Ticket Navigation

Ticket #80 (closed defect: fixed)

Opened 9 months ago

Last modified 8 months ago

Multiple hosts and/or multiple ports

Reported by:	jabra	Assigned to:	deity
Priority:	medium	Milestone:	Nikto 2.1.0
Component:	Reporting	Version:	2.1.0
Severity:	normal	Keywords:
Cc:

Description

 $ ./nikto.pl -Format xml -output test.xml -host 127.0.0.1


<?xml version="1.0" ?>
<!DOCTYPE niktoscan SYSTEM "docs/nikto.dtd">
<niktoscan hoststest="1" options="-Format xml -output test.xml -host 127.0.0.1" version="2.10" nxmlversion="1.0">

<scandetails targetip="127.0.0.1" targethostname="localhost" targetport="80" targetbanner="Apache" starttime="2009-06-15 21:58:24" endtime="2009-06-15 21:58:38" elasped="14" sitename="http://      localhost:80/" siteip="http://127.0.0.1:80/" itemstested="3580" itemsfound="6" hostheader="#TMPL_HOST_HEADER">

<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>


<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">^M
<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>^M
<uri><![CDATA[/doc/]]></uri>^M
<namelink><![CDATA[http://localhost:80/doc/]]></namelink>^M
<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>^M
</item>^M
<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">^M
<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>^M
<uri><![CDATA[/server-status]]></uri>^M
<namelink><![CDATA[http://localhost:80/server-status]]></namelink>^M
<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>^M
</item>^M
<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">^M
<description>/demos/: This might be interesting...</description>^M
<uri><![CDATA[/demos/]]></uri>^M
<namelink><![CDATA[http://localhost:80/demos/]]></namelink>^M
<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>^M
</item>^M
<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">^M
<description>/icons/: Directory indexing is enabled: /icons</description>^M
<uri><![CDATA[/icons/]]></uri>^M
<namelink><![CDATA[http://localhost:80/icons/]]></namelink>^M
<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>^M
</item>^M
<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">^M
<description>/icons/README: Apache default file found.</description>^M
<uri><![CDATA[/icons/README]]></uri>^M
<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>^M
<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>^M
</item>^M


</scandetails>

 ./nikto.pl -Format xml -output test.xml -host 127.0.0.1 -port 631,80

<?xml version="1.0" ?>
<!DOCTYPE niktoscan SYSTEM "docs/nikto.dtd">
<niktoscan hoststest="1" options="-Format xml -output test.xml -host 127.0.0.1" version="2.10" nxmlversion="1.0">

<scandetails targetip="127.0.0.1" targethostname="localhost" targetport="80" targetbanner="Apache" starttime="2009-06-15 21:58:24" endtime="2009-06-15 21:58:38" elasped="14" sitename="http://localhost:80/" siteip="http://127.0.0.1:80/" itemstested="3580" itemsfound="6" hostheader="#TMPL_HOST_HEADER">

<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>


<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">

<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>

<uri><![CDATA[/doc/]]></uri>

<namelink><![CDATA[http://localhost:80/doc/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>

</item>

<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">

<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>

<uri><![CDATA[/server-status]]></uri>

<namelink><![CDATA[http://localhost:80/server-status]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>

</item>

<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">

<description>/demos/: This might be interesting...</description>

<uri><![CDATA[/demos/]]></uri>

<namelink><![CDATA[http://localhost:80/demos/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>

</item>

<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">

<description>/icons/: Directory indexing is enabled: /icons</description>

<uri><![CDATA[/icons/]]></uri>

<namelink><![CDATA[http://localhost:80/icons/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>

</item>

<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">

<description>/icons/README: Apache default file found.</description>

<uri><![CDATA[/icons/README]]></uri>

<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>

</item>



</scandetails>

<?xml version="1.0" ?>
<!DOCTYPE niktoscan SYSTEM "docs/nikto.dtd">
<niktoscan hoststest="1" options="-Format xml -output test.xml -host 127.0.0.1 -port 631,80" version="2.10" nxmlversion="1.0">

<scandetails targetip="127.0.0.1" targethostname="localhost" targetport="631" targetbanner="CUPS/1.3" starttime="2009-06-15 22:00:21" endtime="2009-06-15 22:01:44" elasped="83" sitename="http://localhost:631/" siteip="http://127.0.0.1:631/" itemstested="3580" itemsfound="6" hostheader="#TMPL_HOST_HEADER">

<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, OPTIONS, POST, PUT </description>
</item>
<item id="999978">
<description>HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server.</description>
</item>
<item id="700095">
<description>Default account found for '"CUPS"' at  (ID 'role', PW 'changethis'). Apache Tomcat</description>
</item>


<item id="999996" osvdbid="" osvdblink="" method="GET">

<description>robots.txt contains 1 entry which should be manually viewed.</description>

<uri><![CDATA[/robots.txt]]></uri>

<namelink><![CDATA[http://localhost:631/robots.txt]]></namelink>

<iplink><![CDATA[http://127.0.0.1:631/robots.txt]]></iplink>

</item>

<item id="000045" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/help/: Help directory should not be accessible</description>

<uri><![CDATA[/help/]]></uri>

<namelink><![CDATA[http://localhost:631/help/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:631/help/]]></iplink>

</item>

<item id="000200" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/administrator/gallery/uploadimage.php: Mambo PHP Portal/Server 4.0.12 BETA and below may allow upload of any file type simply putting '.jpg' before the real file extension.</description>

<uri><![CDATA[/administrator/gallery/uploadimage.php]]></uri>

<namelink><![CDATA[http://localhost:631/administrator/gallery/uploadimage.php]]></namelink>

<iplink><![CDATA[http://127.0.0.1:631/administrator/gallery/uploadimage.php]]></iplink>

</item>



</scandetails>

<?xml version="1.0" ?>
<!DOCTYPE niktoscan SYSTEM "docs/nikto.dtd">
<?xml version="1.0" ?>
<!DOCTYPE niktoscan SYSTEM "docs/nikto.dtd">
<scandetails targetip="127.0.0.1" targethostname="localhost" targetport="80" targetbanner="Apache" starttime="2009-06-15 22:01:44" endtime="2009-06-15 22:02:10" elasped="26" sitename="http://localhost:80/" siteip="http://127.0.0.1:80/" itemstested="3580" itemsfound="12" hostheader="#TMPL_HOST_HEADER">

<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, OPTIONS, POST, PUT </description>
</item>
<item id="999978">
<description>HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server.</description>
</item>
<item id="700095">
<description>Default account found for '"CUPS"' at  (ID 'role', PW 'changethis'). Apache Tomcat</description>
</item>
<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>
<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>


<item id="999996" osvdbid="" osvdblink="" method="GET">

<description>robots.txt contains 1 entry which should be manually viewed.</description>

<uri><![CDATA[/robots.txt]]></uri>

<namelink><![CDATA[http://localhost:80/robots.txt]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/robots.txt]]></iplink>

</item>

<item id="000045" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/help/: Help directory should not be accessible</description>

<uri><![CDATA[/help/]]></uri>

<namelink><![CDATA[http://localhost:80/help/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/help/]]></iplink>

</item>

<item id="000200" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/administrator/gallery/uploadimage.php: Mambo PHP Portal/Server 4.0.12 BETA and below may allow upload of any file type simply putting '.jpg' before the real file extension.</description>

<uri><![CDATA[/administrator/gallery/uploadimage.php]]></uri>

<namelink><![CDATA[http://localhost:80/administrator/gallery/uploadimage.php]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/administrator/gallery/uploadimage.php]]></iplink>

</item>

<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">

<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>

<uri><![CDATA[/doc/]]></uri>

<namelink><![CDATA[http://localhost:80/doc/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>

</item>

<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">

<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>

<uri><![CDATA[/server-status]]></uri>

<namelink><![CDATA[http://localhost:80/server-status]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>

</item>

<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">

<description>/demos/: This might be interesting...</description>

<uri><![CDATA[/demos/]]></uri>

<namelink><![CDATA[http://localhost:80/demos/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>

</item>

<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">

<description>/icons/: Directory indexing is enabled: /icons</description>

<uri><![CDATA[/icons/]]></uri>

<namelink><![CDATA[http://localhost:80/icons/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>

</item>

<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">

<description>/icons/README: Apache default file found.</description>

<uri><![CDATA[/icons/README]]></uri>

<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>

</item>

<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">

<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>

<uri><![CDATA[/doc/]]></uri>

<namelink><![CDATA[http://localhost:80/doc/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>

</item>

<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">

<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>

<uri><![CDATA[/server-status]]></uri>

<namelink><![CDATA[http://localhost:80/server-status]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>

</item>

<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">

<description>/demos/: This might be interesting...</description>

<uri><![CDATA[/demos/]]></uri>

<namelink><![CDATA[http://localhost:80/demos/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>

</item>

<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">

<description>/icons/: Directory indexing is enabled: /icons</description>

<uri><![CDATA[/icons/]]></uri>

<namelink><![CDATA[http://localhost:80/icons/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>

</item>

<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">

<description>/icons/README: Apache default file found.</description>

<uri><![CDATA[/icons/README]]></uri>

<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>

</item>



</scandetails>

<scandetails targetip="127.0.0.1" targethostname="localhost" targetport="80" targetbanner="Apache" starttime="2009-06-15 22:01:44" endtime="2009-06-15 22:02:10" elasped="26" sitename="http://localhost:80/" siteip="http://127.0.0.1:80/" itemstested="3580" itemsfound="12" hostheader="#TMPL_HOST_HEADER">

<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, OPTIONS, POST, PUT </description>
</item>
<item id="999978">
<description>HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server.</description>
</item>
<item id="700095">
<description>Default account found for '"CUPS"' at  (ID 'role', PW 'changethis'). Apache Tomcat</description>
</item>
<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>
<item id="999990">
<description>Allowed HTTP Methods: GET, HEAD, POST, OPTIONS </description>
</item>


<item id="999996" osvdbid="" osvdblink="" method="GET">

<description>robots.txt contains 1 entry which should be manually viewed.</description>

<uri><![CDATA[/robots.txt]]></uri>

<namelink><![CDATA[http://localhost:80/robots.txt]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/robots.txt]]></iplink>

</item>

<item id="000045" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/help/: Help directory should not be accessible</description>

<uri><![CDATA[/help/]]></uri>

<namelink><![CDATA[http://localhost:80/help/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/help/]]></iplink>

</item>

<item id="000200" osvdbid="0" osvdblink="http://osvdb.org/0" method="GET">

<description>/administrator/gallery/uploadimage.php: Mambo PHP Portal/Server 4.0.12 BETA and below may allow upload of any file type simply putting '.jpg' before the real file extension.</description>

<uri><![CDATA[/administrator/gallery/uploadimage.php]]></uri>

<namelink><![CDATA[http://localhost:80/administrator/gallery/uploadimage.php]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/administrator/gallery/uploadimage.php]]></iplink>

</item>

<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">

<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>

<uri><![CDATA[/doc/]]></uri>

<namelink><![CDATA[http://localhost:80/doc/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>

</item>

<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">

<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>

<uri><![CDATA[/server-status]]></uri>

<namelink><![CDATA[http://localhost:80/server-status]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>

</item>

<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">

<description>/demos/: This might be interesting...</description>

<uri><![CDATA[/demos/]]></uri>

<namelink><![CDATA[http://localhost:80/demos/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>

</item>

<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">

<description>/icons/: Directory indexing is enabled: /icons</description>

<uri><![CDATA[/icons/]]></uri>

<namelink><![CDATA[http://localhost:80/icons/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>

</item>

<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">

<description>/icons/README: Apache default file found.</description>

<uri><![CDATA[/icons/README]]></uri>

<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>

</item>

<item id="001213" osvdbid="48" osvdblink="http://osvdb.org/48" method="GET">

<description>/doc/: The /doc/ directory is browsable. This may be /usr/doc.</description>

<uri><![CDATA[/doc/]]></uri>

<namelink><![CDATA[http://localhost:80/doc/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/doc/]]></iplink>

</item>

<item id="001406" osvdbid="561" osvdblink="http://osvdb.org/561" method="GET">

<description>/server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts.</description>

<uri><![CDATA[/server-status]]></uri>

<namelink><![CDATA[http://localhost:80/server-status]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/server-status]]></iplink>

</item>

<item id="001643" osvdbid="3092" osvdblink="http://osvdb.org/3092" method="GET">

<description>/demos/: This might be interesting...</description>

<uri><![CDATA[/demos/]]></uri>

<namelink><![CDATA[http://localhost:80/demos/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/demos/]]></iplink>

</item>

<item id="003000" osvdbid="3268" osvdblink="http://osvdb.org/3268" method="GET">

<description>/icons/: Directory indexing is enabled: /icons</description>

<uri><![CDATA[/icons/]]></uri>

<namelink><![CDATA[http://localhost:80/icons/]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/]]></iplink>

</item>

<item id="003584" osvdbid="3233" osvdblink="http://osvdb.org/3233" method="GET">

<description>/icons/README: Apache default file found.</description>

<uri><![CDATA[/icons/README]]></uri>

<namelink><![CDATA[http://localhost:80/icons/README]]></namelink>

<iplink><![CDATA[http://127.0.0.1:80/icons/README]]></iplink>

</item>



</scandetails>

Change History

07/06/09 03:15:44 changed by jabra

summary changed from XML output broken to Multiple hosts and/or multiple ports.

The output isn't correct for multiple hosts:

$ ./nikto.pl -host hostnikto.txt -Format xml -o july5.xml - Nikto v2.10/2.10

+ Target IP: 127.0.0.1 + Target Hostname: localhost + Target Port: 80 + Start Time: 2009-07-06 22:54:52

+ Server: Apache + OSVDB-0: Allowed HTTP Methods: GET, HEAD, POST, OPTIONS - ERROR: /ldap/cgi-bin/ldacgi.exe?Action=<script>alert(\"Vulnerable\")</script> returned an error: error reading HTTP response + OSVDB-48: /doc/: The /doc/ directory is browsable. This may be /usr/doc. + OSVDB-561: /server-status: This reveals Apache information. Comment out appropriate line in httpd.conf or restrict access to allowed hosts. + OSVDB-3092: /demos/: This might be interesting... + OSVDB-3092: /test.html: This might be interesting... + OSVDB-3268: /icons/: Directory indexing is enabled: /icons + OSVDB-3233: /icons/README: Apache default file found. + 3580 items checked: 7 item(s) reported on remote host + End Time: 2009-07-06 22:55:05 (13 seconds)

+ Target IP: 10.0.0.1 + Target Hostname: 10.0.0.1 + Target Port: 443

+ SSL Info: Ciphers: RC4-MD5

Info: /C=US/ST=California/L=Irvine/O=Cisco-Linksys, LLC/OU=Division/CN=Linksys/emailAddress=support@linksys.com Subject: /C=US/ST=California/L=Irvine/O=Cisco-Linksys, LLC/OU=Division/CN=Linksys/emailAddress=support@linksys.com

+ Start Time: 2009-07-06 22:55:12

+ Server: Intoto Http Server v1.0 + No CGI Directories found (use '-C all' to force check all possible dirs) + No CGI Directories found (use '-C all' to force check all possible dirs)

07/06/09 03:16:38 changed by jabra

[pre] $ ./nikto.pl -host hostnikto.txt -Format xml -o july5.xml - Nikto v2.10/2.10

+ Target IP: 127.0.0.1 + Target Hostname: localhost + Target Port: 80 + Start Time: 2009-07-06 22:54:52

+ Target IP: 10.0.0.1 + Target Hostname: 10.0.0.1 + Target Port: 443

+ SSL Info: Ciphers: RC4-MD5

Info: /C=US/ST=California/L=Irvine/O=Cisco-Linksys, LLC/OU=Division/CN=Linksys/emailAddress=support@linksys.com Subject: /C=US/ST=California/L=Irvine/O=Cisco-Linksys, LLC/OU=Division/CN=Linksys/emailAddress=support@linksys.com

+ Start Time: 2009-07-06 22:55:12

+ Server: Intoto Http Server v1.0 + No CGI Directories found (use '-C all' to force check all possible dirs) + No CGI Directories found (use '-C all' to force check all possible dirs)

^C
/pre

Download in other formats:

Nikto 2

Ticket Navigation

Ticket #80 (closed defect: fixed)

Multiple hosts and/or multiple ports

Description

Change History

06/15/09 02:04:16 changed by jabra

06/15/09 17:20:22 changed by deity

06/15/09 17:21:03 changed by deity

07/06/09 03:15:44 changed by jabra

07/06/09 03:16:38 changed by jabra

08/01/09 11:25:27 changed by deity

Download in other formats: