Professional Documents
Culture Documents
Web Application Report Avaintcon Ex
Web Application Report Avaintcon Ex
Scan Information
Title Scan Type Launch Mode Start Date End Date Web Application Target URL Authentication Record Option Profile Web Application Vulnerability Scan - avaintcon.com Vulnerability Scheduled 08 Sep 2012 06:00AM GMT+0000 08 Sep 2012 09:20AM GMT+0000 avaintcon.com http://avaintcon.com/ None Initial WAS Options
Scan Summary
Security Risk Authentication Status None 00:08:27 273 Links 7161 Links 03:10:31 95,117
Crawling Phase
Crawl Duration # Links Crawled # Links In Queue
Findings By Type
Level 1 6 0 0 10
Level 2 0 0 46 0
Level 3 0 0 0 1
Level 4 0 0 0 0
Level 5 6 0 0 0
Total 12 0 46 11
Vulnerabilities by OWASP
Code A-1 A-2 A-3 A-4 A-5 A-6 A-7 A-8 A-9 A-10
# Vulns 0 12 0 46 0 1 0 46 0 0
Results
150001 / Cross-Site Scripting (XSS)
Solution:
Result :
ers&search_app_filters[forums][noPreview]=1%20%3Cscript%3E_q_q%3Drandom()%3C%2Fscript%3E&search_app_filters[members][members][sortKey]=date&search_app_filters[members][ members][sortDir]=0&search_app_filters[members][comments][sortKey]=date&search_date_end=1&search_app_filters[forums][pCount]=1&search_app_filters[members][comments][sortDir]=0& search_app_filters[forums][pViews]=1&submit=Search%20Now ums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[foru ms][sortDir]=0&search_app_filters[forums][noPreview]=1 <script>_q_q=random()</script>&search_app_filters[forums][pCount]=1&search_app_filters[forums][pViews]=1&search_app_filters[forums][searchInKey]=&search_term=1& amp;search_app=forums'>Forums</a></li><li ><a href='http://avaintcon.com/forums/index.php? %00<script>_q=random(@REQUESTID@)</script> [sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[forums][s ortDir]=0&search_app_filters[forums][noPreview]=<script>_q=random(X157834420Y14Z)</script>&search_app_filters[forums][pCount]=1&search_app_filters[forums][pViews]=1 &search_app_filters[forums][searchInKey]=&search_term=1&search_app=forums'>Forums</a></li><li ><a href='http://avaintcon.com/forums/inde search_app=forums&search_term=1&andor_type=and&search_content=both&search_tags=1&search_app_filters[core][sortKey]=date&search_author=1&search_app_filters[core][sortDir]=0&se arch_date_start=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[members][searchInKey]=memb ers&search_app_filters[forums][noPreview]=%22'%3E%3Cqqs%20%60%3b!-%3D%26%7b()%7d%3E&search_app_filters[members][members][sortKey]=date&search_app_filters[members][members][sortDir]=0&search_app_filters[members][comments][sortKey]=date&s earch_date_end=1&search_app_filters[forums][pCount]=1&search_app_filters[members][comments][sortDir]=0&search_app_filters[forums][pViews]=1&submit=Search%20Now s[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[f orums][sortDir]=0&search_app_filters[forums][noPreview]="'><qqs `;!-=&{()}>&search_app_filters[forums][pCount]=1&search_app_filters[forums][pViews]=1&search_app_filters[forums][searchInKey]=&search_term=1&search_app=forums' >Forums</a></li><li ><a href='http://avaintcon.com/forums/index.php?app=cor '%20onEvent=@REQUESTID@%20 ='active'><a href='http://avaintcon.com/forums/index.php?app=core&module=search&do=search&andor_type=and&sid=e6a1fec63d100798fa3b4773043fd7a1&search_author=1&a mp;search_date_start=1&search_date_end=1&search_app_filters[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=d ate&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[forums][noPreview]=' onEvent=X1578344 "%20onEvent=@REQUESTID@%20 comment: A significant portion of the XSS test payload appeared in the web page, but the page's DOM was not modified as expected for a successful exploit. This result should be manually verified to determine its accuracy. ='active'><a href='http://avaintcon.com/forums/index.php?app=core&module=search&do=search&andor_type=and&sid=d11ef30f7a3e33b8814dc477a250717c&search_author=1&a mp;search_date_start=1&search_date_end=1&search_app_filters[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=d ate&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[forums][noPreview]=" onEvent=X1578344
Payload : Result :
Payload :
Result :
Payload : Result :
Payload : Result :
Payload :
Result :
search_app=forums&search_term=1&andor_type=and&search_content=both&search_tags=1&search_app_filters[core][sortKey]=date&search_author=1&search_app_filters[core][sortDir]=0&se arch_date_start=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[members][searchInKey]=memb ers&search_app_filters[forums][noPreview]=%22'%3E%3Cqss%3E&search_app_filters[members][members][sortKey]=date&search_app_filters[members][members][sortDir]=0&search_app_filt ers[members][comments][sortKey]=date&search_date_end=1&search_app_filters[forums][pCount]=1&search_app_filters[members][comments][sortDir]=0&search_app_filters[forums][pViews]= 1&submit=Search%20Now filters[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filt ers[forums][sortDir]=0&search_app_filters[forums][noPreview]="'><qss>&search_app_filters[forums][pCount]=1&search_app_filters[forums][pViews]=1&search_app_filters[f orums][searchInKey]=&search_term=1&search_app=forums'>Forums</a></li><li ><a href='http://avaintcon.com/forums/index.php?app=core& "'><qss%20a=@REQUESTID@> forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[for ums][sortDir]=0&search_app_filters[forums][noPreview]="'><qss a=X157834420Y14Z>&search_app_filters[forums][pCount]=1&search_app_filters[forums][pViews]=1&search_app_filters[forums][searchInKey]=&search_term=1&searc h_app=forums'>Forums</a></li><li ><a href='http://avaintcon.com/forums/index.php?app=
Payload : Result :
150001
Solution:
http://avaintcon.com/forums/index.php?app=core&do=search&fromMainBar=1&module=search "%20onEvent=@REQUESTID@%20 comment: A significant portion of the XSS test payload appeared in the web page, but the page's DOM was not modified as expected for a successful exploit. This result should be manually verified to determine its accuracy. ='active'><a href='http://avaintcon.com/forums/index.php?app=core&module=search&do=search&andor_type=and&sid=cac440f35c9bc195cecc12b2faf8d522&search_author=1&a mp;search_date_start=1&search_date_end=1&search_app_filters[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]=d ate&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[forums][noPreview]=1&search_app_f
Payload : Result :
"'><qss%20a=@REQUESTID@> ters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[forums][noPreview]=1&search_app_filters[foru ms][pCount]=1&search_app_filters[forums][pViews]="'><qss a=X157834420Y21Z>&search_app_filters[forums][searchInKey]=&search_term=1&search_app=forums'>Forums</a></li><li ><a href='http://avaintcon.com/forums/index.php?app=core&module=search&do=search&andor_type=and&sid=53cf79908af7130e60 '%20onEvent=@REQUESTID@%20 ='active'><a href='http://avaintcon.com/forums/index.php?app=core&module=search&do=search&andor_type=and&sid=69a301938ebcc64e831355c0413a083f&search_author=1& amp;search_date_start=1&search_date_end=1&search_app_filters[forums][sortKey]=date&search_content=both&search_tags=1&search_app_filters[forums][sortKey]= date&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[forums][noPreview]=1&search_app_f search_app=forums&search_term=1&andor_type=and&search_content=both&search_tags=1&search_app_filters[core][sortKey]=date&search_author=1&search_app_filters[core][sortDir]=0&se arch_date_start=1&search_app_filters[forums][sortKey]=date&search_app_filters[forums][forums][]=5&search_app_filters[forums][sortDir]=0&search_app_filters[members][searchInKey]=memb ers&search_app_filters[forums][noPreview]=1&search_app_filters[members][members][sortKey]=date&search_app_filters[members][members][sortDir]=0&search_app_filters[members][comme nts][sortKey]=date&search_date_end=1&search_app_filters[forums][pCount]=1&search_app_filters[members][comments][sortDir]=0&search_app_filters[forums][pViews]=1%20%3Cscript%3E_
Payload : Result :
Payload :