Categories: discovery, safe
Obtains the CakePHP version of a web application built with the CakePHP framework by fingerprinting default files shipped with the CakePHP framework.
This script queries the files 'vendors.php', 'cake.generic.css', 'cake.icon.png' and 'cake.icon.gif' to try to obtain the version of the CakePHP installation. Since installations that had been upgraded are prone to false positives due to old files that aren't removed, the script displays 3 different versions:
- Codebase: Taken from the existence of vendors.php (1.1.x or 1.2.x if it does and 1.3.x otherwise)
- Stylesheet: Taken from cake.generic.css
- Icon: Taken from cake.icon.gif or cake.icon.png
For more information about CakePHP visit: http://www.cakephp.org/.
smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusernameSee the documentation for the smbauth library.
http.max-cache-size, http.max-pipeline, http.pipeline, http.useragentSee the documentation for the http library.
nmap -p80,443 --script http-cakephp-version <host/ip>
PORT STATE SERVICE 80/tcp open http | http-cakephp-version: Version of codebase: 1.2.x | Version of icons: 1.2.x | Version of stylesheet: 1.2.6
Author: Paulino Calderon
License: Same as Nmap--See http://nmap.org/book/man-legal.html