Skip to content
/ PHP-CodeIgniter-Version-Scanner Public
forked from ibnoe/PHP-CodeIgniter-Version-Scanner

Detects used CodeIgniter version of external site or application (old version).

License

MIT license
1 star 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hoksi/PHP-CodeIgniter-Version-Scanner

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
CodeIgniterVerifySources
CodeIgniterVerifySources
 
 
CodeIgniter_1.0b/CodeIgniter_1.0b
CodeIgniter_1.0b/CodeIgniter_1.0b
 
 
CodeIgniter_1.1b/CodeIgniter_1.1b
CodeIgniter_1.1b/CodeIgniter_1.1b
 
 
CodeIgniter_1.2/CodeIgniter_1.2
CodeIgniter_1.2/CodeIgniter_1.2
 
 
CodeIgniter_1.3.1/CodeIgniter_1.3.1
CodeIgniter_1.3.1/CodeIgniter_1.3.1
 
 
CodeIgniter_1.3.2/CodeIgniter_1.3.2
CodeIgniter_1.3.2/CodeIgniter_1.3.2
 
 
CodeIgniter_1.3.3/CodeIgniter_1.3.3
CodeIgniter_1.3.3/CodeIgniter_1.3.3
 
 
CodeIgniter_1.3/CodeIgniter_1.3
CodeIgniter_1.3/CodeIgniter_1.3
 
 
CodeIgniter_1.4.1/CodeIgniter_1.4.1
CodeIgniter_1.4.1/CodeIgniter_1.4.1
 
 
CodeIgniter_1.5.1/CodeIgniter_1.5.1
CodeIgniter_1.5.1/CodeIgniter_1.5.1
 
 
CodeIgniter_1.5.2/CodeIgniter_1.5.2
CodeIgniter_1.5.2/CodeIgniter_1.5.2
 
 
CodeIgniter_1.5.3/CodeIgniter_1.5.3
CodeIgniter_1.5.3/CodeIgniter_1.5.3
 
 
CodeIgniter_1.5.4/CodeIgniter_1.5.4
CodeIgniter_1.5.4/CodeIgniter_1.5.4
 
 
CodeIgniter_1.6.0/CodeIgniter_1.6.0
CodeIgniter_1.6.0/CodeIgniter_1.6.0
 
 
CodeIgniter_1.6.1/CodeIgniter_1.6.1
CodeIgniter_1.6.1/CodeIgniter_1.6.1
 
 
CodeIgniter_1.6.2/CodeIgniter_1.6.2
CodeIgniter_1.6.2/CodeIgniter_1.6.2
 
 
CodeIgniter_1.6.3/CodeIgniter_1.6.3
CodeIgniter_1.6.3/CodeIgniter_1.6.3
 
 
CodeIgniter_1.7.0/CodeIgniter_1.7.0
CodeIgniter_1.7.0/CodeIgniter_1.7.0
 
 
CodeIgniter_1.7.1/CodeIgniter_1.7.1
CodeIgniter_1.7.1/CodeIgniter_1.7.1
 
 
CodeIgniter_1.7.2/CodeIgniter_1.7.2
CodeIgniter_1.7.2/CodeIgniter_1.7.2
 
 
CodeIgniter_1.7.3/CodeIgniter_1.7.3
CodeIgniter_1.7.3/CodeIgniter_1.7.3
 
 
CodeIgniter_2.0.0/CodeIgniter_2.0.0
CodeIgniter_2.0.0/CodeIgniter_2.0.0
 
 
CodeIgniter_2.0.1/CodeIgniter_2.0.1
CodeIgniter_2.0.1/CodeIgniter_2.0.1
 
 
CodeIgniter_2.0.2/CodeIgniter_2.0.2
CodeIgniter_2.0.2/CodeIgniter_2.0.2
 
 
CodeIgniter_2.0.3/CodeIgniter_2.0.3
CodeIgniter_2.0.3/CodeIgniter_2.0.3
 
 
CodeIgniter_2.1.0/CodeIgniter_2.1.0
CodeIgniter_2.1.0/CodeIgniter_2.1.0
 
 
CodeIgniter_2.1.1/CodeIgniter_2.1.1
CodeIgniter_2.1.1/CodeIgniter_2.1.1
 
 
CodeIgniter_2.1.2/CodeIgniter_2.1.2
CodeIgniter_2.1.2/CodeIgniter_2.1.2
 
 
CodeIgniter_2.1.3/CodeIgniter_2.1.3
CodeIgniter_2.1.3/CodeIgniter_2.1.3
 
 
CodeIgniter_2.1.4/CodeIgniter_2.1.4
CodeIgniter_2.1.4/CodeIgniter_2.1.4
 
 
CodeIgniter_2.2.1/CodeIgniter_2.2.1
CodeIgniter_2.2.1/CodeIgniter_2.2.1
 
 
CodeIgniter_2.2.2/CodeIgniter_2.2.2
CodeIgniter_2.2.2/CodeIgniter_2.2.2
 
 
CodeIgniter_2.2.3/CodeIgniter_2.2.3
CodeIgniter_2.2.3/CodeIgniter_2.2.3
 
 
CodeIgniter_3.0.0/CodeIgniter_3.0.0
CodeIgniter_3.0.0/CodeIgniter_3.0.0
 
 
CodeIgniter_3.0rc/CodeIgniter_3.0rc
CodeIgniter_3.0rc/CodeIgniter_3.0rc
 
 
CodeIgniter_3.0rc2/CodeIgniter_3.0rc2
CodeIgniter_3.0rc2/CodeIgniter_3.0rc2
 
 
CodeIgniter_3.0rc3/CodeIgniter_3.0rc3
CodeIgniter_3.0rc3/CodeIgniter_3.0rc3
 
 
Change Log CodeIgniter User Guide.htm
Change Log CodeIgniter User Guide.htm
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
test.php
test.php
 
 

Repository files navigation

codeigniter-version-scanner

This concept version is outdated. The new script is located here: https://github.com/Calico90/codeigniter-version-tester/.

Purpose of this project is to make a scanner that can detect:

- If a website is using CodeIgniter
- What version of CodeIgniter is used

That can be helpfull to include in (automated) security scanners and used by penetration testers or for other purposes in IT Security. Hopefully developers will be better stimulated to update their CodeIgniter applications/websites.

This scanner can be build in PHP and in Python. The use of this scanner should be as easy as calling the script with a URL to be tested.

For now this is just a proof of concept. If you want to join this project, please contact me.

TODO's

- Finish PHP version of the scanner
- Find more detectable differences in CodeIgniter versions
- Make a similar Python version of the scanner
- Other improvements

Nice-to-have's

- It can be nice to include CVE warnings similar to WPScan
	http://www.cvedetails.com/version-list/6918/11625/1/Codeigniter-Codeigniter.html
- And other version specific security warnings like:
	https://github.com/Dionach/CodeIgniterXor - Session cookie decryption vulnerability 
	https://github.com/bcit-ci/CodeIgniter/pull/370 - SQL injection
	https://github.com/bcit-ci/CodeIgniter/pull/486 - MIME-type Injection
	https://github.com/bcit-ci/CodeIgniter/pull/606 - Potential SQL injection
	https://github.com/bcit-ci/CodeIgniter/pull/1366 - Code Injection
	https://github.com/bcit-ci/CodeIgniter/issues/1705 - XSS
	https://github.com/bcit-ci/CodeIgniter/issues/2667 - XSS
	https://github.com/bcit-ci/CodeIgniter/issues/2965 - XSS
	https://github.com/bcit-ci/CodeIgniter/issues/3189 - Template Injection
	https://github.com/bcit-ci/CodeIgniter/issues/3292 - XSS
	https://nealpoole.com/blog/2013/07/codeigniter-21-xss-clean-filter-bypass/ - XSS (CVE-2013-4891)

About

Detects used CodeIgniter version of external site or application (old version).

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • HTML 58.9%
  • PHP 40.1%
  • Other 1.0%