System.Web.HttpRequestValidationException: A potentially dangerous Request.QueryString value was detected from the client (id="...T 1,NULL,'<script>alert("XSS")...").
System.Web.HttpRequestValidationException (0x80004005): A potentially dangerous Request.QueryString value was detected from the client (id="...T 1,NULL,'<script>alert("XSS")...").
at System.Web.HttpRequest.ValidateString(String value, String collectionKey, RequestValidationSource requestCollection)
at System.Web.HttpRequest.ValidateHttpValueCollection(HttpValueCollection collection, RequestValidationSource requestCollection)
at System.Web.HttpRequest.get_QueryString()
at DevExpress.Web.BinaryStorageSubscriber.RequestRecipient(HttpRequest request, RequestEvent requestEvent)
at DevExpress.Web.ASPxHttpHandlerModule.ProcessRequestCore(RequestEvent requestEvent)
at DevExpress.Web.ASPxHttpHandlerModule.BeginRequestHandler(Object sender, EventArgs e)
at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
Logged on Tuesday, June 11, 2024 at 3:41:57 AM
See also:
Server Variables
| Name | Value |
|---|---|
| ALL_HTTP | HTTP_ACCEPT_ENCODING:gzip HTTP_HOST:growersystem.gapconnections.com HTTP_USER_AGENT:Links/0.9.1 (Linux 2.4.24; i386;) |
| ALL_RAW | Accept-Encoding: gzip Host: growersystem.gapconnections.com User-Agent: Links/0.9.1 (Linux 2.4.24; i386;) |
| APPL_MD_PATH | /LM/W3SVC/1/ROOT |
| APPL_PHYSICAL_PATH | C:\inetpub\wwwroot\ |
| AUTH_PASSWORD | ***** |
| AUTH_TYPE | |
| AUTH_USER | |
| CERT_COOKIE | |
| CERT_FLAGS | |
| CERT_ISSUER | |
| CERT_KEYSIZE | 256 |
| CERT_SECRETKEYSIZE | 2048 |
| CERT_SERIALNUMBER | |
| CERT_SERVER_ISSUER | C=US, S=Arizona, L=Scottsdale, O="GoDaddy.com, Inc.", OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 |
| CERT_SERVER_SUBJECT | CN=growersystem.gapconnections.com |
| CERT_SUBJECT | |
| CONTENT_LENGTH | 0 |
| CONTENT_TYPE | |
| GATEWAY_INTERFACE | CGI/1.1 |
| HTTP_ACCEPT_ENCODING | gzip |
| HTTP_HOST | growersystem.gapconnections.com |
| HTTP_USER_AGENT | Links/0.9.1 (Linux 2.4.24; i386;) |
| HTTPS | on |
| HTTPS_KEYSIZE | 256 |
| HTTPS_SECRETKEYSIZE | 2048 |
| HTTPS_SERVER_ISSUER | C=US, S=Arizona, L=Scottsdale, O="GoDaddy.com, Inc.", OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate Authority - G2 |
| HTTPS_SERVER_SUBJECT | CN=growersystem.gapconnections.com |
| INSTANCE_ID | 1 |
| INSTANCE_META_PATH | /LM/W3SVC/1 |
| LOCAL_ADDR | 10.3.1.4 |
| LOGON_USER | |
| PATH_INFO | /gapclog.axd/detail |
| PATH_TRANSLATED | C:\inetpub\wwwroot\gapclog.axd |
| QUERY_STRING | id=324BD809-F6A1-4C1C-A2C2-3A634C54AAE3%27%29+AND+1%3D1+UNION+ALL+SELECT+1%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name+FROM+information_schema.tables+WHERE+2%3E1--%2F%2A%2A%2F%3B+EXEC+xp_cmdshell%28%27cat+..%2F..%2F..%2Fetc%2Fpasswd%27%29%23 |
| REMOTE_ADDR | 191.101.206.59 |
| REMOTE_HOST | 191.101.206.59 |
| REMOTE_PORT | 49469 |
| REMOTE_USER | |
| REQUEST_METHOD | GET |
| SCRIPT_NAME | /gapclog.axd |
| SERVER_NAME | growersystem.gapconnections.com |
| SERVER_PORT | 443 |
| SERVER_PORT_SECURE | 1 |
| SERVER_PROTOCOL | HTTP/1.1 |
| SERVER_SOFTWARE | Microsoft-IIS/10.0 |
| URL | /gapclog.axd |