//START ATTACKS FOUND -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:474 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" txtNick="'';!--"=&{()}" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580849012/mainmenu.php1079816820.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:495 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" txtNick="'';!--"=&{()}" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580849457/mainmenu.php1079816820.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:505 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" txtNick="'';!--"=&{()}" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580849804/mainmenu.php1079816820.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:516 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" txtNick="'';!--"=&{()}" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580850177/mainmenu.php1079816820.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:628 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" txtNick="'';!--"=&{()}" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580850556/mainmenu.php1079816820.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:621 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php Input: ToDo="NewUser" _fixOldPHPVersions="1" btnMainMenu="1" pwdPassword="1" rdoHistory="1" rdoTheme="1" txtEmailNotification="1" txtFirstName="1" txtLastName="1" txtNick="'';!--"=&{()}" txtReload="1" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580851602/mainmenu.php-8656242790.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:125 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/chess.php Input: ToDo="NewUser" _fixOldPHPVersions="1" btnMainMenu="1" pwdPassword="1" rdoHistory="1" rdoTheme="1" txtEmailNotification="1" txtFirstName="1" txtLastName="1" txtNick="'';!--"=&{()}" txtReload="1" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580855497/mainmenu.php-8656242790.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:163 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="NewUser" _fixOldPHPVersions="1" btnMainMenu="1" pwdPassword="1" rdoHistory="1" rdoTheme="1" txtEmailNotification="1" txtFirstName="1" txtLastName="1" txtNick="'';!--"=&{()}" txtReload="1" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580856046/mainmenu.php-8656242790.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:119 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="NewUser" _fixOldPHPVersions="1" btnMainMenu="1" pwdPassword="1" rdoHistory="1" rdoTheme="1" txtEmailNotification="1" txtFirstName="1" txtLastName="1" txtNick="'';!--"=&{()}" txtReload="1" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220580856570/mainmenu.php-8656242790.xml ="> -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:209 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581647073/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:210 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581647634/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:211 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581648285/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:212 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581648787/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:213 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581654900/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:214 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581655412/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:171 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/chess.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581655941/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:349 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581656359/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() -------------------------------- /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/mainmenu.php vulnerability at line:248 in /home/jars/eclipse-workspace/ardilla/experiments/subjectPrograms/WebChess_0.9.0/gui.php Input: ToDo="Login" _CHESSUTILS="1" _fixOldPHPVersions="1" btnMainMenu=1 gameID="';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>=&{}" pwdPassword="VerboseP" txtNick="VerboseP" Possible XSS Injections in /home/jars/eclipse-workspace/ardilla/results/tmp1220581656861/mainmenu.php16356408141.xml /*transferboarddatatojavacripts*/varDEBUG=0;varCURRENTTHEME='plain';varPAWN=1;varKNIGHT=2;varBISHOP=4;varROOK=8;varQUEEN=16;varKING=32;varBLACK=128;varWHITE=0;varCOLOR_MASK=127;varboard=newArray();board[0]=newArray();board[0][0]=0;board[0][1]=0;board[0][2]=0;board[0][3]=0;board[0][4]=0;board[0][5]=0;board[0][6]=0;board[0][7]=0;board[1]=newArray();board[1][0]=0;board[1][1]=0;board[1][2]=0;board[1][3]=0;board[1][4]=0;board[1][5]=0;board[1][6]=0;board[1][7]=0;board[2]=newArray();board[2][0]=0;board[2][1]=0;board[2][2]=0;board[2][3]=0;board[2][4]=0;board[2][5]=0;board[2][6]=0;board[2][7]=0;board[3]=newArray();board[3][0]=0;board[3][1]=0;board[3][2]=0;board[3][3]=0;board[3][4]=0;board[3][5]=0;board[3][6]=0;board[3][7]=0;board[4]=newArray();board[4][0]=0;board[4][1]=0;board[4][2]=0;board[4][3]=0;board[4][4]=0;board[4][5]=0;board[4][6]=0;board[4][7]=0;board[5]=newArray();board[5][0]=0;board[5][1]=0;board[5][2]=0;board[5][3]=0;board[5][4]=0;board[5][5]=0;board[5][6]=0;board[5][7]=0;board[6]=newArray();board[6][0]=0;board[6][1]=0;board[6][2]=0;board[6][3]=0;board[6][4]=0;board[6][5]=0;board[6][6]=0;board[6][7]=0;board[7]=newArray();board[7][0]=0;board[7][1]=0;board[7][2]=0;board[7][3]=0;board[7][4]=0;board[7][5]=0;board[7][6]=0;board[7][7]=0;varnumMoves=-1;varerrMsg='';varCURPIECE=0;varCURCOLOR=1;varFROMROW=2;varFROMCOL=3;varTOROW=4;varTOCOL=5;varchessHistory=newArray();if(DEBUG)alert("Gameinitilizationcomplete!"); undo() resigngame() draw() //END ATTACKS FOUND attacks:31 Timeout expired ------------------------------------------------ attack count:31 coveredEchos:39 coveredTaintedEchos:39 time:1800241