XSSOOPS Scan Report For Page #51
This report gives details on information gathered through the penetration test analysis of
http://xssoops.com/xss1.html/<xss00ps>/
. Please examine the output to determine the possible vulnerabilities and address them as needed.
Page Request Details
Page Size
558
Header Size
215
Content Type
text/html; charset=utf-8
Download Time
0.09721 seconds
Request Method
POST
GET DATA
POST DATA
foo%5B%3Cxss00ps%3E%5D%5B%5D%5B%5D=&bar%5B%3Cxss00ps%3E%5D%5B%5D%5B%5D=secret
Web Server Reponse
200 OK
Referring Page
http://www.google.com
Security Problems
1
Security Notices
0
PHP Warning Messages
0
PHP Warnings Report
Warning Type
Warning Text
[ return to top ]
Security Notices
Details
[ return to top ]
Security Vulnerabilities
Details
Vulnerability:
Cross Site Scripting (XSS)
Attack Input:
Form-Name: http://xssoops.com/xss1.html/
/ Field Name: overall
<html><head><title>Form</title></head> <body> You came from: http://www.google.com<form action="/xss1.html/
<xss00ps>
/" method="POST"> <input type="text" name="foo" /> <input type="hidden" name="bar" value="secret"/> <input type="submit" /> </form> foo = Array<br /> bar = Array<br /> Arbitrary args: my_cookie = my_value<br /> </body> </html>
[ return to top ]
This file was generated by
XSSOOPS
, the PHP security scanner.