XSSOOPS Scan Report

This report gives details on information gathered through the penetration analysis of http://xssoops.com/ website. Please examine the output to determine the possible vulnerabilities and address them as needed.

Scan Details
Distinct Pages Downloaded	43
Total Requests Made	419
Total Data Transmitted	312,830 bytes
Test Duration	69.70 seconds
Avg. Page Size	589 bytes
Min. Page Size	238 bytes
Max. Page Size	5,221 bytes
Avg. Page Download Time	0.15792 seconds
Min. Page Download Time	0.09404 seconds
Max. Page Download Time	0.75006 seconds
Number security holes found	97
Number of PHP warnings triggered	17
Number of Security Notices	16
Number of Failed Requests	79

Vulnerability Report

URL: http://xssoops.com//<xss00ps>
Input: GET -> requesting: http://xssoops.com//<xss00ps>/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page: http://xssoops.com/

URL: http://xssoops.com//404_<xss00ps>'
Input: GET -> requesting: http://xssoops.com//404_<xss00ps>'/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page:

URL: http://xssoops.com/xss1.html/<xss00ps>
Input: GET -> http://xssoops.com/xss1.html/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss1.html
Input: GET -> Referer: http://www.google.com/refcheck/"<xss00ps>'/
Security Problem: Cross Site Scripting (XSS) via the referring page through Referer HTTP header.
Referring Page: http://www.google.com/refcheck/"<xss00ps>'/

URL: http://xssoops.com/xss1.html
Input: GET -> Cookie: 'my_cookie'
Security Problem: Cross Site Scripting (XSS) via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html
Field Name: overall
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html
Field Name: foo
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html
Field Name: bar
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html/<xss00ps>
Input: POST -> Form-Name: http://xssoops.com/xss1.html/<xss00ps>/
Field Name: overall
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html/<xss00ps>
Input: POST -> Form-Name: http://xssoops.com/xss1.html/<xss00ps>/
Field Name: foo
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html/<xss00ps>
Input: POST -> Form-Name: http://xssoops.com/xss1.html/<xss00ps>/
Field Name: bar
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html/
Field Name: overall
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html/
Field Name: foo
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss1.html
Input: POST -> Form-Name: http://xssoops.com/xss1.html/
Field Name: bar
Security Problem: Cross Site Scripting (XSS) via a parameter passed via form submission (POST request).
Referring Page: http://www.google.com

URL: http://xssoops.com/xss2.html/<xss00ps>
Input: GET -> http://xssoops.com/xss2.html/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss2.html
Input: GET -> User-Agent: "<xss00ps>'
Security Problem: Cross Site Scripting (XSS) via the browser identification string supplied via User-Agent HTTP header.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss2.html
Input: GET -> Cookie: 'my_cookie'
Security Problem: Cross Site Scripting (XSS) via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss_redir.html
Input: GET -> http://xssoops.com/xss_redir.html
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/xss3.html/<xss00ps>/

URL: http://xssoops.com/xss4.html
Input: POST -> Referer: http://www.google.com
Security Problem: Cross Site Scripting (XSS) Redirect injection (via Referer HTTP header), attacker for use the site to redirect user to another website/page.
Referring Page: http://www.google.com

URL: http://xssoops.com/xss6.html
Input: GET -> Via: "<xss00ps>' OR X-Forwarded-For: "<xss00ps>'
Security Problem: Cross Site Scripting (XSS) via the proxy IP address through X-Forwarded-For or Via HTTP header.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss7.html/<xss00ps>
Input: GET -> requesting: http://xssoops.com/xss7.html/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss9.html
Input: GET -> PHPSESSID=ee25e364dfe0bcea098e1b39dc02d8d4
Security Problem: Cross Site Scripting (XSS) PHP Session fixation via cookie with the name of "PHPSESSID"
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html
Input: GET -> Serialized data '/var/www/xss/xss10.html' via cookie 'ser_test'
Security Problem: Cross Site Scripting (XSS) Serialized data being passed via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html
Input: GET -> Serialized data class stdClass {
} via POST Form-Name: http://xssoops.com/xss10.html
Field Name: post_ser
Security Problem: Cross Site Scripting (XSS) Serialized data being passed a form field.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html/<xss00ps>
Input: GET -> Serialized data '/var/www/xss/xss10.html' via cookie 'ser_test'
Security Problem: Cross Site Scripting (XSS) Serialized data being passed via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html/"xss00ps'
Input: GET -> Serialized data '/var/www/xss/xss10.html' via cookie 'ser_test'
Security Problem: Cross Site Scripting (XSS) Serialized data being passed via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html
Input: GET -> Serialized data class stdClass {
} via POST Form-Name: http://xssoops.com/xss10.html?_SESSION=1&_GET=1&_POST=1&_COOKIE=1&_REQUEST=1&_SERVER=1&GLOBALS=1&HTTP_GET_VARS=1&HTTP_POST_VARS=1&HTTP_COOKIE_VARS=1&HTTP_SERVER_VARS=1&HTTP_SESSION_VARS=1
Field Name: post_ser
Security Problem: Cross Site Scripting (XSS) Serialized data being passed a form field.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html
Input: POST -> Serialized data '/var/www/xss/xss10.html' via cookie 'ser_test'
Security Problem: Cross Site Scripting (XSS) Serialized data being passed via a cookie.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/xss10.html
Input: POST -> Serialized data class stdClass {
} via POST Form-Name: http://xssoops.com/xss10.html
Field Name: post_ser
Security Problem: Cross Site Scripting (XSS) Serialized data being passed a form field.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/bio.php/<xss00ps>
Input: GET -> requesting: http://xssoops.com/bio.php/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/resume//<xss00ps>
Input: GET -> requesting: http://xssoops.com/resume//<xss00ps>/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/index.php/<xss00ps>
Input: GET -> http://xssoops.com/index.php/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/

URL: http://xssoops.com/function.session-start/<xss00ps>
Input: GET -> requesting: http://xssoops.com/function.session-start/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) on the 404 (page not found) response page.
Referring Page: http://xssoops.com/xss9.html

URL: http://xssoops.com/index.php//<xss00ps>
Input: GET -> http://xssoops.com/index.php//<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/index.php/"xss00ps'/

URL: http://xssoops.com/index.php/xss1.html/<xss00ps>
Input: GET -> http://xssoops.com/index.php/xss1.html/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/index.php/

URL: http://xssoops.com/index.php/xss1.html//<xss00ps>
Input: GET -> http://xssoops.com/index.php/xss1.html//<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/index.php/xss1.html/"xss00ps'/

URL: http://xssoops.com/index.php/xss1.html/xss1.html/<xss00ps>
Input: GET -> http://xssoops.com/index.php/xss1.html/xss1.html/<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/index.php/xss1.html/

URL: http://xssoops.com/index.php/xss1.html/xss1.html//<xss00ps>
Input: GET -> http://xssoops.com/index.php/xss1.html/xss1.html//<xss00ps>/
Security Problem: Cross Site Scripting (XSS) caused by HTML included in the URL path.
Referring Page: http://xssoops.com/index.php/xss1.html/xss1.html/"xss00ps'/

[ return to top ]

PHP Warnings Report
URL	Method/Input	Warning Text	Referring Page
http://xssoops.com/xss8.html	GET: no parameters	Notice: Undefined index: input in /var/www/xss/xss8.html on line 7	http://xssoops.com/
http://xssoops.com/xss8.html/"xss00ps'	GET: no parameters	Notice: Undefined index: input in /var/www/xss/xss8.html on line 7	http://xssoops.com/
http://xssoops.com/xss8.html/<xss00ps>	GET: no parameters	Notice: Undefined index: input in /var/www/xss/xss8.html on line 7	http://xssoops.com/
http://xssoops.com/xss8.html	GET: _SESSION=1&_GET=1&_POST=1&_COOKIE=1&_REQUEST=1&_SERVER=1&GLOBALS=1&HTTP_GET_VARS=1&HTTP_POST_VARS=1&HTTP_COOKIE_VARS=1&HTTP_SERVER_VARS=1&HTTP_SESSION_VARS=1	Notice: Undefined variable: _GET in /var/www/xss/xss8.html on line 7	http://xssoops.com/
http://xssoops.com/xss9.html	GET: no parameters	Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct () in Unknown on line 0	http://xssoops.com/
http://xssoops.com/xss9.html	GET: no parameters	Warning: Unknown: The session id contains illegal characters, valid characters are a-z, A-Z, 0-9 and '-,' in Unknown on line 0	http://xssoops.com/
http://xssoops.com/xss9.html	GET: no parameters	Warning: session_start() [function.session-start]: Cannot send session cache limiter - headers already sent (output started at /var/www/xss/xss9.html:1) in /var/www/xss/xss9.html on line 1	http://xssoops.com/
http://xssoops.com/xss9.html	GET: no parameters	Warning: session_start() [function.session-start]: Cannot send session cookie - headers already sent by (output started at /var/www/xss/xss9.html:1) in /var/www/xss/xss9.html on line 1	http://xssoops.com/
http://xssoops.com/xss9.html	GET: no parameters	Warning: session_start() [function.session-start]: The session id contains illegal characters, valid characters are a-z, A-Z, 0-9 and '-,' in /var/www/xss/xss9.html on line 1	http://xssoops.com/

[ return to top ]

Security Notices
URL	Method/Input	Description
http://xssoops.com	-any-	Server: Apache/1.3.33 (Debian GNU/Linux) PHP/5.1.0RC2-dev
http://xssoops.com	-any-	X-Powered-By: PHP/5.1.0RC2-dev
http://xssoops.com/xss1.html	Referer: http://www.google.com/refcheck/"<xss00ps>'/	Referring URL appears on page
http://xssoops.com/xss9.html	Via or X-Forwarded-For header.
http://xssoops.com/xss1.html	n/a	POST field 'bar' can be supplied via GET
http://xssoops.com/xss1.html	n/a	POST field 'foo' can be supplied via COOKIE
http://xssoops.com/xss1.html	n/a	POST field 'foo' can be supplied via GET
http://xssoops.com/xss1.html/<xss00ps>	n/a	POST field 'bar' can be supplied via GET
http://xssoops.com/xss1.html/<xss00ps>	n/a	POST field 'foo' can be supplied via COOKIE
http://xssoops.com/xss1.html/<xss00ps>	n/a	POST field 'foo' can be supplied via GET

[ return to top ]

Failed Page Requests
URL	Response Code	Referring URL
http://xssoops.com//"xss00ps'/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com//404_<xss00ps>'/ GET:	404 Not Found
http://xssoops.com//<xss00ps>/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/bio.php GET:	404 Not Found	http://www.google.com/refcheck/"<xss00ps>'/
http://xssoops.com/bio.php GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/bio.php/"xss00ps'/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/bio.php/<xss00ps>/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/bio.php?_SESSION=1&_GET=1&_POST=1&_COOKIE=1&_REQ ... GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/function.session-start GET:	404 Not Found	http://www.google.com/refcheck/"<xss00ps>'/
http://xssoops.com/function.session-start GET:	404 Not Found	http://xssoops.com/xss9.html
http://xssoops.com/function.session-start/"xss00ps'/ GET:	404 Not Found	http://xssoops.com/xss9.html
http://xssoops.com/function.session-start/<xss00ps>/ GET:	404 Not Found	http://xssoops.com/xss9.html
http://xssoops.com/function.session-start?_SESSION=1&_GET=1&_POST=1 ... GET:	404 Not Found	http://xssoops.com/xss9.html
http://xssoops.com/resume/ GET:	404 Not Found	http://www.google.com/refcheck/"<xss00ps>'/
http://xssoops.com/resume/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume//"xss00ps'/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume//<xss00ps>/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/?_SESSION=1&_GET=1&_POST=1&_COOKIE=1&_REQ ... GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.asp GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.cgi GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.htm GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.html GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.php GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.pl GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/resume/index.shtml GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/xss7.html GET:	404 Not Found	http://www.google.com/refcheck/"<xss00ps>'/
http://xssoops.com/xss7.html GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/xss7.html/"xss00ps'/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/xss7.html/<xss00ps>/ GET:	404 Not Found	http://xssoops.com/
http://xssoops.com/xss7.html?_SESSION=1&_GET=1&_POST=1&_COOKIE=1&_R ... GET:	404 Not Found	http://xssoops.com/

[ return to top ]

Slowest Pages (load-time)
URL	Page Size	Load Time
http://xssoops.com/resume/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	325 bytes	1.68975 seconds
http://xssoops.com/function.session-start POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	340 bytes	1.67247 seconds
http://xssoops.com/xss7.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	327 bytes	1.64804 seconds
http://xssoops.com/bio.php POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	325 bytes	1.62182 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	786 bytes	0.75006 seconds
http://xssoops.com/xss2.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	437 bytes	0.72251 seconds
http://xssoops.com/xss9.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	441 bytes	0.72088 seconds
http://xssoops.com/index.php/xss1.html/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	776 bytes	0.71668 seconds
http://xssoops.com/xss10.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	454 bytes	0.70854 seconds
http://xssoops.com/xss1.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	570 bytes	0.69472 seconds
http://xssoops.com/index.php/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	766 bytes	0.6828 seconds
http://xssoops.com/index.php/xss1.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	766 bytes	0.68123 seconds
http://xssoops.com/xss8.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	343 bytes	0.6783 seconds
http://xssoops.com/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	756 bytes	0.67087 seconds
http://xssoops.com/xss4.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	305 bytes	0.66361 seconds
http://xssoops.com/xss6.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	265 bytes	0.6488 seconds
http://xssoops.com/index.php/xss1.html/xss1.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	776 bytes	0.6473 seconds
http://xssoops.com/xss3.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	383 bytes	0.64595 seconds
http://xssoops.com/index.php POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	756 bytes	0.64215 seconds
http://xssoops.com/xss5.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	356 bytes	0.64196 seconds
http://xssoops.com/index.php GET:	731 bytes	0.56943 seconds
http://xssoops.com/bio.php GET:	300 bytes	0.55798 seconds
http://xssoops.com/ GET:	731 bytes	0.53725 seconds
http://xssoops.com//404_<xss00ps>'/ GET:	309 bytes	0.40025 seconds
http://xssoops.com/xss2.html GET:	412 bytes	0.26659 seconds
http://xssoops.com/xss9.html GET:	416 bytes	0.2537 seconds
http://xssoops.com/xss3.html GET:	358 bytes	0.24121 seconds
http://xssoops.com/xss6.html GET:	240 bytes	0.24007 seconds
http://xssoops.com/xss4.html POST: submit[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][ ...	278 bytes	0.23943 seconds
http://xssoops.com/index.php GET:	731 bytes	0.23872 seconds
http://xssoops.com/xss1.html GET:	513 bytes	0.23857 seconds
http://xssoops.com/function.session-start GET:	315 bytes	0.23666 seconds
http://xssoops.com/xss1.html/<xss00ps>/ POST: 1	524 bytes	0.23561 seconds
http://xssoops.com/index.php/xss1.html/xss1.html GET:	751 bytes	0.23234 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.23028 seconds
http://xssoops.com/xss1.html/ POST: foo[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	557 bytes	0.23018 seconds
http://xssoops.com/index.php/ GET:	741 bytes	0.22891 seconds
http://xssoops.com/xss10.html GET:	429 bytes	0.22608 seconds
http://xssoops.com/bio.php GET:	300 bytes	0.22449 seconds
http://xssoops.com/function.session-start GET:	315 bytes	0.22233 seconds
http://xssoops.com/function.session-start GET:	315 bytes	0.22005 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.21993 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.21983 seconds
http://xssoops.com/xss5.html GET:	331 bytes	0.21918 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.21769 seconds
http://xssoops.com/ GET:	5221 bytes	0.21767 seconds
http://xssoops.com/xss4.html POST: 1	280 bytes	0.21759 seconds
http://xssoops.com/xss4.html GET:	280 bytes	0.21711 seconds
http://xssoops.com/xss10.html GET:	429 bytes	0.21711 seconds
http://xssoops.com/xss4.html GET:	280 bytes	0.21692 seconds

[ return to top ]

Largest Pages (page-size)
URL	Page Size	Load Time
http://xssoops.com/ GET:	5221 bytes	0.21767 seconds
http://xssoops.com/xss1.html/<xss00ps>/ POST: foo=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1617 bytes	0.19651 seconds
http://xssoops.com/xss1.html/<xss00ps>/ POST: foo=&bar=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1611 bytes	0.20228 seconds
http://xssoops.com/xss1.html/ POST: foo=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1607 bytes	0.20665 seconds
http://xssoops.com/xss1.html POST: foo=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1606 bytes	0.19417 seconds
http://xssoops.com/xss1.html/ POST: foo=&bar=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1601 bytes	0.20952 seconds
http://xssoops.com/xss1.html POST: foo=&bar=%22%3Cxss00ps%3E%27%5C%5C%5Caaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa ...	1600 bytes	0.21275 seconds
http://xssoops.com/xss9.html GET:	1328 bytes	0.10348 seconds
http://xssoops.com/xss1.html?_SESSION=1&_GET=1&_POST=1&_COOKIE=1&_R ... GET:	959 bytes	0.10189 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	786 bytes	0.75006 seconds
http://xssoops.com/index.php/xss1.html/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	776 bytes	0.71668 seconds
http://xssoops.com/index.php/xss1.html/xss1.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	776 bytes	0.6473 seconds
http://xssoops.com/index.php/xss1.html/xss1.html//<xss00ps>/ GET:	772 bytes	0.09594 seconds
http://xssoops.com/index.php/xss1.html/xss1.html//"xss00ps'/ GET:	772 bytes	0.1041 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/<xss00ps>/ GET:	771 bytes	0.1006 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/"xss00ps'/ GET:	771 bytes	0.10577 seconds
http://xssoops.com/index.php/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	766 bytes	0.6828 seconds
http://xssoops.com/index.php/xss1.html POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	766 bytes	0.68123 seconds
http://xssoops.com/index.php/xss1.html/404_<xss00ps>'/ GET:	766 bytes	0.10235 seconds
http://xssoops.com/index.php/xss1.html/404_<xss00ps>'/ GET:	766 bytes	0.12868 seconds
http://xssoops.com/index.php/xss1.html//<xss00ps>/ GET:	762 bytes	0.13342 seconds
http://xssoops.com/index.php/xss1.html//"xss00ps'/ GET:	762 bytes	0.09788 seconds
http://xssoops.com/index.php/xss1.html/<xss00ps>/ GET:	761 bytes	0.11605 seconds
http://xssoops.com/index.php/xss1.html/"xss00ps'/ GET:	761 bytes	0.10283 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.20196 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.09882 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.10312 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.10533 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.10061 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/?_SESSION=1&_GET=1 ... GET:	761 bytes	0.09894 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.23028 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.21993 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.10138 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.11124 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.09586 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.10247 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.11107 seconds
http://xssoops.com/index.php/xss1.html/xss1.html/ GET:	761 bytes	0.09943 seconds
http://xssoops.com/ POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	756 bytes	0.67087 seconds
http://xssoops.com/index.php POST: X[][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][] ...	756 bytes	0.64215 seconds
http://xssoops.com/index.php/404_<xss00ps>'/ GET:	756 bytes	0.12329 seconds
http://xssoops.com/index.php/404_<xss00ps>'/ GET:	756 bytes	0.09896 seconds
http://xssoops.com/index.php//<xss00ps>/ GET:	752 bytes	0.11914 seconds
http://xssoops.com/index.php//"xss00ps'/ GET:	752 bytes	0.09785 seconds
http://xssoops.com/index.php/<xss00ps>/ GET:	751 bytes	0.09874 seconds
http://xssoops.com/index.php/"xss00ps'/ GET:	751 bytes	0.09717 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.21983 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.10778 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.11019 seconds
http://xssoops.com/index.php/xss1.html/ GET:	751 bytes	0.09824 seconds

[ return to top ]

URL List
URL	# of Requests	Min. Page Size	Avg. Page Size	Max. Page Size	Min. Load Time	Avg. Load Time	Max. Load Time
http://xssoops.com	22	731	936	5221	0.094	0.161	0.671
http://xssoops.com/index.php	26	731	738	766	0.096	0.187	0.683
http://xssoops.com/index.php/"xss00ps'	1	751	751	751	0.097	0.097	0.097
http://xssoops.com/index.php//"xss00ps'	1	752	752	752	0.098	0.098	0.098
http://xssoops.com/index.php//<xss00ps>	1	752	752	752	0.119	0.119	0.119
http://xssoops.com/index.php/404_<xss00ps>'	2	756	756	756	0.099	0.111	0.123
http://xssoops.com/index.php/<xss00ps>	1	751	751	751	0.099	0.099	0.099
http://xssoops.com/index.php/xss1.html	27	741	748	776	0.095	0.176	0.717
http://xssoops.com/index.php/xss1.html/"xss00ps'	1	761	761	761	0.103	0.103	0.103
http://xssoops.com/index.php/xss1.html//"xss00ps'	1	762	762	762	0.098	0.098	0.098
http://xssoops.com/index.php/xss1.html//<xss00ps>	1	762	762	762	0.133	0.133	0.133
http://xssoops.com/index.php/xss1.html/404_<xss00ps>'	2	766	766	766	0.102	0.116	0.129
http://xssoops.com/index.php/xss1.html/<xss00ps>	1	761	761	761	0.116	0.116	0.116
http://xssoops.com/index.php/xss1.html/xss1.html	29	751	758	786	0.095	0.167	0.75
http://xssoops.com/index.php/xss1.html/xss1.html/"xss00ps'	1	771	771	771	0.106	0.106	0.106
http://xssoops.com/index.php/xss1.html/xss1.html//"xss00ps'	1	772	772	772	0.104	0.104	0.104
http://xssoops.com/index.php/xss1.html/xss1.html//<xss00ps>	1	772	772	772	0.096	0.096	0.096
http://xssoops.com/index.php/xss1.html/xss1.html/<xss00ps>	1	771	771	771	0.101	0.101	0.101
http://xssoops.com/xss1.html	46	470	642	1607	0.095	0.145	0.695
http://xssoops.com/xss1.html/"xss00ps'	1	524	524	524	0.1	0.1	0.1
http://xssoops.com/xss1.html/<xss00ps>	15	522	694	1617	0.095	0.135	0.236
http://xssoops.com/xss10.html	12	429	431	454	0.095	0.178	0.709
http://xssoops.com/xss10.html/"xss00ps'	1	429	429	429	0.099	0.099	0.099
http://xssoops.com/xss10.html/<xss00ps>	1	429	429	429	0.112	0.112	0.112
http://xssoops.com/xss2.html	10	325	423	570	0.095	0.198	0.723
http://xssoops.com/xss2.html/"xss00ps'	1	423	423	423	0.097	0.097	0.097
http://xssoops.com/xss2.html/<xss00ps>	1	423	423	423	0.097	0.097	0.097
http://xssoops.com/xss4.html	26	280	281	305	0.094	0.145	0.664
http://xssoops.com/xss4.html/"xss00ps'	1	280	280	280	0.094	0.094	0.094
http://xssoops.com/xss4.html/<xss00ps>	1	280	280	280	0.097	0.097	0.097
http://xssoops.com/xss5.html	10	331	334	356	0.094	0.187	0.642
http://xssoops.com/xss5.html/"xss00ps'	1	331	331	331	0.103	0.103	0.103
http://xssoops.com/xss5.html/<xss00ps>	1	331	331	331	0.117	0.117	0.117
http://xssoops.com/xss6.html	10	238	242	265	0.094	0.188	0.649
http://xssoops.com/xss6.html/"xss00ps'	1	240	240	240	0.116	0.116	0.116
http://xssoops.com/xss6.html/<xss00ps>	1	240	240	240	0.108	0.108	0.108
http://xssoops.com/xss8.html	10	318	321	343	0.095	0.192	0.678
http://xssoops.com/xss8.html/"xss00ps'	1	318	318	318	0.11	0.11	0.11
http://xssoops.com/xss8.html/<xss00ps>	1	318	318	318	0.106	0.106	0.106
http://xssoops.com/xss9.html	11	416	501	1328	0.095	0.19	0.721
http://xssoops.com/xss9.html/"xss00ps'	1	416	416	416	0.101	0.101	0.101
http://xssoops.com/xss9.html/<xss00ps>	1	416	416	416	0.132	0.132	0.132
http://xssoops.com/xss_redir.html	12	351	366	509	0.095	0.107	0.175

[ return to top ]

This file was generated by XSSOOPS, the PHP security scanner.