag.name:"fortigate_vpn"
  • CVE-2023-28375 (Osprey Pumps)   [Search →]
    http.title:(Osprey Controller)
  • CVE-2023-2868 (Wordpress, MStore API)   [Search →]
    (tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/mstore")
  • CVE-2023-29183 (Fortinet/FortiProxy)   [Search →]
    http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f
  • CVE-2023-29357 (Microsoft SharePoint Server)   [Search →]
    http.headers.microsoftsharepointteamservices:*
  • CVE-2023-33778 (Vigor Routers)   [Search →]
    http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9
  • CVE-2023-3128 (Grafana)   [Search →]
    http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"
  • CVE-2023-34192 (Zimbra Collaboration Suite)   [Search →]
    http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637
  • CVE-2023-3460 (WordPress plugin, UltimateMember)   [Search →]
    http.body:"wp-content/plugins/ultimate-member"
  • CVE-2023-35078, CVE-2023-35082 (Ivanti EPMM)   [Search →]
    http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")
  • CVE-2023-3519,-3466,-3467 (Citrix Gateway/ADC)   [Search →]
    http.title:"Citrix ADC" OR http.title:"Citrix Gateway"
  • CVE-2023-36434 (Windows IIS Server)   [Search →]
    http.headers.server:"Microsoft-IIS"
  • CVE-2023-36630 (CloudPanel)   [Search →]
    http.title:"cloudpanel" NOT http.body:"2.3.1"
  • CVE-2023-36764 (Microsoft SharePoint)   [Search →]
    http.headers.microsoftsharepointteamservices:*
  • CVE-2023-38035 (Ivanti Sentry)   [Search →]
    http.body:"images/sentry-mi-logo" AND port:8443
  • CVE-2023-38204 (Adobe ColdFusion)   [Search →]
    tag.name:"adobe_coldfusion"
  • CVE-2023-39143 (PaperCut MF/NG)   [Search →]
    (http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)
  • CVE-2023-39336 (Ivanti EPM)   [Search →]
    http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")
  • CVE-2023-39361,-31132,-39359 and other (Cacti)   [Search →]
    http.title:"Login to Cacti"
  • CVE-2023-40176,-40177,-40572,-40573 (XWiki)   [Search →]
    http.title:"XWiki" OR http.favicon.hash_sha256:6f0fdef9a229150fbc7183a1bbb136d7b44b6df7c34369c14bebb6adae8aaf20
  • CVE-2023-40289 and other (SuperMicro BMC)   [Search →] [Alt →]
    tag.name:"supermicro_ipmi"
    certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI
  • CVE-2023-42115,-116,-117 (Exim)   [Search →]
    smtp.banner:"exim" AND port:25
  • CVE-2023-42793 (JetBrains TeamCity)   [Search →]
    http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.05.4"
  • CVE-2023-43770[Search →]
    http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e
  • CVE-2023-4596 (WordPress, Forminator Plugin)   [Search →]
    http.body:"/wp-content/plugins/forminator"
  • CVE-2023-46849,-46850 (OpenVPN Access Server)   [Search →]
    http.headers.server:"OpenVPN-AS"