Starting Nmap 7.98 ( https://nmap.org ) at 2026-04-06 13:02 +0200
Nmap scan report for 192.168.100.30
Host is up (0.0014s latency).
Not shown: 65505 closed tcp ports (reset)
PORT      STATE SERVICE     VERSION
21/tcp    open  ftp         vsftpd 2.3.4
| vulners: 
|   vsftpd 2.3.4: 
|     	PACKETSTORM:162145	10.0	https://vulners.com/packetstorm/PACKETSTORM:162145	*EXPLOIT*
|     	EDB-ID:49757	10.0	https://vulners.com/exploitdb/EDB-ID:49757	*EXPLOIT*
|     	E9B0AEBB-5138-50BF-8922-2D87E3C046DD	10.0	https://vulners.com/githubexploit/E9B0AEBB-5138-50BF-8922-2D87E3C046DD	*EXPLOIT*
|     	CVE-2011-2523	10.0	https://vulners.com/cve/CVE-2011-2523
|     	CNVD-2020-46837	10.0	https://vulners.com/cnvd/CNVD-2020-46837
|     	CC3F6C15-182F-53F6-A5CC-812D37F1F047	10.0	https://vulners.com/githubexploit/CC3F6C15-182F-53F6-A5CC-812D37F1F047	*EXPLOIT*
|     	A41B5EAD-1A4C-56A6-97C6-1C58A1CF1E3B	10.0	https://vulners.com/githubexploit/A41B5EAD-1A4C-56A6-97C6-1C58A1CF1E3B	*EXPLOIT*
|     	817CD8FE-87C4-5FE8-B9B2-8CC64333A3F3	10.0	https://vulners.com/githubexploit/817CD8FE-87C4-5FE8-B9B2-8CC64333A3F3	*EXPLOIT*
|     	63A5C9A7-C241-5E83-9EE6-ABAB44BDD270	10.0	https://vulners.com/githubexploit/63A5C9A7-C241-5E83-9EE6-ABAB44BDD270	*EXPLOIT*
|     	5F4BCEDE-77DF-5D54-851A-0AE8B76458D9	10.0	https://vulners.com/githubexploit/5F4BCEDE-77DF-5D54-851A-0AE8B76458D9	*EXPLOIT*
|     	59BAFDCD-5027-5C82-BC59-FC7625DD81DB	10.0	https://vulners.com/githubexploit/59BAFDCD-5027-5C82-BC59-FC7625DD81DB	*EXPLOIT*
|     	50580586-73C4-5097-81CA-546D6591DF44	10.0	https://vulners.com/githubexploit/50580586-73C4-5097-81CA-546D6591DF44	*EXPLOIT*
|     	23DBF7D8-DD32-5D15-8D18-0CF069745409	10.0	https://vulners.com/githubexploit/23DBF7D8-DD32-5D15-8D18-0CF069745409	*EXPLOIT*
|_    	1337DAY-ID-36095	9.8	https://vulners.com/zdt/1337DAY-ID-36095	*EXPLOIT*
| ftp-vsftpd-backdoor: 
|   VULNERABLE:
|   vsFTPd version 2.3.4 backdoor
|     State: VULNERABLE (Exploitable)
|     IDs:  CVE:CVE-2011-2523  BID:48539
|       vsFTPd version 2.3.4 backdoor, this was reported on 2011-07-04.
|     Disclosure date: 2011-07-03
|     Exploit results:
|       Shell command: id
|       Results: uid=0(root) gid=0(root)
|     References:
|       http://scarybeastsecurity.blogspot.com/2011/07/alert-vsftpd-download-backdoored.html
|       https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/ftp/vsftpd_234_backdoor.rb
|       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2523
|_      https://www.securityfocus.com/bid/48539
22/tcp    open  ssh         OpenSSH 4.7p1 Debian 8ubuntu1 (protocol 2.0)
| vulners: 
|   cpe:/a:openbsd:openssh:4.7p1: 
|     	DF059135-2CF5-5441-8F22-E6EF1DEE5F6E	10.0	https://vulners.com/gitee/DF059135-2CF5-5441-8F22-E6EF1DEE5F6E	*EXPLOIT*
|     	PACKETSTORM:173661	9.8	https://vulners.com/packetstorm/PACKETSTORM:173661	*EXPLOIT*
|     	F0979183-AE88-53B4-86CF-3AF0523F3807	9.8	https://vulners.com/githubexploit/F0979183-AE88-53B4-86CF-3AF0523F3807	*EXPLOIT*
|     	CVE-2023-38408	9.8	https://vulners.com/cve/CVE-2023-38408
|     	CVE-2016-1908	9.8	https://vulners.com/cve/CVE-2016-1908
|     	B8190CDB-3EB9-5631-9828-8064A1575B23	9.8	https://vulners.com/githubexploit/B8190CDB-3EB9-5631-9828-8064A1575B23	*EXPLOIT*
|     	8FC9C5AB-3968-5F3C-825E-E8DB5379A623	9.8	https://vulners.com/githubexploit/8FC9C5AB-3968-5F3C-825E-E8DB5379A623	*EXPLOIT*
|     	8AD01159-548E-546E-AA87-2DE89F3927EC	9.8	https://vulners.com/githubexploit/8AD01159-548E-546E-AA87-2DE89F3927EC	*EXPLOIT*
|     	6192C35D-F78B-5C0A-AB8D-9826A79A5320	9.8	https://vulners.com/githubexploit/6192C35D-F78B-5C0A-AB8D-9826A79A5320	*EXPLOIT*
|     	2227729D-6700-5C8F-8930-1EEAFD4B9FF0	9.8	https://vulners.com/githubexploit/2227729D-6700-5C8F-8930-1EEAFD4B9FF0	*EXPLOIT*
|     	0221525F-07F5-5790-912D-F4B9E2D1B587	9.8	https://vulners.com/githubexploit/0221525F-07F5-5790-912D-F4B9E2D1B587	*EXPLOIT*
|     	CVE-2015-5600	8.5	https://vulners.com/cve/CVE-2015-5600
|     	BA3887BD-F579-53B1-A4A4-FF49E953E1C0	8.1	https://vulners.com/githubexploit/BA3887BD-F579-53B1-A4A4-FF49E953E1C0	*EXPLOIT*
|     	4FB01B00-F993-5CAF-BD57-D7E290D10C1F	8.1	https://vulners.com/githubexploit/4FB01B00-F993-5CAF-BD57-D7E290D10C1F	*EXPLOIT*
|     	SSV:78173	7.8	https://vulners.com/seebug/SSV:78173	*EXPLOIT*
|     	SSV:69983	7.8	https://vulners.com/seebug/SSV:69983	*EXPLOIT*
|     	PACKETSTORM:98796	7.8	https://vulners.com/packetstorm/PACKETSTORM:98796	*EXPLOIT*
|     	PACKETSTORM:94556	7.8	https://vulners.com/packetstorm/PACKETSTORM:94556	*EXPLOIT*
|     	PACKETSTORM:140070	7.8	https://vulners.com/packetstorm/PACKETSTORM:140070	*EXPLOIT*
|     	PACKETSTORM:101052	7.8	https://vulners.com/packetstorm/PACKETSTORM:101052	*EXPLOIT*
|     	EXPLOITPACK:71D51B69AA2D3A74753D7A921EE79985	7.8	https://vulners.com/exploitpack/EXPLOITPACK:71D51B69AA2D3A74753D7A921EE79985	*EXPLOIT*
|     	EXPLOITPACK:67F6569F63A082199721C069C852BBD7	7.8	https://vulners.com/exploitpack/EXPLOITPACK:67F6569F63A082199721C069C852BBD7	*EXPLOIT*
|     	EXPLOITPACK:5BCA798C6BA71FAE29334297EC0B6A09	7.8	https://vulners.com/exploitpack/EXPLOITPACK:5BCA798C6BA71FAE29334297EC0B6A09	*EXPLOIT*
|     	EDB-ID:40888	7.8	https://vulners.com/exploitdb/EDB-ID:40888	*EXPLOIT*
|     	EDB-ID:24450	7.8	https://vulners.com/exploitdb/EDB-ID:24450	*EXPLOIT*
|     	EDB-ID:15215	7.8	https://vulners.com/exploitdb/EDB-ID:15215	*EXPLOIT*
|     	CVE-2020-15778	7.8	https://vulners.com/cve/CVE-2020-15778
|     	CVE-2016-6515	7.8	https://vulners.com/cve/CVE-2016-6515
|     	CVE-2016-10012	7.8	https://vulners.com/cve/CVE-2016-10012
|     	CVE-2015-8325	7.8	https://vulners.com/cve/CVE-2015-8325
|     	C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3	7.8	https://vulners.com/githubexploit/C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3	*EXPLOIT*
|     	C892A90E-C1D1-5A54-BFAA-046266448553	7.8	https://vulners.com/githubexploit/C892A90E-C1D1-5A54-BFAA-046266448553	*EXPLOIT*
|     	99C4CA40-30C8-5A34-B3A3-4B5E7A9E16BA	7.8	https://vulners.com/githubexploit/99C4CA40-30C8-5A34-B3A3-4B5E7A9E16BA	*EXPLOIT*
|     	991D2CC4-0E09-5745-97A2-4917461BD6EC	7.8	https://vulners.com/githubexploit/991D2CC4-0E09-5745-97A2-4917461BD6EC	*EXPLOIT*
|     	4F1BA9CA-CAB4-55F4-A857-3E4C94C93483	7.8	https://vulners.com/githubexploit/4F1BA9CA-CAB4-55F4-A857-3E4C94C93483	*EXPLOIT*
|     	312165E3-7FD9-5769-BDA3-4129BE9114D6	7.8	https://vulners.com/githubexploit/312165E3-7FD9-5769-BDA3-4129BE9114D6	*EXPLOIT*
|     	2E719186-2FED-58A8-A150-762EFBAAA523	7.8	https://vulners.com/gitee/2E719186-2FED-58A8-A150-762EFBAAA523	*EXPLOIT*
|     	23CC97BE-7C95-513B-9E73-298C48D74432	7.8	https://vulners.com/githubexploit/23CC97BE-7C95-513B-9E73-298C48D74432	*EXPLOIT*
|     	1337DAY-ID-26494	7.8	https://vulners.com/zdt/1337DAY-ID-26494	*EXPLOIT*
|     	10213DBE-F683-58BB-B6D3-353173626207	7.8	https://vulners.com/githubexploit/10213DBE-F683-58BB-B6D3-353173626207	*EXPLOIT*
|     	SSV:92579	7.5	https://vulners.com/seebug/SSV:92579	*EXPLOIT*
|     	SSV:61450	7.5	https://vulners.com/seebug/SSV:61450	*EXPLOIT*
|     	CVE-2026-35385	7.5	https://vulners.com/cve/CVE-2026-35385
|     	CVE-2016-10708	7.5	https://vulners.com/cve/CVE-2016-10708
|     	CVE-2016-10009	7.5	https://vulners.com/cve/CVE-2016-10009
|     	CVE-2014-1692	7.5	https://vulners.com/cve/CVE-2014-1692
|     	CVE-2010-4478	7.5	https://vulners.com/cve/CVE-2010-4478
|     	CF52FA19-B5DB-5D14-B50F-2411851976E2	7.5	https://vulners.com/githubexploit/CF52FA19-B5DB-5D14-B50F-2411851976E2	*EXPLOIT*
|     	1337DAY-ID-26576	7.5	https://vulners.com/zdt/1337DAY-ID-26576	*EXPLOIT*
|     	SSV:92582	7.2	https://vulners.com/seebug/SSV:92582	*EXPLOIT*
|     	CVE-2016-10010	7.0	https://vulners.com/cve/CVE-2016-10010
|     	SSV:92580	6.9	https://vulners.com/seebug/SSV:92580	*EXPLOIT*
|     	CVE-2015-6564	6.9	https://vulners.com/cve/CVE-2015-6564
|     	1337DAY-ID-26577	6.9	https://vulners.com/zdt/1337DAY-ID-26577	*EXPLOIT*
|     	EDB-ID:46516	6.8	https://vulners.com/exploitdb/EDB-ID:46516	*EXPLOIT*
|     	EDB-ID:46193	6.8	https://vulners.com/exploitdb/EDB-ID:46193	*EXPLOIT*
|     	CVE-2019-6110	6.8	https://vulners.com/cve/CVE-2019-6110
|     	CVE-2019-6109	6.8	https://vulners.com/cve/CVE-2019-6109
|     	1337DAY-ID-32328	6.8	https://vulners.com/zdt/1337DAY-ID-32328	*EXPLOIT*
|     	1337DAY-ID-32009	6.8	https://vulners.com/zdt/1337DAY-ID-32009	*EXPLOIT*
|     	D104D2BF-ED22-588B-A9B2-3CCC562FE8C0	6.5	https://vulners.com/githubexploit/D104D2BF-ED22-588B-A9B2-3CCC562FE8C0	*EXPLOIT*
|     	CVE-2023-51385	6.5	https://vulners.com/cve/CVE-2023-51385
|     	CVE-2008-1657	6.5	https://vulners.com/cve/CVE-2008-1657
|     	C07ADB46-24B8-57B7-B375-9C761F4750A2	6.5	https://vulners.com/githubexploit/C07ADB46-24B8-57B7-B375-9C761F4750A2	*EXPLOIT*
|     	A88CDD3E-67CC-51CC-97FB-AB0CACB6B08C	6.5	https://vulners.com/githubexploit/A88CDD3E-67CC-51CC-97FB-AB0CACB6B08C	*EXPLOIT*
|     	65B15AA1-2A8D-53C1-9499-69EBA3619F1C	6.5	https://vulners.com/githubexploit/65B15AA1-2A8D-53C1-9499-69EBA3619F1C	*EXPLOIT*
|     	5325A9D6-132B-590C-BDEF-0CB105252732	6.5	https://vulners.com/gitee/5325A9D6-132B-590C-BDEF-0CB105252732	*EXPLOIT*
|     	530326CF-6AB3-5643-AA16-73DC8CB44742	6.5	https://vulners.com/githubexploit/530326CF-6AB3-5643-AA16-73DC8CB44742	*EXPLOIT*
|     	EDB-ID:40858	6.4	https://vulners.com/exploitdb/EDB-ID:40858	*EXPLOIT*
|     	EDB-ID:40119	6.4	https://vulners.com/exploitdb/EDB-ID:40119	*EXPLOIT*
|     	EDB-ID:39569	6.4	https://vulners.com/exploitdb/EDB-ID:39569	*EXPLOIT*
|     	CVE-2016-3115	6.4	https://vulners.com/cve/CVE-2016-3115
|     	PACKETSTORM:181223	5.9	https://vulners.com/packetstorm/PACKETSTORM:181223	*EXPLOIT*
|     	MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-	5.9	https://vulners.com/metasploit/MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-	*EXPLOIT*
|     	FEF0EB06-770B-5ADF-857C-1704B7AC3FE4	5.9	https://vulners.com/githubexploit/FEF0EB06-770B-5ADF-857C-1704B7AC3FE4	*EXPLOIT*
|     	FD2E0EBA-ED84-5304-8862-84BCDEB2F288	5.9	https://vulners.com/githubexploit/FD2E0EBA-ED84-5304-8862-84BCDEB2F288	*EXPLOIT*
|     	EDB-ID:45939	5.9	https://vulners.com/exploitdb/EDB-ID:45939	*EXPLOIT*
|     	EDB-ID:45233	5.9	https://vulners.com/exploitdb/EDB-ID:45233	*EXPLOIT*
|     	EDB-ID:40136	5.9	https://vulners.com/exploitdb/EDB-ID:40136	*EXPLOIT*
|     	EDB-ID:40113	5.9	https://vulners.com/exploitdb/EDB-ID:40113	*EXPLOIT*
|     	CVE-2023-48795	5.9	https://vulners.com/cve/CVE-2023-48795
|     	CVE-2019-6111	5.9	https://vulners.com/cve/CVE-2019-6111
|     	CVE-2018-15473	5.9	https://vulners.com/cve/CVE-2018-15473
|     	CVE-2016-6210	5.9	https://vulners.com/cve/CVE-2016-6210
|     	A02ABE85-E4E3-5852-A59D-DF288CB8160A	5.9	https://vulners.com/githubexploit/A02ABE85-E4E3-5852-A59D-DF288CB8160A	*EXPLOIT*
|     	721F040C-37BC-59E1-9433-01A2EAC2E755	5.9	https://vulners.com/githubexploit/721F040C-37BC-59E1-9433-01A2EAC2E755	*EXPLOIT*
|     	SSV:61911	5.8	https://vulners.com/seebug/SSV:61911	*EXPLOIT*
|     	EXPLOITPACK:98FE96309F9524B8C84C508837551A19	5.8	https://vulners.com/exploitpack/EXPLOITPACK:98FE96309F9524B8C84C508837551A19	*EXPLOIT*
|     	EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97	5.8	https://vulners.com/exploitpack/EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97	*EXPLOIT*
|     	CVE-2014-2653	5.8	https://vulners.com/cve/CVE-2014-2653
|     	CVE-2014-2532	5.8	https://vulners.com/cve/CVE-2014-2532
|     	SSV:91041	5.5	https://vulners.com/seebug/SSV:91041	*EXPLOIT*
|     	PACKETSTORM:140019	5.5	https://vulners.com/packetstorm/PACKETSTORM:140019	*EXPLOIT*
|     	PACKETSTORM:136251	5.5	https://vulners.com/packetstorm/PACKETSTORM:136251	*EXPLOIT*
|     	PACKETSTORM:136234	5.5	https://vulners.com/packetstorm/PACKETSTORM:136234	*EXPLOIT*
|     	EXPLOITPACK:F92411A645D85F05BDBD274FD222226F	5.5	https://vulners.com/exploitpack/EXPLOITPACK:F92411A645D85F05BDBD274FD222226F	*EXPLOIT*
|     	EXPLOITPACK:9F2E746846C3C623A27A441281EAD138	5.5	https://vulners.com/exploitpack/EXPLOITPACK:9F2E746846C3C623A27A441281EAD138	*EXPLOIT*
|     	EXPLOITPACK:1902C998CBF9154396911926B4C3B330	5.5	https://vulners.com/exploitpack/EXPLOITPACK:1902C998CBF9154396911926B4C3B330	*EXPLOIT*
|     	CVE-2016-10011	5.5	https://vulners.com/cve/CVE-2016-10011
|     	1337DAY-ID-25388	5.5	https://vulners.com/zdt/1337DAY-ID-25388	*EXPLOIT*
|     	CVE-2026-35414	5.4	https://vulners.com/cve/CVE-2026-35414
|     	FD18B68B-C0A6-562E-A8C8-781B225F15B0	5.3	https://vulners.com/githubexploit/FD18B68B-C0A6-562E-A8C8-781B225F15B0	*EXPLOIT*
|     	E9EC0911-E2E1-52A7-B2F4-D0065C6A3057	5.3	https://vulners.com/githubexploit/E9EC0911-E2E1-52A7-B2F4-D0065C6A3057	*EXPLOIT*
|     	CVE-2018-20685	5.3	https://vulners.com/cve/CVE-2018-20685
|     	CVE-2017-15906	5.3	https://vulners.com/cve/CVE-2017-15906
|     	CVE-2016-20012	5.3	https://vulners.com/cve/CVE-2016-20012
|     	CNVD-2018-20962	5.3	https://vulners.com/cnvd/CNVD-2018-20962
|     	CNVD-2018-20960	5.3	https://vulners.com/cnvd/CNVD-2018-20960
|     	A9E6F50E-E7FC-51D0-9C93-A43461469FA2	5.3	https://vulners.com/githubexploit/A9E6F50E-E7FC-51D0-9C93-A43461469FA2	*EXPLOIT*
|     	A801235B-9835-5BA8-B8FE-23B7FFCABD66	5.3	https://vulners.com/githubexploit/A801235B-9835-5BA8-B8FE-23B7FFCABD66	*EXPLOIT*
|     	8DD1D813-FD5A-5B26-867A-CE7CAC9FEEDF	5.3	https://vulners.com/gitee/8DD1D813-FD5A-5B26-867A-CE7CAC9FEEDF	*EXPLOIT*
|     	4F2FBB06-E601-5EAD-9679-3395D24057DD	5.3	https://vulners.com/githubexploit/4F2FBB06-E601-5EAD-9679-3395D24057DD	*EXPLOIT*
|     	486BB6BC-9C26-597F-B865-D0E904FDA984	5.3	https://vulners.com/githubexploit/486BB6BC-9C26-597F-B865-D0E904FDA984	*EXPLOIT*
|     	2385176A-820F-5469-AB09-C340264F2B2F	5.3	https://vulners.com/gitee/2385176A-820F-5469-AB09-C340264F2B2F	*EXPLOIT*
|     	1337DAY-ID-31730	5.3	https://vulners.com/zdt/1337DAY-ID-31730	*EXPLOIT*
|     	SSV:60656	5.0	https://vulners.com/seebug/SSV:60656	*EXPLOIT*
|     	SSH_ENUM	5.0	https://vulners.com/canvas/SSH_ENUM	*EXPLOIT*
|     	PACKETSTORM:150621	5.0	https://vulners.com/packetstorm/PACKETSTORM:150621	*EXPLOIT*
|     	EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0	5.0	https://vulners.com/exploitpack/EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0	*EXPLOIT*
|     	EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283	5.0	https://vulners.com/exploitpack/EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283	*EXPLOIT*
|     	CVE-2010-5107	5.0	https://vulners.com/cve/CVE-2010-5107
|     	EXPLOITPACK:802AF3229492E147A5F09C7F2B27C6DF	4.3	https://vulners.com/exploitpack/EXPLOITPACK:802AF3229492E147A5F09C7F2B27C6DF	*EXPLOIT*
|     	EXPLOITPACK:5652DDAA7FE452E19AC0DC1CD97BA3EF	4.3	https://vulners.com/exploitpack/EXPLOITPACK:5652DDAA7FE452E19AC0DC1CD97BA3EF	*EXPLOIT*
|     	CVE-2015-5352	4.3	https://vulners.com/cve/CVE-2015-5352
|     	1337DAY-ID-25440	4.3	https://vulners.com/zdt/1337DAY-ID-25440	*EXPLOIT*
|     	1337DAY-ID-25438	4.3	https://vulners.com/zdt/1337DAY-ID-25438	*EXPLOIT*
|     	CVE-2010-4755	4.0	https://vulners.com/cve/CVE-2010-4755
|     	CVE-2021-36368	3.7	https://vulners.com/cve/CVE-2021-36368
|     	CVE-2026-35386	3.6	https://vulners.com/cve/CVE-2026-35386
|     	CVE-2025-61985	3.6	https://vulners.com/cve/CVE-2025-61985
|     	CVE-2025-61984	3.6	https://vulners.com/cve/CVE-2025-61984
|     	B7EACB4F-A5CF-5C5A-809F-E03CCE2AB150	3.6	https://vulners.com/githubexploit/B7EACB4F-A5CF-5C5A-809F-E03CCE2AB150	*EXPLOIT*
|     	4C6E2182-0E99-5626-83F6-1646DD648C57	3.6	https://vulners.com/githubexploit/4C6E2182-0E99-5626-83F6-1646DD648C57	*EXPLOIT*
|     	CVE-2012-0814	3.5	https://vulners.com/cve/CVE-2012-0814
|     	CVE-2011-5000	3.5	https://vulners.com/cve/CVE-2011-5000
|     	CVE-2026-35387	3.1	https://vulners.com/cve/CVE-2026-35387
|     	CVE-2026-35388	2.5	https://vulners.com/cve/CVE-2026-35388
|     	SSV:92581	2.1	https://vulners.com/seebug/SSV:92581	*EXPLOIT*
|     	CVE-2011-4327	2.1	https://vulners.com/cve/CVE-2011-4327
|     	CVE-2015-6563	1.9	https://vulners.com/cve/CVE-2015-6563
|     	CVE-2008-3259	1.2	https://vulners.com/cve/CVE-2008-3259
|     	PACKETSTORM:151227	0.0	https://vulners.com/packetstorm/PACKETSTORM:151227	*EXPLOIT*
|     	PACKETSTORM:140261	0.0	https://vulners.com/packetstorm/PACKETSTORM:140261	*EXPLOIT*
|     	PACKETSTORM:138006	0.0	https://vulners.com/packetstorm/PACKETSTORM:138006	*EXPLOIT*
|     	PACKETSTORM:137942	0.0	https://vulners.com/packetstorm/PACKETSTORM:137942	*EXPLOIT*
|     	1337DAY-ID-30937	0.0	https://vulners.com/zdt/1337DAY-ID-30937	*EXPLOIT*
|     	1337DAY-ID-26468	0.0	https://vulners.com/zdt/1337DAY-ID-26468	*EXPLOIT*
|     	1337DAY-ID-25391	0.0	https://vulners.com/zdt/1337DAY-ID-25391	*EXPLOIT*
|     	1337DAY-ID-20301	0.0	https://vulners.com/zdt/1337DAY-ID-20301	*EXPLOIT*
|_    	1337DAY-ID-14373	0.0	https://vulners.com/zdt/1337DAY-ID-14373	*EXPLOIT*
23/tcp    open  telnet      Linux telnetd
25/tcp    open  smtp        Postfix smtpd
| ssl-dh-params: 
|   VULNERABLE:
|   Anonymous Diffie-Hellman Key Exchange MitM Vulnerability
|     State: VULNERABLE
|       Transport Layer Security (TLS) services that use anonymous
|       Diffie-Hellman key exchange only provide protection against passive
|       eavesdropping, and are vulnerable to active man-in-the-middle attacks
|       which could completely compromise the confidentiality and integrity
|       of any data exchanged over the resulting session.
|     Check results:
|       ANONYMOUS DH GROUP 1
|             Cipher Suite: TLS_DH_anon_WITH_AES_128_CBC_SHA
|             Modulus Type: Safe prime
|             Modulus Source: postfix builtin
|             Modulus Length: 1024
|             Generator Length: 8
|             Public Key Length: 1024
|     References:
|       https://www.ietf.org/rfc/rfc2246.txt
|   
|   Transport Layer Security (TLS) Protocol DHE_EXPORT Ciphers Downgrade MitM (Logjam)
|     State: VULNERABLE
|     IDs:  CVE:CVE-2015-4000  BID:74733
|       The Transport Layer Security (TLS) protocol contains a flaw that is
|       triggered when handling Diffie-Hellman key exchanges defined with
|       the DHE_EXPORT cipher. This may allow a man-in-the-middle attacker
|       to downgrade the security of a TLS session to 512-bit export-grade
|       cryptography, which is significantly weaker, allowing the attacker
|       to more easily break the encryption and monitor or tamper with
|       the encrypted stream.
|     Disclosure date: 2015-5-19
|     Check results:
|       EXPORT-GRADE DH GROUP 1
|             Cipher Suite: TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
|             Modulus Type: Safe prime
|             Modulus Source: Unknown/Custom-generated
|             Modulus Length: 512
|             Generator Length: 8
|             Public Key Length: 512
|     References:
|       https://weakdh.org
|       https://www.securityfocus.com/bid/74733
|       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
|   
|   Diffie-Hellman Key Exchange Insufficient Group Strength
|     State: VULNERABLE
|       Transport Layer Security (TLS) services that use Diffie-Hellman groups
|       of insufficient strength, especially those using one of a few commonly
|       shared groups, may be susceptible to passive eavesdropping attacks.
|     Check results:
|       WEAK DH GROUP 1
|             Cipher Suite: TLS_DHE_RSA_WITH_DES_CBC_SHA
|             Modulus Type: Safe prime
|             Modulus Source: postfix builtin
|             Modulus Length: 1024
|             Generator Length: 8
|             Public Key Length: 1024
|     References:
|_      https://weakdh.org
|_sslv2-drown: ERROR: Script execution failed (use -d to debug)
| smtp-vuln-cve2010-4344: 
|_  The SMTP server is not Exim: NOT VULNERABLE
| ssl-poodle: 
|   VULNERABLE:
|   SSL POODLE information leak
|     State: VULNERABLE
|     IDs:  CVE:CVE-2014-3566  BID:70574
|           The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other
|           products, uses nondeterministic CBC padding, which makes it easier
|           for man-in-the-middle attackers to obtain cleartext data via a
|           padding-oracle attack, aka the "POODLE" issue.
|     Disclosure date: 2014-10-14
|     Check results:
|       TLS_RSA_WITH_AES_128_CBC_SHA
|     References:
|       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
|       https://www.openssl.org/~bodo/ssl-poodle.pdf
|       https://www.imperialviolet.org/2014/10/14/poodle.html
|_      https://www.securityfocus.com/bid/70574
53/tcp    open  domain      ISC BIND 9.4.2
| vulners: 
|   cpe:/a:isc:bind:9.4.2: 
|     	SSV:2853	10.0	https://vulners.com/seebug/SSV:2853	*EXPLOIT*
|     	CVE-2008-0122	10.0	https://vulners.com/cve/CVE-2008-0122
|     	CVE-2021-25216	9.8	https://vulners.com/cve/CVE-2021-25216
|     	CVE-2020-8616	8.6	https://vulners.com/cve/CVE-2020-8616
|     	CVE-2016-1286	8.6	https://vulners.com/cve/CVE-2016-1286
|     	CNVD-2020-34454	8.6	https://vulners.com/cnvd/CNVD-2020-34454
|     	SSV:60184	8.5	https://vulners.com/seebug/SSV:60184	*EXPLOIT*
|     	CVE-2012-1667	8.5	https://vulners.com/cve/CVE-2012-1667
|     	SSV:60292	7.8	https://vulners.com/seebug/SSV:60292	*EXPLOIT*
|     	PACKETSTORM:180552	7.8	https://vulners.com/packetstorm/PACKETSTORM:180552	*EXPLOIT*
|     	PACKETSTORM:180551	7.8	https://vulners.com/packetstorm/PACKETSTORM:180551	*EXPLOIT*
|     	PACKETSTORM:138960	7.8	https://vulners.com/packetstorm/PACKETSTORM:138960	*EXPLOIT*
|     	PACKETSTORM:132926	7.8	https://vulners.com/packetstorm/PACKETSTORM:132926	*EXPLOIT*
|     	MSF:AUXILIARY-DOS-DNS-BIND_TKEY-	7.8	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TKEY-	*EXPLOIT*
|     	EXPLOITPACK:BE4F638B632EA0754155A27ECC4B3D3F	7.8	https://vulners.com/exploitpack/EXPLOITPACK:BE4F638B632EA0754155A27ECC4B3D3F	*EXPLOIT*
|     	EXPLOITPACK:46DEBFAC850194C04C54F93E0DFF5F4F	7.8	https://vulners.com/exploitpack/EXPLOITPACK:46DEBFAC850194C04C54F93E0DFF5F4F	*EXPLOIT*
|     	EXPLOITPACK:09762DB0197BBAAAB6FC79F24F0D2A74	7.8	https://vulners.com/exploitpack/EXPLOITPACK:09762DB0197BBAAAB6FC79F24F0D2A74	*EXPLOIT*
|     	EDB-ID:42121	7.8	https://vulners.com/exploitdb/EDB-ID:42121	*EXPLOIT*
|     	EDB-ID:40453	7.8	https://vulners.com/exploitdb/EDB-ID:40453	*EXPLOIT*
|     	EDB-ID:37723	7.8	https://vulners.com/exploitdb/EDB-ID:37723	*EXPLOIT*
|     	EDB-ID:37721	7.8	https://vulners.com/exploitdb/EDB-ID:37721	*EXPLOIT*
|     	E183E822-9005-5F4E-B024-D9C4761AE308	7.8	https://vulners.com/githubexploit/E183E822-9005-5F4E-B024-D9C4761AE308	*EXPLOIT*
|     	CVE-2017-3141	7.8	https://vulners.com/cve/CVE-2017-3141
|     	CVE-2016-2776	7.8	https://vulners.com/cve/CVE-2016-2776
|     	CVE-2015-5722	7.8	https://vulners.com/cve/CVE-2015-5722
|     	CVE-2015-5477	7.8	https://vulners.com/cve/CVE-2015-5477
|     	CVE-2014-8500	7.8	https://vulners.com/cve/CVE-2014-8500
|     	CVE-2012-5166	7.8	https://vulners.com/cve/CVE-2012-5166
|     	CVE-2012-4244	7.8	https://vulners.com/cve/CVE-2012-4244
|     	CVE-2012-3817	7.8	https://vulners.com/cve/CVE-2012-3817
|     	CVE-2008-4163	7.8	https://vulners.com/cve/CVE-2008-4163
|     	7459D6A0-D6CA-5CD2-A484-5DD984C0E5E4	7.8	https://vulners.com/githubexploit/7459D6A0-D6CA-5CD2-A484-5DD984C0E5E4	*EXPLOIT*
|     	673990FE-C5D5-5501-A342-D1AEC9F2A871	7.8	https://vulners.com/githubexploit/673990FE-C5D5-5501-A342-D1AEC9F2A871	*EXPLOIT*
|     	1337DAY-ID-25325	7.8	https://vulners.com/zdt/1337DAY-ID-25325	*EXPLOIT*
|     	1337DAY-ID-23970	7.8	https://vulners.com/zdt/1337DAY-ID-23970	*EXPLOIT*
|     	1337DAY-ID-23960	7.8	https://vulners.com/zdt/1337DAY-ID-23960	*EXPLOIT*
|     	1337DAY-ID-23948	7.8	https://vulners.com/zdt/1337DAY-ID-23948	*EXPLOIT*
|     	CVE-2010-0382	7.6	https://vulners.com/cve/CVE-2010-0382
|     	PACKETSTORM:180550	7.5	https://vulners.com/packetstorm/PACKETSTORM:180550	*EXPLOIT*
|     	MSF:AUXILIARY-DOS-DNS-BIND_TSIG_BADTIME-	7.5	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TSIG_BADTIME-	*EXPLOIT*
|     	MSF:AUXILIARY-DOS-DNS-BIND_TSIG-	7.5	https://vulners.com/metasploit/MSF:AUXILIARY-DOS-DNS-BIND_TSIG-	*EXPLOIT*
|     	FBC03933-7A65-52F3-83F4-4B2253A490B6	7.5	https://vulners.com/githubexploit/FBC03933-7A65-52F3-83F4-4B2253A490B6	*EXPLOIT*
|     	CVE-2023-50868	7.5	https://vulners.com/cve/CVE-2023-50868
|     	CVE-2023-50387	7.5	https://vulners.com/cve/CVE-2023-50387
|     	CVE-2023-4408	7.5	https://vulners.com/cve/CVE-2023-4408
|     	CVE-2023-3341	7.5	https://vulners.com/cve/CVE-2023-3341
|     	CVE-2021-25215	7.5	https://vulners.com/cve/CVE-2021-25215
|     	CVE-2020-8617	7.5	https://vulners.com/cve/CVE-2020-8617
|     	CVE-2017-3145	7.5	https://vulners.com/cve/CVE-2017-3145
|     	CVE-2017-3143	7.5	https://vulners.com/cve/CVE-2017-3143
|     	CVE-2016-9444	7.5	https://vulners.com/cve/CVE-2016-9444
|     	CVE-2016-9131	7.5	https://vulners.com/cve/CVE-2016-9131
|     	CVE-2016-8864	7.5	https://vulners.com/cve/CVE-2016-8864
|     	CVE-2016-2848	7.5	https://vulners.com/cve/CVE-2016-2848
|     	CVE-2009-0265	7.5	https://vulners.com/cve/CVE-2009-0265
|     	CNVD-2017-12537	7.5	https://vulners.com/cnvd/CNVD-2017-12537
|     	9ED8A03D-FE34-5F77-8C66-C03C9615AF07	7.5	https://vulners.com/gitee/9ED8A03D-FE34-5F77-8C66-C03C9615AF07	*EXPLOIT*
|     	1337DAY-ID-34485	7.5	https://vulners.com/zdt/1337DAY-ID-34485	*EXPLOIT*
|     	EXPLOITPACK:D6DDF5E24DE171DAAD71FD95FC1B67F2	7.2	https://vulners.com/exploitpack/EXPLOITPACK:D6DDF5E24DE171DAAD71FD95FC1B67F2	*EXPLOIT*
|     	CVE-2015-8461	7.1	https://vulners.com/cve/CVE-2015-8461
|     	CVE-2015-5986	7.1	https://vulners.com/cve/CVE-2015-5986
|     	CVE-2015-8705	7.0	https://vulners.com/cve/CVE-2015-8705
|     	CVE-2016-1285	6.8	https://vulners.com/cve/CVE-2016-1285
|     	CVE-2015-8704	6.8	https://vulners.com/cve/CVE-2015-8704
|     	CVE-2009-0025	6.8	https://vulners.com/cve/CVE-2009-0025
|     	CVE-2020-8622	6.5	https://vulners.com/cve/CVE-2020-8622
|     	CVE-2018-5741	6.5	https://vulners.com/cve/CVE-2018-5741
|     	CVE-2016-6170	6.5	https://vulners.com/cve/CVE-2016-6170
|     	CVE-2010-3614	6.4	https://vulners.com/cve/CVE-2010-3614
|     	CVE-2016-2775	5.9	https://vulners.com/cve/CVE-2016-2775
|     	SSV:4636	5.8	https://vulners.com/seebug/SSV:4636	*EXPLOIT*
|     	CVE-2022-2795	5.3	https://vulners.com/cve/CVE-2022-2795
|     	CVE-2021-25219	5.3	https://vulners.com/cve/CVE-2021-25219
|     	CVE-2017-3142	5.3	https://vulners.com/cve/CVE-2017-3142
|     	CNVD-2024-16843	5.3	https://vulners.com/cnvd/CNVD-2024-16843
|     	SSV:30099	5.0	https://vulners.com/seebug/SSV:30099	*EXPLOIT*
|     	SSV:20595	5.0	https://vulners.com/seebug/SSV:20595	*EXPLOIT*
|     	PACKETSTORM:157836	5.0	https://vulners.com/packetstorm/PACKETSTORM:157836	*EXPLOIT*
|     	CVE-2015-8000	5.0	https://vulners.com/cve/CVE-2015-8000
|     	CVE-2012-1033	5.0	https://vulners.com/cve/CVE-2012-1033
|     	CVE-2011-4313	5.0	https://vulners.com/cve/CVE-2011-4313
|     	CVE-2011-1910	5.0	https://vulners.com/cve/CVE-2011-1910
|     	SSV:11919	4.3	https://vulners.com/seebug/SSV:11919	*EXPLOIT*
|     	CVE-2010-3762	4.3	https://vulners.com/cve/CVE-2010-3762
|     	CVE-2010-0097	4.3	https://vulners.com/cve/CVE-2010-0097
|     	CVE-2009-0696	4.3	https://vulners.com/cve/CVE-2009-0696
|     	CVE-2010-0290	4.0	https://vulners.com/cve/CVE-2010-0290
|     	SSV:14986	2.6	https://vulners.com/seebug/SSV:14986	*EXPLOIT*
|     	CVE-2009-4022	2.6	https://vulners.com/cve/CVE-2009-4022
|     	PACKETSTORM:142800	0.0	https://vulners.com/packetstorm/PACKETSTORM:142800	*EXPLOIT*
|_    	1337DAY-ID-27896	0.0	https://vulners.com/zdt/1337DAY-ID-27896	*EXPLOIT*
80/tcp    open  http        Apache httpd 2.2.8 ((Ubuntu) DAV/2)
| http-csrf: 
| Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=192.168.100.30
|   Found the following possible CSRF vulnerabilities: 
|     
|     Path: http://192.168.100.30:80/dvwa/
|     Form id: 
|     Form action: login.php
|     
|     Path: http://192.168.100.30:80/dvwa/login.php
|     Form id: 
|     Form action: login.php
|     
|     Path: http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php
|     Form id: id-bad-cred-tr
|     Form action: index.php?page=set-background-color.php
|     
|     Path: http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php
|     Form id: id-bad-cred-tr
|     Form action: index.php?page=text-file-viewer.php
|     
|     Path: http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php
|     Form id: id-bad-blog-entry-tr
|     Form action: index.php?page=view-someones-blog.php
|     
|     Path: http://192.168.100.30:80/mutillidae/index.php?page=register.php
|     Form id: id-bad-cred-tr
|_    Form action: index.php?page=register.php
| http-enum: 
|   /tikiwiki/: Tikiwiki
|   /test/: Test page
|   /phpinfo.php: Possible information file
|   /phpMyAdmin/: phpMyAdmin
|   /doc/: Potentially interesting directory w/ listing on 'apache/2.2.8 (ubuntu) dav/2'
|   /icons/: Potentially interesting folder w/ directory listing
|_  /index/: Potentially interesting folder
|_http-dombased-xss: Couldn't find any DOM based XSS.
| http-slowloris-check: 
|   VULNERABLE:
|   Slowloris DOS attack
|     State: LIKELY VULNERABLE
|     IDs:  CVE:CVE-2007-6750
|       Slowloris tries to keep many connections to the target web server open and hold
|       them open as long as possible.  It accomplishes this by opening connections to
|       the target web server and sending a partial request. By doing so, it starves
|       the http server's resources causing Denial Of Service.
|       
|     Disclosure date: 2009-09-17
|     References:
|       http://ha.ckers.org/slowloris/
|_      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750
|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
|_http-vuln-cve2017-1001000: ERROR: Script execution failed (use -d to debug)
|_http-trace: TRACE is enabled
|_http-server-header: Apache/2.2.8 (Ubuntu) DAV/2
| http-sql-injection: 
|   Possible sqli for queries:
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php&do=toggle-security%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=notes.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=php-errors.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=usage-instructions.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php&do=toggle-hints%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/dav/?C=S%3BO%3DA%27%20OR%20sqlspider
|     http://192.168.100.30:80/dav/?C=D%3BO%3DA%27%20OR%20sqlspider
|     http://192.168.100.30:80/dav/?C=M%3BO%3DA%27%20OR%20sqlspider
|     http://192.168.100.30:80/dav/?C=N%3BO%3DD%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php&do=toggle-hints%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php&do=toggle-security%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php&do=toggle-security%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php&do=toggle-hints%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php&do=toggle-security%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=notes.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=php-errors.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=usage-instructions.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php&do=toggle-hints%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=set-background-color.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=capture-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=pen-test-tool-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=register.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=arbitrary-file-inclusion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=browser-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=dns-lookup.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=framing.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=show-log.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=secret-administrative-pages.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=view-someones-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fvulnerabilities.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=installation.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=documentation%2Fhow-to-access-Mutillidae-over-Virtual-Box-network.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?username=anonymous&page=password-generator.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=login.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=add-to-your-blog.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=source-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=captured-data.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=change-log.htm%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=site-footer-xss-discussion.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=home.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-info.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=user-poll.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=credits.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=text-file-viewer.php%27%20OR%20sqlspider
|     http://192.168.100.30:80/mutillidae/index.php?page=html5-storage.php%27%20OR%20sqlspider
|_    http://192.168.100.30:80/mutillidae/index.php?page=show-log.php%27%20OR%20sqlspider
111/tcp   open  rpcbind     2 (RPC #100000)
| rpcinfo: 
|   program version    port/proto  service
|   100000  2            111/tcp   rpcbind
|   100000  2            111/udp   rpcbind
|   100003  2,3,4       2049/tcp   nfs
|   100003  2,3,4       2049/udp   nfs
|   100005  1,2,3      49668/tcp   mountd
|   100005  1,2,3      59780/udp   mountd
|   100021  1,3,4      34620/tcp   nlockmgr
|   100021  1,3,4      37488/udp   nlockmgr
|   100024  1          39276/udp   status
|_  100024  1          43207/tcp   status
139/tcp   open  netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP)
445/tcp   open  netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP)
512/tcp   open  exec        netkit-rsh rexecd
513/tcp   open  login       OpenBSD or Solaris rlogind
514/tcp   open  tcpwrapped
1099/tcp  open  java-rmi    GNU Classpath grmiregistry
| rmi-vuln-classloader: 
|   VULNERABLE:
|   RMI registry default configuration remote code execution vulnerability
|     State: VULNERABLE
|       Default configuration of RMI registry allows loading classes from remote URLs which can lead to remote code execution.
|       
|     References:
|_      https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/java_rmi_server.rb
1524/tcp  open  bindshell   Metasploitable root shell
2049/tcp  open  nfs         2-4 (RPC #100003)
2121/tcp  open  ftp         ProFTPD 1.3.1
| vulners: 
|   cpe:/a:proftpd:proftpd:1.3.1: 
|     	SAINT:FD1752E124A72FD3A26EEB9B315E8382	10.0	https://vulners.com/saint/SAINT:FD1752E124A72FD3A26EEB9B315E8382	*EXPLOIT*
|     	SAINT:950EB68D408A40399926A4CCAD3CC62E	10.0	https://vulners.com/saint/SAINT:950EB68D408A40399926A4CCAD3CC62E	*EXPLOIT*
|     	SAINT:63FB77B9136D48259E4F0D4CDA35E957	10.0	https://vulners.com/saint/SAINT:63FB77B9136D48259E4F0D4CDA35E957	*EXPLOIT*
|     	SAINT:1B08F4664C428B180EEC9617B41D9A2C	10.0	https://vulners.com/saint/SAINT:1B08F4664C428B180EEC9617B41D9A2C	*EXPLOIT*
|     	PROFTPD_MOD_COPY	10.0	https://vulners.com/canvas/PROFTPD_MOD_COPY	*EXPLOIT*
|     	PACKETSTORM:162777	10.0	https://vulners.com/packetstorm/PACKETSTORM:162777	*EXPLOIT*
|     	PACKETSTORM:132218	10.0	https://vulners.com/packetstorm/PACKETSTORM:132218	*EXPLOIT*
|     	PACKETSTORM:131567	10.0	https://vulners.com/packetstorm/PACKETSTORM:131567	*EXPLOIT*
|     	PACKETSTORM:131555	10.0	https://vulners.com/packetstorm/PACKETSTORM:131555	*EXPLOIT*
|     	PACKETSTORM:131505	10.0	https://vulners.com/packetstorm/PACKETSTORM:131505	*EXPLOIT*
|     	MSF:EXPLOIT-UNIX-FTP-PROFTPD_MODCOPY_EXEC-	10.0	https://vulners.com/metasploit/MSF:EXPLOIT-UNIX-FTP-PROFTPD_MODCOPY_EXEC-	*EXPLOIT*
|     	EDB-ID:49908	10.0	https://vulners.com/exploitdb/EDB-ID:49908	*EXPLOIT*
|     	EDB-ID:37262	10.0	https://vulners.com/exploitdb/EDB-ID:37262	*EXPLOIT*
|     	BC7F9971-F233-5C1A-AA5E-DAA7587C7DED	10.0	https://vulners.com/githubexploit/BC7F9971-F233-5C1A-AA5E-DAA7587C7DED	*EXPLOIT*
|     	6BF3AE83-7AD0-5378-B7C9-C05B81007195	10.0	https://vulners.com/gitee/6BF3AE83-7AD0-5378-B7C9-C05B81007195	*EXPLOIT*
|     	1EEE27D9-DFF4-517B-9EAB-CCDECA6EF254	10.0	https://vulners.com/githubexploit/1EEE27D9-DFF4-517B-9EAB-CCDECA6EF254	*EXPLOIT*
|     	1337DAY-ID-36298	10.0	https://vulners.com/zdt/1337DAY-ID-36298	*EXPLOIT*
|     	1337DAY-ID-23720	10.0	https://vulners.com/zdt/1337DAY-ID-23720	*EXPLOIT*
|     	1337DAY-ID-23544	10.0	https://vulners.com/zdt/1337DAY-ID-23544	*EXPLOIT*
|     	0D531276-4E46-5C77-95C9-278B5AD82984	10.0	https://vulners.com/githubexploit/0D531276-4E46-5C77-95C9-278B5AD82984	*EXPLOIT*
|     	CVE-2019-12815	9.8	https://vulners.com/cve/CVE-2019-12815
|     	SSV:26016	9.0	https://vulners.com/seebug/SSV:26016	*EXPLOIT*
|     	SSV:24282	9.0	https://vulners.com/seebug/SSV:24282	*EXPLOIT*
|     	CVE-2011-4130	9.0	https://vulners.com/cve/CVE-2011-4130
|     	SSV:96525	7.5	https://vulners.com/seebug/SSV:96525	*EXPLOIT*
|     	CVE-2024-48651	7.5	https://vulners.com/cve/CVE-2024-48651
|     	CVE-2023-51713	7.5	https://vulners.com/cve/CVE-2023-51713
|     	CVE-2021-46854	7.5	https://vulners.com/cve/CVE-2021-46854
|     	CVE-2020-9272	7.5	https://vulners.com/cve/CVE-2020-9272
|     	CVE-2019-19272	7.5	https://vulners.com/cve/CVE-2019-19272
|     	CVE-2019-19271	7.5	https://vulners.com/cve/CVE-2019-19271
|     	CVE-2019-19270	7.5	https://vulners.com/cve/CVE-2019-19270
|     	CVE-2019-18217	7.5	https://vulners.com/cve/CVE-2019-18217
|     	CVE-2016-3125	7.5	https://vulners.com/cve/CVE-2016-3125
|     	CNVD-2020-14677	7.5	https://vulners.com/cnvd/CNVD-2020-14677
|     	CNVD-2019-44557	7.5	https://vulners.com/cnvd/CNVD-2019-44557
|     	SSV:20226	7.1	https://vulners.com/seebug/SSV:20226	*EXPLOIT*
|     	PACKETSTORM:95517	7.1	https://vulners.com/packetstorm/PACKETSTORM:95517	*EXPLOIT*
|     	CVE-2010-3867	7.1	https://vulners.com/cve/CVE-2010-3867
|     	SSV:12447	6.8	https://vulners.com/seebug/SSV:12447	*EXPLOIT*
|     	SSV:11950	6.8	https://vulners.com/seebug/SSV:11950	*EXPLOIT*
|     	EDB-ID:33128	6.8	https://vulners.com/exploitdb/EDB-ID:33128	*EXPLOIT*
|     	CVE-2010-4652	6.8	https://vulners.com/cve/CVE-2010-4652
|     	CVE-2009-0543	6.8	https://vulners.com/cve/CVE-2009-0543
|     	FD2E0EBA-ED84-5304-8862-84BCDEB2F288	5.9	https://vulners.com/githubexploit/FD2E0EBA-ED84-5304-8862-84BCDEB2F288	*EXPLOIT*
|     	CVE-2023-48795	5.9	https://vulners.com/cve/CVE-2023-48795
|     	721F040C-37BC-59E1-9433-01A2EAC2E755	5.9	https://vulners.com/githubexploit/721F040C-37BC-59E1-9433-01A2EAC2E755	*EXPLOIT*
|     	SSV:12523	5.8	https://vulners.com/seebug/SSV:12523	*EXPLOIT*
|     	CVE-2009-3639	5.8	https://vulners.com/cve/CVE-2009-3639
|     	CVE-2017-7418	5.5	https://vulners.com/cve/CVE-2017-7418
|     	CVE-2011-1137	5.0	https://vulners.com/cve/CVE-2011-1137
|     	CVE-2019-19269	4.9	https://vulners.com/cve/CVE-2019-19269
|     	CVE-2008-7265	4.0	https://vulners.com/cve/CVE-2008-7265
|_    	CVE-2012-6095	1.2	https://vulners.com/cve/CVE-2012-6095
3306/tcp  open  mysql       MySQL 5.0.51a-3ubuntu5
| vulners: 
|   cpe:/a:mysql:mysql:5.0.51a-3ubuntu5: 
|     	SSV:19118	8.5	https://vulners.com/seebug/SSV:19118	*EXPLOIT*
|     	CVE-2017-15945	7.8	https://vulners.com/cve/CVE-2017-15945
|     	SSV:15006	6.8	https://vulners.com/seebug/SSV:15006	*EXPLOIT*
|     	CVE-2009-4028	6.8	https://vulners.com/cve/CVE-2009-4028
|     	SSV:15004	6.0	https://vulners.com/seebug/SSV:15004	*EXPLOIT*
|     	CVE-2010-1621	5.0	https://vulners.com/cve/CVE-2010-1621
|     	CVE-2015-2575	4.9	https://vulners.com/cve/CVE-2015-2575
|     	SSV:3280	4.6	https://vulners.com/seebug/SSV:3280	*EXPLOIT*
|     	CVE-2008-2079	4.6	https://vulners.com/cve/CVE-2008-2079
|     	CVE-2010-3682	4.0	https://vulners.com/cve/CVE-2010-3682
|     	CVE-2010-3677	4.0	https://vulners.com/cve/CVE-2010-3677
|     	CVE-2009-0819	4.0	https://vulners.com/cve/CVE-2009-0819
|     	CVE-2007-5925	4.0	https://vulners.com/cve/CVE-2007-5925
|_    	CVE-2010-1626	3.6	https://vulners.com/cve/CVE-2010-1626
|_ssl-ccs-injection: No reply from server (TIMEOUT)
3632/tcp  open  distccd     distccd v1 ((GNU) 4.2.4 (Ubuntu 4.2.4-1ubuntu4))
| distcc-cve2004-2687: 
|   VULNERABLE:
|   distcc Daemon Command Execution
|     State: VULNERABLE (Exploitable)
|     IDs:  CVE:CVE-2004-2687
|     Risk factor: High  CVSSv2: 9.3 (HIGH) (AV:N/AC:M/Au:N/C:C/I:C/A:C)
|       Allows executing of arbitrary commands on systems running distccd 3.1 and
|       earlier. The vulnerability is the consequence of weak service configuration.
|       
|     Disclosure date: 2002-02-01
|     Extra information:
|       
|     uid=1(daemon) gid=1(daemon) groups=1(daemon)
|   
|     References:
|       https://distcc.github.io/security.html
|       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2687
|_      https://nvd.nist.gov/vuln/detail/CVE-2004-2687
5432/tcp  open  postgresql  PostgreSQL DB 8.3.0 - 8.3.7
| ssl-dh-params: 
|   VULNERABLE:
|   Diffie-Hellman Key Exchange Insufficient Group Strength
|     State: VULNERABLE
|       Transport Layer Security (TLS) services that use Diffie-Hellman groups
|       of insufficient strength, especially those using one of a few commonly
|       shared groups, may be susceptible to passive eavesdropping attacks.
|     Check results:
|       WEAK DH GROUP 1
|             Cipher Suite: TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA
|             Modulus Type: Safe prime
|             Modulus Source: Unknown/Custom-generated
|             Modulus Length: 1024
|             Generator Length: 8
|             Public Key Length: 1024
|     References:
|_      https://weakdh.org
| vulners: 
|   cpe:/a:postgresql:postgresql:8.3: 
|     	SSV:60718	10.0	https://vulners.com/seebug/SSV:60718	*EXPLOIT*
|     	CVE-2013-1903	10.0	https://vulners.com/cve/CVE-2013-1903
|     	CVE-2013-1902	10.0	https://vulners.com/cve/CVE-2013-1902
|     	PACKETSTORM:216218	9.9	https://vulners.com/packetstorm/PACKETSTORM:216218	*EXPLOIT*
|     	POSTGRESQL:CVE-2019-10211	9.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10211
|     	POSTGRESQL:CVE-2018-16850	9.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-16850
|     	POSTGRESQL:CVE-2017-7546	9.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7546
|     	POSTGRESQL:CVE-2015-3166	9.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-3166
|     	POSTGRESQL:CVE-2015-0244	9.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-0244
|     	PACKETSTORM:189316	9.8	https://vulners.com/packetstorm/PACKETSTORM:189316	*EXPLOIT*
|     	MSF:EXPLOIT-LINUX-HTTP-BEYONDTRUST_PRA_RS_UNAUTH_RCE-	9.8	https://vulners.com/metasploit/MSF:EXPLOIT-LINUX-HTTP-BEYONDTRUST_PRA_RS_UNAUTH_RCE-	*EXPLOIT*
|     	CVE-2019-10211	9.8	https://vulners.com/cve/CVE-2019-10211
|     	CVE-2015-3166	9.8	https://vulners.com/cve/CVE-2015-3166
|     	CVE-2015-0244	9.8	https://vulners.com/cve/CVE-2015-0244
|     	CNVD-2020-02196	9.8	https://vulners.com/cnvd/CNVD-2020-02196
|     	CNVD-2017-26577	9.8	https://vulners.com/cnvd/CNVD-2017-26577
|     	B675EF91-A407-518F-9D46-5325ACF11AAC	9.8	https://vulners.com/githubexploit/B675EF91-A407-518F-9D46-5325ACF11AAC	*EXPLOIT*
|     	1337DAY-ID-39921	9.8	https://vulners.com/zdt/1337DAY-ID-39921	*EXPLOIT*
|     	POSTGRESQL:CVE-2016-7048	9.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-7048
|     	CVE-2016-7048	9.3	https://vulners.com/cve/CVE-2016-7048
|     	CNVD-2020-02193	9.3	https://vulners.com/cnvd/CNVD-2020-02193
|     	POSTGRESQL:CVE-2018-1115	9.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-1115
|     	POSTGRESQL:CVE-2016-3065	9.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-3065
|     	CVE-2018-1115	9.1	https://vulners.com/cve/CVE-2018-1115
|     	CNVD-2018-13765	9.1	https://vulners.com/cnvd/CNVD-2018-13765
|     	POSTGRESQL:CVE-2019-10164	9.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10164
|     	CVE-2019-10164	9.0	https://vulners.com/cve/CVE-2019-10164
|     	POSTGRESQL:CVE-2026-2006	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2026-2006
|     	POSTGRESQL:CVE-2026-2005	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2026-2005
|     	POSTGRESQL:CVE-2026-2004	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2026-2004
|     	POSTGRESQL:CVE-2025-8715	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-8715
|     	POSTGRESQL:CVE-2025-8714	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-8714
|     	POSTGRESQL:CVE-2024-7348	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-7348
|     	POSTGRESQL:CVE-2024-10979	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-10979
|     	POSTGRESQL:CVE-2023-5869	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-5869
|     	POSTGRESQL:CVE-2023-39417	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-39417
|     	POSTGRESQL:CVE-2022-1552	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2022-1552
|     	POSTGRESQL:CVE-2021-32027	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-32027
|     	POSTGRESQL:CVE-2020-25695	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-25695
|     	POSTGRESQL:CVE-2020-14349	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-14349
|     	POSTGRESQL:CVE-2019-10208	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10208
|     	POSTGRESQL:CVE-2019-10127	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10127
|     	POSTGRESQL:CVE-2018-1058	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-1058
|     	POSTGRESQL:CVE-2017-7547	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7547
|     	POSTGRESQL:CVE-2015-0243	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-0243
|     	POSTGRESQL:CVE-2015-0242	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-0242
|     	POSTGRESQL:CVE-2015-0241	8.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-0241
|     	CVE-2022-1552	8.8	https://vulners.com/cve/CVE-2022-1552
|     	CVE-2021-32027	8.8	https://vulners.com/cve/CVE-2021-32027
|     	CVE-2020-25695	8.8	https://vulners.com/cve/CVE-2020-25695
|     	CVE-2019-10127	8.8	https://vulners.com/cve/CVE-2019-10127
|     	CVE-2015-0243	8.8	https://vulners.com/cve/CVE-2015-0243
|     	CVE-2015-0242	8.8	https://vulners.com/cve/CVE-2015-0242
|     	CVE-2015-0241	8.8	https://vulners.com/cve/CVE-2015-0241
|     	CNVD-2017-26578	8.8	https://vulners.com/cnvd/CNVD-2017-26578
|     	6585F25A-D705-53D3-ADAC-BC4390959601	8.8	https://vulners.com/githubexploit/6585F25A-D705-53D3-ADAC-BC4390959601	*EXPLOIT*
|     	SSV:30015	8.5	https://vulners.com/seebug/SSV:30015	*EXPLOIT*
|     	SSV:19652	8.5	https://vulners.com/seebug/SSV:19652	*EXPLOIT*
|     	POSTGRESQL:CVE-2018-10915	8.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-10915
|     	POSTGRESQL:CVE-2013-1900	8.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2013-1900
|     	POSTGRESQL:CVE-2010-1169	8.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2010-1169
|     	CVE-2010-1447	8.5	https://vulners.com/cve/CVE-2010-1447
|     	CVE-2010-1169	8.5	https://vulners.com/cve/CVE-2010-1169
|     	CNVD-2020-02199	8.5	https://vulners.com/cnvd/CNVD-2020-02199
|     	POSTGRESQL:CVE-2016-5423	8.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-5423
|     	CVE-2016-5423	8.3	https://vulners.com/cve/CVE-2016-5423
|     	POSTGRESQL:CVE-2026-2007	8.2	https://vulners.com/postgresql/POSTGRESQL:CVE-2026-2007
|     	POSTGRESQL:CVE-2025-1094	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-1094
|     	POSTGRESQL:CVE-2021-23222	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-23222
|     	POSTGRESQL:CVE-2021-23214	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-23214
|     	POSTGRESQL:CVE-2020-25694	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-25694
|     	POSTGRESQL:CVE-2018-10925	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-10925
|     	POSTGRESQL:CVE-2017-15098	8.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-15098
|     	D0DF9BE5-0FD0-55AD-8B78-C13D7E73820A	8.1	https://vulners.com/githubexploit/D0DF9BE5-0FD0-55AD-8B78-C13D7E73820A	*EXPLOIT*
|     	CVE-2021-23214	8.1	https://vulners.com/cve/CVE-2021-23214
|     	CVE-2020-25694	8.1	https://vulners.com/cve/CVE-2020-25694
|     	CNVD-2020-63992	8.1	https://vulners.com/cnvd/CNVD-2020-63992
|     	CNVD-2020-02195	8.1	https://vulners.com/cnvd/CNVD-2020-02195
|     	7B12EAF5-EBAC-5606-A1F6-EDF65F8B168D	8.1	https://vulners.com/githubexploit/7B12EAF5-EBAC-5606-A1F6-EDF65F8B168D	*EXPLOIT*
|     	53C2CAF7-EEAD-5529-8250-EACEA16708FA	8.1	https://vulners.com/githubexploit/53C2CAF7-EEAD-5529-8250-EACEA16708FA	*EXPLOIT*
|     	45CBB37E-6F66-58F4-ABB7-AD79A4446CD8	8.1	https://vulners.com/githubexploit/45CBB37E-6F66-58F4-ABB7-AD79A4446CD8	*EXPLOIT*
|     	1E2D7847-DCA6-5603-988F-CCEEF6558320	8.1	https://vulners.com/githubexploit/1E2D7847-DCA6-5603-988F-CCEEF6558320	*EXPLOIT*
|     	POSTGRESQL:CVE-2024-0985	8.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-0985
|     	POSTGRESQL:CVE-2022-2625	8.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2022-2625
|     	CVE-2022-2625	8.0	https://vulners.com/cve/CVE-2022-2625
|     	POSTGRESQL:CVE-2019-3466	7.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-3466
|     	POSTGRESQL:CVE-2019-10128	7.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10128
|     	CVE-2019-10128	7.8	https://vulners.com/cve/CVE-2019-10128
|     	POSTGRESQL:CVE-2020-25696	7.6	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-25696
|     	CVE-2020-25696	7.6	https://vulners.com/cve/CVE-2020-25696
|     	POSTGRESQL:CVE-2025-8713	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-8713
|     	POSTGRESQL:CVE-2024-10976	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-10976
|     	POSTGRESQL:CVE-2023-2455	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-2455
|     	POSTGRESQL:CVE-2017-7548	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7548
|     	POSTGRESQL:CVE-2017-7486	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7486
|     	POSTGRESQL:CVE-2017-7484	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7484
|     	POSTGRESQL:CVE-2016-2193	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-2193
|     	POSTGRESQL:CVE-2016-0773	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-0773
|     	POSTGRESQL:CVE-2015-3167	7.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-3167
|     	CVE-2017-7484	7.5	https://vulners.com/cve/CVE-2017-7484
|     	CVE-2016-0773	7.5	https://vulners.com/cve/CVE-2016-0773
|     	CVE-2016-0768	7.5	https://vulners.com/cve/CVE-2016-0768
|     	CVE-2015-3167	7.5	https://vulners.com/cve/CVE-2015-3167
|     	CNVD-2017-26579	7.5	https://vulners.com/cnvd/CNVD-2017-26579
|     	CNVD-2017-22338	7.5	https://vulners.com/cnvd/CNVD-2017-22338
|     	CNVD-2017-06930	7.5	https://vulners.com/cnvd/CNVD-2017-06930
|     	POSTGRESQL:CVE-2020-14350	7.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-14350
|     	POSTGRESQL:CVE-2020-10733	7.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-10733
|     	EDB-ID:45184	7.3	https://vulners.com/exploitdb/EDB-ID:45184	*EXPLOIT*
|     	CVE-2020-14350	7.3	https://vulners.com/cve/CVE-2020-14350
|     	CVE-2020-10733	7.3	https://vulners.com/cve/CVE-2020-10733
|     	CVE-2017-14798	7.3	https://vulners.com/cve/CVE-2017-14798
|     	POSTGRESQL:CVE-2023-2454	7.2	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-2454
|     	POSTGRESQL:CVE-2017-12172	7.2	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-12172
|     	CVE-2023-2454	7.2	https://vulners.com/cve/CVE-2023-2454
|     	POSTGRESQL:CVE-2016-5424	7.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2016-5424
|     	CVE-2020-14349	7.1	https://vulners.com/cve/CVE-2020-14349
|     	CVE-2016-5424	7.1	https://vulners.com/cve/CVE-2016-5424
|     	CNVD-2020-64266	7.1	https://vulners.com/cnvd/CNVD-2020-64266
|     	POSTGRESQL:CVE-2019-10210	7.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10210
|     	POSTGRESQL:CVE-2018-1053	7.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-1053
|     	CVE-2019-10210	7.0	https://vulners.com/cve/CVE-2019-10210
|     	PACKETSTORM:148884	6.9	https://vulners.com/packetstorm/PACKETSTORM:148884	*EXPLOIT*
|     	EXPLOITPACK:6F8D33BC4F1C65AE0911D23B5E6EB665	6.9	https://vulners.com/exploitpack/EXPLOITPACK:6F8D33BC4F1C65AE0911D23B5E6EB665	*EXPLOIT*
|     	1337DAY-ID-30875	6.9	https://vulners.com/zdt/1337DAY-ID-30875	*EXPLOIT*
|     	SSV:30152	6.8	https://vulners.com/seebug/SSV:30152	*EXPLOIT*
|     	POSTGRESQL:CVE-2013-0255	6.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2013-0255
|     	POSTGRESQL:CVE-2012-0868	6.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-0868
|     	POSTGRESQL:CVE-2009-3231	6.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-3231
|     	CVE-2013-0255	6.8	https://vulners.com/cve/CVE-2013-0255
|     	CVE-2012-0868	6.8	https://vulners.com/cve/CVE-2012-0868
|     	CVE-2009-3231	6.8	https://vulners.com/cve/CVE-2009-3231
|     	SSV:62083	6.5	https://vulners.com/seebug/SSV:62083	*EXPLOIT*
|     	SSV:62016	6.5	https://vulners.com/seebug/SSV:62016	*EXPLOIT*
|     	SSV:61543	6.5	https://vulners.com/seebug/SSV:61543	*EXPLOIT*
|     	SSV:60720	6.5	https://vulners.com/seebug/SSV:60720	*EXPLOIT*
|     	SSV:19018	6.5	https://vulners.com/seebug/SSV:19018	*EXPLOIT*
|     	SSV:15153	6.5	https://vulners.com/seebug/SSV:15153	*EXPLOIT*
|     	SSV:15097	6.5	https://vulners.com/seebug/SSV:15097	*EXPLOIT*
|     	SSV:15095	6.5	https://vulners.com/seebug/SSV:15095	*EXPLOIT*
|     	POSTGRESQL:CVE-2021-3677	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-3677
|     	POSTGRESQL:CVE-2021-32029	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-32029
|     	POSTGRESQL:CVE-2021-32028	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-32028
|     	POSTGRESQL:CVE-2020-1720	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2020-1720
|     	POSTGRESQL:CVE-2019-10129	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10129
|     	POSTGRESQL:CVE-2018-1052	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2018-1052
|     	POSTGRESQL:CVE-2017-15099	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-15099
|     	POSTGRESQL:CVE-2014-0065	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0065
|     	POSTGRESQL:CVE-2014-0064	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0064
|     	POSTGRESQL:CVE-2014-0063	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0063
|     	POSTGRESQL:CVE-2014-0061	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0061
|     	POSTGRESQL:CVE-2013-1899	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2013-1899
|     	POSTGRESQL:CVE-2012-3489	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-3489
|     	POSTGRESQL:CVE-2012-0866	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-0866
|     	POSTGRESQL:CVE-2010-4015	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2010-4015
|     	POSTGRESQL:CVE-2009-4136	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-4136
|     	POSTGRESQL:CVE-2009-3230	6.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-3230
|     	PACKETSTORM:180960	6.5	https://vulners.com/packetstorm/PACKETSTORM:180960	*EXPLOIT*
|     	MSF:AUXILIARY-SCANNER-POSTGRES-POSTGRES_DBNAME_FLAG_INJECTION-	6.5	https://vulners.com/metasploit/MSF:AUXILIARY-SCANNER-POSTGRES-POSTGRES_DBNAME_FLAG_INJECTION-	*EXPLOIT*
|     	CVE-2021-3677	6.5	https://vulners.com/cve/CVE-2021-3677
|     	CVE-2021-32029	6.5	https://vulners.com/cve/CVE-2021-32029
|     	CVE-2021-32028	6.5	https://vulners.com/cve/CVE-2021-32028
|     	CVE-2014-0065	6.5	https://vulners.com/cve/CVE-2014-0065
|     	CVE-2014-0064	6.5	https://vulners.com/cve/CVE-2014-0064
|     	CVE-2014-0063	6.5	https://vulners.com/cve/CVE-2014-0063
|     	CVE-2014-0061	6.5	https://vulners.com/cve/CVE-2014-0061
|     	CVE-2012-3489	6.5	https://vulners.com/cve/CVE-2012-3489
|     	CVE-2012-0866	6.5	https://vulners.com/cve/CVE-2012-0866
|     	CVE-2010-4015	6.5	https://vulners.com/cve/CVE-2010-4015
|     	CVE-2010-0442	6.5	https://vulners.com/cve/CVE-2010-0442
|     	POSTGRESQL:CVE-2015-5289	6.4	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-5289
|     	POSTGRESQL:CVE-2015-5288	6.4	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-5288
|     	CVE-2015-5288	6.4	https://vulners.com/cve/CVE-2015-5288
|     	POSTGRESQL:CVE-2010-3433	6.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2010-3433
|     	POSTGRESQL:CVE-2010-1170	6.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2010-1170
|     	CVE-2010-3433	6.0	https://vulners.com/cve/CVE-2010-3433
|     	CVE-2010-1170	6.0	https://vulners.com/cve/CVE-2010-1170
|     	POSTGRESQL:CVE-2025-4207	5.9	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-4207
|     	POSTGRESQL:CVE-2025-12818	5.9	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-12818
|     	POSTGRESQL:CVE-2017-7485	5.9	https://vulners.com/postgresql/POSTGRESQL:CVE-2017-7485
|     	CVE-2021-23222	5.9	https://vulners.com/cve/CVE-2021-23222
|     	CNVD-2017-06931	5.9	https://vulners.com/cnvd/CNVD-2017-06931
|     	SSV:15154	5.8	https://vulners.com/seebug/SSV:15154	*EXPLOIT*
|     	SSV:15096	5.8	https://vulners.com/seebug/SSV:15096	*EXPLOIT*
|     	POSTGRESQL:CVE-2009-4034	5.8	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-4034
|     	SSV:19669	5.5	https://vulners.com/seebug/SSV:19669	*EXPLOIT*
|     	POSTGRESQL:CVE-2010-1975	5.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2010-1975
|     	CVE-2010-1975	5.5	https://vulners.com/cve/CVE-2010-1975
|     	CVE-2023-2455	5.4	https://vulners.com/cve/CVE-2023-2455
|     	CVE-2011-2483	5.0	https://vulners.com/cve/CVE-2011-2483
|     	SSV:61546	4.9	https://vulners.com/seebug/SSV:61546	*EXPLOIT*
|     	SSV:60334	4.9	https://vulners.com/seebug/SSV:60334	*EXPLOIT*
|     	POSTGRESQL:CVE-2014-0062	4.9	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0062
|     	POSTGRESQL:CVE-2012-3488	4.9	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-3488
|     	CVE-2014-0062	4.9	https://vulners.com/cve/CVE-2014-0062
|     	CVE-2012-3488	4.9	https://vulners.com/cve/CVE-2012-3488
|     	SSV:61544	4.6	https://vulners.com/seebug/SSV:61544	*EXPLOIT*
|     	POSTGRESQL:CVE-2014-0067	4.6	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0067
|     	CVE-2014-0067	4.6	https://vulners.com/cve/CVE-2014-0067
|     	POSTGRESQL:CVE-2023-5870	4.4	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-5870
|     	POSTGRESQL:CVE-2026-2003	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2026-2003
|     	POSTGRESQL:CVE-2024-4317	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-4317
|     	POSTGRESQL:CVE-2023-5868	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-5868
|     	POSTGRESQL:CVE-2023-39418	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2023-39418
|     	POSTGRESQL:CVE-2021-3393	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-3393
|     	POSTGRESQL:CVE-2021-20229	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2021-20229
|     	POSTGRESQL:CVE-2019-10130	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10130
|     	POSTGRESQL:CVE-2015-3165	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2015-3165
|     	POSTGRESQL:CVE-2014-8161	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-8161
|     	POSTGRESQL:CVE-2012-2143	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-2143
|     	POSTGRESQL:CVE-2012-0867	4.3	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-0867
|     	CVE-2021-3393	4.3	https://vulners.com/cve/CVE-2021-3393
|     	CVE-2021-20229	4.3	https://vulners.com/cve/CVE-2021-20229
|     	CVE-2015-3165	4.3	https://vulners.com/cve/CVE-2015-3165
|     	CVE-2014-8161	4.3	https://vulners.com/cve/CVE-2014-8161
|     	CVE-2012-2143	4.3	https://vulners.com/cve/CVE-2012-2143
|     	8B99F26F-7E4B-52DB-AEE3-1D5FC0D160CD	4.3	https://vulners.com/gitee/8B99F26F-7E4B-52DB-AEE3-1D5FC0D160CD	*EXPLOIT*
|     	06D0C38D-C4BF-53FB-A3AF-F6F83A71A24A	4.3	https://vulners.com/gitee/06D0C38D-C4BF-53FB-A3AF-F6F83A71A24A	*EXPLOIT*
|     	POSTGRESQL:CVE-2024-10978	4.2	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-10978
|     	SSV:61547	4.0	https://vulners.com/seebug/SSV:61547	*EXPLOIT*
|     	SSV:61545	4.0	https://vulners.com/seebug/SSV:61545	*EXPLOIT*
|     	SSV:60719	4.0	https://vulners.com/seebug/SSV:60719	*EXPLOIT*
|     	SSV:60335	4.0	https://vulners.com/seebug/SSV:60335	*EXPLOIT*
|     	SSV:60186	4.0	https://vulners.com/seebug/SSV:60186	*EXPLOIT*
|     	SSV:4928	4.0	https://vulners.com/seebug/SSV:4928	*EXPLOIT*
|     	POSTGRESQL:CVE-2014-0066	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0066
|     	POSTGRESQL:CVE-2014-0060	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2014-0060
|     	POSTGRESQL:CVE-2013-1901	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2013-1901
|     	POSTGRESQL:CVE-2012-2655	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2012-2655
|     	POSTGRESQL:CVE-2009-3229	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-3229
|     	POSTGRESQL:CVE-2009-0922	4.0	https://vulners.com/postgresql/POSTGRESQL:CVE-2009-0922
|     	CVE-2014-0066	4.0	https://vulners.com/cve/CVE-2014-0066
|     	CVE-2014-0060	4.0	https://vulners.com/cve/CVE-2014-0060
|     	CVE-2012-2655	4.0	https://vulners.com/cve/CVE-2012-2655
|     	CVE-2009-3229	4.0	https://vulners.com/cve/CVE-2009-3229
|     	POSTGRESQL:CVE-2024-10977	3.7	https://vulners.com/postgresql/POSTGRESQL:CVE-2024-10977
|     	POSTGRESQL:CVE-2022-41862	3.7	https://vulners.com/postgresql/POSTGRESQL:CVE-2022-41862
|     	CVE-2022-41862	3.7	https://vulners.com/cve/CVE-2022-41862
|     	SSV:19322	3.5	https://vulners.com/seebug/SSV:19322	*EXPLOIT*
|     	POSTGRESQL:CVE-2019-10209	3.5	https://vulners.com/postgresql/POSTGRESQL:CVE-2019-10209
|     	PACKETSTORM:127092	3.5	https://vulners.com/packetstorm/PACKETSTORM:127092	*EXPLOIT*
|     	CVE-2010-0733	3.5	https://vulners.com/cve/CVE-2010-0733
|_    	POSTGRESQL:CVE-2025-12817	3.1	https://vulners.com/postgresql/POSTGRESQL:CVE-2025-12817
| ssl-poodle: 
|   VULNERABLE:
|   SSL POODLE information leak
|     State: VULNERABLE
|     IDs:  CVE:CVE-2014-3566  BID:70574
|           The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other
|           products, uses nondeterministic CBC padding, which makes it easier
|           for man-in-the-middle attackers to obtain cleartext data via a
|           padding-oracle attack, aka the "POODLE" issue.
|     Disclosure date: 2014-10-14
|     Check results:
|       TLS_RSA_WITH_AES_128_CBC_SHA
|     References:
|       https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
|       https://www.openssl.org/~bodo/ssl-poodle.pdf
|       https://www.imperialviolet.org/2014/10/14/poodle.html
|_      https://www.securityfocus.com/bid/70574
| ssl-ccs-injection: 
|   VULNERABLE:
|   SSL/TLS MITM vulnerability (CCS Injection)
|     State: VULNERABLE
|     Risk factor: High
|       OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h
|       does not properly restrict processing of ChangeCipherSpec messages,
|       which allows man-in-the-middle attackers to trigger use of a zero
|       length master key in certain OpenSSL-to-OpenSSL communications, and
|       consequently hijack sessions or obtain sensitive information, via
|       a crafted TLS handshake, aka the "CCS Injection" vulnerability.
|           
|     References:
|       http://www.openssl.org/news/secadv_20140605.txt
|       http://www.cvedetails.com/cve/2014-0224
|_      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224
5900/tcp  open  vnc         VNC (protocol 3.3)
6000/tcp  open  X11         (access denied)
6667/tcp  open  irc         UnrealIRCd
| irc-botnet-channels: 
|_  ERROR: Closing Link: [192.168.100.10] (Throttled: Reconnecting too fast) -Email admin@Metasploitable.LAN for more information.
6697/tcp  open  irc         UnrealIRCd
|_ssl-ccs-injection: No reply from server (TIMEOUT)
8009/tcp  open  ajp13       Apache Jserv (Protocol v1.3)
8180/tcp  open  http        Apache Tomcat/Coyote JSP engine 1.1
| http-cookie-flags: 
|   /admin/: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/index.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/login.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/account.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin_login.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/home.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin-login.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/adminLogin.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/controlpanel.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/cp.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/index.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/login.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/home.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/controlpanel.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin-login.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/cp.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/account.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/admin_login.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/adminLogin.jsp: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/includes/FCKeditor/editor/filemanager/upload/test.html: 
|     JSESSIONID: 
|       httponly flag not set
|   /admin/jscript/upload.html: 
|     JSESSIONID: 
|_      httponly flag not set
| http-enum: 
|   /admin/: Possible admin folder
|   /admin/index.html: Possible admin folder
|   /admin/login.html: Possible admin folder
|   /admin/admin.html: Possible admin folder
|   /admin/account.html: Possible admin folder
|   /admin/admin_login.html: Possible admin folder
|   /admin/home.html: Possible admin folder
|   /admin/admin-login.html: Possible admin folder
|   /admin/adminLogin.html: Possible admin folder
|   /admin/controlpanel.html: Possible admin folder
|   /admin/cp.html: Possible admin folder
|   /admin/index.jsp: Possible admin folder
|   /admin/login.jsp: Possible admin folder
|   /admin/admin.jsp: Possible admin folder
|   /admin/home.jsp: Possible admin folder
|   /admin/controlpanel.jsp: Possible admin folder
|   /admin/admin-login.jsp: Possible admin folder
|   /admin/cp.jsp: Possible admin folder
|   /admin/account.jsp: Possible admin folder
|   /admin/admin_login.jsp: Possible admin folder
|   /admin/adminLogin.jsp: Possible admin folder
|   /manager/html/upload: Apache Tomcat (401 Unauthorized)
|   /manager/html: Apache Tomcat (401 Unauthorized)
|   /admin/view/javascript/fckeditor/editor/filemanager/connectors/test.html: OpenCart/FCKeditor File upload
|   /admin/includes/FCKeditor/editor/filemanager/upload/test.html: ASP Simple Blog / FCKeditor File Upload
|   /admin/jscript/upload.html: Lizard Cart/Remote File upload
|_  /webdav/: Potentially interesting folder
|_http-dombased-xss: Couldn't find any DOM based XSS.
|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
|_http-server-header: Apache-Coyote/1.1
| http-csrf: 
| Spidering limited to: maxdepth=3; maxpagecount=20; withinhost=192.168.100.30
|   Found the following possible CSRF vulnerabilities: 
|     
|     Path: http://192.168.100.30:8180/admin/
|     Form id: username
|     Form action: j_security_check;jsessionid=FB98D4024F64C5693EC730ADC9F5F1CD
|     
|     Path: http://192.168.100.30:8180/servlets-examples/servlet/RequestParamExample
|     Form id: 
|     Form action: RequestParamExample
|     
|     Path: http://192.168.100.30:8180/servlets-examples/servlet/SessionExample
|     Form id: 
|     Form action: SessionExample;jsessionid=538C497A03F91996CFE5AF27FE6142DD
|     
|     Path: http://192.168.100.30:8180/servlets-examples/servlet/SessionExample
|     Form id: 
|_    Form action: SessionExample;jsessionid=538C497A03F91996CFE5AF27FE6142DD
8787/tcp  open  drb         Ruby DRb RMI (Ruby 1.8; path /usr/lib/ruby/1.8/drb)
34620/tcp open  nlockmgr    1-4 (RPC #100021)
43207/tcp open  status      1 (RPC #100024)
49668/tcp open  mountd      1-3 (RPC #100005)
52387/tcp open  java-rmi    GNU Classpath grmiregistry
| rmi-vuln-classloader: 
|   VULNERABLE:
|   RMI registry default configuration remote code execution vulnerability
|     State: VULNERABLE
|       Default configuration of RMI registry allows loading classes from remote URLs which can lead to remote code execution.
|       
|     References:
|_      https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/java_rmi_server.rb
MAC Address: 00:0C:29:62:6D:C7 (VMware)
Service Info: Hosts:  metasploitable.localdomain, irc.Metasploitable.LAN; OSs: Unix, Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:
|_smb-vuln-ms10-054: false
|_smb-vuln-ms10-061: false
|_smb-vuln-regsvc-dos: ERROR: Script execution failed (use -d to debug)

Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 465.45 seconds
