Вы находитесь на странице: 1из 133

Acunetix Website Audit

23 January, 2016

OWASP TOP 10 2010


~ compliance report ~

Generated by Acunetix WVS Reporter (v8.0 Build 20120409)

OWASP TOP 10 2010


compliance report
Description
The primary aim of the OWASP Top 10 is to educate developers, designers, architects, managers, and organizations
about the consequences of the most important web application security weaknesses. The Top 10 provides basic
techniques to protect against these high risk problem areas -and also provides guidance on where to go from here.

Disclaimer
This document or any of its content cannot account for, or be included in any form of legal advice. The outcome of a
vulnerability scan (or security evaluation) should be utilized to ensure that diligent measures are taken to lower the risk of
potential exploits carried out to compromise data.
Legal advice must be supplied according to its legal context. All laws and the environments in which they are applied, are
constantly changed and revised. Therefore no information provided in this document may ever be used as an alternative
to a qualified legal body or representative.
A portion of this report is taken from OWASP's "The Ten most critical web application security vulnerabilities - 2010
Update" document, that can be found at http://www.owasp.org.

Scan
URL
Scan date
Duration
Profile

http://localhost/tokobatik/
23-Jan-16 3:35:14 PM
17 minutes, 12 seconds
Default

Compliance at a Glance
This section of the report is a summary and lists the number of alerts found according to individual compliance
categories.
-

Injection (A1)
Total number of alerts in this category: 2
Cross Site Scripting (XSS) (A2)
Total number of alerts in this category: 2
Broken Authentication and Session Management (A3)
No alerts in this category
Insecure Direct Object Reference (A4)
No alerts in this category
Cross Site Request Forgery (CSRF) (A5)
No alerts in this category
Security Misconfiguration (A6)
Total number of alerts in this category: 208
Insecure Cryptographic Storage (A7)
No alerts in this category
Failure to Restrict URL Access (A8)
Total number of alerts in this category: 208
Insufficient Transport Layer Protection (A9)

Acunetix Website Audit

No alerts in this category


UnvalidatedRedirects and Forwards (A10)
No alerts in this category

Acunetix Website Audit

Compliance According to Categories: A Detailed Report


This section is a detailed report that explains each vulnerability found according to individual compliance categories.

(A1) Injection
Injection flaws, such as SQL, OS, and LDAP injection, occur when untrusteddata is sent to an interpreter as part of a
command or query. The attacker's hostile data can trick the interpreter into executing unintended commands or accessing
unauthorized data.
Total number of alerts in this category: 2
Alerts in this category
SQL injection
This script is possibly vulnerable to SQL Injection attacks.
SQL injection is a vulnerability that allows an attacker to alter backend SQL statements by manipulating the user input. An
SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't
properly filter out dangerous characters.
This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is
relatively easy to protect against, there is a large number of web applications vulnerable.
Affected item
/tokobatik/
Affected parameter hal
Variants
1
Affected item
/tokobatik/index.php
Affected parameter hal
Variants
1

(A2) Cross Site Scripting (XSS)


XSS flaws occur whenever an application takes untrusteddata and sends it to a web browser without proper validation
and escaping. XSS allows attackers to execute scripts in the victim's browser which can hijack user sessions, deface web
sites, or redirect the user to malicious sites.
Total number of alerts in this category: 2
Alerts in this category
Cross Site Scripting (verified)
This script is possibly vulnerable to Cross Site Scripting (XSS) attacks.
Cross site scripting (also referred to as XSS) is a vulnerability that allows an attacker to send malicious code (usually in
the form of Javascript) to another user. Because a browser cannot know if the script should be trusted or not, it will
execute the script in the user context allowing the attacker to access any cookies or session tokens retained by the
browser.
Affected item
/tokobatik/
Affected parameter txtKeyword
Variants
1
Affected item
/tokobatik/index.php
Affected parameter txtKeyword
Variants
1

Acunetix Website Audit

(A3) Broken Authentication and Session Management


Application functions related to authentication and session management are often not implemented correctly, allowing
attackers to compromise passwords, keys, session tokens, or exploit other implementation flaws to assume other users'
identities.
No alerts in this category.

(A4) Insecure Direct Object Reference


A direct object reference occurs when a developer exposes a reference to an internal implementation object, such as a
file, directory, or database key. Without an access control check or other protection, attackers can manipulate these
references to access unauthorized data.
No alerts in this category.

(A5) Cross Site Request Forgery (CSRF)


A CSRF attack forces a logged-on victim's browser to send a forged HTTP request, including the victim's session cookie
and any other automatically included authentication information, to a vulnerable web application. This allows the attacker
to force the victim's browser to generate requests the vulnerable application thinks are legitimate requests from the victim.
No alerts in this category.

(A6) Security Misconfiguration


Good security requires having a secure configuration defined and deployed for the application, frameworks, application
server, web server, database server, and platform. All these settings should be defined, implemented, and maintained as
many are not shipped with secure defaults. This includes keeping all software up to date, including all code libraries used
by the application.
Total number of alerts in this category: 208
Alerts in this category
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
Affected item
/tokobatik/ADMIN/bootstrap
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/bootstrap/css
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/bootstrap/fonts
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/bootstrap/js
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/css
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/css/font-awesome
Acunetix Website Audit

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/css/font-awesome/css
1
/tokobatik/ADMIN/css/font-awesome/font
1
/tokobatik/ADMIN/css/hint-css
1
/tokobatik/ADMIN/css/linecons
1
/tokobatik/ADMIN/css/linecons/fonts
1
/tokobatik/ADMIN/css/theme
1
/tokobatik/admin/img
1
/tokobatik/Admin/img
1
/tokobatik/ADMIN/img
1
/tokobatik/ADMIN/img/flags
1
/tokobatik/ADMIN/img/patterns
1
/tokobatik/Admin/js
1
/tokobatik/admin/js
1
/tokobatik/ADMIN/js
1
/tokobatik/ADMIN/js/lib
1
/tokobatik/ADMIN/js/lib/autosize
1
/tokobatik/ADMIN/js/lib/bootbox
1
/tokobatik/ADMIN/js/lib/bootstrap-switch

Acunetix Website Audit

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/js/lib/bootstrap-switch/img
1
/tokobatik/ADMIN/js/lib/bootstrap-switch/js
1
/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets
1
/tokobatik/ADMIN/js/lib/chained
1
/tokobatik/ADMIN/js/lib/ckeditor
1
/tokobatik/ADMIN/js/lib/colorpicker
1
/tokobatik/ADMIN/js/lib/colorpicker/css
1
/tokobatik/ADMIN/js/lib/colorpicker/img
1
/tokobatik/ADMIN/js/lib/colorpicker/js
1
/tokobatik/ADMIN/js/lib/complexify
1
/tokobatik/ADMIN/js/lib/dataTables
1
/tokobatik/ADMIN/js/lib/dataTables/extras
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/js

Acunetix Website Audit

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns
1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/css
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/images
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/media
1
/tokobatik/ADMIN/js/lib/dataTables/media/images
1
/tokobatik/ADMIN/js/lib/dataTables/media/js
1
/tokobatik/ADMIN/js/lib/datepicker
1
/tokobatik/ADMIN/js/lib/datepicker/css
1
/tokobatik/ADMIN/js/lib/datepicker/js
1
/tokobatik/ADMIN/js/lib/easy-pie-chart
1
/tokobatik/ADMIN/js/lib/flot
1
/tokobatik/ADMIN/js/lib/FooTable
1
/tokobatik/ADMIN/js/lib/FooTable/css

Acunetix Website Audit

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/js/lib/FooTable/css/fonts
1
/tokobatik/ADMIN/js/lib/FooTable/js
1
/tokobatik/ADMIN/js/lib/fuelUx
1
/tokobatik/ADMIN/js/lib/fullcalendar
1
/tokobatik/ADMIN/js/lib/gmaps
1
/tokobatik/ADMIN/js/lib/iCheck
1
/tokobatik/ADMIN/js/lib/iCheck/skins
1
/tokobatik/ADMIN/js/lib/iCheck/skins/minimal
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider/css
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider/js
1
/tokobatik/ADMIN/js/lib/jasny_plugins
1
/tokobatik/ADMIN/js/lib/jMenu
1
/tokobatik/ADMIN/js/lib/jMenu/js
1
/tokobatik/ADMIN/js/lib/jquery.inputmask
1
/tokobatik/ADMIN/js/lib/jquery_textarea_counter
1
/tokobatik/ADMIN/js/lib/jquery_ui
1
/tokobatik/ADMIN/js/lib/jquery_ui/css

Acunetix Website Audit

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/js/lib/jquery_ui/css/delta
1
/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/css
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/img
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/js
1
/tokobatik/ADMIN/js/lib/jquery-steps
1
/tokobatik/ADMIN/js/lib/jvectormap
1
/tokobatik/ADMIN/js/lib/jvectormap/maps
1
/tokobatik/ADMIN/js/lib/magnific-popup
1
/tokobatik/ADMIN/js/lib/mixitup
1
/tokobatik/ADMIN/js/lib/multiple-select
1
/tokobatik/ADMIN/js/lib/multi-select
1
/tokobatik/ADMIN/js/lib/multi-select/css
1
/tokobatik/ADMIN/js/lib/multi-select/img
1
/tokobatik/ADMIN/js/lib/multi-select/js
1
/tokobatik/ADMIN/js/lib/navgoco
1
/tokobatik/ADMIN/js/lib/noUiSlider

Acunetix Website Audit

10

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/ADMIN/js/lib/parsley
1
/tokobatik/ADMIN/js/lib/peity
1
/tokobatik/ADMIN/js/lib/qrcode
1
/tokobatik/ADMIN/js/lib/select2
1
/tokobatik/ADMIN/js/lib/slickGrid
1
/tokobatik/ADMIN/js/lib/slickGrid/controls
1
/tokobatik/ADMIN/js/lib/slickGrid/images
1
/tokobatik/ADMIN/js/lib/slickGrid/lib
1
/tokobatik/ADMIN/js/lib/slickGrid/plugins
1
/tokobatik/ADMIN/js/lib/Sticky
1
/tokobatik/ADMIN/js/lib/timepicker
1
/tokobatik/ADMIN/js/lib/timepicker/css
1
/tokobatik/ADMIN/js/lib/timepicker/js
1
/tokobatik/ADMIN/js/lib/typeahead.js
1
/tokobatik/ADMIN/js/pages
1
/tokobatik/Images
1
/tokobatik/images
1
/tokobatik/images/_notes

Acunetix Website Audit

11

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/img-barang
1
/tokobatik/plugins
1
/tokobatik/plugins/tigra_calendar/img
1
/tokobatik/plugins/tinymce
1
/tokobatik/plugins/tinymce/langs
1
/tokobatik/plugins/tinymce/plugins
1
/tokobatik/plugins/tinymce/plugins/advlist
1
/tokobatik/plugins/tinymce/plugins/anchor
1
/tokobatik/plugins/tinymce/plugins/autolink
1
/tokobatik/plugins/tinymce/plugins/autoresize
1
/tokobatik/plugins/tinymce/plugins/autosave
1
/tokobatik/plugins/tinymce/plugins/bbcode
1
/tokobatik/plugins/tinymce/plugins/charmap
1
/tokobatik/plugins/tinymce/plugins/code
1
/tokobatik/plugins/tinymce/plugins/compat3x
1
/tokobatik/plugins/tinymce/plugins/contextmenu
1
/tokobatik/plugins/tinymce/plugins/directionality
1
/tokobatik/plugins/tinymce/plugins/emoticons

Acunetix Website Audit

12

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/plugins/tinymce/plugins/emoticons/img
1
/tokobatik/plugins/tinymce/plugins/example
1
/tokobatik/plugins/tinymce/plugins/example_dependency
1
/tokobatik/plugins/tinymce/plugins/fullpage
1
/tokobatik/plugins/tinymce/plugins/fullscreen
1
/tokobatik/plugins/tinymce/plugins/hr
1
/tokobatik/plugins/tinymce/plugins/image
1
/tokobatik/plugins/tinymce/plugins/insertdatetime
1
/tokobatik/plugins/tinymce/plugins/layer
1
/tokobatik/plugins/tinymce/plugins/legacyoutput
1
/tokobatik/plugins/tinymce/plugins/link
1
/tokobatik/plugins/tinymce/plugins/lists
1
/tokobatik/plugins/tinymce/plugins/media
1
/tokobatik/plugins/tinymce/plugins/nonbreaking
1
/tokobatik/plugins/tinymce/plugins/noneditable
1
/tokobatik/plugins/tinymce/plugins/pagebreak
1
/tokobatik/plugins/tinymce/plugins/paste
1
/tokobatik/plugins/tinymce/plugins/preview

Acunetix Website Audit

13

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/plugins/tinymce/plugins/print
1
/tokobatik/plugins/tinymce/plugins/save
1
/tokobatik/plugins/tinymce/plugins/searchreplace
1
/tokobatik/plugins/tinymce/plugins/spellchecker
1
/tokobatik/plugins/tinymce/plugins/tabfocus
1
/tokobatik/plugins/tinymce/plugins/table
1
/tokobatik/plugins/tinymce/plugins/template
1
/tokobatik/plugins/tinymce/plugins/textcolor
1
/tokobatik/plugins/tinymce/plugins/visualblocks
1
/tokobatik/plugins/tinymce/plugins/visualblocks/css
1
/tokobatik/plugins/tinymce/plugins/visualchars
1
/tokobatik/plugins/tinymce/plugins/wordcount
1
/tokobatik/plugins/tinymce/skins
1
/tokobatik/plugins/tinymce/skins/lightgray
1
/tokobatik/plugins/tinymce/skins/lightgray/fonts
1
/tokobatik/plugins/tinymce/skins/lightgray/img
1
/tokobatik/plugins/tinymce/themes
1
/tokobatik/plugins/tinymce/themes/modern

Acunetix Website Audit

14

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item

1
/tokobatik/themes
1
/tokobatik/themes/amelia
1
/tokobatik/themes/bootshop
1
/tokobatik/themes/businessltd
1
/tokobatik/themes/cerulean
1
/tokobatik/themes/css
1
/tokobatik/themes/cyborg
1
/tokobatik/themes/font
1
/tokobatik/themes/images
1
/tokobatik/themes/images/carousel
1
/tokobatik/themes/images/ico
1
/tokobatik/themes/images/lightbox
1
/tokobatik/themes/images/products
1
/tokobatik/themes/images/products/large
1
/tokobatik/themes/img
1
/tokobatik/themes/journal
1
/tokobatik/themes/js
1
/tokobatik/themes/js/google-code-prettify

Acunetix Website Audit

15

Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

1
/tokobatik/themes/less
1
/tokobatik/themes/less/amelia
1
/tokobatik/themes/less/bootshop
1
/tokobatik/themes/less/oregional
1
/tokobatik/themes/less/simplex
1
/tokobatik/themes/readable
1
/tokobatik/themes/simplex
1
/tokobatik/themes/slate
1
/tokobatik/themes/spacelab
1
/tokobatik/themes/spruce
1
/tokobatik/themes/superhero
1
/tokobatik/themes/switch
1
/tokobatik/themes/switch/images
1
/tokobatik/themes/switch/images/clr
1
/tokobatik/themes/switch/images/pattern
1
/tokobatik/themes/united
1

Apache server-info enabled


Apache /server-info displays information about your Apache configuration. If you are not using this feature, disable it.
Affected item
Web Server
Acunetix Website Audit

16

Affected parameter
Variants
1
Apache server-status enabled
Apache /server-status displays information about your Apache status. If you are not using this feature, disable it.
Affected item
Web Server
Affected parameter
Variants
1
Login page password-guessing attack
A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack
is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols
until you discover the one correct combination that works.
This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended
to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web
references for more information about fixing this problem.
Affected item
/tokobatik/
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/login_validasi.php
Affected parameter
Variants
1
Affected item
/tokobatik/index.php
Affected parameter
Variants
1
TRACE method is enabled
HTTP TRACE method is enabled on this web server. In the presence of other cross-domain vulnerabilities in web
browsers, sensitive header information could be read from any domains that support the HTTP TRACE method.
Affected item
Web Server
Affected parameter
Variants
1

(A7) Insecure Cryptographic Storage


Many web applications do not properly protect sensitive data, such as credit cards, SSNs, and authentication credentials,
with appropriate encryption or hashing. Attackers may steal or modify such weakly protected data to conduct identity theft,
credit card fraud, or other crimes.
No alerts in this category.

(A8) Failure to Restrict URL Access


Many web applications check URL access rights before rendering protected links and buttons. However, applications
need to perform similar access control checks each time these pages are accessed, or attackers will be able to forge
URLs to access these hidden pages anyway.
Total number of alerts in this category: 208
Alerts in this category
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
Acunetix Website Audit

17

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/bootstrap
1
/tokobatik/ADMIN/bootstrap/css
1
/tokobatik/ADMIN/bootstrap/fonts
1
/tokobatik/ADMIN/bootstrap/js
1
/tokobatik/ADMIN/css
1
/tokobatik/ADMIN/css/font-awesome
1
/tokobatik/ADMIN/css/font-awesome/css
1
/tokobatik/ADMIN/css/font-awesome/font
1
/tokobatik/ADMIN/css/hint-css
1
/tokobatik/ADMIN/css/linecons
1
/tokobatik/ADMIN/css/linecons/fonts
1
/tokobatik/ADMIN/css/theme
1
/tokobatik/admin/img
1
/tokobatik/Admin/img
1
/tokobatik/ADMIN/img
1
/tokobatik/ADMIN/img/flags
1
/tokobatik/ADMIN/img/patterns
1
/tokobatik/Admin/js
1

Acunetix Website Audit

18

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/admin/js
1
/tokobatik/ADMIN/js
1
/tokobatik/ADMIN/js/lib
1
/tokobatik/ADMIN/js/lib/autosize
1
/tokobatik/ADMIN/js/lib/bootbox
1
/tokobatik/ADMIN/js/lib/bootstrap-switch
1
/tokobatik/ADMIN/js/lib/bootstrap-switch/img
1
/tokobatik/ADMIN/js/lib/bootstrap-switch/js
1
/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets
1
/tokobatik/ADMIN/js/lib/chained
1
/tokobatik/ADMIN/js/lib/ckeditor
1
/tokobatik/ADMIN/js/lib/colorpicker
1
/tokobatik/ADMIN/js/lib/colorpicker/css
1
/tokobatik/ADMIN/js/lib/colorpicker/img
1
/tokobatik/ADMIN/js/lib/colorpicker/js
1
/tokobatik/ADMIN/js/lib/complexify
1
/tokobatik/ADMIN/js/lib/dataTables
1
/tokobatik/ADMIN/js/lib/dataTables/extras
1

Acunetix Website Audit

19

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns
1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/css
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/images
1
/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js
1
/tokobatik/ADMIN/js/lib/dataTables/media
1
/tokobatik/ADMIN/js/lib/dataTables/media/images
1
/tokobatik/ADMIN/js/lib/dataTables/media/js
1
/tokobatik/ADMIN/js/lib/datepicker
1

Acunetix Website Audit

20

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/js/lib/datepicker/css
1
/tokobatik/ADMIN/js/lib/datepicker/js
1
/tokobatik/ADMIN/js/lib/easy-pie-chart
1
/tokobatik/ADMIN/js/lib/flot
1
/tokobatik/ADMIN/js/lib/FooTable
1
/tokobatik/ADMIN/js/lib/FooTable/css
1
/tokobatik/ADMIN/js/lib/FooTable/css/fonts
1
/tokobatik/ADMIN/js/lib/FooTable/js
1
/tokobatik/ADMIN/js/lib/fuelUx
1
/tokobatik/ADMIN/js/lib/fullcalendar
1
/tokobatik/ADMIN/js/lib/gmaps
1
/tokobatik/ADMIN/js/lib/iCheck
1
/tokobatik/ADMIN/js/lib/iCheck/skins
1
/tokobatik/ADMIN/js/lib/iCheck/skins/minimal
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider/css
1
/tokobatik/ADMIN/js/lib/ion_rangeSlider/js
1
/tokobatik/ADMIN/js/lib/jasny_plugins
1

Acunetix Website Audit

21

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/js/lib/jMenu
1
/tokobatik/ADMIN/js/lib/jMenu/js
1
/tokobatik/ADMIN/js/lib/jquery.inputmask
1
/tokobatik/ADMIN/js/lib/jquery_textarea_counter
1
/tokobatik/ADMIN/js/lib/jquery_ui
1
/tokobatik/ADMIN/js/lib/jquery_ui/css
1
/tokobatik/ADMIN/js/lib/jquery_ui/css/delta
1
/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/css
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/img
1
/tokobatik/ADMIN/js/lib/jQuery-File-Upload/js
1
/tokobatik/ADMIN/js/lib/jquery-steps
1
/tokobatik/ADMIN/js/lib/jvectormap
1
/tokobatik/ADMIN/js/lib/jvectormap/maps
1
/tokobatik/ADMIN/js/lib/magnific-popup
1
/tokobatik/ADMIN/js/lib/mixitup
1
/tokobatik/ADMIN/js/lib/multiple-select
1

Acunetix Website Audit

22

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/js/lib/multi-select
1
/tokobatik/ADMIN/js/lib/multi-select/css
1
/tokobatik/ADMIN/js/lib/multi-select/img
1
/tokobatik/ADMIN/js/lib/multi-select/js
1
/tokobatik/ADMIN/js/lib/navgoco
1
/tokobatik/ADMIN/js/lib/noUiSlider
1
/tokobatik/ADMIN/js/lib/parsley
1
/tokobatik/ADMIN/js/lib/peity
1
/tokobatik/ADMIN/js/lib/qrcode
1
/tokobatik/ADMIN/js/lib/select2
1
/tokobatik/ADMIN/js/lib/slickGrid
1
/tokobatik/ADMIN/js/lib/slickGrid/controls
1
/tokobatik/ADMIN/js/lib/slickGrid/images
1
/tokobatik/ADMIN/js/lib/slickGrid/lib
1
/tokobatik/ADMIN/js/lib/slickGrid/plugins
1
/tokobatik/ADMIN/js/lib/Sticky
1
/tokobatik/ADMIN/js/lib/timepicker
1
/tokobatik/ADMIN/js/lib/timepicker/css
1

Acunetix Website Audit

23

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/ADMIN/js/lib/timepicker/js
1
/tokobatik/ADMIN/js/lib/typeahead.js
1
/tokobatik/ADMIN/js/pages
1
/tokobatik/Images
1
/tokobatik/images
1
/tokobatik/images/_notes
1
/tokobatik/img-barang
1
/tokobatik/plugins
1
/tokobatik/plugins/tigra_calendar/img
1
/tokobatik/plugins/tinymce
1
/tokobatik/plugins/tinymce/langs
1
/tokobatik/plugins/tinymce/plugins
1
/tokobatik/plugins/tinymce/plugins/advlist
1
/tokobatik/plugins/tinymce/plugins/anchor
1
/tokobatik/plugins/tinymce/plugins/autolink
1
/tokobatik/plugins/tinymce/plugins/autoresize
1
/tokobatik/plugins/tinymce/plugins/autosave
1
/tokobatik/plugins/tinymce/plugins/bbcode
1

Acunetix Website Audit

24

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/plugins/tinymce/plugins/charmap
1
/tokobatik/plugins/tinymce/plugins/code
1
/tokobatik/plugins/tinymce/plugins/compat3x
1
/tokobatik/plugins/tinymce/plugins/contextmenu
1
/tokobatik/plugins/tinymce/plugins/directionality
1
/tokobatik/plugins/tinymce/plugins/emoticons
1
/tokobatik/plugins/tinymce/plugins/emoticons/img
1
/tokobatik/plugins/tinymce/plugins/example
1
/tokobatik/plugins/tinymce/plugins/example_dependency
1
/tokobatik/plugins/tinymce/plugins/fullpage
1
/tokobatik/plugins/tinymce/plugins/fullscreen
1
/tokobatik/plugins/tinymce/plugins/hr
1
/tokobatik/plugins/tinymce/plugins/image
1
/tokobatik/plugins/tinymce/plugins/insertdatetime
1
/tokobatik/plugins/tinymce/plugins/layer
1
/tokobatik/plugins/tinymce/plugins/legacyoutput
1
/tokobatik/plugins/tinymce/plugins/link
1
/tokobatik/plugins/tinymce/plugins/lists
1

Acunetix Website Audit

25

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/plugins/tinymce/plugins/media
1
/tokobatik/plugins/tinymce/plugins/nonbreaking
1
/tokobatik/plugins/tinymce/plugins/noneditable
1
/tokobatik/plugins/tinymce/plugins/pagebreak
1
/tokobatik/plugins/tinymce/plugins/paste
1
/tokobatik/plugins/tinymce/plugins/preview
1
/tokobatik/plugins/tinymce/plugins/print
1
/tokobatik/plugins/tinymce/plugins/save
1
/tokobatik/plugins/tinymce/plugins/searchreplace
1
/tokobatik/plugins/tinymce/plugins/spellchecker
1
/tokobatik/plugins/tinymce/plugins/tabfocus
1
/tokobatik/plugins/tinymce/plugins/table
1
/tokobatik/plugins/tinymce/plugins/template
1
/tokobatik/plugins/tinymce/plugins/textcolor
1
/tokobatik/plugins/tinymce/plugins/visualblocks
1
/tokobatik/plugins/tinymce/plugins/visualblocks/css
1
/tokobatik/plugins/tinymce/plugins/visualchars
1
/tokobatik/plugins/tinymce/plugins/wordcount
1

Acunetix Website Audit

26

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/plugins/tinymce/skins
1
/tokobatik/plugins/tinymce/skins/lightgray
1
/tokobatik/plugins/tinymce/skins/lightgray/fonts
1
/tokobatik/plugins/tinymce/skins/lightgray/img
1
/tokobatik/plugins/tinymce/themes
1
/tokobatik/plugins/tinymce/themes/modern
1
/tokobatik/themes
1
/tokobatik/themes/amelia
1
/tokobatik/themes/bootshop
1
/tokobatik/themes/businessltd
1
/tokobatik/themes/cerulean
1
/tokobatik/themes/css
1
/tokobatik/themes/cyborg
1
/tokobatik/themes/font
1
/tokobatik/themes/images
1
/tokobatik/themes/images/carousel
1
/tokobatik/themes/images/ico
1
/tokobatik/themes/images/lightbox
1

Acunetix Website Audit

27

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/themes/images/products
1
/tokobatik/themes/images/products/large
1
/tokobatik/themes/img
1
/tokobatik/themes/journal
1
/tokobatik/themes/js
1
/tokobatik/themes/js/google-code-prettify
1
/tokobatik/themes/less
1
/tokobatik/themes/less/amelia
1
/tokobatik/themes/less/bootshop
1
/tokobatik/themes/less/oregional
1
/tokobatik/themes/less/simplex
1
/tokobatik/themes/readable
1
/tokobatik/themes/simplex
1
/tokobatik/themes/slate
1
/tokobatik/themes/spacelab
1
/tokobatik/themes/spruce
1
/tokobatik/themes/superhero
1
/tokobatik/themes/switch
1

Acunetix Website Audit

28

Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants
Affected item
Affected parameter
Variants

/tokobatik/themes/switch/images
1
/tokobatik/themes/switch/images/clr
1
/tokobatik/themes/switch/images/pattern
1
/tokobatik/themes/united
1

Apache server-info enabled


Apache /server-info displays information about your Apache configuration. If you are not using this feature, disable it.
Affected item
Web Server
Affected parameter
Variants
1
Apache server-status enabled
Apache /server-status displays information about your Apache status. If you are not using this feature, disable it.
Affected item
Web Server
Affected parameter
Variants
1
Login page password-guessing attack
A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack
is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols
until you discover the one correct combination that works.
This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended
to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web
references for more information about fixing this problem.
Affected item
/tokobatik/
Affected parameter
Variants
1
Affected item
/tokobatik/ADMIN/login_validasi.php
Affected parameter
Variants
1
Affected item
/tokobatik/index.php
Affected parameter
Variants
1
TRACE method is enabled
HTTP TRACE method is enabled on this web server. In the presence of other cross-domain vulnerabilities in web
browsers, sensitive header information could be read from any domains that support the HTTP TRACE method.
Affected item
Web Server
Affected parameter
Variants
1

Acunetix Website Audit

29

(A9) Insufficient Transport Layer Protection


Applications frequently fail to authenticate, encrypt, and protect the confidentiality and integrity of sensitive network traffic.
When they do, they sometimes support weak algorithms, use expired or invalid certificates, or do not use them correctly.
No alerts in this category.

(A10) UnvalidatedRedirects and Forwards


Web applications frequently redirect and forward users to other pages and websites, and use untrusteddata to determine
the destination pages. Without proper validation, attackers can redirect victims to phishing or malware sites, or use
forwards to access unauthorized pages.
No alerts in this category.

Acunetix Website Audit

30

Affected Items: A Detailed Report


This section provides full details of the types of vulnerabilities found according to individual affected items.

/tokobatik/
Cross Site Scripting (verified)
This script is possibly vulnerable to Cross Site Scripting (XSS) attacks.
Cross site scripting (also referred to as XSS) is a vulnerability that allows an attacker to send malicious code (usually in
the form of Javascript) to another user. Because a browser cannot know if the script should be trusted or not, it will
execute the script in the user context allowing the attacker to access any cookies or session tokens retained by the
browser.
This alert belongs to the following categories: A2
Parameter
txtKeyword

Variations
1

SQL injection
This script is possibly vulnerable to SQL Injection attacks.
SQL injection is a vulnerability that allows an attacker to alter backend SQL statements by manipulating the user input. An
SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't
properly filter out dangerous characters.
This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is
relatively easy to protect against, there is a large number of web applications vulnerable.
This alert belongs to the following categories: A1
Parameter
hal

Variations
1

Login page password-guessing attack


A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack
is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols
until you discover the one correct combination that works.
This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended
to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web
references for more information about fixing this problem.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

31

/tokobatik/ADMIN/bootstrap
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/bootstrap/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/bootstrap/fonts
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/bootstrap/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

32

/tokobatik/ADMIN/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/font-awesome
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/font-awesome/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/font-awesome/font
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

33

/tokobatik/ADMIN/css/hint-css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/linecons
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/linecons/fonts
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/css/theme
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

34

/tokobatik/admin/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/Admin/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/img/flags
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

35

/tokobatik/ADMIN/img/patterns
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/Admin/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/admin/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

36

/tokobatik/ADMIN/js/lib
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/autosize
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/bootbox
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/bootstrap-switch
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

37

/tokobatik/ADMIN/js/lib/bootstrap-switch/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/bootstrap-switch/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/chained
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

38

/tokobatik/ADMIN/js/lib/ckeditor
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/colorpicker
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/colorpicker/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/colorpicker/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

39

/tokobatik/ADMIN/js/lib/colorpicker/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/complexify
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

40

/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

41

/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

42

/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

43

/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/dataTables/media/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

44

/tokobatik/ADMIN/js/lib/dataTables/media/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/datepicker
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/datepicker/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/datepicker/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

45

/tokobatik/ADMIN/js/lib/easy-pie-chart
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/flot
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/FooTable
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/FooTable/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

46

/tokobatik/ADMIN/js/lib/FooTable/css/fonts
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/FooTable/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/fuelUx
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/fullcalendar
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

47

/tokobatik/ADMIN/js/lib/gmaps
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/iCheck
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/iCheck/skins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/iCheck/skins/minimal
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

48

/tokobatik/ADMIN/js/lib/ion_rangeSlider
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/ion_rangeSlider/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/ion_rangeSlider/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jasny_plugins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

49

/tokobatik/ADMIN/js/lib/jMenu
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jMenu/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jquery.inputmask
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jquery_textarea_counter
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

50

/tokobatik/ADMIN/js/lib/jquery_ui
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jquery_ui/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jquery_ui/css/delta
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

51

/tokobatik/ADMIN/js/lib/jQuery-File-Upload
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jQuery-File-Upload/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jQuery-File-Upload/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jQuery-File-Upload/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

52

/tokobatik/ADMIN/js/lib/jquery-steps
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jvectormap
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/jvectormap/maps
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/magnific-popup
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

53

/tokobatik/ADMIN/js/lib/mixitup
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/multiple-select
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/multi-select
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/multi-select/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

54

/tokobatik/ADMIN/js/lib/multi-select/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/multi-select/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/navgoco
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/noUiSlider
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

55

/tokobatik/ADMIN/js/lib/parsley
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/peity
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/qrcode
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/select2
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

56

/tokobatik/ADMIN/js/lib/slickGrid
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/slickGrid/controls
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/slickGrid/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/slickGrid/lib
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

57

/tokobatik/ADMIN/js/lib/slickGrid/plugins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/Sticky
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/timepicker
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/timepicker/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

58

/tokobatik/ADMIN/js/lib/timepicker/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/lib/typeahead.js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/js/pages
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/ADMIN/login_validasi.php
Login page password-guessing attack
A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack
is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols
until you discover the one correct combination that works.
This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended
to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web
references for more information about fixing this problem.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

59

/tokobatik/Images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/images/_notes
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/img-barang
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

60

/tokobatik/index.php
Cross Site Scripting (verified)
This script is possibly vulnerable to Cross Site Scripting (XSS) attacks.
Cross site scripting (also referred to as XSS) is a vulnerability that allows an attacker to send malicious code (usually in
the form of Javascript) to another user. Because a browser cannot know if the script should be trusted or not, it will
execute the script in the user context allowing the attacker to access any cookies or session tokens retained by the
browser.
This alert belongs to the following categories: A2
Parameter
txtKeyword

Variations
1

SQL injection
This script is possibly vulnerable to SQL Injection attacks.
SQL injection is a vulnerability that allows an attacker to alter backend SQL statements by manipulating the user input. An
SQL injection occurs when web applications accept user input that is directly placed into a SQL statement and doesn't
properly filter out dangerous characters.
This is one of the most common application layer attacks currently being used on the Internet. Despite the fact that it is
relatively easy to protect against, there is a large number of web applications vulnerable.
This alert belongs to the following categories: A1
Parameter
hal

Variations
1

Login page password-guessing attack


A common threat web developers face is a password-guessing attack known as a brute force attack. A brute-force attack
is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols
until you discover the one correct combination that works.
This login page doesn't have any protection against password-guessing attacks (brute force attacks). It's recommended
to implement some type of account lockout after a defined number of incorrect password attempts. Consult Web
references for more information about fixing this problem.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

61

/tokobatik/plugins/tigra_calendar/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/langs
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

62

/tokobatik/plugins/tinymce/plugins/advlist
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/anchor
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/autolink
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/autoresize
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

63

/tokobatik/plugins/tinymce/plugins/autosave
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/bbcode
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/charmap
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/code
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

64

/tokobatik/plugins/tinymce/plugins/compat3x
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/contextmenu
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/directionality
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/emoticons
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

65

/tokobatik/plugins/tinymce/plugins/emoticons/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/example
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/example_dependency
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/fullpage
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

66

/tokobatik/plugins/tinymce/plugins/fullscreen
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/hr
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/image
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/insertdatetime
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

67

/tokobatik/plugins/tinymce/plugins/layer
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/legacyoutput
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/link
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/lists
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

68

/tokobatik/plugins/tinymce/plugins/media
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/nonbreaking
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/noneditable
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/pagebreak
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

69

/tokobatik/plugins/tinymce/plugins/paste
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/preview
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/print
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/save
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

70

/tokobatik/plugins/tinymce/plugins/searchreplace
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/spellchecker
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/tabfocus
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/table
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

71

/tokobatik/plugins/tinymce/plugins/template
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/textcolor
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/visualblocks
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/visualblocks/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

72

/tokobatik/plugins/tinymce/plugins/visualchars
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/plugins/wordcount
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/skins
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/skins/lightgray
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

73

/tokobatik/plugins/tinymce/skins/lightgray/fonts
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/skins/lightgray/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/themes
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/plugins/tinymce/themes/modern
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

74

/tokobatik/themes
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/amelia
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/bootshop
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/businessltd
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

75

/tokobatik/themes/cerulean
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/css
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/cyborg
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/font
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

76

/tokobatik/themes/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/images/carousel
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/images/ico
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/images/lightbox
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

77

/tokobatik/themes/images/products
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/images/products/large
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/img
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/journal
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

78

/tokobatik/themes/js
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/js/google-code-prettify
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/less
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/less/amelia
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

79

/tokobatik/themes/less/bootshop
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/less/oregional
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/less/simplex
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/readable
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

80

/tokobatik/themes/simplex
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/slate
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/spacelab
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/spruce
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

81

/tokobatik/themes/superhero
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/switch
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/switch/images
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/switch/images/clr
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

82

/tokobatik/themes/switch/images/pattern
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

/tokobatik/themes/united
Directory Listing
The web server is configured to display the list of files contained in this directory. This is not recommended because the
directory may contain files that are not normally exposed through links on the web site.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

Web Server
Apache server-info enabled
Apache /server-info displays information about your Apache configuration. If you are not using this feature, disable it.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

Apache server-status enabled


Apache /server-status displays information about your Apache status. If you are not using this feature, disable it.
This alert belongs to the following categories: A6, A8
Parameter

Variations
1

TRACE method is enabled


HTTP TRACE method is enabled on this web server. In the presence of other cross-domain vulnerabilities in web
browsers, sensitive header information could be read from any domains that support the HTTP TRACE method.
This alert belongs to the following categories: A6, A8
Parameter

Acunetix Website Audit

Variations
1

83

Scanned items (coverage report)


http://localhost/tokobatik/
Vulnerabilities has been identified for this URL
28 input(s) found for this URL
Inputs
Input scheme 1
Input name
open
txtKeyword

Input type
URL encoded GET
URL encoded POST

Input scheme 2
Input name
open
btnLogin
txtPassword
txtUsername

Input type
URL encoded GET
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 3
Input name
Kode
open

Input type
URL encoded GET
URL encoded GET

Input scheme 4
Input name
open

Input type
URL encoded GET

Input scheme 5
Input name
hal

Input type
URL encoded GET

Input scheme 6
Input name
email
isipesan
judul
nama

Input type
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 7
Input name
btnDaftar
cmbKelamin
txtEmail
txtNama
txtNoTelepon
txtPassword_1
txtPassword_2
txtUsername

Input type
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 8
Input name
page

Input type
URL encoded GET

Input scheme 9
Input name
btnKirim
txtJumlahTransfer

Input type
URL encoded POST
URL encoded POST

Acunetix Website Audit

84

txtKeterangan
txtNama
txtNoPemesanan

URL encoded POST


URL encoded POST
URL encoded POST

http://localhost/tokobatik/index.php
Vulnerabilities has been identified for this URL
28 input(s) found for this URL
Inputs
Input scheme 1
Input name
open
txtKeyword

Input type
URL encoded GET
URL encoded POST

Input scheme 2
Input name
open
btnLogin
txtPassword
txtUsername

Input type
URL encoded GET
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 3
Input name
Kode
open

Input type
URL encoded GET
URL encoded GET

Input scheme 4
Input name
open

Input type
URL encoded GET

Input scheme 5
Input name
hal

Input type
URL encoded GET

Input scheme 6
Input name
email
isipesan
judul
nama

Input type
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 7
Input name
btnDaftar
cmbKelamin
txtEmail
txtNama
txtNoTelepon
txtPassword_1
txtPassword_2
txtUsername

Input type
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST
URL encoded POST

Input scheme 8
Input name
page

Input type
URL encoded GET

Input scheme 9
Input name
btnKirim

Input type
URL encoded POST

Acunetix Website Audit

85

txtJumlahTransfer
txtKeterangan
txtNama
txtNoPemesanan

URL encoded POST


URL encoded POST
URL encoded POST
URL encoded POST

http://localhost/tokobatik/img-barang/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/img-barang/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/login.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/images/_notes/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/images/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/css/base.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/css/font-awesome.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/css/bootstrap-responsive.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/css/font-awesome-ie7.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
Acunetix Website Audit

86

http://localhost/tokobatik/themes/images/ico/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/ico/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/products/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/products/large/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/products/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/carousel/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/carousel/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/lightbox/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/lightbox/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/images/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/bootshop/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/bootshop/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/google-code-prettify/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

87

http://localhost/tokobatik/themes/js/google-code-prettify/prettify.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/google-code-prettify/prettify.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/jquery.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/bootstrap.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/bootshop.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/jquery.lightbox-0.5.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/js/less.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/amelia.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/simplex.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/bootshop.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/classified.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/amelia/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/amelia/variables.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

88

http://localhost/tokobatik/themes/less/amelia/bootswatch.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/simplex/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/simplex/variables.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/simplex/bootswatch.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/code.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/navs.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/bootshop/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/bootshop/main.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/bootshop/variables.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/type.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/alerts.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/carousel.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/grid.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/close.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

89

http://localhost/tokobatik/themes/less/tables.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/tooltip.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/buttons.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/variables.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/utilities.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/accordion.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/thumbnails.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/bootstrap.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/breadcrumbs.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/pager.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/oregional/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/wells.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/forms.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/reset.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

90

http://localhost/tokobatik/themes/less/navbar.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/modals.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/mixins.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/layouts.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/sprites.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/popovers.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/dropdowns.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/pagination.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/hero-unit.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/scaffolding.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/font-awesome.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/progress-bars.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/button-groups.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

91

http://localhost/tokobatik/themes/less/labels-badges.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/font-awesome-ie7.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive-navbar.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/component-animations.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive-utilities.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive-767px-max.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive-1200px-min.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/less/responsive-768px-979px.less
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/font/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/slate/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/slate/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/switch/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/switch/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

92

http://localhost/tokobatik/themes/switch/images/clr/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/switch/images/pattern/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/switch/themeswitch.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/switch/theamswitcher.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/united/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/united/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/amelia/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/amelia/bootstrap.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/amelia/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/journal/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/journal/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/simplex/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/simplex/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/readable/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

93

http://localhost/tokobatik/themes/readable/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/cerulean/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/cerulean/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/spruce/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/spruce/bootstrap.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/spruce/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/cyborg/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/cyborg/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/spacelab/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/spacelab/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/superhero/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/superhero/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/businessltd/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/themes/businessltd/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

94

http://localhost/tokobatik/kalender.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/admin/
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/admin/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/admin/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/Admin/
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/Admin/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/Admin/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/login_validasi.php
Vulnerabilities has been identified for this URL
2 input(s) found for this URL
Inputs
Input scheme 1
Input name
txtPassword
txtUsername

Input type
URL encoded POST
URL encoded POST

http://localhost/tokobatik/ADMIN/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/style.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/todc-bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

95

http://localhost/tokobatik/ADMIN/css/theme/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_4.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_5.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_2.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_3.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_7.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_8.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_9.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_6.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_1.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_18.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_15.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_14.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_19.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

96

http://localhost/tokobatik/ADMIN/css/theme/color_11.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_20.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_13.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_16.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_10.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_12.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/theme/color_1xx.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/hint-css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/hint-css/hint.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/linecons/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/linecons/fonts/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/linecons/style.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/font-awesome/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/font-awesome/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

97

http://localhost/tokobatik/ADMIN/css/font-awesome/css/font-awesome.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/font-awesome/font/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/css/font-awesome/font/fontawesome-webfontf77b.eot
No vulnerabilities has been identified for this URL
1 input(s) found for this URL
Inputs
Input scheme 1
Input name
v

Input type
URL encoded GET

http://localhost/tokobatik/ADMIN/css/retina.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/css/bootstrap.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/fonts/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/bootstrap/js/bootstrap.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/jquery.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
Acunetix Website Audit

98

http://localhost/tokobatik/ADMIN/js/lib/parsley/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/parsley/parsley.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.resize.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.pie.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.time.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.stack.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.resize.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.tooltip.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/flot/jquery.flot.crosshair.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jMenu/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jMenu/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jMenu/js/jMenu.jquery.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

99

http://localhost/tokobatik/ADMIN/js/lib/peity/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/peity/jquery.peity.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/gmaps/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/gmaps/gmaps.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/Sticky/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/Sticky/sticky.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/Sticky/sticky.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/qrcode/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/qrcode/jquery.qrcode-0.7.0.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/iCheck/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/iCheck/skins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/iCheck/skins/minimal/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/iCheck/skins/minimal/minimal.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/iCheck/jquery.icheck.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

100

http://localhost/tokobatik/ADMIN/js/lib/fuelUx/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/fuelUx/combobox.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/chained/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/chained/jquery.chained.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/chained/jquery.chained.remote.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/navgoco/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/navgoco/jquery.navgoco.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/select2/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/select2/select2.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/select2/select2.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/select2/ebro_select2.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootbox/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootbox/bootbox.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/mixitup/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

101

http://localhost/tokobatik/ADMIN/js/lib/mixitup/jquery.mixitup.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ckeditor/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ckeditor/ckeditor.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/js/footable.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/js/footable.sort.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/js/footable.filter.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/js/footable.paginate.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/css/fonts/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/FooTable/css/footable.core.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/autosize/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/autosize/jquery.autosize-min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

102

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/fallback_moduleHeader.html
No vulnerabilities has been identified for this URL
1 input(s) found for this URL
Inputs
Input scheme 1
Input name
search_query

Input type
URL encoded GET

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/grid.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/chat.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/gmaps.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/blank.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/icons.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/wizard.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/wysiwg.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/panels.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
Acunetix Website Audit

103

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/calendar.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/charts.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/form_validation.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/form_multiupload.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/gallery.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/mailbox.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/style.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/retina.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/theme
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/theme/color_1.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/todc-bootstrap.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/font-awesome
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/font-awesome/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

104

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/css/font-awesome/css/font-awesome.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/invoices.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/help_faq.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/error_404.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/typography.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/slick_grid.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/login_page.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/datatables.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/dashboard1.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/settings.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/dashboard2.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/file_manager.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/contact_list.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/img
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

105

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/img/flags
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/img/flags/flags.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/user_profile.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/contact_page.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/notifications.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/alerts_buttons.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/tabs_accordions.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/regular_tables.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/table_responsive.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/tooltips_popovers.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/form_regular_elements.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/form_extended_elements.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/bootstrap
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/bootstrap/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

106

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/bootstrap/css/bootstrap.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/bootstrap/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/bootstrap/js/bootstrap.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/jquery.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/jquery.ba-resize.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/jquery_cookie.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/retina.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/tinynav.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/jquery.sticky.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/navgoco
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/navgoco/jquery.navgoco.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/jMenu
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

107

http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/jMenu/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/jMenu/js/jMenu.jquery.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/typeahead.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/typeahead.js/typeahead.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/lib/typeahead.js/hogan-2.0.0.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/images/js/ebro_common.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/css/delta/jquery-ui.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_ui/jquery-ui-1.10.3.custom.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/lib/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/lib/jquery.event.drag-2.2.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/plugins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/plugins/slick.rowselectionmodel.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.core.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

108

http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.grid.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/controls/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/controls/slick.pager.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/controls/slick.pager.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/controls/slick.columnpicker.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.grid.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.editors.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.dataview.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/slickGrid/slick.formatters.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/js/jquery.dataTables.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

109

http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/DT_bootstrap.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/media/DT_bootstrap.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColVis/media/js/ColVis.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/ColReorder/media/js/ColReorder.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

110

http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js/ZeroClipboard.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/js/TableTools.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/css/TableTools.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/TableTools/media/images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/dataTables/extras/FixedColumns/media/js/FixedColumns.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jvectormap/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jvectormap/maps/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jvectormap/maps/jquery-jvectormap-world-mill-en.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jvectormap/jquery-jvectormap-1.2.2.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

111

http://localhost/tokobatik/ADMIN/js/lib/jvectormap/jquery-jvectormap-1.2.2.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/datepicker/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/datepicker/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/datepicker/js/bootstrap-datepicker.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/datepicker/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/datepicker/css/datepicker.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/complexify/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/complexify/jquery.complexify.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/complexify/jquery.complexify.banlist.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/colorpicker/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/colorpicker/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/colorpicker/js/bootstrap-colorpicker.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/colorpicker/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/colorpicker/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

112

http://localhost/tokobatik/ADMIN/js/lib/colorpicker/css/colorpicker.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/noUiSlider/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/noUiSlider/jquery.nouislider.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/noUiSlider/jquery.nouislider.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/timepicker/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/timepicker/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/timepicker/js/bootstrap-timepicker.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/timepicker/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/timepicker/css/bootstrap-timepicker.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/typeahead.js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/typeahead.js/hogan-2.0.0.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/typeahead.js/typeahead.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery-steps/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery-steps/jquery.steps.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

113

http://localhost/tokobatik/ADMIN/js/lib/multi-select/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/js/jquery.multi-select.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/css/multi-select.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multi-select/css/ebro_multi-select.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jasny_plugins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jasny_plugins/bootstrap-rowlink.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jasny_plugins/bootstrap-fileupload.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/magnific-popup/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/magnific-popup/magnific-popup.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/magnific-popup/jquery.magnific-popup.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/easy-pie-chart/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

114

http://localhost/tokobatik/ADMIN/js/lib/easy-pie-chart/jquery.easy-pie-chart.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/fullcalendar/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/fullcalendar/gcal.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/fullcalendar/fullcalendar.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/fullcalendar/fullcalendar.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multiple-select/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multiple-select/multiple-select.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/multiple-select/jquery.multiple.select.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/js/ion.rangeSlider.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/css/ion.rangeSlider.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/ion_rangeSlider/css/ion.rangeSlider.ebro.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

115

http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/js/bootstrap-switch.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets/bootstrap-switch.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/bootstrap-switch/stylesheets/ebro_bootstrapSwitch.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery.inputmask/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery.inputmask/jquery.inputmask.bundle.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/js/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/js/jquery.fileupload.all.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

116

http://localhost/tokobatik/ADMIN/js/lib/jQuery-File-Upload/css/jquery.fileupload-ui.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_textarea_counter/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/lib/jquery_textarea_counter/jquery.textareaCounter.plugin.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_gmaps.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_icons.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_wizard.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_wysiwg.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_charts.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_calendar.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_datatables.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_dashboard1.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_dashboard2.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_contact_list.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

117

http://localhost/tokobatik/ADMIN/js/pages/ebro_contact_page.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_file_manager.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_form_extended.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_mailbox.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_gallery.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_invoices.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_slick_grid.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_user_profile.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_notifications.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_site_settings.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_form_validate.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_form_multiupload.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/pages/ebro_responsive_table.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/tinynav.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

118

http://localhost/tokobatik/ADMIN/js/retina.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/ebro_common.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/jquery.sticky.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/jquery_cookie.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/jquery.quicksearch.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/js/jquery.ba-resize.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bullet_c.html
No vulnerabilities has been identified for this URL
1 input(s) found for this URL
Inputs
Input scheme 1
Input name
search_query

Input type
URL encoded GET

http://localhost/tokobatik/ADMIN/img/bullet_a.html
No vulnerabilities has been identified for this URL
1 input(s) found for this URL
Inputs
Input scheme 1
Input name
search_query

Input type
URL encoded GET

http://localhost/tokobatik/ADMIN/img/patterns/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/patterns/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

119

http://localhost/tokobatik/ADMIN/img/grid.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/chat.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/gmaps.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/blank.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/icons.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/wizard.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/wysiwg.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/panels.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/calendar.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/charts.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/form_validation.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/form_multiupload.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/gallery.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/mailbox.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

120

http://localhost/tokobatik/ADMIN/img/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/style.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/retina.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/theme
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/theme/color_1.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/todc-bootstrap.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/font-awesome
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/font-awesome/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/css/font-awesome/css/font-awesome.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/invoices.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/help_faq.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/error_404.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/typography.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/slick_grid.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

121

http://localhost/tokobatik/ADMIN/img/login_page.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/datatables.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/dashboard1.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/settings.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/dashboard2.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/file_manager.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/contact_list.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/img
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/img/flags
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/img/flags/flags.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/user_profile.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/contact_page.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/notifications.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/alerts_buttons.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

122

http://localhost/tokobatik/ADMIN/img/tabs_accordions.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/regular_tables.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/table_responsive.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/tooltips_popovers.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/form_regular_elements.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/form_extended_elements.html
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bootstrap
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bootstrap/css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bootstrap/css/bootstrap.min.css
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bootstrap/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/bootstrap/js/bootstrap.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/jquery.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/jquery.ba-resize.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

123

http://localhost/tokobatik/ADMIN/img/js/jquery_cookie.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/retina.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/tinynav.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/jquery.sticky.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/navgoco
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/navgoco/jquery.navgoco.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/jMenu
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/jMenu/js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/jMenu/js/jMenu.jquery.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/typeahead.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/typeahead.js/typeahead.min.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/lib/typeahead.js/hogan-2.0.0.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/js/ebro_common.js
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

124

http://localhost/tokobatik/ADMIN/img/flags/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/flags/flags.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/img/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/ADMIN/index.php
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/langs/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/fonts/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/skin.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/content.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/skins/lightgray/skin.ie7.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

125

http://localhost/tokobatik/plugins/tinymce/skins/lightgray/skin.classic.min.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/changelog.txt
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/themes/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/themes/modern/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/themes/modern/theme.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/hr/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/hr/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/code/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/code/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/save/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/save/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/link/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/link/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

126

http://localhost/tokobatik/plugins/tinymce/plugins/paste/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/paste/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/lists/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/lists/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/print/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/print/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/anchor/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/anchor/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/advlist/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/advlist/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/image/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/image/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/autolink/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/autolink/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

127

http://localhost/tokobatik/plugins/tinymce/plugins/wordcount/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/wordcount/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualchars/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualchars/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/media/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/media/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/media/moxieplayer.swf
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/bbcode/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/bbcode/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/charmap/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/charmap/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/template/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/template/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/autosave/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

128

http://localhost/tokobatik/plugins/tinymce/plugins/autosave/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/textcolor/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/textcolor/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/autoresize/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/autoresize/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualblocks/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualblocks/css/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualblocks/css/visualblocks.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/visualblocks/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/table/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/table/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/example/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/example/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/tabfocus/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

129

http://localhost/tokobatik/plugins/tinymce/plugins/tabfocus/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/mctabs.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/validate.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/form_utils.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/tiny_mce_popup.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/compat3x/editable_selects.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/emoticons/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/emoticons/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/emoticons/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/spellchecker/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/spellchecker/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/directionality/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/directionality/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

130

http://localhost/tokobatik/plugins/tinymce/plugins/fullpage/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/fullpage/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/fullscreen/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/fullscreen/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/contextmenu/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/contextmenu/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/searchreplace/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/searchreplace/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/layer/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/layer/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/preview/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/preview/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/pagebreak/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/pagebreak/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

131

http://localhost/tokobatik/plugins/tinymce/plugins/nonbreaking/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/nonbreaking/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/noneditable/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/noneditable/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/legacyoutput/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/legacyoutput/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/insertdatetime/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/insertdatetime/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/example_dependency/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/plugins/example_dependency/plugin.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/license.txt
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tinymce/tinymce.min.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/nicEdit.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tigra_calendar/
No vulnerabilities has been identified for this URL
1 input(s) found for this URL
Inputs
Acunetix Website Audit

132

Input scheme 1
Input name
date

Input type
URL encoded GET

http://localhost/tokobatik/plugins/tigra_calendar/tcal.css
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tigra_calendar/tcal.js
No vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tigra_calendar/img/
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/plugins/tigra_calendar/img/Thumbs.db
Vulnerabilities has been identified for this URL
No input(s) found for this URL
http://localhost/tokobatik/Images/
Vulnerabilities has been identified for this URL
No input(s) found for this URL

Acunetix Website Audit

133