Inspathx/PoC2
Jump to navigation
Jump to search
| You are here: | Poc #3: PHPIDS-0.6.5
|
Description
PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for PHP based web application.
In the time of this writing, the latest version (0.6.5) is vulnerable to path inclusion.
This page is a Proof of Concept (PoC) that shows the logs of Inspathx run against PHPIDS-0.6.5.
Inspathx output
$ ruby inspathx.rb -d /var/www/phpids-0.6.5 -u http://localhost/phpids-0.6.5 ============================================================= Path Discloser (a.k.a inspathx) / Error Hunter (c) Aung Khant, aungkhant[at]yehg.net YGN Ethical Hacker Group, Myanmar, http://yehg.net/ svn co http://inspathx.googlecode.com/svn/trunk/ inspathx ============================================================= # target: http://localhost/phpids-0.6.5/ # source: /var/www/phpids-0.6.5/ # log file: localhost_phpids-0.6.5_.log # follow redirect: false # null cookie: false # total threads: 10 # time: 12:35:05 01-31-2011 [*] http://localhost/phpids-0.6.5/tests/IDS/InitTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/MonitorTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/ExceptionTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/FilterTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/EventTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/ReportTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/VersionTest.php [*] http://localhost/phpids-0.6.5/tests/IDS/CachingTest.php [*] http://localhost/phpids-0.6.5/tests/allTests.php [*] http://localhost/phpids-0.6.5/lib/IDS/Caching/Database.php [*] http://localhost/phpids-0.6.5/lib/IDS/Caching/Session.php [*] http://localhost/phpids-0.6.5/lib/IDS/Caching/Memcached.php [*] http://localhost/phpids-0.6.5/lib/IDS/Caching/File.php [*] http://localhost/phpids-0.6.5/lib/IDS/Caching/Apc.php [*] http://localhost/phpids-0.6.5/lib/IDS/Log/Database.php [*] http://localhost/phpids-0.6.5/lib/IDS/Log/Email.php [*] http://localhost/phpids-0.6.5/lib/IDS/Log/Composite.php [*] http://localhost/phpids-0.6.5/lib/IDS/Log/File.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/SafeObject.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Legacy.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/StyleAttribute.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/List.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Text.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Ruby.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Scripting.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Image.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Target.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Proprietary.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tables.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Presentation.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/XHTMLAndHTML4.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/Strict.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/Proprietary.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/Transitional.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/XHTML.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Tidy/Name.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/SafeEmbed.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Bdo.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/XMLCommonAttributes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Hypertext.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Edit.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/CommonAttributes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Forms.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Object.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/Name.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLModule/NonXMLCommonAttributes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/Tag.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/Text.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/End.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/Start.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/Comment.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Token/Empty.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/RemoveForeignElements.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/ValidateAttributes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/Composite.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/MakeWellFormed.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/FixNesting.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Strategy/Core.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Lexer/DOMLex.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Lexer/PH5P.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Lexer/DirectLex.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Lexer/PEARSax3.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/VarParser/Flexible.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/VarParser/Native.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigDef/Directive.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigDef/DirectiveAlias.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigDef/Namespace.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/StrictBlockquote.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Table.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Custom.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Chameleon.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Optional.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Empty.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef/Required.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/file.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/data.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/http.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/news.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/nntp.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/mailto.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/ftp.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIScheme/https.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Lang.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/SafeObject.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Length.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Input.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Textarea.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/SafeEmbed.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/ImgSpace.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/ImgRequired.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/EnumToCSS.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/NameSync.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/BdoDir.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/ScriptRequired.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/BoolToCSS.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/BgColor.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Background.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/SafeParam.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Border.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform/Name.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/SafeObject.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/Linkify.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/DisplayLinkURI.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/AutoParagraph.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/RemoveEmpty.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/RemoveSpansWithoutAttributes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Injector/PurifierLinkify.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema/Exception.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/Lang.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/Text.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Bool.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Length.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/LinkTypes.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Nmtokens.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/ID.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/MultiLength.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Class.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/FrameTarget.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Pixels.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML/Color.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/Email.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/IPv4.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/Email/SimpleCheck.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/IPv6.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/Host.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/Enum.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/Integer.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/ImportantDecorator.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Filter.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Length.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Font.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/BackgroundPosition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Composite.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Percentage.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Multiple.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/FontFamily.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/ListStyle.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Background.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/TextDecoration.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/AlphaValue.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Border.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Color.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/Number.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/URI.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS/DenyElementDecorator.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Filter/ExtractStyleBlocks.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Filter/YouTube.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/TagTransform/Font.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/TagTransform/Simple.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Language/classes/en-x-test.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Decorator.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Decorator/Cleanup.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Decorator/Memory.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/DefinitionCache/Null.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/Munge.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/DisableExternal.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/DisableResources.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/MakeAbsolute.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/HostBlacklist.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIFilter/DisableExternalResources.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/HTMLDefinition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/CSSDefinition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Printer/ConfigForm.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Printer/HTMLDefinition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/Printer/CSSDefinition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/URIDefinition.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier/VarParserException.php [*] http://localhost/phpids-0.6.5/lib/IDS/vendors/htmlpurifier/HTMLPurifier.autoload.php # waiting for child threads to finish .. ..... [*] http://localhost/phpids-0.6.5/docs/examples/cakephp/intrusion.php . [*] http://localhost/phpids-0.6.5/docs/examples/cakephp/ids.php .. # vulnerable url(s) = 174 # total requests = 258 # done at 12:35:08 01-31-2011 Send bugs, suggestions, contributions to inspathx[at]yehg.net
Log file
Here is the log file: http://dl.dropbox.com/u/10761700/localhost_phpids-0.6.5_.log.tar.gz