Currently running plugins
The following can be found in the index :
Apache ActiveMQ is outdated
Trusted/Pro members only
Apache OFBiz is outdated
Trusted/Pro members only
Apache server-status page is publicly available
Public
BitBucket instance outdated
Trusted/Pro members only
CentOS Web Panel outdated
Public
CheckMK monitoring endpoint publicly available
Public
Check Point Gateway is outdated
Trusted/Pro members only
Cisco ASA appliance outdated
Public
Cisco RV hardware outdated
Public
Citrix ADC appliance is outdated
Trusted/Pro members only
CloudPanel is outdated
Public
A JSON configuration file has been found
Trusted/Pro members only
Confluence instance outdated
Trusted/Pro members only
ConnectWise ScreenConnect is vulnerable
Public
Consul server is public
Public
CouchDB instance is public
Public
Craft CMS is vulnerable
Trusted/Pro members only
CrushFTP service outdated
Trusted/Pro members only
CyberPanel is outdated
Trusted/Pro members only
NAS has been infected by DeadBolt
Public
Docker registry is public
Public
MacOS file listing through .DS_Store file
Public
Dotenv file configuration is publicly accessible
Trusted/Pro members only
ElasticSearch is publicly available
Public
ESXi hypervisor outdated
Trusted/Pro members only
Microsoft Exchange Server is outdated
Trusted/Pro members only
EzGED3 is outdated
Trusted/Pro members only
Flowise instance outdated
Trusted/Pro members only
FortiGate instance outdated
Trusted/Pro members only
FortiGate instance outdated
Trusted/Pro members only
FortiWeb instance outdated
Trusted/Pro members only
FreePBX instance outdated
Trusted/Pro members only
Vulnerable Generic DVR
Public
GeoServer is vulnerable to RCE
Trusted/Pro members only
GeoServer is vulnerable to XXE
Trusted/Pro members only
Git configuration and history exposed
Public
Gitlab instance looks outdated
Public
Gladinet CentreStack/Triofox is outdated
Trusted/Pro members only
GLPI is outdated
Trusted/Pro members only
Exposed GoAnywhere MFT administration interface
Public
Exposed GoAnywhere MFT vulnerable
Trusted/Pro members only
Grafana instance publicly available
Public
GraphQL introspection is enabled.
Public
Vulnerable HiSilicon family DVR
Public
Server accepting anonymous credentials
Public
ICTBroadcast is vulnerable to RCE
Trusted/Pro members only
Cisco IOS EX implant detected
Trusted/Pro members only
Ivanti Connect Secure outdated
Trusted/Pro members only
Ivanti EPMM is outdated
Trusted/Pro members only
Jenkins is publicly available
Public
Jenkins service outdated
Trusted/Pro members only
Jira instance outdated
Trusted/Pro members only
Juniper device is outdated
Trusted/Pro members only
Kafka instance is public
Public
Kerio Control vulnerable
Trusted/Pro members only
Kestrel is outdated
Trusted/Pro members only
Langflow is vulnerable RCE
Trusted/Pro members only
Laravel development panel enabled
Public
Server vulnerable to Log4J CVE-2021-44228
Public
Magento is vulnerable to XXE
Trusted/Pro members only
MagicInfo CMS is vulnerable
Trusted/Pro members only
Metabase is outdated
Trusted/Pro members only
MinIO instance is outdated
Trusted/Pro members only
Mirth Connect is out-dated
Trusted/Pro members only
Mitel MiCollab is outdated
Trusted/Pro members only
Ivanti MobileIron core is outdated
Trusted/Pro members only
Ivanti MobileIron Sentry is outdated
Trusted/Pro members only
MongoBleed - Unauthenticated Memory Leak
Trusted/Pro members only
MongoDB is publicly available
Public
Monsta FTP is outdated
Trusted/Pro members only
Moodle is vulnerable
Public
MySQL is publicly available
Public
N8N instance outdated
Trusted/Pro members only
N-able N-central is outdated
Trusted/Pro members only
Nexus Repository is outdated
Trusted/Pro members only
OpenEdge is outdated
Trusted/Pro members only
Oracle E-Business Suite is outdated
Trusted/Pro members only
Palo Alto firewall outdated
Trusted/Pro members only
PaperCut is outdated
Trusted/Pro members only
CGI executing PHP code
Trusted/Pro members only
Found php information file
Trusted/Pro members only
Application executing PHP code
Trusted/Pro members only
Prometheus server is public
Public
Server accepting proxy connections
Trusted/Pro members only
NextJS/Vite variable environments is publicly accessible
Trusted/Pro members only
Pulse Connect Secure outdated
Trusted/Pro members only
QNAP NAS outdated
Trusted/Pro members only
React/Next.js is outdated
Trusted/Pro members only
Redis instance is public
Public
SAP NetWeaver is vulnerable
Trusted/Pro members only
Magento / Adobe Commerce is outdated
Trusted/Pro members only
Microsoft SharePoint Server is backdoored
Public
Microsoft SharePoint Server is outdated
Trusted/Pro members only
Microsoft SharePoint Server is outdated
Trusted/Pro members only
Open SMB file sharing detected
Public
Solr administration is publicly available
Public
Solr instance is outdated
Trusted/Pro members only
SonarQube instance is public
Public
SonicWall GMS oudated
Trusted/Pro members only
SonicWall firewall oudated
Trusted/Pro members only
SonicWall firewall oudated
Trusted/Pro members only
Sophos firewall outdated
Public
Spip is vulnerable RCE
Trusted/Pro members only
Splunk Enterprise outdated
Trusted/Pro members only
Spring Boot sensitive actuators are publicly accessible
Trusted/Pro members only
SSH is potenitally vulnerable
Public
Swagger API description is publicly available
Public
Symfony developement panel enabled
Public
Symfony error leaking informations
Public
SysAid instance outdated
Trusted/Pro members only
TeamCity Server is outdated
Trusted/Pro members only
Apache Tika is vulnerable XXE
Trusted/Pro members only
Traccar is outdated
Trusted/Pro members only
Detected HTTP traversal vulnerability
Public
Twonky Server is outdated
Trusted/Pro members only
VBulletin looks outdated
Trusted/Pro members only
VMWare vSphere/vCenter outdated
Trusted/Pro members only
Veeam distribution service outdated
Trusted/Pro members only
Veeam Backup & Recovery outdated
Trusted/Pro members only
Vicidial Recordings exposure
Trusted/Pro members only
Vicibox outdated
Trusted/Pro members only
VinChin VMWare Backup exposed and vulnerable
Trusted/Pro members only
Finds vulnerable Vite development environment
Public
VMWare Cloud Director exposed and vulnerable
Public
VSCode SFTP configuration exposed
Trusted/Pro members only
WatchGuard Firebox is outdated
Trusted/Pro members only
Wazuh is outdated
Trusted/Pro members only
Wordpress user enumeration
Trusted/Pro members only
WS_FTP service is outdated
Trusted/Pro members only
WSO2 product looks outdated
Public
XWiki is outdated
Trusted/Pro members only
Yii developement panel enabled
Trusted/Pro members only
Zimbra server is outdated
Trusted/Pro members only
Zitadel instance outdated
Trusted/Pro members only
Zookeeper server is public
Public
Zyxel firewall outdated
Trusted/Pro members only