Warning: mysqli::mysqli() [function.mysqli-mysqli]: (42000/1049): Unknown database 'metasploit' in /var/www/mutillidae/opendb.inc on line 3

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 148

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 254

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 255

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 256

Mutillidae: Born to be Hacked

Version: 2.1.19 Not Logged In

Site hacked...err...quality-tested with Samurai WTF, Backtrack, Firefox, Burp-Suite, Netcat, and these Mozilla Add-ons

Mutillidae
Channel

Developed by Adrian "Irongeek" Crenshaw and Jeremy Druin

Warning: mysqli::real_escape_string() [function.mysqli-real-escape-string]: Couldn't fetch mysqli in /var/www/mutillidae/capture-data.php on line 68

Warning: mysqli::query() [function.mysqli-query]: Couldn't fetch mysqli in /var/www/mutillidae/capture-data.php on line 118

Warning: main() [function.main]: Couldn't fetch mysqli in /var/www/mutillidae/capture-data.php on line 120

Error: Failure is always an option and this situation proves it

Line 120

Code 0

File /var/www/mutillidae/capture-data.php

Message Error executing query:

Trace #0 /var/www/mutillidae/index.php(469): include() #1 {main}

Diagnotic Information INSERT INTO captured_data(ip_address, hostname, port, user_agent_string, referrer, data, capture_date) VALUES ('172.10.10.1', '172.10.10.1', '41398', 'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)', '', 'page = capture-data.php ', now())

Did you setup/reset the DB?

Warning: mysqli::query() [function.mysqli-query]: Couldn't fetch mysqli in /var/www/mutillidae/classes/LogHandler.php on line 86

Warning: mysqli::close() [function.mysqli-close]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 3

Warning: main() [function.main]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 5

Warning: main() [function.main]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 5

Error: Failure is always an option and this situation proves it

Line 5

Code 0

File /var/www/mutillidae/closedb.inc

Message Error executing query. Connection error: - Error: -

Trace #0 /var/www/mutillidae/capture-data.php(158): require_once() #1 /var/www/mutillidae/index.php(469): include('/var/www/mutill...') #2 {main}

Diagnotic Information Error attempting to close MySQL connection.

Did you setup/reset the DB?

Capture Data

Back

Data Capture Page

This page is designed to capture any parameters sent and store them in a file and a database table. It loops through the POST and GET parameters and records them to a file named captured-data.txt. On this system, the file should be found at /var/www/mutillidae/captured-data.txt. The page also tries to store the captured data in a database table named captured_data. There is another page named captured-data.php that attempts to list the contents of this table.

The data captured on this request is: page = capture-data.php

Would it be possible to hack the hacker? Assume the hacker will view the captured requests with a web browser.