Warning: mysqli::mysqli() [function.mysqli-mysqli]: (42000/1049): Unknown database 'metasploit' in /var/www/mutillidae/opendb.inc on line 3

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 148

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 254

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 255

Warning: Cannot modify header information - headers already sent by (output started at /var/www/mutillidae/opendb.inc:3) in /var/www/mutillidae/index.php on line 256
Mutillidae: Born to be Hacked
Version: 2.1.19 Not Logged In
Home Login/Register Toggle Hints Toggle Security Reset DB View Log View Captured Data

OWASP
Site hacked...err...quality-tested with Samurai WTF, Backtrack, Firefox, Burp-Suite, Netcat, and these Mozilla Add-ons
 
 
Twitter
@webpwnized
 
YouTube
Mutillidae
Channel
 
Developed by Adrian "Irongeek" Crenshaw and Jeremy Druin
Login
"Secret" administrative or configuration pages
Showing server configurations on pages allowed through the firewall is a bad idea. "Hiding" pages by not linking to them so you believe you are the only one who knows the URL doesnt work. There are tools to brute force the URL, shoulder surfing, log history, browser history, router-firewall-proxy history, scanners, guessing and other methods can get these URLs. or admin functions, create a second site inside the firewall to segregate these pages from the Internet facing site.
I wonder what clever name the server admin would give to a PHP page that shows server configuration information? Hint: What is the function in PHP that dumps server configuration information into a nice table? Enable hints if you need more help.
 
Browser: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
PHP Version: 5.2.4-2ubuntu5.10
The newest version of Mutillidae can downloaded from Irongeek's Site

Warning: mysqli::query() [function.mysqli-query]: Couldn't fetch mysqli in /var/www/mutillidae/classes/LogHandler.php on line 86

Warning: mysqli::close() [function.mysqli-close]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 3

Warning: main() [function.main]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 5

Warning: main() [function.main]: Couldn't fetch mysqli in /var/www/mutillidae/closedb.inc on line 5
 
Error: Failure is always an option and this situation proves it
Line5
Code0
File/var/www/mutillidae/closedb.inc
MessageError executing query. Connection error: - Error: -
Trace#0 /var/www/mutillidae/index.php(488): require_once() #1 {main}
Diagnotic InformationError attempting to close MySQL connection.
Did you setup/reset the DB?