ehsandeep / wordpress-application

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

[adminer-panel] [info] Adminer Login panel found on http://127.0.0.1:31337

github-actions opened this issue · comments

Details: adminer-panel matched at http://127.0.0.1:31337

Protocol: HTTP

Full URL: http://127.0.0.1:31337/adminer.php

Timestamp: Thu Jul 8 00:10:59 +0000 UTC 2021

Template Information

Key Value
name Adminer Login panel
author random_robbie,meme-lord
severity info
tags panel

Request

GET /adminer.php HTTP/1.1
Host: 127.0.0.1:31337
User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.67 Safari/537.36
Connection: close
Accept: */*
Accept-Language: en
Accept-Encoding: gzip

Response

HTTP/1.1 200 OK
Connection: close
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'nonce-ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=' 'strict-dynamic'; connect-src 'self'; frame-src https://www.adminer.org; object-src 'none'; base-uri 'none'; form-action 'self'
Content-Type: text/html; charset=utf-8
Date: Thu, 08 Jul 2021 00:10:59 GMT
Referrer-Policy: origin-when-cross-origin
Server: Apache/2.4.38 (Debian)
Set-Cookie: adminer_sid=7699ca51140d7cbf4cd79fe63cf395f2; path=/adminer.php; HttpOnly
Set-Cookie: adminer_key=8e4ab9c21ebf88bf8fe7abe9b1ba6776; path=/adminer.php; HttpOnly; SameSite=lax
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Powered-By: PHP/7.1.33
X-Xss-Protection: 0

<!DOCTYPE html>
<html lang="en" dir="ltr">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="robots" content="noindex">
<title>Login - Adminer</title>
<link rel="stylesheet" type="text/css" href="https://github.com/ehsandeep/wordpress-application/issues/adminer.php?file=default.css&amp;version=4.6.2" target="_blank" rel="nofollow">
<script src='adminer.php?file=functions.js&amp;version=4.6.2' nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk="></script>
<link rel="shortcut icon" type="image/x-icon" href="adminer.php?file=favicon.ico&amp;version=4.6.2">
<link rel="apple-touch-icon" href="adminer.php?file=favicon.ico&amp;version=4.6.2">

<body class="ltr nojs">
<script nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=">
mixin(document.body, {onkeydown: bodyKeydown, onclick: bodyClick, onload: partial(verifyVersion, '4.6.2', 'adminer.php?', '790645:934414')});
document.body.className = document.body.className.replace(/ nojs/, ' js');
var offlineMessage = 'You are offline.';
var thousandsSeparator = ',';
</script>

<div id="help" class="jush-sql jsonly hidden"></div>
<script nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=">mixin(qs('#help'), {onmouseover: function () { helpOpen = 1; }, onmouseout: helpMouseout});</script>

<div id="content">
<h2>Login</h2>
<div id='ajaxstatus' class='jsonly hidden'></div>
<form action='' method='post'>
<div></div>
<table cellspacing="0">
<tr><th>System<td><select name='auth[driver]'><option value="server" selected>MySQL<option value="sqlite">SQLite 3<option value="sqlite2">SQLite 2<option value="pgsql">PostgreSQL<option value="oracle">Oracle (beta)<option value="mssql">MS SQL (beta)<option value="firebird">Firebird (alpha)<option value="simpledb">SimpleDB<option value="mongo">MongoDB<option value="elastic">Elasticsearch (beta)</select>
<tr><th>Server<td><input name="auth[server]" value="" title="hostname[:port]" placeholder="localhost" autocapitalize="off">
<tr><th>Username<td><input name="auth[username]" id="username" value="" autocapitalize="off">
<tr><th>Password<td><input type="password" name="auth[password]">
<tr><th>Database<td><input name="auth[db]" value="" autocapitalize="off">
</table>
<script nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=">focus(qs('#username'));</script>
<p><input type='submit' value='Login'>
<label><input type='checkbox' name='auth[permanent]' value='1'>Permanent login</label>
</form>
</div>

<form action='' method='post'>
<div id='lang'>Language: <select name='lang'><option value="en" selected>English<option value="ar">العربية<option value="bg">Български<option value="bn">বাংলা<option value="bs">Bosanski<option value="ca">Català<option value="cs">Čeština<option value="da">Dansk<option value="de">Deutsch<option value="el">Ελληνικά<option value="es">Español<option value="et">Eesti<option value="fa">فارسی<option value="fi">Suomi<option value="fr">Français<option value="gl">Galego<option value="he">עברית<option value="hu">Magyar<option value="id">Bahasa Indonesia<option value="it">Italiano<option value="ja">日本語<option value="ko">한국어<option value="lt">Lietuvių<option value="ms">Bahasa Melayu<option value="nl">Nederlands<option value="no">Norsk<option value="pl">Polski<option value="pt">Português<option value="pt-br">Português (Brazil)<option value="ro">Limba Română<option value="ru">Русский<option value="sk">Slovenčina<option value="sl">Slovenski<option value="sr">Српски<option value="ta">த‌மிழ்<option value="th">ภาษาไทย<option value="tr">Türkçe<option value="uk">Українська<option value="vi">Tiếng Việt<option value="zh">简体中文<option value="zh-tw">繁體中文</select><script nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=">qsl('select').onchange = function () { this.form.submit(); };</script> <input type='submit' value='Use' class='hidden'>
<input type='hidden' name='token' value='606961:725130'>
</div>
</form>
<div id="menu">
<h1>
<a href='https://www.adminer.org/' target="_blank" rel="noreferrer noopener" id='h1'>Adminer</a> <span class="version">4.6.2</span>
<a href="https://www.adminer.org/#download" target="_blank" rel="noreferrer noopener" id="version"></a>
</h1>
</div>
<script nonce="ZGQ5ZDhiZjk0MjFmOGZjM2VlNGNkZTQ4ODE0ZjdkMjk=">setupSubmitHighlight(document);</script>

Extra Information

Extracted results:

  • 4.6.2

Reference:


Generated by Nuclei