XSS, Cross Site Scripting in barkerstores.com, CWE-79, CAPEC-86, DORK, GHDB

- /soundings/default.aspx

/soundings/default.aspx CONFIRMED

https://www.barkerstores.com/soundings/default.aspx

Identified Cookie

chk_support

Request

GET /soundings/default.aspx HTTP/1.1
Referer: https://www.barkerstores.com/soundings/default.aspx?action=pymt
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.barkerstores.com
Cookie: ASPSESSIONIDAUDTCBQA=OIBLIPKCPLLGMFGOENEDILFM; ASP.NET_SessionId=e0w2qz452dwoe3rh5o55vcfc; chk_support=check; SOU_CustID=SOU17608; SOU_CartID=SOU-16305067-5111
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: chk_support=check; path=/
X-Powered-By: ASP.NET
Date: Sun, 01 May 2011 17:11:31 GMT
Content-Length: 25323

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<title>Soundings Online Catalog</title>
<meta name="GENERATOR" content="Microsoft Visual Studio.NET 7.0">
<meta name="CODE_LANGUAGE" content="Visual Basic 7.0">
<meta name="vs_defaultClientScript" content="JavaScript">
<meta name="vs_targetSchema" content="http://schemas.microsoft.com/intellisense/ie5">
<link href="Styles.css" type="text/css" rel="stylesheet">
<script language="JavaScript" src="pupdate.js">

/*
Popup calendar script by Sev Kotchnev (webmaster@personal-connections.com)
For full source code and installation instructions to this script
Visit http://www.dynamicdrive.com
*/

</script>
</HEAD>
<body>
<form name="Form1" method="post" action="default.aspx" id="Form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMTQzMTg0MjI2OA9kFgICAQ9kFggCAQ9kFgJmD2QWAgIBDxAPFgIeC18hRGF0YUJvdW5kZ2QQFQUMVW5kZXIgJDE1LjAwDyQxNS4wMCAtICQyOS45OQ8kMzAuMDAgLSAkNDkuOTkPJDUwLjAwIC0gJDc1LjAwC092ZXIgJDc1LjAwFQUBQQFCAUMBRAFFFCsDBWdnZ2dnZGQCAw9kFgJmD2QWAgIDD2QWCgIBDw8WAh4HVmlzaWJsZWdkZAICDzwrAAsBAA8WAh8BaGRkAgQPDxYCHgRUZXh0BQUkMC4wMGRkAgYPDxYCHwIFBSQwLjAwZGQCCA8PFgIeC05hdmlnYXRlVXJsBSMuLi9kZWZhdWx0LmFzcHg/YWN0aW9uPXNob3BwaW5nY2FydGRkAgUPZBYCZg9kFgQCAQ9kFgICAQ8PFgIfAWdkZAIDDzwrAAkBAA8WBB4IRGF0YUtleXMWAB4LXyFJdGVtQ291bnQCBGQWCGYPZBYOZg8VAgVTT1UyMAFGZAIBDxUCBVNPVTIwAUZkAgIPFQMNTWlzY2VsbGFuZW91cwVTT1UyMAFGZAIDDxUBEkNlcmFtaWMgQ29mZmVlIE11Z2QCBA8PFgIfAWdkFgQCAQ8PFgIfAgUFJDYuNTBkZAIDDw8WAh8CBQUkNC41MGRkAgUPDxYCHwFoZBYCAgEPDxYCHwIFBSQ2LjUwZGQCBg8VAgVTT1UyMAFGZAICD2QWDmYPFQIFU09VMTUBRGQCAQ8VAgVTT1UxNQFEZAICDxUDFVBvbG8ncyAmIERyZXNzIFNoaXJ0cwVTT1UxNQFEZAIDDxUBLE1lbidzIEN1dHRlciAmIEJ1Y2sgRHJ5VGVjIENoYW1waW9uc2hpcCBQb2xvZAIEDw8WAh8BZ2QWBAIBDw8WAh8CBQYkMzQuNTBkZAIDDw8WAh8CBQYkMjYuNTBkZAIFDw8WAh8BaGQWAgIBDw8WAh8CBQYkMzQuNTBkZAIGDxUCBVNPVTE1AURkAgQPZBYOZg8VAgVTT1UxOQFFZAIBDxUCBVNPVTE5AUVkAgIPFQMEQmFncwVTT1UxOQFFZAIDDxUBI0F0Y2hpc29uIENvcmFsIFJlZWYgQ2FudmFzIEJvYXQgQmFnZAIEDw8WAh8BZ2QWBAIBDw8WAh8CBQYkMjUuMDBkZAIDDw8WAh8CBQYkMTcuOTVkZAIFDw8WAh8BaGQWAgIBDw8WAh8CBQYkMjUuMDBkZAIGDxUCBVNPVTE5AUVkAgYPZBYOZg8VAgVTT1UxMgFDZAIBDxUCBVNPVTEyAUNkAgIPFQMMVCdzICYgU3dlYXRzBVNPVTEyAUNkAgMPFQEhUGlnbWVudCBEeWVkIENyZXcgTmVjayBTd2VhdHNoaXJ0ZAIEDw8WAh8BZ2QWBAIBDw8WAh8CBQYkMjkuOTVkZAIDDw8WAh8CBQYkMjQuMDBkZAIFDw8WAh8BaGQWAgIBDw8WAh8CBQYkMjkuOTVkZAIGDxUCBVNPVTEyAUNkAgcPZBYCAgEPDxYCHwIFBDIwMTFkZGSrLCo5+1YAAPd7w/NvSckmDLsybw==" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['Form1'];
if (!theForm) {
theForm = document.Form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>

<div>

<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWCQK62ZD2AwKQ2/2GAQKR2/2GAQKS2/2GAQKT2/2GAQKU2/2GAQLax6XVAgKC69WjBAKBlPqqCaGIWAggG3ILupCT7B1zUpr9frol" />
</div>
<div align="center">
<table width="100%" height="100%" cellpadding="0" cellspacing="0" border="0" bgcolor="#ffffff">
<tr><td><img src="images/spacer.gif" height="10"/></td></tr>
<tr>
<td valign="top" align="center">
<table width="760" cellspacing="0" cellpadding="0" border="0">
<tr><td id="pageHeaderCell" colspan="2" height="175">
<table width="100%" height="175" cellspacing="0" cellpadding="0" border="0" style="BACKGROUND-IMAGE: url(images/header.jpg); BACKGROUND-REPEAT: no-repeat">
<tr>
<td valign="top">
<table width="170" cellpadding="0" border="0" style="MARGIN-TOP: 5px; MARGIN-LEFT: 165px">
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="default.aspx" class="LeftNavBlue">Catalog Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="http://www.soundingsonline.com" class="LeftNavBlue" target="_blank">Soundings
Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" bgcolor="#29719c" cellpadding="2" border="0">
<tr>
<td class="cool8Ltblue">Shop by Price:</td>
</tr>
<tr>
<td><select name="ctl00$ddlCostSearch" id="ctl00_ddlCostSearch" class="ddlCtrl">
<option value="A">Under $15.00</option>
<option value="B">$15.00 - $29.99</option>
<option value="C">$30.00 - $49.99</option>
<option value="D">$50.00 - $75.00</option>
<option value="E">Over $75.00</option>

</select><img src="images/spacer.gif" width="5"><a id="ctl00_lbCostGo" class="navLtBlue" href="javascript:__doPostBack('ctl00$lbCostGo','')">GO</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td id="leftNavigationCell" valign="top" width="155" height="100%">
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0">
<tr>
<td valign="top">
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0" bgcolor="#bddff7">
<tr>
<td><img src="images/spacer.gif" height="2"></td>
</tr>
<tr>
<td><div id="ctl01_pnlCats">
<table width="155" cellspacing="3" cellpadding="0" border="0" border="0">
<tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=A">Hats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=B">Outerwear</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=C">T's & Sweats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=D">Polo's & Dress Shirts</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=E">Bags</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=F">Miscellaneous</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr>
</table>
</div></td>
</tr>
<tr>
<td vAlign="top" align="center">
<table width="96%" bgcolor="#ffffff" cellpadding="0" cellspacing="0" border="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c" height="20"><img src="images/spacer.gif" width="5">Cart
Snapshot:</td>
</tr>
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td align="center">
<table cellSpacing="0" cellPadding="0" width="95%" border="0">
<tr>
<td height="1"><span id="ctl01_cart_lblEmptyMsg" class="cool8">Your cart is empty</span></td>
</tr>

<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td class="cool8" align="right" height="1">Sub Total: <span id="ctl01_cart_lblCartTotal" class="cool8">$0.00</span></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>

<tr>
<td class="cool8" align="right" height="1">Tax*: <span id="ctl01_cart_lblTax" class="cool8">$0.00</span><br>
<font class="cool7">*If shipping to CT</font></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td align="center">
<table cellPadding="0" width="90%" border="0">
<tr>
<td align="center"><a id="ctl01_cart_HypViewCart" class="headerNav" href="default.aspx?action=shoppingcart">View Cart</a></td>

<td width="1"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td><img src="images/spacer.gif" height="4"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" cellpadding="2" border="0" cellspacing="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c">Need Help?:</td>
</tr>
<tr>
<td align="center">
<table width="80%">
<tr>
<td><a href="default.aspx?action=sitemap" class="LeftNavBlue">Site Map</a></td>
</tr>
<tr>
<td><a href="default.aspx?action=service" class="LeftNavBlue">Customer Service</a></td>
</tr>
<tr>
<td><a href="default.aspx" class="LeftNavBlue">1-800-BARKERS</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="17"><img src="images/nav_bottom_curve.jpg"></td>
</tr>
<tr>
<td height="*" bgcolor="#ffffff"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="*"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>

<td id="pageContentsCell" valign="top" width="580">
<table width="100%" height="100%" cellspacing="0" cellpadding="0" border="0">
<tr>
<td>
<table>
<TBODY>
<tr>
<td valign="top">

<table width="95%">
<tr>
<td><img src="images/welcome.jpg"></td>
</tr>
<tr>
<td class="cool8blk">Here you will find quality products displaying the Soundings
logo proudly. Be sure to come back often, as new and exciting products will be
added. To begin shopping, select a product category from above. To browse by
product price, select a price category from the left.
</td>
</tr>
</table>
</td>
<td width="200">

<table cellSpacing="0" cellPadding="0" border="0">
<tr>
<td height="50"><IMG src="images/left_gray_curve.jpg"></td>
<td bgColor="#dedfde" height="50">
<table>
<tr>
<td><div id="ctl02_login_pnlNo">

<TABLE border="0">
<TR>
<TD class="cool8blk">Corporate Code:<BR>
<input name="ctl02$login$txtPassword" type="password" id="ctl02_login_txtPassword" class="txBox" style="width:85px;" />
</TD>
<TD vAlign="bottom" align="center" width="65">
<a id="ctl02_login_lbLogin" href="javascript:__doPostBack('ctl02$login$lbLogin','')">ENTER</a></TD>
</TR>
</TABLE>

</div></td>
</tr>
<tr>
<td></td>
</tr>
</table>
</td>
<td><IMG src="images/right_gray_curve.jpg"></td>
</tr>
</table>
</td>
</td>
</tr>
</table></TD></TR>
<tr>
<td valign="top" width="400">
<table width="100%" cellspacing="5" cellpadding="5" border="0">

<tr>
<td><img src="images/feat_prod.jpg"></td>
</tr>
&l..

- /soundings/default.aspx

GET /soundings/default.aspx?action=details&showme=SOU20&cat=F&cost= HTTP/1.1
Referer: https://www.barkerstores.com/soundings/default.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.barkerstores.com
Cookie: ASPSESSIONIDAUDTCBQA=OIBLIPKCPLLGMFGOENEDILFM; ASP.NET_SessionId=e0w2qz452dwoe3rh5o55vcfc; chk_support=check; SOU_CustID=SOU17608; SOU_CartID=SOU-16305067-5111
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: chk_support=check; path=/
X-Powered-By: ASP.NET
Date: Sun, 01 May 2011 17:11:44 GMT
Content-Length: 21771

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<title>Soundings Online Catalog</title>
<meta name="GENERATOR" content="Microsoft Visual Studio.NET 7.0">
<meta name="CODE_LANGUAGE" content="Visual Basic 7.0">
<meta name="vs_defaultClientScript" content="JavaScript">
<meta name="vs_targetSchema" content="http://schemas.microsoft.com/intellisense/ie5">
<link href="Styles.css" type="text/css" rel="stylesheet">
<script language="JavaScript" src="pupdate.js">

/*
Popup calendar script by Sev Kotchnev (webmaster@personal-connections.com)
For full source code and installation instructions to this script
Visit http://www.dynamicdrive.com
*/

</script>
</HEAD>
<body>
<form name="Form1" method="post" action="default.aspx?action=details&showme=SOU20&cat=F&cost=" id="Form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__LASTFOCUS" id="__LASTFOCUS" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="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" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['Form1'];
if (!theForm) {
theForm = document.Form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>

<div>

<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWEAL7sP7WCgKQ2/2GAQKR2/2GAQKS2/2GAQKT2/2GAQKU2/2GAQLax6XVAgKx7aC/DQK8ya+TCAKQw5yfCAKH4rfhCgLXobXLCQKD+JT1DwKC69WjBAKBlPqqCQLd2oarBs30wMU3uncA6z9blF1sxdqOnCa/" />
</div>
<div align="center">
<table width="100%" height="100%" cellpadding="0" cellspacing="0" border="0" bgcolor="#ffffff">
<tr><td><img src="images/spacer.gif" height="10"/></td></tr>
<tr>
<td valign="top" align="center">
<table width="760" cellspacing="0" cellpadding="0" border="0">
<tr><td id="pageHeaderCell" colspan="2" height="175">
<table width="100%" height="175" cellspacing="0" cellpadding="0" border="0" style="BACKGROUND-IMAGE: url(images/header.jpg); BACKGROUND-REPEAT: no-repeat">
<tr>
<td valign="top">
<table width="170" cellpadding="0" border="0" style="MARGIN-TOP: 5px; MARGIN-LEFT: 165px">
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="default.aspx" class="LeftNavBlue">Catalog Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="http://www.soundingsonline.com" class="LeftNavBlue" target="_blank">Soundings
Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" bgcolor="#29719c" cellpadding="2" border="0">
<tr>
<td class="cool8Ltblue">Shop by Price:</td>
</tr>
<tr>
<td><select name="ctl00$ddlCostSearch" id="ctl00_ddlCostSearch" class="ddlCtrl">
<option value="A">Under $15.00</option>
<option value="B">$15.00 - $29.99</option>
<option value="C">$30.00 - $49.99</option>
<option value="D">$50.00 - $75.00</option>
<option value="E">Over $75.00</option>

</select><img src="images/spacer.gif" width="5"><a id="ctl00_lbCostGo" class="navLtBlue" href="javascript:__doPostBack('ctl00$lbCostGo','')">GO</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td id="leftNavigationCell" valign="top" width="155" height="100%">
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0">
<tr>
<td valign="top">
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0" bgcolor="#bddff7">
<tr>
<td><img src="images/spacer.gif" height="2"></td>
</tr>
<tr>
<td><div id="ctl01_pnlCats">
<table width="155" cellspacing="3" cellpadding="0" border="0" border="0">
<tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=A">Hats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=B">Outerwear</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=C">T's & Sweats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=D">Polo's & Dress Shirts</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=E">Bags</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=F">Miscellaneous</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr>
</table>
</div></td>
</tr>
<tr>
<td vAlign="top" align="center">
<table width="96%" bgcolor="#ffffff" cellpadding="0" cellspacing="0" border="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c" height="20"><img src="images/spacer.gif" width="5">Cart
Snapshot:</td>
</tr>
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td align="center">
<table cellSpacing="0" cellPadding="0" width="95%" border="0">
<tr>
<td height="1"><span id="ctl01_cart_lblEmptyMsg" class="cool8">Your cart is empty</span></td>
</tr>

<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td class="cool8" align="right" height="1">Sub Total: <span id="ctl01_cart_lblCartTotal" class="cool8">$0.00</span></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>

<tr>
<td class="cool8" align="right" height="1">Tax*: <span id="ctl01_cart_lblTax" class="cool8">$0.00</span><br>
<font class="cool7">*If shipping to CT</font></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td align="center">
<table cellPadding="0" width="90%" border="0">
<tr>
<td align="center"><a id="ctl01_cart_HypViewCart" class="headerNav" href="default.aspx?action=shoppingcart">View Cart</a></td>

<td width="1"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td><img src="images/spacer.gif" height="4"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" cellpadding="2" border="0" cellspacing="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c">Need Help?:</td>
</tr>
<tr>
<td align="center">
<table width="80%">
<tr>
<td><a href="default.aspx?action=sitemap" class="LeftNavBlue">Site Map</a></td>
</tr>
<tr>
<td><a href="default.aspx?action=service" class="LeftNavBlue">Customer Service</a></td>
</tr>
<tr>
<td><a href="default.aspx" class="LeftNavBlue">1-800-BARKERS</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="17"><img src="images/nav_bottom_curve.jpg"></td>
</tr>
<tr>
<td height="*" bgcolor="#ffffff"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="*"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>

<td id="pageContentsCell" valign="top" width="580">
<table height="100%" cellSpacing="2" cellPadding="2" width="100%" border="0">
<tr>
<td align="left" height="1">
<table width="100%">
<tr>
<td class="cool8" vAlign="bottom" width="210"><img src="images/arrow_circle.jpg" id="ctl02_imgBullet" name="imgBullet" align="absBottom" /> <a id="ctl02_lbBack" class="leftNavBlue" href="javascript:__doPostBack('ctl02$lbBack','')"><span id="ctl02_lblCatName">Miscellaneous</span></a></td>
<td width="*"><span id="ctl02_lblItem" class="cool10blkbld">Ceramic Coffee Mug</span></td>
</tr>
</table>
</td>
</tr>
<tr>
<td vAlign="top" align="center" width="100%" bgColor="#ffffff" height="1">
<table width="100%">
<tr>
<td vAlign="top" align="center" width="225">
<table>
<tr>
<td height="200"><img id="ctl02_imgProduct" src="images/details/SOU20.jpg" style="border-width:0px;" /></td>
</tr>
<tr>
<td class="cool8" align="center">Item # <span id="ctl02_lblCatItemNo">SOU-20</span></td>
</tr>
<tr>
<td align="center"><a id="ctl02_hypEnlarge" href="javascript:mywindow=window.open('zoomer.aspx?showme=SOU20&w=400&h=300','mywindow', 'height=370, width=400');mywindow.focus();"><img src="images/mag.jpg" border="0" align="absmiddle" />View Enlarged Image</a></td>
</tr>
</table>
</td>
<td vAlign="top">
<table cellPadding="4" width="90%">
<tr>
<td class="cool9" height="1"><div id="ctl02_pnlDesc">
<table>
<tr>
<td><img src="images/bullet.gif" /></td>
<td><span class="cool8blk">Ceramic 17 oz. duo tone mug</span></td>
</tr>
<tr>
<td><img src="images/bullet.gif" /></td>
<td><span class="cool8blk">Imprinted on two sides in two color logo</span></td>
</tr>
</table>

</div></td>
</tr>
<tr>
<td class="cool9" height="1"><span id="ctl02_lblStock"></span></td>
&..

- /

/ CONFIRMED

https://www.barkerstores.com/

Identified Cookie

ASPSESSIONIDAUDTCBQA

Request

GET / HTTP/1.1
Referer: https://www.barkerstores.com/soundings/default.aspx?action=pymt
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.barkerstores.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 302 Object moved
Cache-Control: private
Content-Length: 131
Content-Type: text/html
Location: index.html
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDAUDTCBQA=OIBLIPKCPLLGMFGOENEDILFM; secure; path=/
X-Powered-By: ASP.NET
Date: Sun, 01 May 2011 17:11:31 GMT

<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="index.html">here</a>.</body>

- /soundings/

GET /soundings/default.aspx?action=cats&cat=C HTTP/1.1
Referer: https://www.barkerstores.com/soundings/default.aspx?action=pymt
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.barkerstores.com
Cookie: ASPSESSIONIDAUDTCBQA=OIBLIPKCPLLGMFGOENEDILFM; ASP.NET_SessionId=e0w2qz452dwoe3rh5o55vcfc; chk_support=check; SOU_CustID=SOU17608; SOU_CartID=SOU-16305067-5111
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: chk_support=check; path=/
X-Powered-By: ASP.NET
Date: Sun, 01 May 2011 17:11:31 GMT
Content-Length: 24354

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<title>Soundings Online Catalog</title>
<meta name="GENERATOR" content="Microsoft Visual Studio.NET 7.0">
<meta name="CODE_LANGUAGE" content="Visual Basic 7.0">
<meta name="vs_defaultClientScript" content="JavaScript">
<meta name="vs_targetSchema" content="http://schemas.microsoft.com/intellisense/ie5">
<link href="Styles.css" type="text/css" rel="stylesheet">
<script language="JavaScript" src="pupdate.js">

/*
Popup calendar script by Sev Kotchnev (webmaster@personal-connections.com)
For full source code and installation instructions to this script
Visit http://www.dynamicdrive.com
*/

</script>
</HEAD>
<body>
<form name="Form1" method="post" action="default.aspx?action=cats&cat=C" id="Form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="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" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['Form1'];
if (!theForm) {
theForm = document.Form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>

<div>

<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBwK7vv3qBgKQ2/2GAQKR2/2GAQKS2/2GAQKT2/2GAQKU2/2GAQLax6XVAszRqgvXxgQour++KhHC/cho+L6+" />
</div>
<div align="center">
<table width="100%" height="100%" cellpadding="0" cellspacing="0" border="0" bgcolor="#ffffff">
<tr><td><img src="images/spacer.gif" height="10"/></td></tr>
<tr>
<td valign="top" align="center">
<table width="760" cellspacing="0" cellpadding="0" border="0">
<tr><td id="pageHeaderCell" colspan="2" height="175">
<table width="100%" height="175" cellspacing="0" cellpadding="0" border="0" style="BACKGROUND-IMAGE: url(images/header.jpg); BACKGROUND-REPEAT: no-repeat">
<tr>
<td valign="top">
<table width="170" cellpadding="0" border="0" style="MARGIN-TOP: 5px; MARGIN-LEFT: 165px">
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="default.aspx" class="LeftNavBlue">Catalog Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="20"><a href="http://www.soundingsonline.com" class="LeftNavBlue" target="_blank">Soundings
Home Page</a></td>
</tr>
<tr>
<td bgcolor="#29719c"><img src="images/spacer.gif"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" bgcolor="#29719c" cellpadding="2" border="0">
<tr>
<td class="cool8Ltblue">Shop by Price:</td>
</tr>
<tr>
<td><select name="ctl00$ddlCostSearch" id="ctl00_ddlCostSearch" class="ddlCtrl">
<option value="A">Under $15.00</option>
<option value="B">$15.00 - $29.99</option>
<option value="C">$30.00 - $49.99</option>
<option value="D">$50.00 - $75.00</option>
<option value="E">Over $75.00</option>

</select><img src="images/spacer.gif" width="5"><a id="ctl00_lbCostGo" class="navLtBlue" href="javascript:__doPostBack('ctl00$lbCostGo','')">GO</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td id="leftNavigationCell" valign="top" width="155" height="100%">
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0">
<tr>
<td valign="top">
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" height="100%" border="0" bgcolor="#bddff7">
<tr>
<td><img src="images/spacer.gif" height="2"></td>
</tr>
<tr>
<td><div id="ctl01_pnlCats">
<table width="155" cellspacing="3" cellpadding="0" border="0" border="0">
<tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=A">Hats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=B">Outerwear</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=C">T's & Sweats</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=D">Polo's & Dress Shirts</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=E">Bags</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr><tr>
<td class="leftNavCell" valign="middle"><img src="images/spacer.gif" width="20" height="1" /><a class="LeftNavBlue" href="default.aspx?action=cats&cat=F">Miscellaneous</a></td>
</tr><tr>
<td class="spacerNavCell" height="1" bgcolor="#29719c"><img src="images/spacer.gif" /></td>
</tr>
</table>
</div></td>
</tr>
<tr>
<td vAlign="top" align="center">
<table width="96%" bgcolor="#ffffff" cellpadding="0" cellspacing="0" border="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c" height="20"><img src="images/spacer.gif" width="5">Cart
Snapshot:</td>
</tr>
<tr>
<td>
<table cellSpacing="0" cellPadding="0" width="100%" border="0">
<tr>
<td align="center">
<table cellSpacing="0" cellPadding="0" width="95%" border="0">
<tr>
<td height="1"><span id="ctl01_cart_lblEmptyMsg" class="cool8">Your cart is empty</span></td>
</tr>

<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td class="cool8" align="right" height="1">Sub Total: <span id="ctl01_cart_lblCartTotal" class="cool8">$0.00</span></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>

<tr>
<td class="cool8" align="right" height="1">Tax*: <span id="ctl01_cart_lblTax" class="cool8">$0.00</span><br>
<font class="cool7">*If shipping to CT</font></td>
</tr>
<tr>
<td height="1">
<hr color="#dedfde" SIZE="1">
</td>
</tr>
<tr>
<td align="center">
<table cellPadding="0" width="90%" border="0">
<tr>
<td align="center"><a id="ctl01_cart_HypViewCart" class="headerNav" href="default.aspx?action=shoppingcart">View Cart</a></td>

<td width="1"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td><img src="images/spacer.gif" height="4"></td>
</tr>
<tr>
<td height="1" align="center">
<table width="96%" cellpadding="2" border="0" cellspacing="0">
<tr>
<td class="cool8Ltblue" bgcolor="#29719c">Need Help?:</td>
</tr>
<tr>
<td align="center">
<table width="80%">
<tr>
<td><a href="default.aspx?action=sitemap" class="LeftNavBlue">Site Map</a></td>
</tr>
<tr>
<td><a href="default.aspx?action=service" class="LeftNavBlue">Customer Service</a></td>
</tr>
<tr>
<td><a href="default.aspx" class="LeftNavBlue">1-800-BARKERS</a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="17"><img src="images/nav_bottom_curve.jpg"></td>
</tr>
<tr>
<td height="*" bgcolor="#ffffff"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
<tr>
<td height="*"><img src="images/spacer.gif"></td>
</tr>
</table>
</td>

<td id="pageContentsCell" valign="top" width="580">
<table width="100%" height="1" cellspacing="0" cellpadding="0" border="0">
<tr>
<td width="580" height="1">
<table width="100%">
<tr>
<td>
<table width="100%">
<tr>
<td class="cool8"><img src="images/spacer.gif" align="absMiddle" width="15" height="1">You
are here: <span id="ctl02_lblCatName" class="detailHeader">T's & Sweats</span></td>
<td class="cool9" align="right"><span id="ctl02_lblMsg"><font class='coolNum'>4</font> results in category.</span>  </td>
</tr>
</table>
</td>
<td height="10" valign="bottom">
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr>
<td valign="top" align="right" height="10">
<table cellspacing="0" cellpadding="0" border="0">
<tr>
<td class="cool9">Page <span id="ctl02_lblCurPage" class="cool9">1</span> of <span id="ctl02_lblTtlPage" class="cool9">1</span></td>
</tr>
</table>
</td>
<td width="50" valign="top"><img src="images/spacer.gif" width="5" height="1">

</td>
</tr>
</table>
</td>
</tr>
<tr>
<td align="center"><table width="95%" cellpadding="0" cellspacing="0" border="0">
<tr>
<td height="1">

</td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
<table width="100%" height="*" cellspacing="5" cellpadding="5" border="0">
<tr>
<td valign="top" bgcolor=&qu..

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

Total Requests

Average Speed

DORK TESTS

VULNERABILITIES

VULNERABILITY SUMMARY

Cookie Not Marked As Secure

Impact

Actions to Take

Remedy

Required Skills for Successful Exploitation

/soundings/default.aspx CONFIRMED

Identified Cookie

Request

Response

[Possible] Local File Inclusion

Impact

Remedy

Identified Error Message

Request

Response

Internal Server Error

Impact

Remedy

/soundings/ CONFIRMED

Request

Response

Auto Complete Enabled

Impact

Remedy

Actions to Take

Required Skills for Successful Exploitation

External References

/soundings/default.aspx CONFIRMED

Identified Field Name

Request

Response

Cookie Not Marked As HttpOnly

Impact

Actions to Take

Remedy

External References

/ CONFIRMED

Identified Cookie

Request

Response

ASP.NET Version Disclosure

Impact

Remedy

Remedy References

Extracted Version

Request

Response

Database Error Message

Impact

Remedy

Request

Response

ASP.NET Stack Trace Disclosure

Impact

Remedy

Remedy References

Request

Response

ViewState is not Encrypted

Impact

Remedy

Remedy References

ViewState Version

Request

Response

Forbidden Resource

Impact

/soundings/images/ CONFIRMED

Request

Response

E-mail Address Disclosure

Impact

Remedy