Are you using a specific (like WordPress or Joomla) or a custom PHP script ?
That said, here is how to use such dorks ethically: inurl commy indexphp id better
The "better" way to approach this keyword is not to find more sites to exploit, but to understand the footprint your own code leaves behind. In the modern web, (hiding your URLs) is never enough; only robust, sanitized coding practices will keep your data safe. Are you using a specific (like WordPress or