Directory and URL Prediction Vulnerabilities – Many websites, most notably adult-related websites offering pictures and files, leave their data open for others to see. These vulnerabilities often go undetected. This, of course may not be an issue to some, but many of these websites obtain their revenue through their sponsors, banners and membership fees. These types of vulnerabilities bypass sponsors, banners, membership sign-in areas, and most adult verification systems. For lack of better wording I have titled these types of vulnerabilities “Directory and URL Prediction”. In reality, this is what it comes down to. There are many methods of exploiting these vulnerabilities, and only a few will be covered in this document. Please keep in mind that the effectiveness of these tactics depends heavily on the ineffectiveness of the website’s security and design layout. I know some of you may have known these for years, but many have not. These vulnerabilities still exist today on the Internet.
You can download it from the following link: https://packetstormsecurity.com/files/download/22539/Directory-URL.prediction.doc
Source: https://packetstormsecurity.com/files/22539/Directory-URL.prediction.doc.html