XSSOOPS Scan Report For Page #20

This report gives details on information gathered through the penetration test analysis of http://xssoops.com/xss1.html. Please examine the output to determine the possible vulnerabilities and address them as needed.

Page Request Details
Page Size	533
Header Size	215
Content Type	text/html; charset=utf-8
Download Time	0.09952 seconds
Request Method	GET
GET DATA
POST DATA
Web Server Reponse	200 OK
Referring Page	http://www.google.com/refcheck/"<xss00ps>'/
Security Problems	1
Security Notices	1
PHP Warning Messages	0

PHP Warnings Report
Warning Type	Warning Text

[ return to top ]

Security Notices

Details

[ return to top ]

Security Vulnerabilities

Details

Vulnerability: Cross Site Scripting (XSS)
Attack Input: Referer: http://www.google.com/refcheck/"'/

<html><head><title>Form</title></head> <body> You came from: http://www.google.com/refcheck/"<xss00ps>'/<form action="/xss1.html" method="POST"> <input type="text" name="foo" /> <input type="hidden" name="bar" value="secret"/> <input type="submit" /> </form> Arbitrary args: my_cookie = my_value<br /> </body> </html>

[ return to top ]

This file was generated by XSSOOPS, the PHP security scanner.