System.Web.HttpRequestValidationException: A potentially dangerous Request.QueryString value was detected from the client (="...T 1,NULL,'<script>alert("XSS")...").
System.Web.HttpRequestValidationException (0x80004005): A potentially dangerous Request.QueryString value was detected from the client (="...T 1,NULL,'<script>alert("XSS")...").
at System.Web.HttpRequest.ValidateString(String value, String collectionKey, RequestValidationSource requestCollection)
at System.Web.HttpRequest.ValidateHttpValueCollection(HttpValueCollection collection, RequestValidationSource requestCollection)
at System.Web.HttpRequest.get_QueryString()
at DevExpress.Web.BinaryStorageSubscriber.RequestRecipient(HttpRequest request, RequestEvent requestEvent)
at DevExpress.Web.ASPxHttpHandlerModule.ProcessRequestCore(RequestEvent requestEvent)
at DevExpress.Web.ASPxHttpHandlerModule.BeginRequestHandler(Object sender, EventArgs e)
at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
Logged on Wednesday, May 22, 2024 at 4:52:36 PM
See also:
Server Variables
| Name | Value |
|---|---|
| ALL_HTTP | HTTP_CACHE_CONTROL:no-cache,no-store HTTP_CONNECTION:close HTTP_PRAGMA:no-cache HTTP_ACCEPT:text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 HTTP_ACCEPT_CHARSET:ISO-8859-15,utf-8;q=0.7,*;q=0.7 HTTP_ACCEPT_ENCODING:gzip,deflate HTTP_ACCEPT_LANGUAGE:en-us,en;q=0.5 HTTP_HOST:growersystem.gapconnections.com HTTP_USER_AGENT:Opera/9.60 (Windows NT 6.0; U; uk) Presto/2.1.1 |
| ALL_RAW | Cache-Control: no-cache,no-store Connection: close Pragma: no-cache Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Charset: ISO-8859-15,utf-8;q=0.7,*;q=0.7 Accept-Encoding: gzip,deflate Accept-Language: en-us,en;q=0.5 Host: growersystem.gapconnections.com User-Agent: Opera/9.60 (Windows NT 6.0; U; uk) Presto/2.1.1 |
| APPL_MD_PATH | /LM/W3SVC/1/ROOT |
| APPL_PHYSICAL_PATH | C:\inetpub\wwwroot\ |
| AUTH_PASSWORD | ***** |
| AUTH_TYPE | |
| AUTH_USER | |
| CERT_COOKIE | |
| CERT_FLAGS | |
| CERT_ISSUER | |
| CERT_KEYSIZE | |
| CERT_SECRETKEYSIZE | |
| CERT_SERIALNUMBER | |
| CERT_SERVER_ISSUER | |
| CERT_SERVER_SUBJECT | |
| CERT_SUBJECT | |
| CONTENT_LENGTH | 0 |
| CONTENT_TYPE | |
| GATEWAY_INTERFACE | CGI/1.1 |
| HTTP_ACCEPT | text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 |
| HTTP_ACCEPT_CHARSET | ISO-8859-15,utf-8;q=0.7,*;q=0.7 |
| HTTP_ACCEPT_ENCODING | gzip,deflate |
| HTTP_ACCEPT_LANGUAGE | en-us,en;q=0.5 |
| HTTP_CACHE_CONTROL | no-cache,no-store |
| HTTP_CONNECTION | close |
| HTTP_HOST | growersystem.gapconnections.com |
| HTTP_PRAGMA | no-cache |
| HTTP_USER_AGENT | Opera/9.60 (Windows NT 6.0; U; uk) Presto/2.1.1 |
| HTTPS | off |
| HTTPS_KEYSIZE | |
| HTTPS_SECRETKEYSIZE | |
| HTTPS_SERVER_ISSUER | |
| HTTPS_SERVER_SUBJECT | |
| INSTANCE_ID | 1 |
| INSTANCE_META_PATH | /LM/W3SVC/1 |
| LOCAL_ADDR | 10.3.1.4 |
| LOGON_USER | |
| PATH_INFO | / |
| PATH_TRANSLATED | C:\inetpub\wwwroot |
| QUERY_STRING | __CALLBACKLOADSCRIPT=t&CdRY%3D5676%20AND%201%3D1%20UNION%20ALL%20SELECT%201%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name%20FROM%20information_schema.tables%20WHERE%202%3E1--%2F%2A%2A%2F%3B%20EXEC%20xp_cmdshell%28%27cat%20..%2F..%2F..%2Fetc%2Fpasswd%27%29%23 |
| REMOTE_ADDR | 141.98.9.152 |
| REMOTE_HOST | 141.98.9.152 |
| REMOTE_PORT | 58074 |
| REMOTE_USER | |
| REQUEST_METHOD | GET |
| SCRIPT_NAME | / |
| SERVER_NAME | growersystem.gapconnections.com |
| SERVER_PORT | 80 |
| SERVER_PORT_SECURE | 0 |
| SERVER_PROTOCOL | HTTP/1.1 |
| SERVER_SOFTWARE | Microsoft-IIS/10.0 |
| URL | / |