GamaScan has identified a flaw that may allow an attacker to carry out an SQL injection attack. This flaw exists because the application does not properly sanitizing user-supplied input to the variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.

www.Scan-Your-Eshop.com:80/AddProd.asp?ProdId='&Cid=1

It is possible to correct the flaw by manually editing the code to properly sanitize the user-supplied input.

External References:
Wikipedia
sqlsecurity

GamaScan has identified a flaw that may allow an attacker to inject custom HTTP headers. The flaw occurs due to use of unsanitized user-supplied data , which enables attacker to inject CRLF(%0d%0a) characters thus splitting server's response taking full control over the contents of second HTTP response. Exploitation of the vulnerability can lead to cross-site scripting (XSS), cache poisioning and phishing attacks.

Response:

Connection: Keep-Alive
Location: GamaScan
Server: Microsoft-IIS/5.0
Set-Cookie: CRLF_Injection=Yes

Form Method: POST

The Form Inputs

www.Scan-Your-Eshop.com:80/login.asp

It is possible to correct the flaw by manually editing the code to properly sanitize the user-supplied input.

External References:
Cgisecurity

GamaScan has identified a flaw that may lead to a sensitive information disclosure. This flaw exists because the script does not properly handling errors, the error message might provide attackers useful attack information.

www.Scan-Your-Eshop.com:80/News.asp?Nid=5&text=%3b

It is possible to correct the flaw by manually editing the code to properly sanitize the user-supplied input.

External References:
owasp
microsoft

GamaScan has identified a flaw that may allow an attacker to inject a META tag. The flaw occurs due to use of unsanitized user-supplied data , which enables attacker to alter or modify the cookies values, on the client’s web browser. This flaw may lead to an attacker gaining unauthorised access, leading to a loss of integrity.

www.Scan-Your-Eshop.com:80/search.asp?ProdID=45&Keyword="><meta+http-equiv%3D"Set-cookie"+content%3D"GamaScan%3DCM">

It is possible to correct the flaw by manually editing the code to properly sanitize the user-supplied input.

External References:
owasp
cgisecurity

GamaScan has identified a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly sanitizing user-supplied input to the variable. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

www.Scan-Your-Eshop.com:80/ProdReview.asp?PId=45&Pkey="><script>alert("XSS")</script>

It is possible to correct the flaw by manually editing the code to properly sanitize the user-supplied input.

External References:
Wikipedia
cert
owsap

The HTTP TRACK method returns the contents of client HTTP requests in the entity-body of the TRACK response. This behavior could be leveraged by attackers to access sensitive information, such as cookies or authentication data, contained in the HTTP headers of the request. Attackers may abuse HTTP TRACK functionality to gain access to information in HTTP headers that is not otherwise available via the DOM interface. Examples of such information are cookies and authentication data. In the presence of other cross-site domain vulnerabilities in web browsers, sensitive header information could be read from domains other than the target of the HTTP TRACK request.

TRACK /GamaScan HTTP/1.0

Based on your site requirements and policy, you should consider disabling HTTP TRACK support in your web server. For Apache web servers, use the Apache mod_rewrite module to deny HTTP TRACK requests or to permit only the methods needed to meet site requirements and policy. For Microsoft's Internet Information Service (IIS), download the URLScan tool from Microsoft to deny HTTP TRACK requests or to permit only the methods needed to meet site requirements and policy. For other web servers, consult your documentation for details.

External References:
OSVDB ID: 5648
CERT VU: 288308

The ISAPI extension idq.dll library in Microsoft's IIS web server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker requests any file which does not exist with an .ida or .idq extension, which will disclose the full path of the web server's document root, resulting in a loss of confidentiality.

www.Scan-Your-Eshop.com:80/SgK.idq

In the IIS Microsoft Management Console, go to Preferences -> Home directory -> Application, and select 'Check if file exists'. Additionally, please apply the patches listed in Microsoft Knowledge Base article MS00-006.

External References:
OSVDB ID: 391
CVE ID: 2000-0071
Bugtraq ID: 1065

GamaScan has identified a directory on the server.

www.Scan-Your-Eshop.com:80/orders/

No fix is required.

External References:
GamaScan DataBase

GamaScan has identified a directory on the server.

www.Scan-Your-Eshop.com:80/customer/

No fix is required.

External References:
GamaScan DataBase

GamaScan has identified a directory on the server.

www.Scan-Your-Eshop.com:80/logs/

No fix is required.

External References:
GamaScan DataBase

GamaScan has identified a directory on the server.

www.Scan-Your-Eshop.com:80/payment/

No fix is required.

External References:
GamaScan DataBase