Netlas Featured Queries

In this document, you will find dorks for the Netlas.io search engine. They are divided into several categories, and each dork includes a link to perform the search on Netlas. The dork list from RedTeamGuide was used as a basis and processed according to our syntax.

If you find any inaccuracies, please feel free to send pull requests or write Issues.

Note: In some cases, you will see two dorks. This is typically done to duplicate the request made using a tag. In Netlas, the use of tags is available starting with a Business subscription, so users of the Community, Community II, and Freelancer levels should pay close attention to the duplicate dorks.

General Searches
IoT, Routers and Security
Security Applications
Web cameras
Communication
Remote Access
VoIP
Storages and Databases
Web Services
Developing and Monitoring
Other
2024 Interesting CVEs
2023 Interesting CVEs

General Searches

AMQP [Search →]
```
amqp:*
```
ASN, IP WHOIS search [Search →] [Alt →]
```
asn.name:"asnName"
```
```
asn.number:asnNumber
```
City [Search →]
```
geo.city:cityName
```
Country [Search →]
```
geo.country:countryName
```
Directory Listings [Search →]
```
http.title:"/index of/"
```
DNS, DNS search [Search →]
```
domain:domainName
```
FTP [Search →]
```
prot7:ftp
```
FTP banner [Search →]
```
ftp.banner:"bannerText"
```
FTP without autorization [Search →]
```
port:21 AND ftp.banner:"230"
```
IPSec [Search →]
```
port:500 OR port:4500 OR port:1701
```
Modbus [Search →]
```
protocol:modbus
```
Netbios [Search →]
```
protocol:netbios
```
Redis [Search →]
```
protocol:redis
```
SMB [Search →]
```
prot7:smb
```
SMTP [Search →]
```
prot7:smtp
```
SOCKS [Search →]
```
prot7:socks
```
SSH [Search →]
```
protocol:ssh
```

IoT, Routers and Security

All IoT devices [Search →]
```
tag.category:"IoT"
```
Barracuda [Search →]
```
http.headers.server:"BarracudaHTTP"
```
Brightsign Digital Sign [Search →]
```
http.title:"BrightSign&reg;"
```
Canon [Search →]
```
http.headers.server:"Canon HTTP Server"
```
Carel PlantVisor [Search →]
```
http.title:"CAREL Pl@ntVisor"
```

Cisco [Search →] [Alt →]

tag.name:"Cisco"

http.favicon.hash_sha256:62a8461e328d5bace3780ff738d0b58f6502592c04afa564e0a8a792583a7bfb

Cisco Small Business Switches [Search →]

http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"

Cisco XE WebUI [Search →]

certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"

Controllers with Windows CE OS [Search →]
```
http.headers.server:"Microsoft-WinCE"
```
DefectDojo [Search →]
```
http.title:"DefectDojo"
```

DLink [Search →] [Alt →]

tag.name:"dlink"

http.favicon.hash_sha256:81adccffbd70a76e9662977e7b55938e7eec597ac8b58e5a564959e6d465deec

Draytek Routers [Search →]

http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9

EdgeRouter [Search →]

http.favicon.hash_sha256:5aad1b2127b8c67d146f6bad69db98d7e3dc328da8940d49f8cdafa6699283ce

Electric vehicle charges [Search →]

http.headers.server:"gSOAP" AND http.content_length:583

Emerson Site Supervisor [Search →]
```
http.title:"Emerson Site Supervisor"
```
Epson HTTP [Search →]
```
http.headers.server:"EPSON-HTTP"
```

Epson Linux [Search →]

http.headers.server:"EPSON_Linux UpnP" http.status_code:200

Fortinet [Search →] [Alt →]

tag.name:"fortinet"

http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f

Home Assistant [Search →]

http.favicon.hash_sha256:892d336ba0b3ce7f94ebbcbe2fa5c3fcfdc79f25efcdc7a7e17918e85daaf9f0

HP iLO [Search →] [Alt →]

tag.name:"hp_ilo"

http.favicon.hash_sha256:0c16db2ccec266761010fa53ad69e2f6aafbf6b3134730e1fa72f19daf93ed04

HPE Aruba [Search →] [Alt →]

tag.name:"aruba"

http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753

HP Printers [Search →]

http.headers.server:("HP HTTP" "Serial Number" "Built")

Huawei Routers [Search →] [Alt →]

tag.name:"huawei_router"

http.favicon.hash_sha256:e64086f94c7013d92ca6d7e05933f4fb90cf8966aeff1efc583a92d1827093db

Ivanti Connect Secure [Search →]
```
http.body:"welcome.cgi?p=logo"
```
Lexmark printers [Search →]
```
http.headers.server:"Lexmark"
```
Media servers [Search →]
```
tag.category:"Media servers"
```

Mitsubishi Air Conditioning Control System [Search →]

http.favicon.hash_sha256:055c1bfeac57280906a11333c72430893014329296751f398939987e11d7df5c

Netgear [Search →] [Alt →]

tag.name:"netgear"

http.favicon.hash_sha256:3bfc11a176b9c8a39870478951fc177a3bc53c9fb689cdf5f80bff6a0c4c3c6b

Nethix Wireless Controller [Search →]
```
http.headers.set_cookie:"NethixSession"
```

Nexus [Search →]

http.favicon.hash_sha256:9337dace49934010c4fdbb5c2c778c16f9e42bdb3da2ac476744dcc8705025c2

OpenCTI [Search →]
```
http.title:"OpenCTI"
```

PaperCut MF/NG [Search →]

http.meta:"PaperCut MF" OR http.meta:"PaperCut NG"

PRTG [Search →]

(http.body:"PRTG Network Monitor") AND (http.headers.server:"prtg")

Ruckus [Search →]

http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f

Ruijie [Search →]

http.favicon.hash_sha256:8be4899f8cbc8a9d6283d101ef5b9afa95f83bef8ba676b1e5b8cfb375d2391d

Samsung old printers [Search →]
```
http.title:"syncthru web service"
```
Samsung Prismview [Search →]
```
http.headers.server:"Prismview"
```

SecurePoint [Search →] [Alt →]

tag.name:"securepoint"

http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e

Siemens [Search →]

http.favicon.hash_sha256:4f81d8e8df852d2ef27c4b1d9f211a505346ae12840a83db033db329750e7fdb

SuperMicro BMC [Search →] [Search →]

tag.name:"supermicro_ipmi"

certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI

Tenda [Search →]

http.favicon.hash_sha256:9322e4def463fff36b0e180ddcf67a38853b7b729716aa5ab7a119e3a24841bc

TPLink [Search →] [Alt →]

tag.name:"tplink"

http.favicon.hash_sha256:9e803d05d8907cca1f7730f187707c25b0fb60f9e286e2957ab1e21cffdefde2

Vigor Routers [Search →]

certificate.issuer.common_name:"Vigor Router"

Wazuh [Search →]
```
http.title:"Wazuh"
```

XEROX WorkCentre [Search →]

certificate.issuer.common_name:"Xerox Generic Root"

XZERES Wind [Search →]
```
http.body:"xzeres wind"
```

Zyxel ZyWALL [Search →] [Alt →]

tag.name:"zyxel_zywall"

http.favicon.hash_sha256:9a02f3cf948f9409c25070f2f057b69dda5d0aaf7fa8d056552e8bda8295ca1f

Security Applications

Deimos C2 [Search →]

http.title:"Deimos C2" OR certificate.subject.organization:"Acme Co" AND port:8443

EvilGinx2 [Search →]

jarm:"20d14d20d21d20d20c20d14d20d20daddf8a68a1444c74b6dbe09910a511e6"

Keycloak [Search →]

http.favicon.hash_sha256:47dcf1f1a8f1afd68297a294a263849069a7a62b2e86550241416c2cc56c5676

NanoCore [Search →]
```
certificate.subject.common_name:"unk"
```
Nessus Scanner Servers [Search →]
```
http.headers.server:"NessusWWW"
```

NimPlant C2 [Search →]

http.headers.server:"NimPlant C2 Server"

NTOP Network Analyzers [Search →]

http.title:"Welcome to ntopng" OR (http.title:"Global Traffic Statistics" AND http.headers.server:"ntop/*")

Merlin C2 [Search →]

jarm:"29d21b20d29d29d21c41d21b21b41d494e0df9532e75299f15ba73156cee38"

Web cameras

All Web cameras [Search →] [Alt →]

tag.category:"Web cameras"

http.title:"camera"

Android IP Webcam Server [Search →]
```
http.headers.server:"IP Webcam Server"
```
Avigilion webcams [Search →]
```
http.title:"Avigilon"
```

Blue Iris [Search →]

http.favicon.hash_sha256:6e32c76e9c522baacd1362fdfacc8e47eda0f62937bb226ae38a5b8d2157f7cd

GeoVision webcams [Search →]
```
http.headers.server:"GeoHttpServer"
```
Hipcam [Search →]
```
http.headers.server:"Hipcam"
```
i-Catcher [Search →]
```
http.headers.server:"i-Catcher Console"
```
IPCam Client [Search →]
```
http.title:”ipcam″
```
Linksys [Search →]
```
http.title:"tm01"
```
SQ-WEBCAM [Search →]
```
http.headers.server:"SQ-WEBCAM"
```
UI3 for Blue Iris [Search →]
```
http.title:"ui3"
```
VB-M600 cameras [Search →]
```
http.title:”VB-M600″
```
Vivotek IP cameras [Search →]
```
http.headers.server:"VVTK-HTTP-Server"
```
Webcam 7 [Search →]
```
http.headers.server:"webcam 7"
```

YawCam [Search →]

http.headers.server:"yawcam" http.unknown_headers.key:"mime_type" AND http.unknown_headers.value:"text/html"

Communication

Adobe Connect [Search →]

http.favicon.hash_sha256:65576e8c7a144d8f4530ee1f87f6157d3fc680a029409d874f529d05e60b9fa1

Exim [Search →]
```
smtp.banner:"Exim"
```
Gitter [Search →]
```
http.title:"Gitter"
```
Mattermost [Search →]
```
http.title:"mattermost"
```
Microsoft Exchange [Search →]
```
tag.name:"microsoft_exchange"
```

Microsoft Teams [Search →]

http.favicon.hash_sha256:397eddf44e1bf7e557b0b4f5173da95d8fd832b6f2f10d6e41c17dc539d5a822

RabbitMQ [Search →] [Alt →]

tag.name:"rabbitmq"

http.favicon.hash_sha256:8c08be4e11537f793f06a9e6dd91aba52d43032b66d11f81fa5df7e452e52aa1

Rocket.Chat [Search →]
```
http.title:"Rocket.Chat"
```

Roundcube [Search →] [Alt →]

tag.name:"roundcube"

http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e

Skype for Business [Search →] [Alt →]

tag.name:"skype" AND http.title:"Skype for Business"

http.favicon.hash_sha256:7d188ade5d6bc30a4d55e83a08f4e4bafe8f71ae5af2023fc87ed9767b7dda12 AND http.title:"Skype for Business"

Zimbra [Search →]
```
tag.name:"zimbra"
```

Remote Access

All Remote access [Search →]
```
tag.category:"Remote access"
```

NoMachine [Search →]

(port:4000) OR (port:4010) OR (port:4011) OR (port:4022)

OpenVPN Access Server (and just an OpenVPN) [Search →]
```
http.headers.server:"OpenVPN-AS"
```
RDP [Search →]
```
protocol:rdp
```
SaltStack [Search →]
```
http.title:"saltstack"
```
TeamViewer [Search →]
```
port:5938
```
VNC [Search →]
```
prot7:vnc
```

VoIP

All VoIP [Search →]
```
tag.category:"VoIP"
```
MSOS [Search →]
```
http.headers.server:"MSOS"
```
Polycom [Search →]
```
http.title:"polycom"
```
Siemens Openstage [Search →]
```
http.title:"openstage"
```
Snom devices [Search →]
```
http.headers.server:"snom"
```

Tanderberg [Search →] [Alt →]

tag.name:"tandberg"

http.favicon.hash_sha256:0ac9e427c00eea6f25562023c84ed961943d13b9d7c7665a747ab536fb9c2a73

Storages and Databases

Apache Tomcat [Search →] [Alt →]

tag.name:"apache_tomcat"

http.favicon.hash_sha256:64a3170a912786e9eece7e347b58f36471cb9d0bc790697b216c61050e6b1f08

Ceph [Search →]

http.favicon.hash_sha256:3db088b4089dee70dfd305a4e200dc72c9ad7d78ffd28ffe36608eaf46591bcd

CouchDB [Search →] [Search]

tag.name:"couchdb"

http.headers.server:"CouchDB"

InfluxDB [Search →]
```
http.title:”InfluxDB Admin”
```

Kubernetes [Search →]

http.favicon.hash_sha256:a8576f89337c561e1128e490c6f9e074fc4069057acb8d164b62d4cb205248bc

Memcached [Search →]
```
prot7:memcached
```
MicrosoftSQL [Search →]
```
prot7:mssql
```
Minio [Search →]
```
http.title:"Minio"
```

Nextcloud [Search →]

http.favicon.hash_sha256:bea7d85401905c569359239339770d962854ccda24f134a76f492ab58ecde9f5

OpenShift [Search →]

http.favicon.hash_sha256:28409a985f1f3322a58dc5d1af0e3f09efa5b7d193341b55b11a72711a55a3dc

OpenStack [Search →]

http.favicon.hash_sha256:27b7287de853e2ea7d05cf5636d6b7c70b9fb65b2f4ce9e9fded1bb27921d839

phpmyadmin [Search →] [Alt →]

tag.name:"phpmyadmin"

http.favicon.hash_sha256:e2905705920b2636309d785c2df3f155d6379b0aa9a44dc7831524505fa2defd

PostgreSQL [Search →]
```
prot7:postgres
```
Redis [Search →]
```
redis:*
```
Redis wihout authentication [Search →]
```
redis.ping_response:"PONG"
```
Vault [Search →]
```
http.title:"Vault"
```

Web Services

**Adobe Commerce (Magento) [Search →]

tag.name:"magento" AND http.headers.server:"Apache"

Apache [Search →]
```
http.headers.server:"apache"
```

IIS [Search →] [Alt →]

tag.name:"iis"

http.headers.server:"Microsoft-IIS"

Nginx [Search →]
```
http.headers.server:"nginx"
```

SolarWinds [Search →] [Alt →]

tag.name:"solarwinds_ftp"

http.favicon.hash_sha256:2dbf88db1be0f1305a415b0455fe258627f56aa4b6b334130707a3b1adc6dba7

WordPress [Search →] [Alt →]

tag.name:"wordpress"

http.favicon.path:"/wp-content/"

WordPress (misconfigured) [Search →]

http.body:"The wp-config.php creation script uses this file"

Drupal [Search →]
```
tag.name:"drupal"
```
Joomla [Search →]
```
tag.name:"joomla"
```

Confluence [Search →] [Alt →]

tag.name:"atlassian_confluence"

http.favicon.hash_sha256:35998ea6b404f48cdaea65529793d93c19135974f6324bf1aabebce850e469bb

DokuWiki [Search →] [Alt →]

tag.name:"dokuwiki"

http.favicon.hash_sha256:3ca2c21f1821782f2b2a29b814b7aa240862014a35fdee54d23a72575fc16ec1

Developing and Monitoring

Apache Superset [Search →]

(http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e

Bamboo [Search →] [Alt →]

tag.name:"atlassian_bamboo"

http.favicon.hash_sha256:9fac9dadbd379126f3f81ba14e4e8d911362ec766e09226504121ee2758d0f64

Bugzilla [Search →] [Alt →]

tag.name:"bugzilla"

http.favicon.hash_sha256:92307d57240ad6473bf3aa757f185ee549469bb51363be2ea824fb03c7299bf2

cAdvisor [Search →]
```
http.title:"cAdvisor - /"
```
Citrix Gateway [Search →]
```
http.title:"citrix gateway"
```

GitLab [Search →]

http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef

Grafana [Search →]

http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"

Graylog [Search →]

http.favicon.hash_sha256:6d1c0130478d8645c82d039b270e7ca20e912b87489163bd5d9b1c1af95db7f8

HashiCorp Consul Dashboards [Search →]
```
http.title:"Consul by HashiCorp"
```

Jenkins [Search →] [Alt →]

tag.name:"jenkins"

http.favicon.hash_sha256:4fec1ee82f0dc4a8e4e9bb26954cf54cf9bf1e6a009516cb6c49ff16924e8caa

Jira [Search →] [Alt →]

tag.name:"atlassian_jira"

http.favicon.hash_sha256:7bd6886a738297cd7bf2113d2cc3d898b9cad4079f336eb03fcd737549aea8a6 OR http.favicon.hash_sha256:84f150bf0c8858f1eb6c1e7ccc86f3208cc5a59b496059892c3aff5e22992d27 OR http.favicon.hash_sha256:181076e8983bc2c9fdff6d0548000cd78d1379e410f55648f2c40d6d893fa9fa

Kafka [Search →]

http.title:”kafka” OR http.title:”Apache Kafka” OR http.body:”kafka” OR http.body:”Apache Kafka”

Kibana [Search →]

http.favicon.hash_sha256:30db4185530d8617e9f08858787a24b219ac5102321b48515baf5da7ac43b590

Laravel [Search →]
```
tag.name:"laravel"
```
ManageEngine ServiceDesk [Search →]
```
tag.name:"manageengine_servicedesk"
```

Nagios [Search →]

(http.favicon.hash_sha256:8b19d77c4a4ee2d846b1918a8c75c66fa1c3285a12b1d28950e1e6b817b237d4) OR (http.favicon.hash_sha256:57ff1068caf7d83d9c252ae26af5f833290b917945051a90cfc4b42e4e72ac13)

NetData Dashboards [Search →]

http.headers.server:"Netdata Embedded HTTP*"

Node.js Express [Search →]

http.headers.x_powered_by:"Express" OR http.headres.set_cookie:"connect.sid"

PandoraFMS [Search →]

http.favicon.hash_sha256:62d73ef206143e68ac686f08fc770db66aa84b21f320f4953af8bdbb6b9da50e

Portainer [Search →]

http.favicon.hash_sha256:8170dab248310e6d887a088e75d72116e74ce99e91782e5dc0e3ff2cc4b63c3d

Prometheus [Search →]

http.favicon.hash_sha256:d72fc7b0bd1a4c1c4a016dfa4bfd594b2fb65a409575ec8f857864d4bdc658be

Rancher Dashboards [Search →]
```
http.title:"Loading&hellip;"
```

Redmine [Search →] [Alt →]

tag.name:"redmine"

http.favicon.hash_sha256:5210ac65f141394a8540d408a9b56ed64c21c6b212cb28144c874f5715be9ed1

Sentry [Search →]
```
tag.name:"sentry"
```

SonarQube [Search →] [Alt →]

tag.name:"sonarqubes"

http.favicon.hash_sha256:f04d7cdd55fe15c50e78457f366afa723587cf267c28b81cbcfe44248934a82b

Swagger [Search →]

http.favicon.hash_sha256:3ed612f41e050ca5e7000cad6f1cbe7e7da39f65fca99c02e99e6591056e5837

Symfony [Search →]
```
tag.name:"symfony"
```
Terraform [Search →]
```
http.title:"Terraform Enterprise"
```
Traefik Dashboards [Search →]
```
http.title:"Traefik"
```
Weave Scope [Search →]
```
http.title:"Weave Scope"
```

Zabbix [Search →] [Alt →]

tag.name:"zabbix"

http.favicon.hash_sha256:22b06a141c425c92951056805f46691c4cd8e7547ed90b8836a282950d4b4be2

Zend Framework [Search →]

http.headers.server:"ZendServer" OR http.headers.set_cookie:"ZDEDebuggerPresent"

Other

GaugeTech Electricity Meters [Search →]

http.headers.server:"EIG Embedded Web Server"

GeoServer [Search →]
```
http.title:"geoserver"
```
Hadoop [Search →]
```
http.title:"Hadoop Administration"
```

Mein Automowers [Search →]

http.favicon.hash_sha256:2a4b14d1620a2461ac510266249624df6152f266aea2946feb9b0ec8ac8a960d

Moodle [Search →]
```
http.headers.set_cookie:"MoodleSession"
```

Navidrome Music Server [Search →]

http.description:"Navidrome Music Server"

Nordex Control [Search →]

http.favicon.hash_sha256:830a18175634c591efda599c39e280d0a1e98213ffe96e9d637ebff817cbc326

shell2http [Search →]
```
http.title:"shell2http"
```
Splunkd [Search →]
```
tag.name:"splunkd"
```
Unconfigured AdGuard [Search →]
```
http.title:"Setup AdGuard Home"
```
VictoriaMetrics Agent [Search →]
```
http.body:"<h2>vmagent</h2>"
```

VSphere [Search →]

http.favicon.hash_sha256:0e3b83492fe3d83d72a60b6fb194adb9afd04466268241f5ccf700278737f74d

2024 Interesting CVEs

CVE-2024-1708, -1709 (ConnectWise ScreenConnect) [Search →]
```
http.headers.server:"ScreenConnect"
```

CVE-2024-20356 (Costp IMC) [Search →]

http.title:"Cisco Integrated Management Controller"

CVE-2024-20767 (Adobe ColdFusion) [Search →]
```
tag.name:"adobe_coldfusion"
```
CVE-2024-20931 (Oracle WebLogic) [Search →]
```
protocol:t3 OR protocol:t3s
```
CVE-2024-21006 (Oracle WebLogic) [Search →]
```
port:7001 AND protocol:t3
```
CVE-2024-21410 (MS Exchange) [Search →]
```
tag.name:"microsoft_exchange"
```
CVE-2024-21690 (Junos OS) [Search →]
```
http.title:"Juniper"
```

CVE-2024-27198, -27199 (JetBrains TeamCity) [Search →]

http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.11.3" NOT http.body:"2023.11.4"

CVE-2024-21677 (Atlassian Confluence) [Search →]
```
http.meta:"confluence-base-url"
```
CVE-21722, -21723, -21724, -21725, -21726 (Joomla) [Search →]
```
tag.name:"joomla"
```
CVE-2024-22024 (Ivanti Connect Secure) [Search →]
```
http.body:"welcome.cgi?p=logo"
```
CVE-2024-23334 (Python aiohttp) [Search →]
```
http.headers.server:"aiohttp"
```
CVE-2024-23897 (Jenkins) [Search →]
```
http.headers.x_jenkins:[0 TO 2.441]
```

CVE-2024-24919 (Check Point) [Search →] [Search]

http.favicon.hash_sha256:9a3a865d8911afcd95389ec701e5e8abcad69d928efd5b52b5d0bcc70a60d11a

tag.name:"checkpoint"

CVE-2024-26026, -21793 (F5 BigIP) [Search →]
```
http.headers.server:"BigIP"
```

CVE-2024-26304, -26305, -33511, -33512 (ArubaOS) [Search →]

http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753

CVE-2024-2879 (LayerSlider) [Search →]
```
http.body:"plugins/layerslider"
```

CVE-2024-29895, -25641, -31445, -31459 (Cacti) [Search →]

http.title:"Login to Cacti" OR http.headers.set_cookie:"Cacti"

CVE-2024-31136 (JetBrains TeamCity) [Search →]
```
tag.name:"teamcity"
```

CVE-2024-3273 (D-Link NAS) [Search →]

http.body:"Text:In order to access the ShareCenter"

CVE-2024-3400 (Palo Alto Networks PAN-OS) [Search →]
```
tag.name:"palo_alto"
```

CVE-2024-43770 (Roundcube) [Search →]

http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e

CVE-2024-4835 (GitLab) [Search →]
```
http.meta:"Gitlab"
```

CVE-2024-49606 (Tinyproxy) [Search →]

http.headers.server:"tinyproxy/1.11.1" OR http.headers.server:"tinyproxy/1.10.0"

2023 Interesting CVEs

CVE-2023-2030, -5356, -7028 (GitLab Multiple vulnerability) [Search →]
```
http.meta:"Gitlab"
```
CVE-2023-20159, -20160, -20161, -20189 (Cisco Small Business Switches) [Search →]
```
http.favicon.perceptual_hash:ffdb0113090009ff~1 AND http.body:"Small Business"
```

CVE-2023-20198 (Cisco XE WebUI) [Search →]

certificate.issuer_dn:"IOS-Self-Signed-Certificate" AND http.body:"webui"

CVE-2023-21887, -46805 (Ivanti Connect Secure) [Search →]
```
http.body:"welcome.cgi?p=logo"
```
CVE-2023-22515 (Attlassian Confluence Data and Server) [Search →] [Alt →]
```
tag.name:"atlassian_confluence"
```
```
http.meta:"confluence-base-url"
```
CVE-2023-22527 (Atlassian Confluence) [Search →]
```
http.meta:"confluence-base-url"
```

CVE-2023-22620 (SecurePoiunt) [Search →]

http.favicon.hash_sha256:ebaaed8ab7c21856f888117edaf342f6bc10335106ed907f95787b69878d9d9e

CVE-2023-24411 (WordPress plugin) [Search →]

(tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/bne-testimonials")

CVE-2023-25135 (vBulletin) [Search →]
```
tag.vbulletin.version:<=5.6.9
```
CVE-2023-25157 (GeoServer) [Search →]
```
http.title:"geoserver"
```

CVE-2023-25690 (Apache HTTP Server) [Search →]

tag.apache.version:>=2.4.0 AND tag.apache.version:<=2.4.55

CVE-2023-25717 (Ruckus Wireless Admin) [Search →]

http.favicon.hash_sha256:44648ca99e1d18589d4b72b19156bf61117c09e311b9f26fa771d9acf5cf463f

CVE-2023-26359 (Adobe ColdFusion) [Searc →]
```
tag.name:"adobe_coldfusion"
```
CVE-2023-2732 (Barracuda Email Security Gateway) [Search →]
```
http.headers.server:"BarracudaHTTP"
```

CVE-2023-27350 (PaperCut MF/NG) [Search →]

(http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)

CVE-2023-27524 (Apache Superset) [Search →]

(http.title:superset http.body:SUPERSET_WEBSERVER*) OR http.favicon.hash_sha256:e186603e51173d86bfc680eee24345d67c7a1d945a8e76dc4b218bbfabed666e

CVE-2023-27997 (Fortigate VPN) [Search →] [Alt →]

http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f

tag.name:"fortigate_vpn"

CVE-2023-28375 (Osprey Pumps) [Search →]
```
http.title:(Osprey Controller)
```

CVE-2023-2868 (Wordpress, MStore API) [Search →]

(tag.name:"wordpress") AND (prot7:http) AND (http.body:"wp-content/plugins/mstore")

CVE-2023-29183 (Fortinet/FortiProxy) [Search →]

http.favicon.hash_sha256:d18b3c9feb76c3c1cfdcc51c732f113327e3c33fb3f63b479951f7da6ed1216f

CVE-2023-29357 (Microsoft SharePoint Server) [Search →]
```
http.headers.microsoftsharepointteamservices:*
```

CVE-2023-33778 (Vigor Routers) [Search →]

http.favicon.hash_sha256:0af4f089d58e919f4ee421727e9ac54d885d6b3b05ec16e4d94b703f45c7eef9

CVE-2023-3128 (Grafana) [Search →]

http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.title:"Grafana"

CVE-2023-34192 (Zimbra Collaboration Suite) [Search →]

http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637

CVE-2023-3460 (WordPress plugin, UltimateMember) [Search →]
```
http.body:"wp-content/plugins/ultimate-member"
```
CVE-2023-35078, CVE-2023-35082 (Ivanti EPMM) [Search →]
```
http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")
```
CVE-2023-3519,-3466,-3467 (Citrix Gateway/ADC) [Search →]
```
http.title:"Citrix ADC" OR http.title:"Citrix Gateway"
```
CVE-2023-36434 (Windows IIS Server) [Search →]
```
http.headers.server:"Microsoft-IIS"
```

CVE-2023-36630 (CloudPanel) [Search →]

http.title:"cloudpanel" NOT http.body:"2.3.1"

CVE-2023-36764 (Microsoft SharePoint) [Search →]
```
http.headers.microsoftsharepointteamservices:*
```

CVE-2023-38035 (Ivanti Sentry) [Search →]

http.body:"images/sentry-mi-logo" AND port:8443

CVE-2023-38204 (Adobe ColdFusion) [Search →]
```
tag.name:"adobe_coldfusion"
```

CVE-2023-39143 (PaperCut MF/NG) [Search →]

(http.title:"PaperCut Login" AND (http.description:"PaperCut NG" OR http.description:"PaperCut MF")) OR (http.favicon.perceptual_hash:3e7e66667e7c6000)

CVE-2023-39336 (Ivanti EPM) [Search →]

http.headers.set_cookie:("JSESSIONID" "Path" "/mifs")

CVE-2023-39361,-31132,-39359 and other (Cacti) [Search →]
```
http.title:"Login to Cacti"
```

CVE-2023-40176,-40177,-40572,-40573 (XWiki) [Search →]

http.title:"XWiki" OR http.favicon.hash_sha256:6f0fdef9a229150fbc7183a1bbb136d7b44b6df7c34369c14bebb6adae8aaf20

CVE-2023-40289 and other (SuperMicro BMC) [Search →] [Alt →]

tag.name:"supermicro_ipmi"

certificate.subject.organization:"Super Micro Computer" AND certificate.subject.common_name:IPMI

CVE-2023-42115,-116,-117 (Exim) [Search →]
```
smtp.banner:"exim" AND port:25
```

CVE-2023-42793 (JetBrains TeamCity) [Search →]

http.headers.set_cookie:TCSESSIONID NOT http.body:"2023.05.4"

CVE-2023-43770 [Search →]

http.favicon.hash_sha256:20c30fd4340308d6a4ab222acae353fc2460793ac76645bb1ef1d9d61f4f0a9e

CVE-2023-4596 (WordPress, Forminator Plugin) [Search →]
```
http.body:"/wp-content/plugins/forminator"
```
CVE-2023-46849,-46850 (OpenVPN Access Server) [Search →]
```
http.headers.server:"OpenVPN-AS"
```

Netlas Dorks Repository