Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

Loading

Netsparker - Scan Report Summary
TARGET URL
http://cx.trizetto.com/
SCAN DATE
5/2/2011 3:29:45 PM
REPORT DATE
5/2/2011 3:38:23 PM
SCAN DURATION
00:01:46

Total Requests

Average Speed

req/sec.
9
identified
4
confirmed
1
critical
5
informational

DORK TESTS

DORK TESTS
PROFILE
Previous Settings
ENABLED ENGINES
Blind SQL Injection, Boolean SQL Injection, SQL Injection, Cross-site Scripting
Authentication
Scheduled

VULNERABILITIES

Vulnerabilities
Netsparker - Web Application Security Scanner
CRITICAL
11 %
LOW
33 %
INFORMATION
56 %

VULNERABILITY SUMMARY

Vulnerability Summary
URL Parameter Method Vulnerability Confirmed
/cx/pw/index.cfm UserUUID GET [Probable] SQL Injection No
Internal Server Error Yes
UserUUID GET Database Error Message No
E-mail Address Disclosure No
Redirect Response BODY Is Too Large Yes
[Possible] Internal Path Leakage (Windows) No
/jslibraries/jquery/ Forbidden Resource Yes
/pass.cfm IIS Version Disclosure No
/utilities/ Cookie Not Marked As HttpOnly Yes
[Probable] SQL Injection

[Probable] SQL Injection

1 TOTAL
CRITICAL
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Even though Netsparker believes that there is a SQL Injection in here it could not confirm it. There can be numerous reasons for Netsparker not being able to confirm this. We strongly recommend investigating the issue manually to ensure that it is an SQL Injection and that it needs to be addressed. You can also consider sending the details of this issue to us, in order that we can address this issue for the next time and give you a more precise result.

Impact

Depending on the backend database, database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:

Actions to Take

  1. See the remedy for solution.
  2. If you are not using a database access layer (DAL) within the architecture consider its benefits and implement if appropriate. As a minimum the use of s DAL will help centralize the issue and its resolution. You can also use an ORM (object relational mapping). Most ORM systems use parameterized queries and this can solve many if not all SQL Injection based problems.
  3. Locate all of the dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM, change all legacy code to use these new libraries)
  4. Monitor and review weblogs and application logs in order to uncover active or previous exploitation attempts.

Remedy

A very robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.

Required Skills for Successful Exploitation

There are numerous freely available tools to test for SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.

External References

Remedy References

- /cx/pw/index.cfm

/cx/pw/index.cfm

http://cx.trizetto.com/cx/pw/index.cfm?action=setUserPwd&UserUUID=%2527

Parameters

Parameter Type Value
action GET setUserPwd
UserUUID GET %27

Request

GET /cx/pw/index.cfm?action=setUserPwd&UserUUID=%2527 HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/index.cfm?action=check_email
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334682; CFTOKEN=5602b9af2f9e623f-ED9F812C-BFCA-C2E0-6B281F045A3A01DA; JSESSIONID=84304b15f876128a2dca5d493d765621fe43; CFGLOBALS=urltoken%3DCFID%23%3D334682%26CFTOKEN%23%3D5602b9af2f9e623f%2DED9F812C%2DBFCA%2DC2E0%2D6B281F045A3A01DA%26jsessionid%23%3D84304b15f876128a2dca5d493d765621fe43%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A39%3A30%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D275%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Error Executing Database Query.
Connection: close
Date: Mon, 02 May 2011 15:39:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
server-error: true
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />

<!-- " ---></TD></TD></TD></TH></TH></TH></TR></TR></TR></TABLE></TABLE></TABLE></A></ABBREV></ACRONYM></ADDRESS></APPLET></AU></B></BANNER></BIG></BLINK></BLOCKQUOTE></BQ></CAPTION></CENTER></CITE></CODE></COMMENT></DEL></DFN></DIR></DIV></DL></EM></FIG></FN></FONT></FORM></FRAME></FRAMESET></H1></H2></H3></H4></H5></H6></HEAD></I></INS></KBD></LISTING></MAP></MARQUEE></MENU></MULTICOL></NOBR></NOFRAMES></NOSCRIPT></NOTE></OL></P></PARAM></PERSON></PLAINTEXT></PRE></Q></S></SAMP></SCRIPT></SELECT></SMALL></STRIKE></STRONG></SUB></SUP></TABLE></TD></TEXTAREA></TH></TITLE></TR></TT></U></UL></VAR></WBR></XMP>

<font face="arial"></font>



<html>
<head>
<title>Error Occurred While Processing Request</title>


<script language="JavaScript">
function showHide(targetName) {
if( document.getElementById ) { // NS6+
target = document.getElementById(targetName);
} else if( document.all ) { // IE4+
target = document.all[targetName];
}

if( target ) {
if( target.style.display == "none" ) {
target.style.display = "inline";
} else {
target.style.display = "none";
}
}
}
</script>


</head>
<body>

<font style="COLOR: black; FONT: 16pt/18pt verdana">
The web site you are accessing has experienced an unexpected error.<br>
Please contact the website administrator.

</font>
<br><br>
<table border="1" cellpadding="3" bordercolor="#000808" bgcolor="#e7e7e7">
<tr>
<td bgcolor="#000066">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
The following information is meant for the website developer for debugging purposes.
</font>
</td>
<tr>
<tr>
<td bgcolor="#4646EE">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
Error Occurred While Processing Request
</font>
</td>
</tr>
<tr>
<td>
<font style="COLOR: black; FONT: 8pt/11pt verdana">


<table width="500" cellpadding="0" cellspacing="0" border="0">
<tr>
<td id="tableProps2" align="left" valign="middle" width="500">
<h1 id="textSection1" style="COLOR: black; FONT: 13pt/15pt verdana">
Error Executing Database Query.
</h1>
</td>
</tr>
<tr>
<td id="tablePropsWidth" width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
[Macromedia][SQLServer JDBC Driver][SQLServer]Conversion failed when converting from a character string to uniqueidentifier.
</font>
</td>
</tr>
<tr>
<td height>&nbsp;</td>
</tr>


<tr>
<td width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

The error occurred in <b>F:\wwwroot\cxprod\COM\Security.cfc: line 88</b><br>


<b>Called from</b> F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 19<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\index.cfm: line 27<br>

<b>Called from</b> F:\wwwroot\cxprod\COM\Security.cfc: line 88<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 19<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\index.cfm: line 27<br>

</td>
</tr>

<tr>
<td colspan="2">


<pre>86 : From Cust_Personnel P, Customer C
87 : Where P.Customer_ID = C.Customer_ID
<b>88 : AND P.UserUUID = '#Arguments.UserUUID#'</b>
89 : &lt;/cfquery&gt;
90 :
</pre>


</td>
</tr>
<tr>
<td colspan="2">
<hr color="#C0C0C0" noshade>
</td>
</tr>

<tr><td>

<table border="0" cellpadding="0" cellspacing="0">

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">VENDORERRORCODE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;8169</font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">SQLSTATE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;HY000</font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">SQL</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp; Select C.Name as CompanyName, C.Name,C.InternalClient, P.* From Cust_Personnel P, Customer C Where P.Customer_ID = C.Customer_ID AND P.UserUUID = '%27' </font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">DATASOURCE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;CXWebDB</font></td>
</tr>

</table>
</td></tr>

<tr>
<td colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
Resources:
<ul>

<li>Check the <a href='http://www.adobe.com/go/prod_doc' target="new">ColdFusion documentation</a> to verify that you are using the correct syntax.</li>
<li>Search the <a href='http://www.adobe.com/go/prod_support/' target="new">Knowledge Base</a> to find a solution to your problem.</li>

</ul>
<p>
</td>
</tr>

<tr>
<td colspan="2">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Browser&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Remote Address&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">173.193.214.243</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Referrer&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">http://cx.trizetto.com/cx/pw/index.cfm?action=check_email</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Date/Time&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">02-May-11 09:39 AM</td>
</tr>
</table>
</td>
</tr>
</table>


<table width="500" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<font style="FONT: 8pt/11pt verdana;">

<a href="javascript:;" onMouseOver="window.status='Click to expand stack trace';return true;" onMouseOut="window.status='';return true;" onClick="showHide('cf_stacktrace');return true;">Stack Trace (click to expand)</a>

</td>
</tr>
<tr>
<td id="cf_stacktrace" style="display:none">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27)
at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27)
<br />
<br />
<pre>java.sql.SQLException: [Macromedia][SQLServer JDBC Driver][SQLServer]Conversion failed when converting from a character string to uniqueidentifier. at macromedia.jdbc.sqlserverbase.dda4.b(Unknown Source) at macromedia.jdbc.sqlserverbase.dda4.a(Unknown Source) at macromedia.jdbc.sqlserverbase.dda3.b(Unknown Source) at macromedia.jdbc.sqlserverbase.dda3.a(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.v(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.a(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.a(Unknown Source) at macromedia.jdbc.sqlserver.ddj.l(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.e(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.a(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.v(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.r(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.execute(Unknown Source) at coldfusion.server.j2ee.sql.JRunStatement.execute(JRunStatement.java:348) at coldfusion.sql.Executive.executeQuery(Executive.java:1364) at coldfusion.sql.Executive.executeQuery(Executive.java:1127) at coldfusion.sql.Executive.executeQuery(Executive.java:1058) at coldfusion.sql.SqlImpl.execute(SqlImpl.java:341) at coldfusion.tagext.sql.QueryTag.executeQuery(QueryTag.java:915) at coldfusion.tagext.sql.QueryTag.doEndTag(QueryTag.java:590) at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.filter.SilentFilter.invoke(SilentFilter.java:47) at coldfusion.runtime.UDFMethod$ReturnTypeFilter.invoke(UDFMethod.java:405) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:491) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:337) at coldfusion.runtime.CfJspPage._invoke(CfJspPage.java:2360) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.runtime.CfJspPage._emptyTcfTag(CfJspPage.java:2722) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.filter.CfincludeFilter.invoke(CfincludeFilter.java:65) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:381) at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:48) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:94) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:70) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:200) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at jrun.servlet.FilterChain.doFilter(FilterChain.java:86) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at jrun.servlet.FilterChain.doFilter(FilterChain.java:94) at jrun.servlet.FilterChain.service(FilterChain.java:101) at jrun.servlet.ServletInvoker.invoke(ServletInvoker.java:106) at jrun.servlet.JRunInvokerChain.invokeNext(JRunInvokerChain.java:42) at jrun.servlet.JRunRequestDispatcher.invoke(JRunRequestDispatcher.java:286) at jrun.servlet.ServletEngineService.dispatch(ServletEngineService.java:543) at jrun.servlet.jrpp.JRunProxyService.invokeRunnable(JRunProxyService.java:203) at jrunx.scheduler.ThreadPool$DownstreamMetrics.invokeRunnable(ThreadPool.java:320) at jrunx.scheduler.ThreadPool$ThreadThrottle.invokeRunnable(ThreadPool.java:428) at jrunx.scheduler.ThreadPool$UpstreamMetrics.invokeRunnable(ThreadPool.java:266) at jrunx.scheduler.WorkerThread.run(WorkerThread.java:66)</pre></td>
</tr>
</table>

</font>
</td>
</tr>
</table>
</body></html>


Internal Server Error

Internal Server Error

1 TOTAL
LOW
CONFIRMED
1
The Server responded with an HTTP status 500. This indicates that there is a server-side error. Reasons may vary. The behavior should be analysed carefully. If Netsparker is able to find a security issue in the same resource it will report this as a separate vulnerability.

Impact

The impact may vary depending on the condition. Generally this indicates poor coding practices, not enough error checking, sanitization and whitelisting. However there might be a bigger issue such as SQL Injection. If that's the case Netsparker will check for other possible issues and report them separately.

Remedy

Analyse this issue and review the application code in order to handle unexpected errors, this should be a generic practice which does not disclose further information upon an error. All errors should be handled server side only.
- /cx/pw/index.cfm

/cx/pw/index.cfm CONFIRMED

http://cx.trizetto.com/cx/pw/index.cfm?action=check_email

Request

GET /cx/pw/index.cfm?action=check_email HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D3%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Element RECORDCOUNT is undefined in QGETEMAIL.
Connection: close
Date: Mon, 02 May 2011 15:38:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
server-error: true
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />



<table align="center" border="0" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><img src="/images/green_top_l.gif"></td>
<td id="tablehead" ><img src="/images/forgotmyloginheader.gif"></td>
<td><img src="/images/green_top_r.gif"></td>
</tr>
<tr>
<td id="tableside_l"></td>
<td>
<!-- " ---></TD></TD></TD></TH></TH></TH></TR></TR></TR></TABLE></TABLE></TABLE></A></ABBREV></ACRONYM></ADDRESS></APPLET></AU></B></BANNER></BIG></BLINK></BLOCKQUOTE></BQ></CAPTION></CENTER></CITE></CODE></COMMENT></DEL></DFN></DIR></DIV></DL></EM></FIG></FN></FONT></FORM></FRAME></FRAMESET></H1></H2></H3></H4></H5></H6></HEAD></I></INS></KBD></LISTING></MAP></MARQUEE></MENU></MULTICOL></NOBR></NOFRAMES></NOSCRIPT></NOTE></OL></P></PARAM></PERSON></PLAINTEXT></PRE></Q></S></SAMP></SCRIPT></SELECT></SMALL></STRIKE></STRONG></SUB></SUP></TABLE></TD></TEXTAREA></TH></TITLE></TR></TT></U></UL></VAR></WBR></XMP>

<font face="arial"></font>



<html>
<head>
<title>Error Occurred While Processing Request</title>


<script language="JavaScript">
function showHide(targetName) {
if( document.getElementById ) { // NS6+
target = document.getElementById(targetName);
} else if( document.all ) { // IE4+
target = document.all[targetName];
}

if( target ) {
if( target.style.display == "none" ) {
target.style.display = "inline";
} else {
target.style.display = "none";
}
}
}
</script>


</head>
<body>

<font style="COLOR: black; FONT: 16pt/18pt verdana">
The web site you are accessing has experienced an unexpected error.<br>
Please contact the website administrator.

</font>
<br><br>
<table border="1" cellpadding="3" bordercolor="#000808" bgcolor="#e7e7e7">
<tr>
<td bgcolor="#000066">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
The following information is meant for the website developer for debugging purposes.
</font>
</td>
<tr>
<tr>
<td bgcolor="#4646EE">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
Error Occurred While Processing Request
</font>
</td>
</tr>
<tr>
<td>
<font style="COLOR: black; FONT: 8pt/11pt verdana">


<table width="500" cellpadding="0" cellspacing="0" border="0">
<tr>
<td id="tableProps2" align="left" valign="middle" width="500">
<h1 id="textSection1" style="COLOR: black; FONT: 13pt/15pt verdana">
Element RECORDCOUNT is undefined in QGETEMAIL.
</h1>
</td>
</tr>
<tr>
<td id="tablePropsWidth" width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

</font>
</td>
</tr>
<tr>
<td height>&nbsp;</td>
</tr>


<tr>
<td width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

The error occurred in <b>F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 37</b><br>


</td>
</tr>

<tr>
<td colspan="2">


<pre>35 : &lt;td id=&quot;tableside_l&quot;&gt;&lt;/td&gt;
36 : &lt;td&gt;
<b>37 : &lt;cfif qGetEMail.recordcount eq 0&gt;</b>
38 : &lt;table align=&quot;center&quot; border=&quot;0&quot; cellpadding=&quot;4&quot; cellspacing=&quot;0&quot; width=&quot;600&quot; &gt;
39 : &lt;tr style=&quot;line-height:4px;&quot;&gt;
</pre>


</td>
</tr>
<tr>
<td colspan="2">
<hr color="#C0C0C0" noshade>
</td>
</tr>

<tr>
<td colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
Resources:
<ul>

<li>Check the <a href='http://www.adobe.com/go/prod_doc' target="new">ColdFusion documentation</a> to verify that you are using the correct syntax.</li>
<li>Search the <a href='http://www.adobe.com/go/prod_support/' target="new">Knowledge Base</a> to find a solution to your problem.</li>

</ul>
<p>
</td>
</tr>

<tr>
<td colspan="2">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Browser&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Remote Address&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">173.193.214.243</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Referrer&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">http://cx.trizetto.com/cx/pw/</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Date/Time&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">02-May-11 09:38 AM</td>
</tr>
</table>
</td>
</tr>
</table>


<table width="500" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<font style="FONT: 8pt/11pt verdana;">

<a href="javascript:;" onMouseOver="window.status='Click to expand stack trace';return true;" onMouseOut="window.status='';return true;" onClick="showHide('cf_stacktrace');return true;">Stack Trace (click to expand)</a>

</td>
</tr>
<tr>
<td id="cf_stacktrace" style="display:none">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:37) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:17)
<br />
<br />
<pre>coldfusion.runtime.UndefinedElementException: Element RECORDCOUNT is undefined in QGETEMAIL. at coldfusion.runtime.CfJspPage.resolveCanonicalName(CfJspPage.java:1724) at coldfusion.runtime.CfJspPage._resolve(CfJspPage.java:1620) at coldfusion.runtime.CfJspPage._resolveAndAutoscalarize(CfJspPage.java:1794) at coldfusion.runtime.CfJspPage._resolveAndAutoscalarize(CfJspPage.java:1787) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:37) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.runtime.CfJspPage._emptyTcfTag(CfJspPage.java:2722) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:17) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.filter.CfincludeFilter.invoke(CfincludeFilter.java:65) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:381) at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:48) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:94) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:70) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:200) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at jrun.servlet.FilterChain.doFilter(FilterChain.java:86) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at jrun.servlet.FilterChain.doFilter(FilterChain.java:94) at jrun.servlet.FilterChain.service(FilterChain.java:101) at jrun.servlet.ServletInvoker.invoke(ServletInvoker.java:106) at jrun.servlet.JRunInvokerChain.invokeNext(JRunInvokerChain.java:42) at jrun.servlet.JRunRequestDispatcher.invoke(JRunRequestDispatcher.java:286) at jrun.servlet.ServletEngineService.dispatch(ServletEngineService.java:543) at jrun.servlet.jrpp.JRunProxyService.invokeRunnable(JRunProxyService.java:203) at jrunx.scheduler.ThreadPool$DownstreamMetrics.invokeRunnable(ThreadPool.java:320) at jrunx.scheduler.ThreadPool$ThreadThrottle.invokeRunnable(ThreadPool.java:428) at jrunx.scheduler.ThreadPool$UpstreamMetrics.invokeRunnable(ThreadPool.java:266) at jrunx.scheduler.WorkerThread.run(WorkerThread.java:66)</pre></td>
</tr>
</table>

</font>
</td>
</tr>
</table>
</body></html>


Cookie Not Marked As HttpOnly

Cookie Not Marked As HttpOnly

1 TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..

Impact

During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.

Actions to Take

  1. See the remedy for solution
  2. Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.

Remedy

Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.

External References

- /utilities/

/utilities/ CONFIRMED

http://cx.trizetto.com/utilities/

Identified Cookie

CFGLOBALS

Request

GET /utilities/ HTTP/1.1
Referer: http://cx.trizetto.com/utilities/admin.css
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D3%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 02 May 2011 15:38:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D6%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23;expires=Wed, 24-Apr-2041 15:38:59 GMT;path=/
location: admin/index.cfm
Content-Type: text/html; charset=UTF-8


Database Error Message

Database Error Message

1 TOTAL
LOW
Netsparker identified a database error message.

Impact

The error message may disclose sensitive information and this information can be used by an attacker to mount new attacks or to enlarge the attack surface. In rare conditions this may be a clue for an SQL Injection vulnerability. Most of the time Netsparker will detect and report that problem separately.

Remedy

Do not provide any error messages on production environments. Save error messages with a reference number to a backend storage such as a text file or database, then show this number and a static user-friendly error message to the user.
- /cx/pw/index.cfm

/cx/pw/index.cfm

http://cx.trizetto.com/cx/pw/index.cfm?action=setUserPwd&UserUUID='%22--%3E%3C/style%3E%3C/script%3E..

Parameters

Parameter Type Value
action GET setUserPwd
UserUUID GET '"--></style></script><script>netsparker(0x0002FA)</script>

Request

GET /cx/pw/index.cfm?action=setUserPwd&UserUUID='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0002FA)%3C/script%3E HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/index.cfm?action=check_email
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334682; CFTOKEN=5602b9af2f9e623f-ED9F812C-BFCA-C2E0-6B281F045A3A01DA; JSESSIONID=84304b15f876128a2dca5d493d765621fe43; CFGLOBALS=urltoken%3DCFID%23%3D334682%26CFTOKEN%23%3D5602b9af2f9e623f%2DED9F812C%2DBFCA%2DC2E0%2D6B281F045A3A01DA%26jsessionid%23%3D84304b15f876128a2dca5d493d765621fe43%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A39%3A28%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D260%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Error Executing Database Query.
Connection: close
Date: Mon, 02 May 2011 15:39:28 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
server-error: true
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />

<!-- " ---></TD></TD></TD></TH></TH></TH></TR></TR></TR></TABLE></TABLE></TABLE></A></ABBREV></ACRONYM></ADDRESS></APPLET></AU></B></BANNER></BIG></BLINK></BLOCKQUOTE></BQ></CAPTION></CENTER></CITE></CODE></COMMENT></DEL></DFN></DIR></DIV></DL></EM></FIG></FN></FONT></FORM></FRAME></FRAMESET></H1></H2></H3></H4></H5></H6></HEAD></I></INS></KBD></LISTING></MAP></MARQUEE></MENU></MULTICOL></NOBR></NOFRAMES></NOSCRIPT></NOTE></OL></P></PARAM></PERSON></PLAINTEXT></PRE></Q></S></SAMP></SCRIPT></SELECT></SMALL></STRIKE></STRONG></SUB></SUP></TABLE></TD></TEXTAREA></TH></TITLE></TR></TT></U></UL></VAR></WBR></XMP>

<font face="arial"></font>



<html>
<head>
<title>Error Occurred While Processing Request</title>


<script language="JavaScript">
function showHide(targetName) {
if( document.getElementById ) { // NS6+
target = document.getElementById(targetName);
} else if( document.all ) { // IE4+
target = document.all[targetName];
}

if( target ) {
if( target.style.display == "none" ) {
target.style.display = "inline";
} else {
target.style.display = "none";
}
}
}
</script>


</head>
<body>

<font style="COLOR: black; FONT: 16pt/18pt verdana">
The web site you are accessing has experienced an unexpected error.<br>
Please contact the website administrator.

</font>
<br><br>
<table border="1" cellpadding="3" bordercolor="#000808" bgcolor="#e7e7e7">
<tr>
<td bgcolor="#000066">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
The following information is meant for the website developer for debugging purposes.
</font>
</td>
<tr>
<tr>
<td bgcolor="#4646EE">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
Error Occurred While Processing Request
</font>
</td>
</tr>
<tr>
<td>
<font style="COLOR: black; FONT: 8pt/11pt verdana">


<table width="500" cellpadding="0" cellspacing="0" border="0">
<tr>
<td id="tableProps2" align="left" valign="middle" width="500">
<h1 id="textSection1" style="COLOR: black; FONT: 13pt/15pt verdana">
Error Executing Database Query.
</h1>
</td>
</tr>
<tr>
<td id="tablePropsWidth" width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
[Macromedia][SQLServer JDBC Driver][SQLServer]Conversion failed when converting from a character string to uniqueidentifier.
</font>
</td>
</tr>
<tr>
<td height>&nbsp;</td>
</tr>


<tr>
<td width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

The error occurred in <b>F:\wwwroot\cxprod\COM\Security.cfc: line 88</b><br>


<b>Called from</b> F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 19<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\index.cfm: line 27<br>

<b>Called from</b> F:\wwwroot\cxprod\COM\Security.cfc: line 88<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 19<br>

<b>Called from</b> F:\wwwroot\cxprod\cx\pw\index.cfm: line 27<br>

</td>
</tr>

<tr>
<td colspan="2">


<pre>86 : From Cust_Personnel P, Customer C
87 : Where P.Customer_ID = C.Customer_ID
<b>88 : AND P.UserUUID = '#Arguments.UserUUID#'</b>
89 : &lt;/cfquery&gt;
90 :
</pre>


</td>
</tr>
<tr>
<td colspan="2">
<hr color="#C0C0C0" noshade>
</td>
</tr>

<tr><td>

<table border="0" cellpadding="0" cellspacing="0">

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">VENDORERRORCODE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;8169</font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">SQLSTATE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;HY000</font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">SQL</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp; Select C.Name as CompanyName, C.Name,C.InternalClient, P.* From Cust_Personnel P, Customer C Where P.Customer_ID = C.Customer_ID AND P.UserUUID = '''&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;InvalidTag&gt;netsparker(0x0002FA)&lt;/script&gt;' </font></td>
</tr>

<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">DATASOURCE</font></td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">&nbsp;&nbsp;CXWebDB</font></td>
</tr>

</table>
</td></tr>

<tr>
<td colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
Resources:
<ul>

<li>Check the <a href='http://www.adobe.com/go/prod_doc' target="new">ColdFusion documentation</a> to verify that you are using the correct syntax.</li>
<li>Search the <a href='http://www.adobe.com/go/prod_support/' target="new">Knowledge Base</a> to find a solution to your problem.</li>

</ul>
<p>
</td>
</tr>

<tr>
<td colspan="2">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Browser&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Remote Address&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">173.193.214.243</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Referrer&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">http://cx.trizetto.com/cx/pw/index.cfm?action=check_email</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Date/Time&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">02-May-11 09:39 AM</td>
</tr>
</table>
</td>
</tr>
</table>


<table width="500" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<font style="FONT: 8pt/11pt verdana;">

<a href="javascript:;" onMouseOver="window.status='Click to expand stack trace';return true;" onMouseOut="window.status='';return true;" onClick="showHide('cf_stacktrace');return true;">Stack Trace (click to expand)</a>

</td>
</tr>
<tr>
<td id="cf_stacktrace" style="display:none">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27)
at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27)
<br />
<br />
<pre>java.sql.SQLException: [Macromedia][SQLServer JDBC Driver][SQLServer]Conversion failed when converting from a character string to uniqueidentifier. at macromedia.jdbc.sqlserverbase.dda4.b(Unknown Source) at macromedia.jdbc.sqlserverbase.dda4.a(Unknown Source) at macromedia.jdbc.sqlserverbase.dda3.b(Unknown Source) at macromedia.jdbc.sqlserverbase.dda3.a(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.v(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.a(Unknown Source) at macromedia.jdbc.sqlserver.tds.ddr.a(Unknown Source) at macromedia.jdbc.sqlserver.ddj.l(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.e(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.a(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.v(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.r(Unknown Source) at macromedia.jdbc.sqlserverbase.ddde.execute(Unknown Source) at coldfusion.server.j2ee.sql.JRunStatement.execute(JRunStatement.java:348) at coldfusion.sql.Executive.executeQuery(Executive.java:1364) at coldfusion.sql.Executive.executeQuery(Executive.java:1127) at coldfusion.sql.Executive.executeQuery(Executive.java:1058) at coldfusion.sql.SqlImpl.execute(SqlImpl.java:341) at coldfusion.tagext.sql.QueryTag.executeQuery(QueryTag.java:915) at coldfusion.tagext.sql.QueryTag.doEndTag(QueryTag.java:590) at cfSecurity2ecfc105304323$funcGETUSERBYUUID.runFunction(F:\wwwroot\cxprod\COM\Security.cfc:88) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:472) at coldfusion.filter.SilentFilter.invoke(SilentFilter.java:47) at coldfusion.runtime.UDFMethod$ReturnTypeFilter.invoke(UDFMethod.java:405) at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:368) at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:55) at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:321) at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:220) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:491) at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:337) at coldfusion.runtime.CfJspPage._invoke(CfJspPage.java:2360) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:19) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.runtime.CfJspPage._emptyTcfTag(CfJspPage.java:2722) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:27) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.filter.CfincludeFilter.invoke(CfincludeFilter.java:65) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:381) at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:48) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:94) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:70) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:200) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at jrun.servlet.FilterChain.doFilter(FilterChain.java:86) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at jrun.servlet.FilterChain.doFilter(FilterChain.java:94) at jrun.servlet.FilterChain.service(FilterChain.java:101) at jrun.servlet.ServletInvoker.invoke(ServletInvoker.java:106) at jrun.servlet.JRunInvokerChain.invokeNext(JRunInvokerChain.java:42) at jrun.servlet.JRunRequestDispatcher.invoke(JRunRequestDispatcher.java:286) at jrun.servlet.ServletEngineService.dispatch(ServletEngineService.java:543) at jrun.servlet.jrpp.JRunProxyService.invokeRunnable(JRunProxyService.java:203) at jrunx.scheduler.ThreadPool$DownstreamMetrics.invokeRunnable(ThreadPool.java:320) at jrunx.scheduler.ThreadPool$ThreadThrottle.invokeRunnable(ThreadPool.java:428) at jrunx.scheduler.ThreadPool$UpstreamMetrics.invokeRunnable(ThreadPool.java:266) at jrunx.scheduler.WorkerThread.run(WorkerThread.java:66)</pre></td>
</tr>
</table>

</font>
</td>
</tr>
</table>
</body></html>


Forbidden Resource

Forbidden Resource

1 TOTAL
INFORMATION
CONFIRMED
1
Access to this resource has been denied by the web server. This is generally not a security issue, and is reported here for information purposes.

Impact

There is no impact resulting from this issue.
- /jslibraries/jquery/

/jslibraries/jquery/ CONFIRMED

http://cx.trizetto.com/jslibraries/jquery/

Request

GET /jslibraries/jquery/ HTTP/1.1
Referer: http://cx.trizetto.com/jslibraries/jquery/jquery-1.3.2.min.js
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D2%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 403 Forbidden
Content-Length: 218
Content-Type: text/html
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Mon, 02 May 2011 15:38:58 GMT


<html><head><title>Error</title></head><body><head><title>Directory Listing Denied</title></head><body><h1>Directory Listing Denied</h1>This Virtual Directory does not allow contents to be listed.</body></body></html>
E-mail Address Disclosure

E-mail Address Disclosure

1 TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.

Impact

E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .

Remedy

Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.

External References

- /cx/pw/index.cfm

/cx/pw/index.cfm

http://cx.trizetto.com/cx/pw/index.cfm?action=setUserPwd&UserUUID=792cfd93-98bf-4853-856c-ebf69896c72f

Found E-mails

customerexchange@trizetto.com

Request

GET /cx/pw/index.cfm?action=setUserPwd&UserUUID=792cfd93-98bf-4853-856c-ebf69896c72f HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/index.cfm?action=check_email
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A39%3A00%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D8%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Connection: close
Date: Mon, 02 May 2011 15:39:00 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A39%3A00%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D9%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23;expires=Wed, 24-Apr-2041 15:39:00 GMT;path=/
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />



<table align="center" border="0" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><img src="/images/green_top_l.gif"></td>
<td id="tablehead" ><img src="/images/forgotmyloginheader.gif"></td>
<td><img src="/images/green_top_r.gif"></td>
</tr>
<tr>
<td id="tableside_l"></td>
<td>

<TABLE align="center" border="0" cellpadding="4" cellspacing="0" width="600">
<tr >
<td>
<strong>Thank you for your request.</strong> An e-mail containing your username and a temporary password will be sent to the e-mail address that you entered.
<br><br>
When you log in with the temporary password, you will be prompted to create a permanent password.
<br><br>
If the username and password are blank on the e-mail that you receive, your record is established in our database, but you have not been granted access to Customer Exchange by your organization’s super user. Please contact your super user to request access to Customer Exchange.
<br><br>
If you are still experiencing login issues, please send an email with your name, company and telephone number to <a href="mailto:customerexchange@trizetto.com?subject=Login Problem" class="contact">Customer Exchange</a>.
</td>
</tr>
<tr>
<td align="center"><a href="http://cx.trizetto.com/"><img src="/images/buttons/btn_ReturnCX.gif" border="0" alt="Return to CX"></a></td>
</tr>
</table>

</td>
<td id="tableside_r"></td>
</tr>
<tr>
<td><img src="/images/green_bottom_l.gif"></td>
<td id="tablefoot"></td>
<td><img src="/images/green_bottom_r.gif"></td>
</tr>
</table>
<br /><br />


</td></tr>
</table>
</body>
</html>
IIS Version Disclosure

IIS Version Disclosure

1 TOTAL
INFORMATION
Netsparker identified that the target web server is disclosing the web server's version in the HTTP response. This information can help an attacker to gain a greater understanding of the system in use and potentially develop further attacks targeted at the specific web server version.

Impact

An attacker can look for specific security vulnerabilities for the version identified through the SERVER header information.

Remediation

Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
- /pass.cfm

/pass.cfm

http://cx.trizetto.com/pass.cfm

Extracted Version

Microsoft-IIS/6.0

Request

GET /pass.cfm HTTP/1.1
Referer: http://cx.trizetto.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D2%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 02 May 2011 15:38:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: CFCLIENT_CXPROD=cxname%3Dnobody%23cxlevel%3D1%23pass%3Dno%23;expires=Wed, 24-Apr-2041 15:38:59 GMT;path=/,CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D3%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23;expires=Wed, 24-Apr-2041 15:38:59 GMT;path=/
location: logout.cfm
Content-Type: text/html; charset=UTF-8


Redirect Response BODY Is Too Large

Redirect Response BODY Is Too Large

1 TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the response from the page returned an HTTP Redirect Status but output more information than usual. This generally indicates that after redirect, page did not finish the response as it was supposed to.

Impact

This can lead serious issues such authentication bypass in authentication required pages, in other pages it generally indicates a programming error.

Remedy

Finish the HTTP Response after you redirect the user.

In ASP.NET use Response.Redirect("redirected-page.aspx", true); instead of Response.Redirect("redirected-page.aspx", false); In PHP applications call exit(); after you redirect the user.
- /cx/pw/index.cfm

/cx/pw/index.cfm CONFIRMED

http://cx.trizetto.com/cx/pw/index.cfm?action=request

Request

GET /cx/pw/index.cfm?action=request HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D3%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 02 May 2011 15:38:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D5%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23;expires=Wed, 24-Apr-2041 15:38:59 GMT;path=/
location: /login_form.cfm?CFID=334550&CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454&jsessionid=84301705df4a9e9ebd093268662a7e673dc6
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />

[Possible] Internal Path Leakage (Windows)

[Possible] Internal Path Leakage (Windows)

1 TOTAL
INFORMATION
Netsparker identified an internal path in the document.

Impact

There is no direct impact however this information can help an attacker either to identify other vulnerabilities or during the exploitation of other identified vulnerabilities.

Remedy

First ensure that this is not a false positive. Due to the nature of the issue. Netsparker could not confirm that this file path was actually the real file path of the target web server.

External References

- /cx/pw/index.cfm

/cx/pw/index.cfm

http://cx.trizetto.com/cx/pw/index.cfm?action=check_email

Identified Internal Path(s)

F:\wwwroot\cxprod\cx

Request

GET /cx/pw/index.cfm?action=check_email HTTP/1.1
Referer: http://cx.trizetto.com/cx/pw/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: cx.trizetto.com
Cookie: CFID=334550; CFTOKEN=5a2233eac4d6b208-ED9B1D99-EA98-89CA-B444868B061CA454; JSESSIONID=84301705df4a9e9ebd093268662a7e673dc6; CFGLOBALS=urltoken%3DCFID%23%3D334550%26CFTOKEN%23%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%26jsessionid%23%3D84301705df4a9e9ebd093268662a7e673dc6%23lastvisit%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A59%27%7D%23timecreated%3D%7Bts%20%272011%2D05%2D02%2009%3A38%3A58%27%7D%23hitcount%3D3%23cftoken%3D5a2233eac4d6b208%2DED9B1D99%2DEA98%2D89CA%2DB444868B061CA454%23cfid%3D334550%23; CFCLIENT_CXPROD=cxname%3Dnobody%23cx%5Fuserid%3D0%23userid%3D0%23cxlevel%3D1%23pass%3Dno%23
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Element RECORDCOUNT is undefined in QGETEMAIL.
Connection: close
Date: Mon, 02 May 2011 15:38:59 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
server-error: true
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>Customer Exchange Site Utilities</title>
<link rel=stylesheet href="/utilities/admin.css" type="text/css">
<link rel="stylesheet" href="/styles.css" type="text/css">
<script src="/utilities/admin/validate.js" language="JavaScript" type="text/javascript"></script>

<style type="text/css">
#tablehead {
background-repeat: repeat-x;
background-image: url(/images/green_top_m.gif);
color:White;
font-weight:Bold;
}
#tableside_l {
background-repeat: repeat-y;
background-image: url(/images/green_middle_l.gif);
}
#tableside_r {
background-repeat: repeat-y;
background-image: url(/images/green_middle_r.gif);
background-position: right;
}
#tablefoot {
background-repeat: repeat-x;
background-image: url(/images/green_bottom_m.gif);
}
A.contact {
font-size: 12px;
color:#448392;
}
A.contact:Link {
font-size: 12px;
color:#448392;
}
A.contact:Visited {
font-size: 12px;
color:#448392;
}
A.contact:Hover {
font-size: 12px;
color:#666666;
}
A.contact:Active {
font-size: 12px;
color:#448392;
}

</style>

</head>

<body leftmargin="0" topmargin="0">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr >
<td valign="top" width="349"><img src="/images/header_logo.jpg"></td>
<td ><div ID="header">&nbsp;</div></td>
</tr>
</table>
<br />



<table align="center" border="0" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><img src="/images/green_top_l.gif"></td>
<td id="tablehead" ><img src="/images/forgotmyloginheader.gif"></td>
<td><img src="/images/green_top_r.gif"></td>
</tr>
<tr>
<td id="tableside_l"></td>
<td>
<!-- " ---></TD></TD></TD></TH></TH></TH></TR></TR></TR></TABLE></TABLE></TABLE></A></ABBREV></ACRONYM></ADDRESS></APPLET></AU></B></BANNER></BIG></BLINK></BLOCKQUOTE></BQ></CAPTION></CENTER></CITE></CODE></COMMENT></DEL></DFN></DIR></DIV></DL></EM></FIG></FN></FONT></FORM></FRAME></FRAMESET></H1></H2></H3></H4></H5></H6></HEAD></I></INS></KBD></LISTING></MAP></MARQUEE></MENU></MULTICOL></NOBR></NOFRAMES></NOSCRIPT></NOTE></OL></P></PARAM></PERSON></PLAINTEXT></PRE></Q></S></SAMP></SCRIPT></SELECT></SMALL></STRIKE></STRONG></SUB></SUP></TABLE></TD></TEXTAREA></TH></TITLE></TR></TT></U></UL></VAR></WBR></XMP>

<font face="arial"></font>



<html>
<head>
<title>Error Occurred While Processing Request</title>


<script language="JavaScript">
function showHide(targetName) {
if( document.getElementById ) { // NS6+
target = document.getElementById(targetName);
} else if( document.all ) { // IE4+
target = document.all[targetName];
}

if( target ) {
if( target.style.display == "none" ) {
target.style.display = "inline";
} else {
target.style.display = "none";
}
}
}
</script>


</head>
<body>

<font style="COLOR: black; FONT: 16pt/18pt verdana">
The web site you are accessing has experienced an unexpected error.<br>
Please contact the website administrator.

</font>
<br><br>
<table border="1" cellpadding="3" bordercolor="#000808" bgcolor="#e7e7e7">
<tr>
<td bgcolor="#000066">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
The following information is meant for the website developer for debugging purposes.
</font>
</td>
<tr>
<tr>
<td bgcolor="#4646EE">
<font style="COLOR: white; FONT: 11pt/13pt verdana" color="white">
Error Occurred While Processing Request
</font>
</td>
</tr>
<tr>
<td>
<font style="COLOR: black; FONT: 8pt/11pt verdana">


<table width="500" cellpadding="0" cellspacing="0" border="0">
<tr>
<td id="tableProps2" align="left" valign="middle" width="500">
<h1 id="textSection1" style="COLOR: black; FONT: 13pt/15pt verdana">
Element RECORDCOUNT is undefined in QGETEMAIL.
</h1>
</td>
</tr>
<tr>
<td id="tablePropsWidth" width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

</font>
</td>
</tr>
<tr>
<td height>&nbsp;</td>
</tr>


<tr>
<td width="400" colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">

The error occurred in <b>F:\wwwroot\cxprod\cx\pw\dsp_email.cfm: line 37</b><br>


</td>
</tr>

<tr>
<td colspan="2">


<pre>35 : &lt;td id=&quot;tableside_l&quot;&gt;&lt;/td&gt;
36 : &lt;td&gt;
<b>37 : &lt;cfif qGetEMail.recordcount eq 0&gt;</b>
38 : &lt;table align=&quot;center&quot; border=&quot;0&quot; cellpadding=&quot;4&quot; cellspacing=&quot;0&quot; width=&quot;600&quot; &gt;
39 : &lt;tr style=&quot;line-height:4px;&quot;&gt;
</pre>


</td>
</tr>
<tr>
<td colspan="2">
<hr color="#C0C0C0" noshade>
</td>
</tr>

<tr>
<td colspan="2">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
Resources:
<ul>

<li>Check the <a href='http://www.adobe.com/go/prod_doc' target="new">ColdFusion documentation</a> to verify that you are using the correct syntax.</li>
<li>Search the <a href='http://www.adobe.com/go/prod_support/' target="new">Knowledge Base</a> to find a solution to your problem.</li>

</ul>
<p>
</td>
</tr>

<tr>
<td colspan="2">
<table border="0" cellpadding="0" cellspacing="0">
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Browser&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Remote Address&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">173.193.214.243</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Referrer&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">http://cx.trizetto.com/cx/pw/</td>
</tr>
<tr>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">Date/Time&nbsp;&nbsp;</td>
<td><font style="COLOR: black; FONT: 8pt/11pt verdana">02-May-11 09:38 AM</td>
</tr>
</table>
</td>
</tr>
</table>


<table width="500" cellpadding="0" cellspacing="0">
<tr>
<td valign="top">
<font style="FONT: 8pt/11pt verdana;">

<a href="javascript:;" onMouseOver="window.status='Click to expand stack trace';return true;" onMouseOut="window.status='';return true;" onClick="showHide('cf_stacktrace');return true;">Stack Trace (click to expand)</a>

</td>
</tr>
<tr>
<td id="cf_stacktrace" style="display:none">
<font style="COLOR: black; FONT: 8pt/11pt verdana">
at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:37) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:17)
<br />
<br />
<pre>coldfusion.runtime.UndefinedElementException: Element RECORDCOUNT is undefined in QGETEMAIL. at coldfusion.runtime.CfJspPage.resolveCanonicalName(CfJspPage.java:1724) at coldfusion.runtime.CfJspPage._resolve(CfJspPage.java:1620) at coldfusion.runtime.CfJspPage._resolveAndAutoscalarize(CfJspPage.java:1794) at coldfusion.runtime.CfJspPage._resolveAndAutoscalarize(CfJspPage.java:1787) at cfdsp_email2ecfm1064487830.runPage(F:\wwwroot\cxprod\cx\pw\dsp_email.cfm:37) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.runtime.CfJspPage._emptyTcfTag(CfJspPage.java:2722) at cfindex2ecfm1539588565.runPage(F:\wwwroot\cxprod\cx\pw\index.cfm:17) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.filter.CfincludeFilter.invoke(CfincludeFilter.java:65) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:381) at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:48) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:94) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:70) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:200) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at jrun.servlet.FilterChain.doFilter(FilterChain.java:86) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at jrun.servlet.FilterChain.doFilter(FilterChain.java:94) at jrun.servlet.FilterChain.service(FilterChain.java:101) at jrun.servlet.ServletInvoker.invoke(ServletInvoker.java:106) at jrun.servlet.JRunInvokerChain.invokeNext(JRunInvokerChain.java:42) at jrun.servlet.JRunRequestDispatcher.invoke(JRunRequestDispatcher.java:286) at jrun.servlet.ServletEngineService.dispatch(ServletEngineService.java:543) at jrun.servlet.jrpp.JRunProxyService.invokeRunnable(JRunProxyService.java:203) at jrunx.scheduler.ThreadPool$DownstreamMetrics.invokeRunnable(ThreadPool.java:320) at jrunx.scheduler.ThreadPool$ThreadThrottle.invokeRunnable(ThreadPool.java:428) at jrunx.scheduler.ThreadPool$UpstreamMetrics.invokeRunnable(ThreadPool.java:266) at jrunx.scheduler.WorkerThread.run(WorkerThread.java:66)</pre></td>
</tr>
</table>

</font>
</td>
</tr>
</table>
</body></html>